Data Processing Addendum

This Data Processing Addendum applies when Chorus Local processes personal information on behalf of a customer through the service. It is incorporated into the Terms and any applicable written agreement unless the parties sign a different data-processing agreement.

Chorus Local is operated by Shreekaram Global LLC. References to Chorus Local in this DPA mean Shreekaram Global LLC operating the Chorus Local service unless a customer agreement says otherwise.

For workspace content and connected business data, the customer is generally the controller or business, and Chorus Local is generally the processor or service provider. Chorus Local may act as an independent controller for account administration, billing, security, product operations, and legal compliance.

Chorus Local processes customer personal information to provide, secure, support, improve, and maintain the service, including AI-assisted drafting, review synchronization, content planning, approval workflows, Stripe billing, audit trails, Google and Meta integration management, and support.

Customer instructions include the Terms, product settings, workspace actions, integration authorizations, written agreements, and documented support requests.

For Google API data, Chorus Local processes and transfers information only as permitted by the Google API Services User Data Policy, including Limited Use requirements, and only as needed for the connected workspace's user-facing features, security, support, compliance, and customer instructions.

Chorus Local restricts access to customer personal information to personnel and providers with a business need and appropriate confidentiality obligations. Security measures include workspace authorization, audit logging, encrypted transport, secret management, and operational monitoring.

Chorus Local may use subprocessors for hosting, databases, object storage, email delivery, billing, analytics, support, security, AI processing, and platform integrations. Current categories are listed on the Subprocessors page.

Chorus Local remains responsible for subprocessors it engages to process customer personal information on its behalf, subject to the Terms and applicable law.

Upon reasonable request, Chorus Local will help customers access, export, delete, or correct customer personal information where technically feasible and legally required.

Deletion may be requested through https://choruslocal.com/data-deletion or by contacting legal@choruslocal.com. Deletion may be subject to backups, immutable approval and publish audit records, billing records, security logs, legal holds, provider-platform records, and records required for dispute resolution or compliance.

Where required for cross-border processing, Chorus Local will rely on appropriate transfer mechanisms, such as standard contractual clauses, adequacy decisions, or other lawful mechanisms available for the relevant jurisdiction.

Upon reasonable request and subject to confidentiality, Chorus Local may provide information needed to demonstrate compliance with this DPA. Requests must not compromise the security, confidentiality, or availability of the service or other customers' data.

Data-processing questions can be sent to legal@choruslocal.com. Shreekaram Global LLC operates Chorus Local.