Roles
Customer is the controller. Sendora Cloud is the processor.
Sub-processors are listed at /legal/subprocessors and may be changed with prior notice.
Security
Sendora Cloud implements appropriate technical and organizational measures: encryption, access controls, logging, and regular testing.
International transfers
Transfers outside the EEA use Standard Contractual Clauses and the EU-US Data Privacy Framework where applicable.
Audits
Customers may request Sendora Cloud's current SOC 2 report or ISO 27001 certification (when available) under NDA.