Argus Labs LogoArgus Labs
Back to Home

Argus Labs

Data Processing Agreement

Last updated: December 7, 2025

Version 1.0

This Data Processing Agreement ("DPA") forms part of the Terms of Service between Argus Labs and you (the "Customer") for use of Argus Labs services.

1Definitions

For the purposes of this DPA:

  • Controller: "Controller" means the entity that determines the purposes and means of Processing Personal Data.
  • Processor: "Processor" means the entity that Processes Personal Data on behalf of the Controller.
  • Personal Data: "Personal Data" means any information relating to an identified or identifiable natural person.
  • Processing: "Processing" means any operation performed on Personal Data.
  • Subprocessor: "Subprocessor" means any third party engaged by Processor to process Personal Data.

2Roles and Responsibilities

Regarding Investigation Data (graphs, entities, links) that you upload or create:

Customer: You are the Controller and determine the purposes and means of processing.

Argus Labs: Argus Labs acts as Processor, processing data only on your instructions to provide the Service.

Account Data: For Account Data (email, billing), Argus Labs is the Controller.

3Processor Obligations

Argus Labs commits to:

  • Process Personal Data only on documented instructions from the Customer.
  • Ensure persons authorized to process data are under confidentiality obligations.
  • Implement appropriate technical and organizational security measures.
  • Not engage another processor without prior authorization and written contract.
  • Assist Customer in responding to data subject requests.
  • Delete or return all Personal Data at end of Service.
  • Make available information necessary to demonstrate compliance.

4Security Measures

Argus Labs implements the following security measures:

Encryption at rest and in transit (TLS 1.3)

Role-based access controls and authentication

Comprehensive audit logging

Logical data isolation between customers

5Subprocessors

Customer authorizes Argus Labs to engage subprocessors listed on our Subprocessors page.

View current subprocessors list

6International Transfers

Personal Data may only be transferred outside the EEA with appropriate safeguards, including Standard Contractual Clauses approved by the European Commission.

7Data Breach Notification

Argus Labs will notify the Customer without undue delay (and within 72 hours) upon becoming aware of a personal data breach affecting Customer data.

8Duration and Termination

This DPA remains in effect for the duration of the Service Agreement. Upon termination, Argus Labs will delete Customer data within 30 days unless legally required to retain it.

9Contact

For any questions regarding this DPA, contact our Data Protection Officer:

[email protected]