This Data Processing Agreement ("DPA") forms part of the Master Service Agreement between ShipKaro Technologies Pvt. Ltd. ("Processor") and the Enterprise Client ("Controller").
1. Definitions
Controller: The enterprise client who determines the purposes and means of processing personal data.
Processor: ShipKaro Technologies Pvt. Ltd., which processes personal data on behalf of the Controller.
Personal Data: Any information relating to an identified or identifiable natural person.
Processing: Any operation performed on personal data including collection, storage, use, disclosure, or deletion.
Sub-processor: Any third party engaged by ShipKaro to process personal data (e.g., courier partners, SMS providers).
2. Scope of Processing
ShipKaro processes personal data solely for the purpose of providing logistics and shipping services as described in the Master Service Agreement.
Categories of data processed: Customer names, addresses, phone numbers, email addresses, and order information.
ShipKaro will not process personal data for any purpose other than fulfilling the contracted services.
Processing will continue for the duration of the Master Service Agreement plus any legally required retention period.
3. ShipKaro's Obligations as Processor
Process personal data only on documented instructions from the Controller.
Ensure all personnel with access to personal data are bound by confidentiality obligations.