Data subjects
Customer users, customer staff, counterparties, contractors, clients, or other individuals whose data appears in uploaded documents.
This Data Processing Addendum describes the baseline terms that apply when Tremvio processes personal data on behalf of a customer through document-processing workflows.
This Data Processing Addendum applies when a customer uses Tremvio to upload, review, transform, export, or otherwise process personal data contained in documents or extracted table outputs.
This page is Tremvio's standard public DPA summary. If a customer requires a signed version, additional procurement language, or international transfer annexes, contact support@tremvio.com.
For customer documents and extracted outputs that contain personal data, the customer generally acts as controller or processor for its own underlying business purpose, and Tremvio acts as processor on the customer's behalf.
Tremvio acts as controller for its own website operations, account administration, billing, abuse prevention, service analytics, support, legal compliance, and security records.
The subject matter of processing is document ingestion, table detection, extraction, review, export, storage, support, and related service operations needed to provide Tremvio.
Processing continues for as long as the customer maintains the relevant account or workspace and for any limited period reasonably required for backups, security, incident handling, billing, or legal compliance.
The purpose of processing is to provide document-processing software that converts messy PDFs, images, and scans into clean, reviewable tables and exports requested by the customer.
The exact categories depend on what the customer uploads. Typical categories may include:
Customer users, customer staff, counterparties, contractors, clients, or other individuals whose data appears in uploaded documents.
Names, email addresses, identifiers, contact details, row-level business records, and other text or numbers contained in uploaded tables.
Job timestamps, usage events, support messages, authentication records, and operational logs related to providing the service.
Tremvio aims to limit access to customer data to personnel and providers who need that access to provide, secure, maintain, or support the service. Tremvio also aims to use reasonable technical and organizational measures appropriate to the service and the categories of data involved.
Tremvio may use third-party subprocessors and service providers for hosting, storage, billing, support, monitoring, and related operations. A public overview is available on the Subprocessors page.
Customers with procurement or vendor-review requirements can request more detailed information through support@tremvio.com.
Tremvio and its providers may process customer data in multiple countries. Where personal data is transferred internationally, Tremvio aims to rely on lawful transfer mechanisms and reasonable contractual or organizational safeguards appropriate to the processing context.
Tremvio aims to provide reasonable assistance, taking into account the nature of the processing and the information available to Tremvio, so the customer can respond to data subject requests, security incidents, or regulator questions related to customer data processed in the service.
Customer privacy requests and DPA questions should be sent to support@tremvio.com.
Customers can delete uploaded files, extracted outputs, or account data through the product where available or by sending a verified request to support@tremvio.com.
Following account closure or a verified deletion request, Tremvio aims to delete or de-identify customer data within a reasonable period, except where retention is still required for backups, security, fraud prevention, dispute resolution, billing records, or legal obligations.
Tremvio may provide reasonable documentation and answers to customer due-diligence requests proportionate to the customer's risk review, confidentiality obligations, and the nature of the service.