Data processing agreement

This summarises how Vessel Hunter processes personal data on your behalf when you use the platform. It forms part of our terms; we are also happy to sign a customer-specific DPA on request. We review this document periodically and post material changes here.

Roles

For personal data you upload to Vessel Hunter, you are the controller and Vessel Hunter is the processor.

Sub-processors

We use a small set of vetted sub-processors (cloud hosting, AIS data, email delivery). The current list is available on request.

Security

Encryption in transit and at rest, principle of least privilege for internal access, and audit logs on customer-facing data changes.

Data subject requests

We assist you, as controller, in responding to access, correction and deletion requests for personal data held in your workspace, and we delete or return such data on termination.

International transfers

Vessel Hunter is established in the Netherlands. Primary application and database hosting is provided by Hetzner in its Singapore data centre, so personal data is processed outside the EEA. These transfers — and any sub-processor that operates outside the EEA — rely on the European Commission’s Standard Contractual Clauses, together with supplementary measures such as encryption in transit and at rest. A current list of sub-processors and their locations is available on request.

Request a signed copy

Email contact@vesselhunter.io with your company name and we will share a draft within one business day.