← Back to Home Legal

Data Processing Addendum

This Data Processing Addendum outlines the roles, processing scope, retention and security arrangements for the Rhellm service.

Data Processing Addendum

This Data Processing Addendum (“DPA”) forms part of the agreement between:

Rapport Digital Pty Ltd ABN 22 655 576 211 (trading as Rhellm)
(“Rhellm”)

and

the subscribing customer (“Customer”).

Rhellm provides its services using technology licensed from Qwantum Leap Pty Ltd, which operates the underlying platform infrastructure.

1. Roles of the Parties

Customer acts as the Controller of personal information.

Rhellm acts as a Processor providing the Rhellm service.

Qwantum Leap Pty Ltd acts as a technology platform provider and processor engaged by Rhellm to operate the underlying platform.

2. Purpose of Processing

Personal information is processed to provide the Rhellm platform including:

  • generating automated financial videos
  • rendering video outputs
  • hosting content
  • analysing engagement metrics

3. Categories of Personal Information

Personal information processed may include:

Customer personnel

  • names
  • email addresses
  • contact information
  • login credentials
  • usage analytics

Customer client information

  • client names
  • business financial metrics
  • business entity information

Rhellm does not collect client contact details for those clients.

4. Sub-Processors

Rhellm may engage sub-processors including:

  • Qwantum Leap Pty Ltd (platform technology provider)
  • cloud infrastructure providers including Microsoft Azure
  • email delivery providers
  • payment processors

Rhellm ensures that sub-processors are subject to appropriate contractual obligations.

5. Data Transfers

Personal information may be processed in:

  • Australia
  • South Africa
  • Europe
  • United States

Rhellm takes reasonable steps to ensure personal information is handled consistently with Australian privacy laws.

6. Security

Rhellm and Qwantum Leap implement reasonable security measures including:

  • encryption
  • access control
  • secure infrastructure
  • monitoring systems

7. Data Retention

Customer data is retained in accordance with Rhellm’s data retention policies including:

  • customer accounts retained for the duration of the subscription plus five years
  • video processing data deleted immediately after video generation
  • generated videos retained for 90 days

8. Data Breach Notification

Rhellm will notify the Customer without undue delay if it becomes aware of a data breach involving personal information processed on behalf of the Customer.

9. Governing Law

This DPA is governed by the laws of Queensland, Australia.