Data Processing Agreement

Last Updated: April 15, 2026

Introduction

This Data Processing Agreement ("DPA") is entered into between Healing Sun Haven LLC, operating under the data division HSH Intelligence ("Data Provider", "we", "us", or "our"), with offices at 15442 Ventura Blvd, Suite 201-1914, Sherman Oaks, CA 91403, accessible at www.healingsunhaven.com and www.hshintelligence.com, and the purchasing entity ("Client", "you", or "Data Recipient").

This DPA forms part of the Terms and Conditions agreed upon at the time of purchase and governs the processing of data provided by HSH Intelligence to the Client.

1. Definitions

"Data" means all B2B intelligence datasets, records, and information products purchased or licensed from HSH Intelligence.

"Personal Data" means any information relating to an identified or identifiable natural person in their professional business capacity.

"Processing" means any operation performed on data including collection, storage, use, disclosure, or deletion.

"Data Provider" means HSH Intelligence, a division of Healing Sun Haven LLC.

"Data Recipient" means the Client who has purchased or licensed data from HSH Intelligence.

"Applicable Law" means all data protection laws applicable to the processing of data including GDPR, CCPA, and any other relevant national or regional legislation.

2. Nature of Data

HSH Intelligence provides exclusively B2B intelligence data. All data provided relates to:

  1. Business entities and company profiles

  2. Professionals acting in their business and professional capacity

  3. Publicly available business contact information

  4. Company signals including hiring status, technology usage, and growth indicators

HSH Intelligence does not provide, sell, or process sensitive personal data, private personal information, health data, financial personal data, or any data relating to individuals acting in a personal rather than professional capacity.

3. Data Collection Standards

HSH Intelligence maintains the following standards in all data collection and processing activities:

  1. All data is sourced exclusively from publicly available sources

  2. No data is collected from behind login secured areas or private networks

  3. All data relates strictly to business entities and professionals in their business capacity

  4. Data collection practices comply with applicable laws and regulations including GDPR and CCPA

  5. HSH Intelligence is certified compliant with ethical web data collection standards

  6. No sensitive personal data categories are collected or processed

4. Obligations of HSH Intelligence as Data Provider

HSH Intelligence agrees to:

  1. Provide data that has been collected in compliance with all applicable data protection laws

  2. Maintain appropriate technical and organizational security measures to protect data

  3. Provide reasonable assistance to Clients in responding to data subject rights requests where applicable

  4. Notify Clients of any material changes to our data collection or processing practices

  5. Maintain records of data processing activities as required by applicable law

  6. Process data only for legitimate business intelligence purposes

  7. Cooperate with regulatory authorities as required by applicable law

5. Obligations of the Data Recipient

The Client agrees to:

  1. Use purchased data only for lawful business purposes as outlined in the Terms and Conditions

  2. Implement appropriate technical and organizational measures to protect the data received

  3. Not resell, redistribute, sublicense, or share the data with any third party under any circumstances

  4. Comply with all applicable data protection laws when using our data including GDPR, CCPA, and CAN-SPAM

  5. Maintain appropriate records of data processing activities

  6. Honor data subject rights requests promptly including requests for erasure or correction

  7. Immediately notify HSH Intelligence of any data breach involving our datasets

  8. Use the data only within the territory and for the purpose agreed at time of purchase

  9. Delete or return all data upon expiration or termination of the license agreement

6. GDPR Compliance

For Clients operating in or processing data of individuals located in the European Union:

  1. HSH Intelligence acts as an independent Data Controller for all data it collects and processes

  2. The Client acts as an independent Data Controller for all data it receives and processes

  3. Each party is independently responsible for compliance with GDPR obligations applicable to their respective processing activities

  4. HSH Intelligence ensures that all data provided to EU-based Clients meets the requirements of GDPR Article 6 lawful basis for processing

  5. Clients must ensure they have a valid lawful basis for processing any personal data received from HSH Intelligence

  6. Data subject rights including access, rectification, erasure, and portability must be honored by the Client for data under their control

7. CCPA Compliance

For Clients operating in California or processing data of California residents:

  1. HSH Intelligence does not sell personal information as defined under CCPA

  2. All data provided by HSH Intelligence relating to California residents is sourced from publicly available business information

  3. Clients must comply with all CCPA obligations applicable to their use of our data

  4. Clients must honor California consumer rights requests for data under their control

8. Data Security

HSH Intelligence maintains the following security standards:

  1. Industry standard encryption for data in transit and at rest

  2. Access controls limiting data access to authorized personnel only

  3. Regular security assessments and monitoring

  4. Incident response procedures for data breach scenarios

  5. Vendor security management for all third party service providers

Clients are required to implement equivalent or higher security standards when storing or processing data received from HSH Intelligence.

9. Data Retention

  1. HSH Intelligence retains data for as long as necessary to provide our services and comply with legal obligations

  2. Clients must implement their own data retention policies in compliance with applicable law

  3. Upon termination of a data license, Clients must delete all copies of the purchased dataset within 30 days

  4. Clients must provide written confirmation of deletion upon request

10. Data Breach Notification

In the event of a data breach involving HSH Intelligence systems:

  1. HSH Intelligence will notify affected Clients within 72 hours of becoming aware of the breach

  2. Notification will include the nature of the breach, categories of data affected, and remediation steps taken

  3. Clients must notify HSH Intelligence within 24 hours of becoming aware of any breach involving our data under their control

11. International Data Transfers

  1. HSH Intelligence operates from the United States and data is processed in US-based infrastructure

  2. For Clients in the European Union, data transfers are conducted in compliance with GDPR Chapter V requirements

  3. Clients are responsible for ensuring any onward transfer of our data complies with applicable cross-border data transfer regulations

12. Liability

  1. Each party is independently responsible for their own compliance with applicable data protection laws

  2. HSH Intelligence is not liable for any non-compliance by the Client in their use of purchased data

  3. The Client indemnifies HSH Intelligence against any claims arising from the Client's non-compliant use of our data

13. Term and Termination

  1. This DPA remains in effect for the duration of the data license agreement

  2. Either party may terminate this DPA with 30 days written notice

  3. Upon termination, the Client must delete all data received from HSH Intelligence within 30 days

  4. Sections relating to liability, indemnification, and confidentiality survive termination

14. Amendments

HSH Intelligence reserves the right to update this DPA at any time. Material changes will be communicated to active Clients via email. Continued use of our data products after notification constitutes acceptance of the revised DPA.

15. Governing Law

This DPA shall be governed by the laws of the State of Wyoming, United States. Any disputes arising from this DPA shall be resolved through binding arbitration in Wyoming.

Contact Us

For any questions regarding this Data Processing Agreement contact:

Healing Sun Haven LLC Data Division: HSH Intelligence 15442 Ventura Blvd, Suite 201-1914 Sherman Oaks, CA 91403 Email: info@healingsunhaven.com Website: www.healingsunhaven.com Data Division: www.hshintelligence.com

Your competitors are already using better data. Are you?

Get Free Sample

AI marketing automation for data driven strategies.
Map Image

London, UK

Singapore

HQ: Sherman Oaks, CA

Your competitors are already using better data. Are you?

Get Free Sample

AI marketing automation for data driven strategies.
Map Image

London, UK

Singapore

HQ: Sherman Oaks, CA

Your competitors are already using better data. Are you?

Get Free Sample

AI marketing automation for data driven strategies.
Map Image

London, UK

Singapore

HQ: Sherman Oaks, CA