Kalenda

Data Processing Addendum

Version 1.0 · Effective 18 June 2026

This document is an implementation template and should be reviewed by qualified legal counsel before production use.

Version 1.0 | For practitioners using Kalenda

> Template DPA — review with qualified counsel.

Parties

  • Controller: The Practitioner (you)
  • Processor: Kalenda

Subject matter

Processing of client and practice data through the Kalenda platform for booking, billing, communications, and related services.

Duration

For the term of your subscription and as required for post-termination obligations.

Nature and purpose

Hosting, storage, transmission, and display of personal data as directed by the practitioner through platform features.

Categories of data subjects

Practitioners, clients, and authorised team members.

Types of personal data

Contact details, booking records, invoices, payments, intake responses, communications metadata, and integration data.

Processor obligations

Kalenda shall:

  • Process data only on documented instructions
  • Ensure confidentiality of personnel
  • Implement appropriate technical and organisational measures
  • Assist with data subject requests where feasible
  • Notify of personal data breaches without undue delay
  • Delete or return data on termination subject to legal retention
  • Make available information for compliance demonstrations
  • Use subprocessors with appropriate safeguards

Subprocessors

Listed at [/subprocessors](/subprocessors). We will notify practitioners of material changes.

International transfers

Transfers use appropriate safeguards including standard contractual clauses where required.

Audit rights

Practitioners may request compliance information. Onsite audits require reasonable notice and confidentiality.

Liability

As set out in the Terms and Conditions.

Acceptance

By completing compliance onboarding or checking "I accept the DPA", you agree to this Addendum.