Purpose
This addendum describes how Planora, as a service provider, processes personal information on behalf of your business when you use the platform to manage clients, scheduling, attendance, and related communications. It is intended to support GDPR-style controller/processor clarity and POPIA-aligned accountability, without replacing legal advice.
Roles
Typically, your business decides why and how client and participant data is collected (controller role), while Planora provides the systems used to store and process that data according to your instructions and product functionality (processor role), subject to the full executed agreement between the parties.
Security & subprocessors
We implement appropriate technical and organisational measures for a cloud SaaS product. A list of material subprocessors, detailed security measures, breach notification timelines, and transfer mechanisms should be added here after legal and security review.