Data processing addendum
Last updated: May 27, 2026. This is our standard DPA, available on request as a signed PDF. The summary below is plain-language. The signed PDF is authoritative.
Enterprise Orchestra is designed as a tool for self-hosted operations. The substantive data — workflow contents, command bodies, output, your clients' files — is encrypted end-to-end between you and the agents on servers you control. We don't see it. We can't be compelled to hand it over because we don't hold it.
On our infrastructure (the relay, the audit metadata service) we are a data processor for metadata only: install identifiers, connection times, version information, count of tenants without names. We process this under the standard EU SCC framework.
On the Firm tier we will sign whatever DPA your legal team prefers, including ones with prescriptive subprocessor lists, EU-only residency clauses, and notification windows shorter than our default.
For the signed version, write to legal@orchhq.com.