All Beaufort 12 products are Salesforce-native, meaning your data stays within your own Salesforce environment and passes directly to the third-party platform you're integrating with. We don't store your personal data on our own servers. That said, because we facilitate that data flow, we operate as a Data Processor under GDPR and similar regulations, and a DPA is the right way to document that relationship.

The Solution

Our Data Processing Addendum is pre-signed on behalf of Beaufort 12 and is available to download directly. It is incorporated by reference into our Terms and Conditions, so it takes effect automatically when you install a Beaufort 12 product or accept our Terms.

Download the Beaufort 12 DPA (PDF)

Key things to know about our DPA:

• No primary data storage: Personal data being synchronised (contacts, leads, attendees, etc.) is not stored on Beaufort 12 servers. It passes directly between Salesforce and your chosen integration platform.
• Operational logging only: We transmit limited, non-identifiable system metadata to our AWS-hosted infrastructure for troubleshooting and service health purposes only. These logs are retained for a maximum of 90 days and are accessible only to our technical support team.
• Sub-processors are disclosed: The DPA lists all sub-processors, including Salesforce, Stripe, AWS, and your specific integration platform (Mailchimp, Campaign Monitor, Emma, Eventbrite, or Dropbox).
• Security standards: Data in transit is secured via TLS 1.2+, and OAuth 2.0 or API keys are used for authentication. No login credentials are stored.

If you have any questions about our DPA or have specific contractual requirements, please contact us at support@beaufort12.com.

Related Articles

• Beaufort 12 Terms and Conditions
• Beaufort 12 Data Processing Addendum [Full Document]