Last updated: 27 September 2025
This Data Processing Agreement (“DPA”) forms part of the Terms of Service between Vladyslav Kudriavtsev, trading as ALBAHOST (“Processor”, “we”, “our”) and the customer (“Controller”, “you”, “your”) for services provided through bereg.pro and its subdomains (including my.bereg.pro).
1. Definitions
-
Controller: The customer who determines the purposes and means of processing personal data.
-
Processor: Vladyslav Kudriavtsev, trading as ALBAHOST, who processes personal data on behalf of the Controller.
-
Personal Data: Any information relating to an identified or identifiable natural person.
-
GDPR: The UK General Data Protection Regulation and the Data Protection Act 2018.
2. Subject Matter
2.1. The Processor will process Personal Data only as necessary to provide hosting and related services under the Terms of Service.
2.2. The Processor will not process Personal Data for its own purposes.
3. Obligations of the Processor
The Processor shall:
-
Process Personal Data only on documented instructions from the Controller.
-
Ensure persons authorised to process Personal Data are bound by confidentiality.
-
Implement appropriate technical and organisational measures to ensure security.
-
Assist the Controller in fulfilling obligations under GDPR (e.g. responding to data subject rights requests).
-
Notify the Controller without undue delay after becoming aware of a Personal Data breach.
-
Delete or return all Personal Data upon termination of services, subject to retention obligations (40 days by default).
4. Sub-processors
4.1. The Controller authorises the Processor to use sub-processors where necessary to provide the Services (e.g. data centres, email delivery providers).
4.2. The Processor will ensure sub-processors are bound by equivalent data protection obligations.
5. International Transfers
5.1. The Processor will store and process Personal Data primarily within the UK or EEA.
5.2. If Personal Data is transferred outside the UK/EEA, the Processor will ensure adequate safeguards are in place under GDPR.
6. Obligations of the Controller
The Controller shall:
-
Ensure it has a lawful basis for processing Personal Data.
-
Ensure that instructions to the Processor comply with applicable data protection laws.
-
Be responsible for the accuracy, quality, and legality of Personal Data provided to the Processor.
7. Liability
Each party’s liability under this DPA is subject to the limitations set out in the Terms of Service.
8. Duration
This DPA remains in force for as long as the Processor processes Personal Data on behalf of the Controller.
9. Governing Law
This DPA is governed by the laws of Scotland, United Kingdom.
10. Contact
Processor: Vladyslav Kudriavtsev, trading as ALBAHOST
Email: support@bereg.pro
