F-Register data processing terms

For companies using F-Register as SaaS, privacy roles and security commitments are set out in a data processing agreement.

Roles

The customer decides which customer, installation, work order, document and employee data is stored in its own F-Register environment. The customer is usually the controller. F-Register processes this data only to provide, secure, maintain and support the service.

Minimum topics

• Purpose and duration of processing.
• Types of personal data and categories of data subjects.
• Security measures, backup policy and access management.
• Sub-processors for hosting, email, storage and technical management.
• Data breach procedure and notification timelines.
• Support for access, correction, export and deletion requests.
• Termination, export and deletion of customer data.

Technical baseline

F-Register uses separated customer environments, HTTPS, roles and permissions, logging, update management, backups and minimal management access. Non-essential data is not collected by default.

Note: this page is a public summary. The final data processing agreement is agreed separately with the customer.