Earn 30% commission with our Partner Program. Learn more

Data Processing Agreement

Last Updated: 2026-05-17

Yes. Stellar maintains a Data Processing Agreement (DPA) for customers who use Stellar to process personal data. This page summarizes the terms under which Stellar App LLC ("Stellar," "we," "our," or "us") processes personal data on behalf of customers using our website and A/B testing services (the "Services").

If your organization requires a signed copy of this DPA or additional vendor review documentation, please contact us at hello@gostellar.app.

1. Scope and Relationship of the Parties

This DPA applies when Stellar processes personal data on behalf of a customer in connection with the Services. The customer is the controller or business that determines the purposes and means of processing, and Stellar acts as the processor or service provider that processes data only to provide, secure, support, and improve the Services.

2. Processing Instructions

Stellar will process customer personal data only in accordance with the customer's documented instructions, including the instructions described in this DPA, our Terms and Conditions, our Privacy Policy, and the customer's use and configuration of the Services.

3. Categories of Data Processed

The personal data processed by Stellar depends on how each customer uses the Services. It may include:

  • Account information, such as names, email addresses, contact details, and organization information.
  • Usage data, such as interactions with the platform, experiment activity, analytics events, and service logs.
  • Experiment and website data configured by the customer for A/B testing and optimization.
  • Payment and billing metadata processed by our payment providers.
  • Security, diagnostic, and support metadata used to protect and operate the Services.

4. Purpose of Processing

Stellar processes customer personal data for the following purposes:

  • Providing, maintaining, and improving the Services.
  • Running and reporting on A/B tests and optimization campaigns.
  • Authenticating users and administering customer accounts.
  • Providing customer support and responding to requests.
  • Detecting, preventing, and investigating security incidents, abuse, or fraud.
  • Complying with applicable legal obligations.

5. Security Measures

Stellar implements technical and organizational measures designed to protect customer personal data from unauthorized access, loss, misuse, disclosure, alteration, or destruction. These measures include:

  • Encryption in transit: Data is transmitted using TLS 1.2+.
  • Encryption at rest: Stored data is encrypted using AES-256 where supported by our infrastructure.
  • Access controls: Internal access is limited based on role and business need.
  • Monitoring and logging: We use logs and monitoring to detect suspicious activity, debug issues, and protect the Services.
  • Vendor safeguards: We use trusted service providers under appropriate data protection terms.

6. Hosting and International Transfers

Stellar stores and processes data using secure cloud infrastructure hosted by Amazon Web Services (AWS) in the United States. Where personal data is transferred internationally, Stellar relies on appropriate safeguards as required by applicable data protection laws.

7. Subprocessors

Stellar may engage third-party subprocessors to provide infrastructure, payment processing, analytics, support, security, and related services. Stellar remains responsible for subprocessors' processing of customer personal data and requires subprocessors to protect personal data under appropriate confidentiality and data protection obligations.

8. Confidentiality

Stellar ensures that personnel authorized to process customer personal data are subject to confidentiality obligations and process personal data only as necessary to provide, secure, support, and improve the Services.

9. Data Subject Requests

To the extent Stellar receives a request from an individual regarding customer personal data, Stellar will either direct the individual to the relevant customer or provide reasonable assistance to the customer in responding to the request, consistent with applicable law.

10. Deletion and Return

Upon termination of the Services or upon a customer's documented request, Stellar will delete or return customer personal data within a reasonable period, unless retention is required by law, security, fraud prevention, backup integrity, or legitimate business recordkeeping obligations.

11. Assistance and Audits

Stellar will provide reasonable assistance to customers with security, privacy, and compliance requests related to the Services. Customers may request available security or vendor review materials by contacting hello@gostellar.app.

12. Contact

For DPA requests, privacy questions, or vendor review inquiries, please contact:

Email: hello@gostellar.app
Company Name: Stellar App LLC
Location: 30 N Gould St Ste R Sheridan, WY 82801

This DPA is effective as of 2026-04-23.