Last updated: July 5, 2026
This DPA governs FitSignal's processing of survey-respondent personal data on behalf of customers (the controllers). It forms part of our Terms of Service at /terms.
This Data Processing Agreement ("DPA") is between the Customer (the "Controller") and GroundForm Software LLC, a Wyoming limited liability company trading as FitSignal (the "Processor"), and applies whenever FitSignal processes personal data on the Customer's behalf under the Terms of Service at /terms.
The Customer is the controller of respondent personal data — the names, email addresses, persona and segment attributes, and survey responses of the Customer's own end-users — and determines the purposes and means of processing. FitSignal is the processor of that data and acts only on the Customer's documented instructions, which include the Terms of Service, this DPA, and use of the product's features.
For data about the Customer's own workspace and team — account and authentication records, billing and subscription data, support correspondence, and marketing-site analytics — FitSignal is an independent controller. That processing is described in our Privacy Policy at /privacy and is not governed by this DPA.
Our contact for data-protection matters under this DPA is support@fitsignal.com. Registered address: GroundForm Software LLC, 30 N Gould St, STE R, Sheridan, WY 82801, USA.
Capitalized terms not defined here have the meaning given in the Terms of Service or in Applicable Data Protection Law. In this DPA:
This DPA forms part of, and is governed by, the Terms of Service at /terms. It applies to FitSignal's processing of Personal Data on the Controller's behalf. If there is any conflict between this DPA and the rest of the Terms on a matter of personal-data processing, this DPA prevails — it sits first in the order of precedence set out in the Terms. Where the Standard Contractual Clauses apply, they prevail over this DPA to the extent of any conflict.
Subject matter: provision of the FitSignal product-market fit (PMF) and NPS survey and analytics platform. Nature & purpose: delivering surveys to the Controller's Respondents by email, shareable survey link, and embeddable widget; collecting and storing survey responses and response metadata; computing PMF and NPS analytics; and running AI Improvement Analysis over free-text answers on the Controller's behalf. Duration: for as long as FitSignal provides the service to the Customer, plus the deletion period in Section 15. Details are in Annex 1.
The Controller warrants and agrees that:
FitSignal will:
The Controller gives FitSignal general authorization to engage the Sub-processors listed on our Subprocessors page at /subprocessors (Annex 3). Each Sub-processor is bound by data-protection terms no less protective than this DPA. We will give at least 30 days' notice of intended additions or replacements — by updating the Subprocessors page and emailing workspace account owners — during which the Controller may object on reasonable data-protection grounds; if we can't resolve the objection, the Controller may terminate the affected service.
FitSignal remains responsible for its Sub-processors' performance of their data-protection obligations.
FitSignal will notify the Controller without undue delay after becoming aware of a Personal Data Breach affecting the Controller's Personal Data. The notification will describe, to the extent known and as it becomes available, the nature of the breach, the categories and approximate number of data subjects and records concerned, the likely consequences, and the measures taken or proposed to address it and mitigate its effects.
Where Respondent data is involved, the Controller is responsible for any notification to data subjects and supervisory authorities; FitSignal will provide reasonable assistance so the Controller can meet those obligations. FitSignal's notification of, or response to, a Personal Data Breach is not an acknowledgment of fault or liability.
Respondents are identified individuals, and the FitSignal dashboard lets the Controller view, export, and delete Respondent records and their survey responses directly. Most data-subject requests — access, portability, rectification, and erasure — can therefore be fulfilled by the Controller itself using the product. Where the built-in tooling is not sufficient, FitSignal will assist the Controller by appropriate technical and organizational measures, insofar as possible; contact support@fitsignal.com.
If FitSignal receives a request directly from a data subject (for example a Respondent) relating to the Controller's Personal Data, it will, where lawful, refer the request to the Controller rather than respond itself, and will not disclose the Personal Data except on the Controller's instructions or as required by law.
On reasonable written request (no more than once a year, unless required by a supervisory authority or following a Personal Data Breach), FitSignal will make available the information reasonably necessary to demonstrate compliance with this DPA and Article 28 GDPR. This is satisfied through written responses, policies, summaries of measures, and the descriptions in Annex 2. FitSignal does not hold a SOC 2 or ISO certification and does not represent that it does; audit rights under this Section are met by documentation and written responses rather than on-site inspection.
This Section applies where the Customer is a "business" (or equivalent) and FitSignal is a "service provider" or "processor" under the CCPA or another US state privacy law. Terms in quotation marks have the meaning given in those laws.
FitSignal processes personal information only to provide the service under the Terms (the "business purpose"), and on the Customer's behalf. FitSignal will not:
FitSignal certifies that it understands and will comply with these restrictions. FitSignal will assist the Customer in responding to verifiable consumer requests and will notify the Customer if it determines it can no longer meet its obligations under Applicable Data Protection Law. The Customer may take reasonable and appropriate steps to stop and remediate unauthorized processing.
Customer Data is processed and stored in the United States — FitSignal runs a single primary database region in the US. Where a transfer of Personal Data (for example, of EEA, UK, or Swiss Respondents) is a Restricted Transfer, the parties rely on the following safeguards, which are incorporated into this DPA by reference:
Annex 1 and Annex 2 supply the information required by the SCC appendices (parties, description of processing, and technical and organizational measures); the Subprocessors page at /subprocessors (Annex 3) identifies the Sub-processors and their locations. Where the SCCs apply, they prevail over this DPA to the extent of any conflict, and their docking, audit, and option clauses operate consistently with Sections 7, 9, and 10 of this DPA.
Each party's liability arising out of or related to this DPA, whether in contract, tort, or otherwise, is subject to the exclusions and limitations of liability in the Terms of Service. Any reference in those limitations to liability under the Terms includes liability under this DPA, and the parties' aggregate liability across the Terms and this DPA is subject to a single combined cap as stated in the Terms. Nothing in this DPA limits any liability that cannot be limited under Applicable Data Protection Law, including a data subject's rights.
We may update this DPA to reflect changes in the service, our Sub-processors, or Applicable Data Protection Law; we will update the "last updated" date and give notice of material changes, and we will not make changes that materially reduce the protections in this DPA without notice. The list of authorized Sub-processors is maintained on the Subprocessors page at /subprocessors (Annex 3), which is kept current and forms part of this DPA. Except where the Standard Contractual Clauses require a different governing law or forum, this DPA is governed by, and disputes are resolved under, the governing law and dispute-resolution terms of the Terms of Service — the laws and courts of the State of Wyoming, United States.
This DPA remains in effect for as long as FitSignal processes Personal Data on the Controller's behalf. Survey responses are retained while the Customer's account is active, or until the Customer deletes them through the product. On termination, and at the Controller's choice, FitSignal will delete or return the Personal Data and delete existing copies within 30 days of a verified account-closure request, unless retention is required by law.
For the purposes of the SCC appendices: Annex I.A (parties) is the Controller (Customer) as data exporter and GroundForm Software LLC as data importer; Annex I.B (description of transfer) is set out in this Annex 1; Annex I.C (competent supervisory authority) is the authority of the Controller's EEA establishment, or where the Controller is not EEA-established, an authority determined under the SCCs (and the ICO for UK data, the FDPIC for Swiss data); and Annex II (technical and organizational measures) is set out in Annex 2.
The current list of authorized Sub-processors, with purposes and locations, is maintained on our Subprocessors page at /subprocessors and forms part of this DPA. Changes to the list are notified as described in Section 7.
This DPA applies automatically to customers who use FitSignal to run surveys — it is executed by using the service, and no signature is required. If your organization needs a countersigned copy, contact support@fitsignal.com.
Related: Privacy Policy · Terms of Service · Cookie Policy · Subprocessors · Acceptable Use · Refund Policy