Log in Book a demo

Data Processing Agreement

This Data Processing Agreement governs how Deventura processes and protects your data. We are committed to transparency and compliance with all applicable privacy regulations, including GDPR.

Download PDF Version

Last updated: July 1, 2025

1. Background and Purpose

This Data Processing Addendum and its appendices ("DPA") are an integral part of the Deventura terms of service or separate service agreement, as the case may be (the "Main Agreement") in which the Processor undertakes to provide SaaS services (the "Service").

When used in this DPA, "Processor" means Deventura and "Controller" means the customer who has agreed to the Main Agreement. The terms "Data Subject", "Personal Data", "Processing" and "Special Categories of Personal Data" shall have the same meaning as in the GDPR.

2. Data Processing Details

Purpose of Processing

Personal Data will be processed for the purpose of providing the Service, which includes:

  • Developer performance analysis and reporting
  • Code contribution assessment and scoring
  • Team analytics and insights generation
  • Platform functionality and user experience optimization

Categories of Data Subjects

The Personal Data processed may relate to the following categories of Data Subjects:

  • Software developers and engineering team members
  • Engineering managers and team leads
  • Administrative users and account managers

Types of Personal Data

The following categories of Personal Data may be processed:

  • Contact information (name, email address)
  • Professional information (role, team affiliation)
  • Git repository metadata (commit information, merge request data)
  • Performance metrics and analytics data
  • Platform usage and interaction data

3. Data Protection Measures

Deventura implements appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Encryption of data at rest and in transit
  • Regular security assessments and monitoring
  • Access controls and authentication measures
  • Data minimization and purpose limitation
  • Regular staff training on data protection

4. Subprocessors

The Controller acknowledges and agrees that Deventura may engage the following subprocessors:

Google Cloud Platform

Infrastructure services, data storage, and computing resources. All data processing occurs within secure Google Cloud facilities.

Anthropic Claude

AI analysis services for code evaluation and insights generation. No data is stored by Anthropic; processing is transient and secure.

5. Data Subject Rights

Deventura will assist the Controller in fulfilling Data Subject rights requests, including:

  • Right of access to Personal Data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing

Questions About Data Processing?

If you have questions about our Data Processing Agreement or need a signed copy, please contact us.

Email: privacy@deventura.com

Data Protection Officer: dpo@deventura.com

Download Complete Agreement

For the complete and legally binding version of this Data Processing Agreement, please download the PDF document below.

Download Full DPA (PDF)
Get started

Ready to Grow Your Engineering Team?

Join CTOs and VPs of Engineering who trust Deventura with their developer insights. Book a demo to see how we can help your team grow.

Book a demo

Data protection you can trust