Skip to content
Legal Information

Data Processing Agreement (DPA)

Last updated: August 23, 2025. This agreement governs how we process personal data on behalf of our users and customers in compliance with GDPR and other data protection laws.

Quick Summary

  • We only process personal data necessary to provide our services (site, extensions, products).
  • We do not sell or share your data with third parties for marketing purposes.
  • Some data may be processed by trusted sub-processors (hosting, analytics, ads).
  • You can request access, correction, or deletion of your data at any time.

This Data Processing Agreement ("Agreement" or "DPA") is an addendum to our Privacy Policy and Terms of Service. It governs how Custom Cursor World ("Processor") processes personal data on behalf of its users and customers ("Controller").

1. Definitions

  • 1
    Controller: The individual or organization that determines the purposes and means of the processing of Personal Data.
  • 2
    Processor: Custom Cursor World, which processes Personal Data on behalf of the Controller.
  • 3
    Personal Data: Any information relating to an identified or identifiable natural person.
  • 4
    Applicable Law: Includes GDPR, CCPA, and other relevant data protection laws.

2. Subject Matter & Duration

The Processor shall process Personal Data only for the purposes of providing services (website, extensions, and related products), and only for as long as the Controller maintains an active account or uses our services.

3. Processor Obligations

The Processor agrees to:

  • Process Personal Data only on documented instructions from the Controller
  • Ensure that persons authorized to process Personal Data are under confidentiality obligations
  • Implement appropriate technical and organizational security measures
  • Assist the Controller with data subject rights requests and regulatory obligations

4. Sub-Processors

The Controller authorizes the use of sub-processors (e.g., hosting, analytics, advertising partners) as listed in our Privacy Policy. We will ensure each sub-processor provides adequate data protection safeguards.

5. International Transfers

Personal Data may be transferred to and processed outside the EEA or the UK. In such cases, Processor ensures appropriate safeguards (e.g., Standard Contractual Clauses).

6. Data Subject Rights

Processor will assist Controller in fulfilling obligations to respond to requests from data subjects exercising their rights under Applicable Law, including:

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to data portability
  • Right to restrict processing
  • Right to object

7. Security Measures

Processor maintains industry-standard technical and organizational measures to protect Personal Data against unauthorized or unlawful processing, accidental loss, destruction, or damage.

Security commitment: We implement encryption, access controls, and regular security audits to protect your data.

8. Termination & Deletion

Upon termination of services, Processor will delete or return all Personal Data to the Controller, unless retention is required by law.

9. Contact

For questions about this DPA, please contact us:

Email: [email protected]

Need Help?

If you have questions about this DPA or our data processing practices, we're here to help.

Contact Us
Custom Cursor World Browser Extension
Free & Easy

Unlock the Full Potential!

Install our free browser extension to instantly apply any cursor from our vast collection with one click. Works seamlessly with Chrome, Edge, and Windows.

  • One-click install
  • 100% Free
  • No ads
Install ExtensionLearn More