NexaGuard
  1. Enterprise-and-Legal
NexaGuard
  • Getting-Started
    • NexaGuard Developer Documentation
    • Quickstart (5 to 10 Minutes)
    • Documentation Overview
    • Concepts and Glossary
  • Compliance-and-Standards
    • Compliance Overview
    • IAB TCF v2.3 Support
    • Google Consent Mode v2 Validation
    • TCF API Validation
    • Audit Checklist (Pre-Launch)
  • Web-and-CMS-Integrations
    • NexaGuard CMP SDK – Web & GTM Setup
    • Integrate NexaGuard CMP with Webflow and Wix
    • Integrate NexaGuard CMP with WordPress
    • Integrate NexaGuard CMP with Drupal
    • Integrate NexaGuard CMP with Shopify
  • Mobile-SDKs
    • NexaGuard CMP SDK - iOS Setup
    • iOS SDK API Reference
    • NexaGuard CMP SDK - Android Setup
    • Android SDK API Reference
    • App Attribution Partner (AAP) Integrations
  • Developer-Reference
    • Web JS API Reference
    • Consent Event Schema
    • Deployment and Environments
    • NexaGuard Debug Tool
    • Troubleshooting Playbook
    • Performance and Best Practices
    • Accessibility and UX Guidelines
    • Localization Workflow
    • Migration Guide
  • Security-and-Privacy
    • Security Overview
    • Privacy Architecture
    • Data and Logging Transparency
    • Subprocessors
    • CSP and Network Allowlist
  • Enterprise-and-Legal
    • DPA and Legal Pack
    • RFP Feature Matrix
    • Status and Reliability
    • Support and Escalation
    • NexaGuard CMP SDK – Commercial Licence
  • Operations
    • Changelog and Version Policy
  1. Enterprise-and-Legal

DPA and Legal Pack

Last updated: February 18, 2026
This page serves as the primary legal documentation reference point for enterprise customers evaluating NexaGuard CMP.
NexaGuard provides standard contractual documentation to support customer compliance and procurement processes.

1. Available Legal Documents#

The following documents are available upon request or via public links:
Data Processing Addendum (DPA)
Available upon request for customers with an active NexaGuard subscription.
Terms of Service
https://www.nexaguard.com/terms-of-service/
Privacy Policy
https://www.nexaguard.com/privacy
Acceptable Use Policy (AUP)
https://www.nexaguard.com/acceptable-use-policy
Refund Policy
https://www.nexaguard.com/refund-policy/
Commercial SDK License
See: LICENSE.md
If you require a consolidated legal pack for procurement review, contact the NexaGuard legal team.

2. Data Processing Addendum (DPA)#

The NexaGuard DPA governs NexaGuard's role as a data processor of consent state information.
The DPA includes:
GDPR Article 28 processor obligations
Confidentiality commitments
Security measures summary
Subprocessor transparency
Breach notification framework
International transfer mechanisms (where applicable)
The DPA is provided in standardized format to ensure consistency across customers.

3. International Data Transfers#

NexaGuard supports lawful international data transfers where required.
Standard Contractual Clauses (SCCs):
Available upon request for customers requiring EU GDPR-compliant transfer mechanisms.
Transfer safeguards:
NexaGuard relies on appropriate contractual safeguards and infrastructure provider protections to support cross-border processing where applicable.
Additional documentation may be provided during enterprise procurement review upon request.

4. How to Request Legal Review#

For enterprise legal review, provide:
legal entity name
product package (Web / Mobile / Enterprise tier)
required document list
target signature timeline
Send requests to:
[email protected]
Allow reasonable processing time for legal review and countersignature.

5. Notes#

This page summarizes document availability and does not replace executed agreements.
Legal documents become binding only upon mutual execution.
NexaGuard does not provide legal advice regarding customer regulatory obligations.
Customers remain responsible for configuring the CMP in accordance with their compliance strategy.
Previous
CSP and Network Allowlist
Next
RFP Feature Matrix