Skip to content

Sign the DPA and review your compliance posture

This guide walks you through signing the Data Processing Agreement (DPA) and reviewing MapleGather’s compliance information — including sub-processors, breach notification timelines, and incident history.

Who can do this: Org owners and admins authorized to sign legal documents can sign the DPA. All admins and board members can view the compliance console in read-only mode.

  • You must have authority to sign legal agreements on behalf of your organization. The signing screen asks you to confirm this before you can complete the process.
  1. Go to Admin & Security in the left navigation, then select Compliance.
  2. On the Compliance page, click the DPA tab.
  3. Review the current DPA version shown on screen.
  4. If the DPA is unsigned or a new version is available, the Sign DPA button is active. Click Sign DPA.
  5. On Step 1, review your name and title. These are pre-filled from your organization record. Edit them if needed, then click Next.
  6. On Step 2, read the authorization statement: “I am authorized to sign this DPA on behalf of [org name].” Check the acknowledgment box, then review the confirmation summary.
  7. Click Sign DPA to complete signing.
  8. Wait for the spinner to finish. Do not click the button again — the form is protected against double-submission.
  1. On the Compliance page, click the Sub-processors tab.
  2. Review the table showing each sub-processor’s name, purpose, region, and status (Active or Removed).
  3. If any sub-processors were added since your last review, a badge reading 1 new since last review (or similar) appears at the top of the tab. Click Change history to see the full list of additions and removals.
  1. On the Compliance page, click the Breach SLA tab.
  2. Review MapleGather’s notification timelines:
    • P0 — 24-hour notification SLA
    • P1 — 72-hour notification SLA
    • P2 / P3 — best-effort notification
  3. Scroll down to view the incident history list.
  1. Navigate to /compliance in your browser (no sign-in required).
  2. This page shows MapleGather’s US-region data statement and is shareable with stakeholders.

You’ll know the DPA is signed when the DPA tab shows a signed indicator and a Download executed copy link. Click Download executed copy to save a PDF of the signed agreement for your records.

  • Network error during signing — If you see the message “Signature not recorded — your form is preserved, please try again,” your signature was NOT saved. Your form data is still on screen. Check your connection and click Sign DPA again. Do not close the page until you see the signed indicator.
  • Sign DPA button is not visible — Board members can view the compliance console but cannot sign the DPA. Only org owners and authorized admins see the Sign DPA button. Contact your org owner if you need signing access.