Governance & SLAs
Controller, DPO decision, ownership, response times for rights.
Effective date: April 3, 2026. This document describes our data governance structure and response time commitments.
Data Controller
Intellimark Group LLC, Atlanta, GA, USA. The CEO serves as the accountable person for data protection decisions.
Data Protection Officer (DPO)
Given our current size and processing activities, we have not appointed a formal DPO under Art. 37. Data protection inquiries are handled by our compliance team at contact@intellimark.net. This will be reassessed as the organization grows.
Response Time SLAs
| Request Type | Response Time |
|---|---|
| Data access request (DSAR) | 30 calendar days |
| Data erasure request | 30 calendar days (pseudonymize immediately, full deletion within 90 days) |
| Consent withdrawal | Immediate (technical) + 24 hours (confirmation) |
| Breach notification (authority) | 72 hours from awareness |
| Breach notification (data subjects) | Without undue delay after assessment |
| Subprocessor change notice | 30 days before engagement |