Trust & Legal Commitments
BURQ is committed to building long-term trust with customers through transparent legal practices, contractual safeguards, and accountability in all data-handling processes.
Subprocessors
BURQ uses carefully vetted subprocessors to deliver core platform functionality and support. These subprocessors may process metadata or temporary integration data depending on the service context. BURQ ensures subprocessors operate under strict data protection obligations aligned with our Data Processing Agreement (DPA).
Current Subprocessors
| Subprocessor | Location | Purpose |
| Microsoft Azure | Global | Infrastructure and storage |
| Elasticsearch | Global | Search indexing and analytics |
All subprocessors are subject to rigorous due diligence, contractual safeguards, and technical controls, including access restrictions, audit logs, and data handling limitations.
Right to Object
As the Data Controller, you have the right to reasonably object to BURQ’s engagement of a new subprocessor. To exercise this right, please submit your objection in writing to [Insert email] within ten (10) business days of receiving notice of the intended subprocessor engagement.
Your objection should include specific and reasonable grounds, such as concerns that the new subprocessor may violate applicable data protection laws or reduce the level of protection for Personal Data.
BURQ will assess the objection in good faith and will make commercially reasonable efforts to address your concerns, including proposing a feasible resolution where appropriate.
SLA & MSA Disclosures
Our Service Level Agreements (SLAs) define BURQ’s commitment to platform availability, support responsiveness, and breach management timelines.
Highlights include:
- Uptime commitments of up to 99.9%
- Defined response and resolution times for incidents based on severity
- Notification and remediation protocols in the event of a data breach or service disruption
Cyber Insurance Coverage
BURQ maintains robust cyber insurance to mitigate the financial and operational risks associated with cybersecurity incidents, including data breaches, system intrusions, and other advanced threats. This coverage is a key component of our broader risk management framework, supporting effective incident response, recovery, and business continuity.
Our policy includes:
- Unauthorized access and data breach response costs
- Business interruption and system recovery expenses
- Legal liability, regulatory investigations, and applicable fines
- Coverage for ransomware, phishing attacks, and other cyber threats
BURQ’s cyber insurance policy is reviewed and updated regularly to ensure it remains aligned with the evolving threat landscape, industry best practices, and applicable regulatory obligations, reinforcing our commitment to safeguarding customer data and maintaining operational resilience.