If the Customer uses third-party systems or chat clients to consume our APIs, we still treat the Customer as the Data Controller for the related personal data. The Customer is responsible for ensuring that the processing of personal data through those third-party systems or chat clients complies with the General Data Protection Regulation (GDPR) and respects all applicable Data Subject rights. Our role as Data Processor remains limited to processing personal data on behalf of the Customer for the purpose of providing the service, including support, service, and maintenance. The Customer must review, configure, and manage any connected third-party tools to ensure that their use, data flows, and retention practices meet GDPR requirements.