The Parties undertake to disclose Confidential Information only to those of their employees who need to know it, while undertaking that the persons mentioned above are fully aware of the Obligations incumbent on the Parties under this Agreement and that they assume the same obligations as those provided for in this Agreement. Let us put that in context. Imagine that you are an individual (data subject) who makes online purchases in an e-commerce store. The processor shall immediately inform the controller of any breach of this data processing agreement or of accidental, unlawful or non-unlawful access to personal data, the use or disclosure of personal data or a breach of the integrity of personal data, or that the personal data may have been compromised. The processor shall provide the controller with all the information necessary to enable the controller to comply with current data protection legislation and so that the controller can respond to all requests from the competent data protection authorities. It is the responsibility of the controller to inform the competent data protection authority of inconsistencies in accordance with current legislation. The upcoming Data Protection Regulation maintains the obligation to conclude a data processing contract and even provides for additional binding clauses. In particular, the agreement must oblige the processor: remember that the data processing agreement is a contract that regulates how the data controller and the processor do business. The term “treatment” appears in this article with disgusting frequency. In the definitions of the GDPR, processing essentially refers to everything you can do with a person`s personal data: collect, store, monetize, destroy, etc. This guide serves as an introduction to data processing agreements – what they are, why they are important, who they are and what they need to say.
You can also follow the link to find a template for a GDPR data processing agreement that you can download, customize, and use for your business. For more details, you can read the ProtonMail data processing agreement or read the generic model data processing agreement that we have provided on this website….