(h) make available to the persons concerned, upon request, a copy of the clauses, with the exception of Appendix 2, as well as a summary description of the security measures, as well as a copy of a contract for sub-treatment services to be made in accordance with the clauses, unless the clauses or contract contain commercial information, in which case they may withdraw this commercial information; c. If the data exporter intends to suspend the transfer of personal data and/or terminate the relevant parties in the services, it endeavours to inform the data importer and give the data importer a reasonable period of time to authorize non-compliance (“Cure Period”). B. Accordingly, in accordance with point 11 of these clauses, the data exporter gives the data importer a general agreement to transmit the subprocessors. This consent is conditional on the data importer complying with the requirements set out in the “Notification and Objection to New Contractors” section of the data protection authority. “Personal data” any information relating to an identified or identifiable person, where such information is contained in the customer`s data and is protected in accordance with applicable data protection legislation, as well as personal data, personal data or personally identifiable information. “responsible,” an organization that determines the purposes and means of processing personal data. Codes of conduct and certifications can help subcontractors demonstrate sufficient guarantees that their treatment is in compliance with the RGPD. The contract must contain these conditions in order to ensure the continued protection of personal data after the end of the contract. This reflects the fact that it is ultimately up to the processing manager to decide what will happen to the processing of personal data once the processing is complete. RGPD compliance requires processors to sign a data processing agreement with all parties acting on their behalf as data processors.
If you need some definitions of these terms, you can find them in our article “What is the RGPD,” but as a general rule, a data processor is another company you use to help you store, analyze or communicate personal information. For example, if you are a health insurance fund and you share customer information via encrypted emails, this encrypted messaging service is a data processor.