Treatment by a subcontractor is subject to a contract or other legal act, within the meaning of EU or Member State law, which is mandatory for the subcontractor with regard to the person in charge of the processing and which defines the purpose and duration of the treatment, the nature and purpose of the treatment, the nature of the personal data and the categories of persons concerned, as well as the obligations and rights of the person in charge of the treatment. The customer`s use of SuperOffice products is subject to one or more of the agreements listed below (“customer use agreements”): “processing” of personal data refers to any use, operation or series of transactions carried out with personal data, whether used automatically or not, such as collection. B, transfer, storage, modification, disclosure, as defined in applicable law and the 2016/679 Regulation of the European Union. 8. The data protection impact analysis and the data protection subcontractor provide the company with appropriate support for all data protection impact assessments and prior consultations with supervisory authorities or other data protection authorities; that the company considers reasonably necessary in accordance with section 35 or 36 of the RGPD or equivalent provisions of another data protection law, in any case only with respect to the processing of the company`s personal data by contract processors and taking into account the nature of the processing and information available to processors. RGPD compliance requires processors to sign a data processing agreement with all parties acting on their behalf as data processors. If you need some definitions of these terms, you can find them in our article “What is the RGPD,” but as a general rule, a data processor is another company you use to help you store, analyze or communicate personal information. For example, if you are a health insurance fund and you share customer information via encrypted emails, this encrypted messaging service is a data processor. Or if you use Matomo to analyze traffic on your site, Matomo would also be a data editor. “Non-European data protection laws” are all national/federal or national/provincial/emir data protection laws, with legislation other than data protection legislation. This guide serves as an introduction to data processing agreements – what they are, why they are important, who they are and what they need to say. You can also follow the link to find a RGPD data processing model that you can download, customize and use for your business.

4.3 The recipient undertakes not to use the confidential information disclosed by the other party for specific purposes without first obtaining written consent from the other party.