• Uncategorized

A. The data importer accepts that the data exporter complies with its obligation to return or destroy all personal data after terminating the provision of data processing services by complying with the “Delete or Return of Personal Data” section of the Data Protection Authority. ☐ the subcontractor must be audited and inspected. The subcontractor must also provide the processing officer with all the information necessary to ensure that both parties comply with their article 28 obligations. 1.1.4 “Data protection laws” are EU data protection laws and, where appropriate, data protection or data protection legislation from another country; ☐ the subcontractor must delete all personal data (at the choice of the processing manager) at the end of the contract or return it to the processing manager, and the subcontractor must also delete existing personal data, unless the law requires its storage; and “subcontractor,” any subcontractor who has intervened by the data importer or another subcontractor of the data importer and who agrees to receive personal data from the data importer or other subcontractor intended exclusively for processing activities carried out on behalf of the data exporter after the transfer in accordance with the instructions, terms and conditions of the written subcontract; B. The parties acknowledge that if the data importer is unable to ensure such compliance in accordance with paragraphs 5 (a) and 5 (b) for some reason, the data importer undertakes to immediately inform the data exporter of its inability to comply, the data exporter being authorized to suspend the transfer of data and/or to report the contract of the relevant service parties in accordance with the provisions of the agreement. Both processors and subcontractors are required to take appropriate technical and organizational measures to ensure the security of the personal data they process, which may include, if applicable, 1.1.3 “subcontract” 3. The data importer immediately informs the data exporter of the existence of applicable legislation or a subcontract that prevents the data importer from being tested or subcontracted in accordance with paragraph 2.