DATA PROCESSING TERMS

Size: px
Start display at page:

Download "DATA PROCESSING TERMS"

Transcription

1 DATA PROCESSING TERMS Safetica Technologies s.r.o. These Data Processing Terms (hereinafter the Terms ) govern the rights and obligations between the Software User (hereinafter the User ) and Safetica Technologies s.r.o., a company incorporated under the laws of the Czech Republic with its registered seat at Laubova 1729/8, Vinohrady, Postcode Prague 3, Company ID No.: , recorded in the Commercial Register held by the Municipal Court in Prague, File No (hereinafter the Safetica ). The User and Safetica may jointly be referred to as the Parties or individually as a Party.

2 1. DEFINITIONS Definitions. Unless otherwise provided in the Terms, the meaning of capitalized words is stated in Annex A to the Terms. 2. TERMS Purpose of the Terms. The Terms govern the processing and security of User Personal Data. 3. ROLES AND DATA PROCESSING INSTRUCTIONS Roles and Regulatory Compliance; Authorization Safetica s and User s Responsibilities. The Parties acknowledge and agree that: a. Safetica is a processor of User Personal Data; b. User is a controller or processor, as applicable, of User Personal Data; c. each Party will comply with the obligations applicable to it under the applicable law with respect to the processing of User Personal Data Authorization by Third Party Controller. If User is a processor, User warrants to Safetica that User s instructions and actions with respect to User Personal Data, including its appointment of Safetica as another processor, have been authorized by the relevant controller Data Processing Instructions. By entering into these Terms, User instructs Safetica to process User Personal Data only in accordance with applicable law: (a) to provide the Processor Services; (b) as further specified via User s use of the Processor Services; (c) as documented in the Agreement, including the Terms; and (d) as further documented in any other written instructions given by User and acknowledged by Safetica as constituting instructions for purposes of the Terms. 4. DURATION OF PERSONAL DATA PROCESSING Duration of Personal Data Processing. Processing of User Personal Data shall be performed for the duration of the Agreement plus the period until the deletion of all User Personal Data in accordance with the Terms. 5. NATURE AND PURPOSE OF PERSONAL DATA PROCESSING Nature and Purpose of Personal Data Processing. Safetica shall process User Personal Data through means of automated processing to provide the User with the Processor Services. 6. TYPES OF PERSONAL DATA Types of Personal Data. The User Personal Data may include the data collected by the Software (as described in the documentation, available on demand), system, application and web logs regarding the activity on the end station, on which is the Software installed, contact data of the User s co-workers, system and Software tuning information, data on the connection to the User and any other information necessary for fulfilling the purpose of the Processor Services. 2

3 7. CATEGORIES OF DATA SUBJECTS Categories of Data Subjects. User Personal Data will concern the following categories of data subjects: data subjects about whom Safetica collects personal data in its provision of Processor Services; and/or data subjects about whom personal data is transferred to Safetica in connection with Processor Services by, at the direction of, or on behalf of User. Depending on the nature of the Processor Services, these data subjects may include (a) User s employees or other User s co-workers, (b) members of User s bodies; (c) User s clients. 8. RIGHTS AND OBLIGATIONS OF THE PARTIES Mutual Notification Obligation. If any third person, particularly a data subject or supervisory authority, requests any Party to provide any information in relation to personal data processing under the Agreement or the Terms, or in this relation makes any claim or exercises any right against any Party, the Party undertakes to inform the other Party about such procedure without undue delay User s Obligations. The User is liable for fulfilling all obligations in relation to User Personal Data processing, particularly for informing data subjects about User Personal Data processing, obtaining consent with User Personal Data processing if necessary, dealing with data subjects requests relating to the exercise of their rights (such as right to information, access, rectification, erasure, process limitation, right to object etc.). The User is further liable for fulfilling all notification obligations towards any supervisory authority relating to User Personal Data processing, especially for notifying the supervisory authority on any personal data breach User s Security Assessment. User is solely responsible for reviewing the Terms and evaluating for itself whether the security measures, and Safetica s commitments hereunder meet User s needs, including with respect to any security obligations of User under the applicable law User s Acknowledgement. User acknowledges and agrees that (considering the state of the art, the costs of implementation and the nature, scope, context, purposes and differently probable and differently serious risks to individuals) the security measures implemented and maintained by Safetica as set out in the Terms provide a level of security appropriate to the risk in respect of the User Personal Data Data Subject Requests. For the duration of User Personal Data processing, if Safetica receives any request from a data subject in relation to User Personal Data, Safetica shall advise the data subject to submit its request to User and User will be responsible for responding to any such request Safetica s Obligations. For the purpose of the User Personal Data protection Safetica undertakes, for the duration of processing User Personal Data under the Terms, that it: Shall take appropriate steps to ensure compliance with the security measures by its employees, contractors and suppliers to the extent applicable to their scope of performance, including ensuring that all persons authorized to process User Personal Data have committed themselves to confidentiality or are under appropriate statutory obligation of confidentiality; Shall implement and maintain technical and organizational measures to protect User Personal Data against any personal data breach described in Annex B to the Terms; 3

4 Shall not engage another processor without prior authorization of the User, except for the Distributor, who have concluded the sublicense agreement with the User, cloud services providers ensuring data transfer between Parties, Safetica s service staff and service partners, who shall provide the User with support and maintenance services, Safetica s SW developers, and in case of engaging the abovementioned processors, Safetica shall ensure to obligate them to adhere to these Terms; In the scope appropriate to the nature of processing and available information, Safetica shall be supportive of the User with ensuring appropriate technical and organizational measures to secure the personal data, notifying personal data breach to any supervisory authority or data subject, assessing data protection impact and with prior consultations with the supervisory authority; Shall provide the User with necessary information, which can be fairly demanded from Safetica, to fulfil the User s obligation to react to the data subject s request to exercise its rights under the data protection legislation; Shall delete, upon the termination of the provision of Processor Services, User Personal Data, including all existing copies, unless European Union or Member State law requires its storage; Shall provide the User with all information necessary to demonstrate Safetica s compliance with the obligations stated in the Terms and allow for and contribute to audits, including inspections, conducted by the User or another auditor mandated by the User according to audit terms stipulated in Annex C to the Terms. 9. FINAL PROVISIONS Language. The Terms have been drawn up in Czech and English. In the case of any discrepancies, the Czech version shall prevail. All obligations of Safetica towards User related to the Terms shall be fulfilled in the Czech or English language, at Safetica s sole discretion Severability. Should any of the provisions hereof be or become invalid, void, ineffective or unenforceable, this fact shall not affect the rest of the Terms. The Parties agree to replace any such invalid, ineffective, void or unenforceable provisions of the Terms with a provision that is valid, effective, not considered void, enforceable and with the same business and legal meaning within 14 (fourteen) days of receiving a request from the other Party Reservation to Amend the Terms. In the event of changes to the applicable law or changes to the interpretation rules or practices for interpretation of the applicable law, Safetica may amend the Terms within a reasonable scope. The amendment of the Terms shall be reported by Safetica on its website and by to the last known address of the User used for the communication with Safetica. Unless rejected by the User within 1 (one) month since sending the notification to the User, the User is deemed to have adopted the amended Terms. Should the User reject the amended Terms within the aforementioned period, this fact shall constitute the termination of these Terms with a 2 (two) months termination period; during this period the last Terms accepted by both Parties shall apply. Termination of the Terms under this clause does not constitute termination of the Agreement; however, following the termination of the Terms if the Parties do not reach an agreement on new data processing terms as required by applicable law within a 2 (two) months period, any Party has the right to immediately terminate the Agreement by sending a written termination notice to the other Party effective as of the day of its delivery. 4

5 ANNEX A: DEFINITIONS Distributor A legal entity or natural person authorized to provide the User with a sublicense for the use of the Software. This person may be a distributor, partner, reseller or another person, that had been granted an appropriate licence from Safetica. A list of the main Distributors is published at Provided that the third party is not found in this list, we recommend to enquire with Safetica whether the third party is or is not its Distributor. GDPR Is the Regulation (Eu) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation). User Personal Data Is the personal data that is processed by Safetica on behalf of User while providing Processor Services to the User. Agreement An agreement concluded between the Parties which incorporates the Terms by referring to them, particularly SLA. Software The Software is Safetica s computer program named Safetica DLP, Safetica Auditor, Safetica Mobile, Safetica Office Control, Safetica Auditor Terminal Server, Safetica DLP Terminal Server, Safetica Professional Services, Safetica DLP MSP, Safetica Auditor MSP, Safetica Mobile MSP, Safetica Office Control MSP, Safetica Auditor Terminal Server MSP, Safetica DLP Terminal Server MSP, or Professional Services. User Is the commercial company, that have concluded the Agreement with Safetica. The terms controller, data subject, personal data, personal data breach, processing, processor and supervisory authority Have the meaning given to them in GDPR. Processor Services Are the services provided by Safetica to User under the Agreement and any related technical support which include personal data processing. 5

6 ANNEX B: SECURITY MEASURES As from the Terms effective date, Safetica will implement and maintain the security measures set out in this Annex B. Safetica may update or modify such security measures from time to time provided that such updates and modifications do not result in the degradation of the overall security of the processing. Risk-based principle. Safetica shall periodically review the risk of information security, in connection with personal data and important activities of User. Fulfilment of the Safetica s obligation to assure the data security is performed by the position of security manager, who acts within the Safetica s management. Organizational security. Safetica shall implement measures to secure the personal data against the human failure, particularly: Adopting and maintaining internal regulation and documentation on the internal security; Periodical co-workers training on the rules of dealing with personal data and the risk of information security; Ensuring that all employees, contractors, suppliers and other third persons with access to personal data have committed themselves to contractual liability. Adopting and maintaining processes relating to the work with the Safetica s key assets, particularly with User Personal Data. Technical measures. Safetica shall implement appropriate technical measures to secure the personal data, particularly: Antivirus protection against malware; Network security solution, combining firewalls, configuration of network features and other technologies; Tools to audit dealing with sensitive User Personal Data, that are configurated to automatically notify the incidents to a responsible person; Encryption of User s HDDs and external HDs; Data Loss Prevention (DLP) solution to enforce the rules of safe work with personal data and eliminating the risk of personal data breach; Important infrastructure and data backup. On-site security. To secure the personal data stored in written form and the IT devices, Safetica shall particularly implement: Personal data access processes and policies; Premises and on-site/digital repository security. 6

7 ANNEX C: RULES FOR AUDITS User must send any requests for the audit solely to the Safetica s address Following receipt by Safetica of a request for audit, Safetica and User will discuss and agree in advance on: (i) the reasonable date(s) of and security and confidentiality controls applicable to any audit; and (ii) the reasonable commencing date, scope and duration of and security and confidentiality controls applicable to any audit. Safetica may charge a fee (based on its reasonable costs) for any audit requested by the User. Safetica shall provide User with further details of any applicable fee or the basis of its calculation, in advance of any such audit. User will be responsible for any fees charged by any auditor appointed by User to execute any such audit. Safetica may object in writing to an auditor appointed by User to conduct any audit, if the auditor is, in Safetica s reasonable opinion, not suitably qualified or independent, a competitor of Safetica, or otherwise manifestly unsuitable. Any such objection by Safetica will require User to appoint another auditor or to conduct the audit itself. 7

Data Processing Clauses

Data Processing Clauses Data Processing Clauses The examples of processing clauses below are proposed pending the adoption of standard contractual clauses within the meaning of Article 28.8 of general data protection regulation.

More information

Data Processing Agreement

Data Processing Agreement Data Processing Agreement between The Data Controller Name Address Postcode and city Country and The Data Processor Idha Sweden AB Norra vägen 28 856 50 Sundsvall Sweden] Page 1 of 15 1 Content 2 Data

More information

Data Processing Agreement

Data Processing Agreement Data Processing Agreement Merchant (the "Data Controller") and Nets (the "Data Processor") (separately referred to as a Party and collectively the Parties ) have concluded this DATA PROCESSING AGREEMENT

More information

Data Processing Agreement for Oracle Cloud Services

Data Processing Agreement for Oracle Cloud Services Data Processing Agreement for Oracle Cloud Services Version January 12, 2018 1. Scope, Order of Precedence and Term 1.1 This data processing agreement (the Data Processing Agreement ) applies to Oracle

More information

Data Processor Agreement

Data Processor Agreement Data Processor Agreement Data Controller: Customer located within the EU (the Data Controller ) and Data Processor: European Representative Company: ONE.COM (B-one FZ-LLC) One.com A/S Reg.no. Reg.no. 19.958

More information

GDPR AMC SAAS AND HOSTED MODULES. UK version. AMC Consult A/S June 26, 2018 Version 1.10

GDPR AMC SAAS AND HOSTED MODULES. UK version. AMC Consult A/S June 26, 2018 Version 1.10 GDPR AMC SAAS AND HOSTED MODULES UK version AMC Consult A/S June 26, 2018 Version 1.10 INDEX 1 Signatures...3 2 General...4 3 Definitions...5 4 Scoping...6 4.1 In scope...6 5 Responsibilities of the data

More information

Data Processing Agreement

Data Processing Agreement In accordance with the European Parliament- and Council s Directive (EU) 2016/679 of 27th April 2016 (hereinafter GDPR) on the protection of physical persons in connection with the processing of personal

More information

Data Processing Agreement DPA

Data Processing Agreement DPA Data Processing Agreement DPA between Clinic Org. no. «Controller». and Calpro AS Org. nr. 966 291 281. «Processor» If the parties have executed a Data Management Agreement, the Date Management Agreement

More information

Eco Web Hosting Security and Data Processing Agreement

Eco Web Hosting Security and Data Processing Agreement 1 of 7 24-May-18, 11:50 AM Eco Web Hosting Security and Data Processing Agreement Updated 19th May 2018 1. Introduction 1.1 The customer agreeing to these terms ( The Customer ), and Eco Web Hosting, have

More information

"PPS" is Private Practice Software as developed and produced by Rushcliff Ltd.

PPS is Private Practice Software as developed and produced by Rushcliff Ltd. Rushcliff Ltd Data Processing Agreement This Data Processing Agreement ( DPA ) forms part of the main terms of use of PPS, PPS Express, PPS Online booking, any other Rushcliff products or services and

More information

SHELTERMANAGER LTD CUSTOMER DATA PROCESSING AGREEMENT

SHELTERMANAGER LTD CUSTOMER DATA PROCESSING AGREEMENT SHELTERMANAGER LTD CUSTOMER DATA PROCESSING AGREEMENT AGREEMENT DATED [ ] BETWEEN: (1) SHELTERMANAGER LTD and (2) [ ] ( The Customer ) BACKGROUND (A) (B) (C) This Agreement is to ensure there is in place

More information

Data Processing Agreement

Data Processing Agreement Data Processing Agreement This Data Processing Agreement ( the Agreement or DPA ) constitutes the obligations for TwentyThree ApS Sortedam Dossering 5D 2200 Copenhagen N Denmark (hereinafter The Data Processor

More information

DATA PROCESSING AGREEMENT

DATA PROCESSING AGREEMENT DATA PROCESSING AGREEMENT This Data Processing Agreement ( DPA ) is entered into between: A. The company stated in the Subscription Agreement (as defined below) ( Data Controller ) and B. Umbraco A/S Haubergsvej

More information

HPE DATA PRIVACY AND SECURITY

HPE DATA PRIVACY AND SECURITY ARUBA, a Hewlett Packard Enterprise company, product services ( Services ) This Data Privacy and Security Agreement ("DPSA") Schedule governs the privacy and security of Personal Data by HPE in connection

More information

Data Protection. Code of Conduct for Cloud Infrastructure Service Providers

Data Protection. Code of Conduct for Cloud Infrastructure Service Providers Data Protection Code of Conduct for Cloud Infrastructure Service Providers 27 JANUARY 2017 Introduction... 3 1 Structure of the Code... 5 2 Purpose... 6 3 Scope... 7 4 Data Protection Requirements... 9

More information

DATA PROCESSING AGREEMENT

DATA PROCESSING AGREEMENT DATA PROCESSING AGREEMENT HIRINGBOSS HOLDINGS PTE LTD This DPA is entered into between the Controller and the Processor and is incorporated into and governed by the terms of the Agreement. 1. Definitions

More information

Fabric Data Processing and Security Terms Last Modified: March 27, 2018

Fabric Data Processing and Security Terms Last Modified: March 27, 2018 Fabric Data Processing and Security Terms Last Modified: March 27, 2018 The customer agreeing to these terms ( Customer ), and Google LLC (formerly known as Google Inc.), Google Ireland Limited, Google

More information

Data subject ( Customer or Data subject ): individual to whom personal data relates.

Data subject ( Customer or Data subject ): individual to whom personal data relates. Privacy Policy 1. Information on the processing of personal data We hereby inform you in this document about the principles and procedures for processing your personal data and your rights, in accordance

More information

Data Processing Agreement

Data Processing Agreement Data Processing Agreement Addendum to the Main Contract between Simonsen Chartering Aps Christiansmindevej 74 CBR no.: 20702206 (hereinafter referred to as the Shipping Company ) and 3 rd party processing

More information

Data Processing Amendment to Google Apps Enterprise Agreement

Data Processing Amendment to Google Apps Enterprise Agreement Data Processing Amendment to Google Apps Enterprise Agreement The Customer agreeing to these terms ( Customer ) and Google Inc., Google Ireland, or Google Asia Pacific Pte. Ltd. (as applicable, Google

More information

German Data Processing Addendum MailChimp

German Data Processing Addendum MailChimp Customer EU Data Processing Addendum This Data Processing Addendum ("DPA"), forms part of the Agreement between The Rocket Science Group LLC d/b/a MailChimp ("MailChimp") and CK Coaching Köln ("Customer")

More information

PRIVACY POLICY PRIVACY POLICY

PRIVACY POLICY PRIVACY POLICY PRIVACY POLICY 1 A. GENERAL PART 1.1. COLLECTION AND PROCESSING OF USER DATA Within the scope of the availability of the website hosted in www.alpinushotel.com and of the services and communications made

More information

Within the meanings of applicable data protection law (in particular EU Regulation 2016/679, the GDPR ):

Within the meanings of applicable data protection law (in particular EU Regulation 2016/679, the GDPR ): Privacy Policy Introduction Ikano S.A. ( Ikano ) respects your privacy and is committed to protect your Personal Data by being compliant with this privacy policy ( Policy ). In addition to Ikano, this

More information

Google Ads Data Processing Terms

Google Ads Data Processing Terms Google Ads Data Processing Terms Google and the counterparty agreeing to these terms ( Customer ) have entered into an agreement for the provision of the Processor Services (as amended from time to time,

More information

INFORMATION MEMORANDUM ON DATA PROCESSING

INFORMATION MEMORANDUM ON DATA PROCESSING INFORMATION MEMORANDUM ON DATA PROCESSING Dear customers and business partners, the document you are reading contains basic information about the way how we process your personal data. We appreciate the

More information

Customer EU Data Processing Addendum

Customer EU Data Processing Addendum From: MailChimp Legal Team To: TC - Info - Heart of the City Subject: MailChimp Data Processing Addendum Date: 10 May 2018 13:15:11 Attachments: ATT00001.png Customer EU Data Processing Addendum This Data

More information

Motorola Mobility Binding Corporate Rules (BCRs)

Motorola Mobility Binding Corporate Rules (BCRs) Motorola Mobility Binding Corporate Rules (BCRs) Introduction These Binding Privacy Rules ( Rules ) explain how the Motorola Mobility group ( Motorola Mobility ) respects the privacy rights of its customers,

More information

PRINCIPLES OF PROTECTION OF PERSONAL DATA (GDPR) WITH EFFICIENCY FROM

PRINCIPLES OF PROTECTION OF PERSONAL DATA (GDPR) WITH EFFICIENCY FROM PRINCIPLES OF PROTECTION OF PERSONAL DATA (GDPR) WITH EFFICIENCY FROM 25.5.2018 Through our Privacy Policy ("Policy"), we inform the entities of the data we process our personal data, as well as all the

More information

SDL Privacy Policy Cloud Services

SDL Privacy Policy Cloud Services SDL Privacy Policy Cloud Services Software-As-A-Service Products Version 11-04-2017 v1.4 SDL plc Globe House Clivemont Road, Maidenhead SL6 7DY England www.sdl.com SDL Tridion Infrastructure Summary This

More information

Version 1/2018. GDPR Processor Security Controls

Version 1/2018. GDPR Processor Security Controls Version 1/2018 GDPR Processor Security Controls Guidance Purpose of this document This document describes the information security controls that are in place by an organisation acting as a processor in

More information

Security Annex for Firewalls Additional Terms for Firewall Service

Security Annex for Firewalls Additional Terms for Firewall Service CONTENTS 1 Glossary of Terms & Definitions... 2 2 Service Description... 2 2.1 Firewall Service... 2 2.2 Provisioning... 2 3 Firewall throughput... 3 4 Vendor Change... 3 5 Charges... 3 5.1 Charges payable

More information

Act CXII of 2011 on the right to information self-determination and freedom of information. Act ;

Act CXII of 2011 on the right to information self-determination and freedom of information. Act ; PRIVACY POLICY THE COMPANY'S DATA MANAGEMENT PRINCIPLES M2M Rendszerház Kft. and WM Systems LLC. (hereinafter referred to as the Company as a joint Data Administrator) provide detailed information management

More information

Data Protection Policy

Data Protection Policy Data Protection Policy Data Protection Policy Version 3.00 May 2018 For more information, please contact: Technical Team T: 01903 228100 / 01903 550242 E: info@24x.com Page 1 The Data Protection Law...

More information

1 About GfK and the Survey What are personal data? Use of personal data How we share personal data... 3

1 About GfK and the Survey What are personal data? Use of personal data How we share personal data... 3 Privacy Notice For ad-hoc CAWI (without target list) V1.0 June 4, 2018 Contents 1 About GfK and the Survey... 2 2 What are personal data?... 2 3 Use of personal data... 2 4 How we share personal data...

More information

This Policy has been prepared with due regard to the General Data Protection Regulation (EU Regulation 2016/679) ( GDPR ).

This Policy has been prepared with due regard to the General Data Protection Regulation (EU Regulation 2016/679) ( GDPR ). PRIVACY POLICY Data Protection Policy 1. Introduction This Data Protection Policy (this Policy ) sets out how Brital Foods Limited ( we, us, our ) handle the Personal Data we Process in the course of our

More information

Entrust SSL Web Server Certificate Subscription Agreement

Entrust SSL Web Server Certificate Subscription Agreement Entrust SSL Web Server Certificate Subscription Agreement ATTENTION - READ CAREFULLY: THIS SUBSCRIPTION AGREEMENT (THIS "AGREEMENT") IS A LEGAL CONTRACT BETWEEN THE PERSON, ENTITY, OR ORGANIZATION NAMED

More information

General Terms & Conditions (GTC)

General Terms & Conditions (GTC) General Terms & Conditions (GTC) Definitions and Preamble By registering and/or logging on to B.V. (from hereon UIIN) The User (The User is the individual or legal entity responsible for purchasing and

More information

Privacy Policy. Data Controller - the entity that determines the purposes, conditions and means of the processing of personal data

Privacy Policy. Data Controller - the entity that determines the purposes, conditions and means of the processing of personal data Privacy Policy Datacenter.com (referred to as we, us, our, Datacenter or the Company ) is committed to protecting your privacy and handling your data in an open and transparent manner. The personal data

More information

Subject: Kier Group plc Data Protection Policy

Subject: Kier Group plc Data Protection Policy Kier Group plc Data Protection Policy Subject: Kier Group plc Data Protection Policy Author: Compliance Document type: Policy Authorised by: Kier General Counsel & Company Secretary Version 3 Effective

More information

ROYAL MAIL GROUP ADDRESS MANAGEMENT UNIT PAF DATA END USER TERMS ( End User Terms )

ROYAL MAIL GROUP ADDRESS MANAGEMENT UNIT PAF DATA END USER TERMS ( End User Terms ) ROYAL MAIL GROUP ADDRESS MANAGEMENT UNIT PAF DATA END USER TERMS ( End User Terms ) Introduction These End User Terms permit the use of PAF Data in Solutions by End Users. These terms are not applicable

More information

Mailbox Rental Terms and Conditions

Mailbox Rental Terms and Conditions Mailbox Rental Terms and Conditions (valid from 26th September 2018) Subject to the customer ("the Customer") observing the Terms and Conditions set out below, Mail Boxes Etc. ("the Company") agrees to

More information

GDPR compliance: some basics & practical to do list

GDPR compliance: some basics & practical to do list GDPR compliance: some basics & practical to do list Philippe LAURENT independent full service business law firm located in Brussels May 2017 Personal data processing = any operation or set of operations

More information

Royal Mail Consultation: Changes to Postal Schemes to reflect new data protection legislation

Royal Mail Consultation: Changes to Postal Schemes to reflect new data protection legislation Royal Mail Consultation: Changes to Postal Schemes to reflect new data protection legislation Published: 27 February 2018 Responses required by: 26 March 2018 Summary 1. Postal Schemes set out the terms

More information

More detailed information, including the information about your rights is available below.

More detailed information, including the information about your rights is available below. Depending on the content of the correspondence, your data will be processed for the purposes of conclusion and performance of the agreement to which you are a party, to fulfil the legal obligation of the

More information

Online Ad-hoc Privacy Notice

Online Ad-hoc Privacy Notice Online Ad-hoc Privacy Notice Last revised: 24 May 2018 Table of contents 1 About us and our Surveys... 2 2 What is personal data?... 2 3 Use of personal data... 2 3.1 Categories of personal data that are

More information

have concluded the following data processing agreement (hereinafter the Data Processing Agreement or this Agreement ):

have concluded the following data processing agreement (hereinafter the Data Processing Agreement or this Agreement ): DATA PROCESSING AGRE EMENT Between [Firm] [Address] [Postal code and city] [VAT no. ] (hereinafter the Data Controller ) and TimeLog A/S Vesterbrogade 149, building. 4, 1. 1620 Copenhagen V VAT no. 25

More information

Digital Signatures Act 1

Digital Signatures Act 1 Issuer: Riigikogu Type: act In force from: 01.07.2014 In force until: 25.10.2016 Translation published: 08.07.2014 Digital Signatures Act 1 Amended by the following acts Passed 08.03.2000 RT I 2000, 26,

More information

Individual Agreement. commissioned processing

Individual Agreement. commissioned processing Individual Agreement commissioned processing (in the following: AGREEMENT) Between 1. - Address owner / Controller - and 2. - Service provider / Processor - As of: 09/2017, Page 2 of 12 The following provisions

More information

SIX Trade Repository AG

SIX Trade Repository AG SIX Trade Repository AG March 2018 Table of contents 1.0 Purpose 4 2.0 Structure of the 4 3.0 Application requirements 4 3.1 Reporting obligation 4 3.2 Connection to the trade repository system 5 3.3 Technical

More information

SCHOOL SUPPLIERS. What schools should be asking!

SCHOOL SUPPLIERS. What schools should be asking! SCHOOL SUPPLIERS What schools should be asking! Page:1 School supplier compliance The General Data Protection Regulation (GDPR) comes into force on 25 May 2018 and will be applied into UK law via the updated

More information

Privacy policy. Definitions and interpretation

Privacy policy. Definitions and interpretation Privacy policy This privacy policy applies between you, the User of this Website and JS Seating & Desking and JS Office Interiors, the owner and provider of this Website. JS Seating & Desking and JS Office

More information

The Role of the Data Protection Officer

The Role of the Data Protection Officer The Role of the Data Protection Officer Adrian Ross LLB (Hons), MBA GRC Consultant IT Governance Ltd 28 July 2016 www.itgovernance.co.uk Introduction Adrian Ross GRC consultant Infrastructure services

More information

GDPR Compliance. Clauses

GDPR Compliance. Clauses 1 Clauses GDPR The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a privacy and data protection regulation in the European Union (EU). It became enforceable from May 25 2018. The

More information

Terms and Conditions for MPF e-statement/e-advice Service ( Terms and Conditions )

Terms and Conditions for MPF e-statement/e-advice Service ( Terms and Conditions ) Terms and Conditions for MPF e-statement/e-advice Service ( Terms and Conditions ) 1. Scope of Service 1.1 We will from time to time determine or specify the scope and features of the Service and are entitled

More information

The Apple Store, Coombe Lodge, Blagdon BS40 7RG,

The Apple Store, Coombe Lodge, Blagdon BS40 7RG, 1 The General Data Protection Regulation ( GDPR ) is the new legal framework that will come into effect on the 25th of May 2018 in the European Union ( EU ) and will be directly applicable in all EU Member

More information

Part of the service for dedicated servers includes 24/7 technical support and the guarantee of HW repair within two hours of the customer s request.

Part of the service for dedicated servers includes 24/7 technical support and the guarantee of HW repair within two hours of the customer s request. General Data Protection Regulation (GDPR) The protection of our clients personal data is a priority for us, and for this reason we would like to welcome the General Privacy Protection Regulation GDPR (General

More information

DATA PROTECTION POLICY

DATA PROTECTION POLICY DATA PROTECTION POLICY Introduction The purpose of this document is to provide a concise policy regarding the data protection obligations of Youth Work Ireland. Youth Work Ireland is a data controller

More information

EU GDPR - DATA PROCESSING ADDENDUM INSTRUCTIONS FOR CDNETWORKS CUSTOMERS

EU GDPR - DATA PROCESSING ADDENDUM INSTRUCTIONS FOR CDNETWORKS CUSTOMERS EU GDPR - DATA PROCESSING ADDENDUM INSTRUCTIONS FOR CDNETWORKS CUSTOMERS Who? This Data Processing Addendum ( DPA, Addendum ) has been prepared for those customers of CDNetworks that are data controllers

More information

ACCOUNTING TECHNICIANS IRELAND DATA PROTECTION POLICY GENERAL DATA PROTECTION REGULATION

ACCOUNTING TECHNICIANS IRELAND DATA PROTECTION POLICY GENERAL DATA PROTECTION REGULATION ACCOUNTING TECHNICIANS IRELAND DATA PROTECTION POLICY GENERAL DATA PROTECTION REGULATION Document Control Owner: Distribution List: Data Protection Officer Relevant individuals who access, use, store or

More information

Identity of the controller: CHARVAT CTS a.s., ID No.: , with the registered office at Okrinek 53, Podebrady, Czech Republic, Postcode

Identity of the controller: CHARVAT CTS a.s., ID No.: , with the registered office at Okrinek 53, Podebrady, Czech Republic, Postcode Dear all, Welcome to the website of CHARVÁT CTS a.s. We appreciate your interest in our company. Protection of personal data you share with us is our priority and we have taken all the steps for you to

More information

USER CORPORATE RULES. These User Corporate Rules are available to Users at any time via a link accessible in the applicable Service Privacy Policy.

USER CORPORATE RULES. These User Corporate Rules are available to Users at any time via a link accessible in the applicable Service Privacy Policy. These User Corporate Rules are available to Users at any time via a link accessible in the applicable Service Privacy Policy. I. OBJECTIVE ebay s goal is to apply uniform, adequate and global data protection

More information

Terms and Conditions for External accounts Service

Terms and Conditions for External accounts Service Terms and Conditions for External accounts Service You must read these Terms and Conditions before using External accounts service. IMPORTANT INFORMATION External accounts service is an account aggregation

More information

COMPUTAMATRIX LIMITED T/A MATRICA Data Protection Policy September Table of Contents. 1. Scope, Purpose and Application to Employees 2

COMPUTAMATRIX LIMITED T/A MATRICA Data Protection Policy September Table of Contents. 1. Scope, Purpose and Application to Employees 2 COMPUTAMATRIX LIMITED T/A MATRICA Data Protection Policy September 2018 Table of Contents 1. Scope, Purpose and Application to Employees 2 2. Reference Documents 2 3. Definitions 3 4. Data Protection Principles

More information

GDPR Processor Security Controls. GDPR Toolkit Version 1 Datagator Ltd

GDPR Processor Security Controls. GDPR Toolkit Version 1 Datagator Ltd GDPR Processor Security Controls GDPR Toolkit Version 1 Datagator Ltd Implementation Guidance (The header page and this section must be removed from final version of the document) Purpose of this document

More information

Data Subject Access Request Procedure. Page 1 KubeNet Data Subject Access Request Procedure KN-SOP

Data Subject Access Request Procedure. Page 1 KubeNet Data Subject Access Request Procedure KN-SOP Data Subject Access Request Procedure Page 1 Table of contents 1. Scope, Purpose and Users... 3 2. Reference Documents... 3 3. Data Subject Access Request ( DSAR )... 3 4. The Rights of a Data Subject...

More information

BHBIA New Data Protection Rules. Pharma Company Perspective. Guy Murray Director, Market Research & Analytics, GC&BI MR Operations and Compliance, MSD

BHBIA New Data Protection Rules. Pharma Company Perspective. Guy Murray Director, Market Research & Analytics, GC&BI MR Operations and Compliance, MSD BHBIA New Data Protection Rules Pharma Company Perspective Guy Murray Director, Market Research & Analytics, GC&BI MR Operations and Compliance, MSD Pharma Company Perspective Data Controllers Responsibilities

More information

OCTOSHAPE SDK AND CLIENT LICENSE AGREEMENT (SCLA)

OCTOSHAPE SDK AND CLIENT LICENSE AGREEMENT (SCLA) OCTOSHAPE SDK AND CLIENT LICENSE AGREEMENT (SCLA) This is a License Agreement (the "Agreement") for certain code (the Software ) owned by Akamai Technologies, Inc. ( Akamai ) that is useful in connection

More information

Learning Management System - Privacy Policy

Learning Management System - Privacy Policy We recognize that visitors to our Learning Management System (LMS) may be concerned about what happens to information they provide when they make use of the system. We also recognize that education and

More information

REGISTRAR AGREEMENT. Domain Name means a domain name allocated under the.eu Top Level Domain and its variants in other scripts.

REGISTRAR AGREEMENT. Domain Name means a domain name allocated under the.eu Top Level Domain and its variants in other scripts. REGISTRAR AGREEMENT PLEASE READ THE FOLLOWING ACCREDITATION TERMS (THE AGREEMENT ) CAREFULLY. BY CLICKING THE BUTTON I ACCEPT YOU REPRESENT AND WARRANT: (1) THAT YOU HAVE THE FULL AUTHORITY AND HAVE SECURED

More information

What is cloud computing? The enterprise is liable as data controller. Various forms of cloud computing. Data controller

What is cloud computing? The enterprise is liable as data controller. Various forms of cloud computing. Data controller A guide to CLOUD COMPUTING 2014 Cloud computing Businesses that make use of cloud computing are legally liable, and must ensure that personal data is processed in accordance with the relevant legislation

More information

Data Processing Policy

Data Processing Policy Data Processing Policy This Data Processing Policy (the Policy ) is aimed at providing transparent and non-technical information about Data Processing carried out during services provided by MKB Nyugdíjpénztárt

More information

Prohire Software Systems Limited ("Prohire")

Prohire Software Systems Limited (Prohire) Prohire Software Systems Limited ("Prohire") White paper on Prohire GDPR compliance measures 11 th May 2018 Contents 1. Overview 2. Legal Background 3. How Prohire complies 4. Wedlake Bell 5. Conclusion

More information

CEM Benchmarking Privacy Policy

CEM Benchmarking Privacy Policy CEM Benchmarking Privacy Policy Final Draft: 18/05/18 Next Review Date: 22/05/19 Page 1 Contents Page 1 Outline 3 2 Categories of personal data 3 3 Sources of personal data 3 4 Purposes 4 5 Lawful basis

More information

Rules for Commissioned Processing. (DDV Declaration of Conformity)

Rules for Commissioned Processing. (DDV Declaration of Conformity) Rules for Commissioned Processing (DDV Declaration of Conformity) Service provider (in the following Service Provider) Representative Street name and number Postal code, place E-mail address Website Version:

More information

Website Privacy Policy

Website Privacy Policy Website Privacy Policy 1 Introduction This Policy applies to the following companies: Navios Ship Management Inc, Navios Tankers Management Inc., Navios Corporation, Navios Containers Management Inc.,

More information

Integrity Notice. Fjärde AP-fonden (AP4)

Integrity Notice. Fjärde AP-fonden (AP4) Integrity Notice Fjärde AP-fonden (AP4) Content 1. General...2 2. Application area...2 3. Personal data controller...2 4. Collection and processing of personal data...2 4.1 Collection of personal data...2

More information

GDPR: A QUICK OVERVIEW

GDPR: A QUICK OVERVIEW GDPR: A QUICK OVERVIEW 2018 Get ready now. 29 June 2017 Presenters Charles Barley Director, Risk Advisory Services Charles Barley, Jr. is responsible for the delivery of governance, risk and compliance

More information

PS Mailing Services Ltd Data Protection Policy May 2018

PS Mailing Services Ltd Data Protection Policy May 2018 PS Mailing Services Ltd Data Protection Policy May 2018 PS Mailing Services Limited is a registered data controller: ICO registration no. Z9106387 (www.ico.org.uk 1. Introduction 1.1. Background We collect

More information

Plan a Pragmatic Approach to the new EU Data Privacy Regulation

Plan a Pragmatic Approach to the new EU Data Privacy Regulation AmChamDenmark event: EU Compliant & Cyber Resistant Plan a Pragmatic Approach to the new EU Data Privacy Regulation Janus Friis Bindslev, Partner Cyber Risk Services, Deloitte 4 February 2016 Agenda General

More information

Beta Testing Licence Agreement

Beta Testing Licence Agreement Beta Testing Licence Agreement This Beta Testing Licence Agreement is a legal agreement (hereinafter Agreement ) between BullGuard UK Limited ( BullGuard ) and you, either an individual or a single entity,

More information

Google Cloud & the General Data Protection Regulation (GDPR)

Google Cloud & the General Data Protection Regulation (GDPR) Google Cloud & the General Data Protection Regulation (GDPR) INTRODUCTION General Data Protection Regulation (GDPR) On 25 May 2018, the most significant piece of European data protection legislation to

More information

Personal Data Protection Policy

Personal Data Protection Policy PALEOLOGOS S.A. Personal Data Protection Policy Date of entry into force of this policy May 17, 2018 The primary objective of this policy is to provide general guidelines regarding the protection of Personal

More information

PRIVACY POLICY OF.LT DOMAIN

PRIVACY POLICY OF.LT DOMAIN PRIVACY POLICY OF.LT DOMAIN Status Up-to-date version Date 2018-05-25 CHAPTER I GENERAL PROVISIONS 1. Privacy policy of.lt domain (hereinafter Privacy Policy) stipulates conditions of processing, legal

More information

Keeper Data Processing Agreement

Keeper Data Processing Agreement Keeper Data Processing Agreement INTRODUCTION This Keeper Security Data Processing Agreement ( DPA ) reflects the agreement between Keeper Security, Inc. ( KSI ) and you (collectively referred to as the

More information

As set out in the Hong Kong ID card, or any relevant identification document referred to in 1(g) above.

As set out in the Hong Kong ID card, or any relevant identification document referred to in 1(g) above. As set out in the Hong Kong ID card, or any relevant identification document referred to in 1(g) above. B (1)B (2) * In the case of a non-hong Kong ID cardholder, state the passport number or any identification

More information

Juniper Networks Data Subprocessing Agreement

Juniper Networks Data Subprocessing Agreement Juniper Networks Data Subprocessing Agreement This subprocessing agreement (the Subprocessing Agreement ) is entered into by and between Juniper Networks, Inc., 1133 Innovation Way, Sunnyvale, CA 94089,

More information

PRIVACY POLICY. 1. Introduction

PRIVACY POLICY. 1. Introduction PRIVACY POLICY 1. Introduction 1.1. The Pinewood Studios Group is committed to protecting and respecting your privacy. This privacy policy (together with our Website Terms of Use and Cookies Policy) (Privacy

More information

Islam21c.com Data Protection and Privacy Policy

Islam21c.com Data Protection and Privacy Policy Islam21c.com Data Protection and Privacy Policy Purpose of this policy The purpose of this policy is to communicate to staff, volunteers, donors, non-donors, supporters and clients of Islam21c the approach

More information

EU GDPR & ISO Integrated Documentation Toolkit https://advisera.com/eugdpracademy/eu-gdpr-iso integrated-documentation-toolkit

EU GDPR & ISO Integrated Documentation Toolkit https://advisera.com/eugdpracademy/eu-gdpr-iso integrated-documentation-toolkit EU GDPR & https://advisera.com/eugdpracademy/eu-gdpr-iso-27001-integrated-documentation-toolkit Note: The documentation should preferably be implemented in the order in which it is listed here. The order

More information

UWC International Data Protection Policy

UWC International Data Protection Policy UWC International Data Protection Policy 1. Introduction This policy sets out UWC International s organisational approach to data protection. UWC International is committed to protecting the privacy of

More information

EU General Data Protection Regulation (GDPR) Achieving compliance

EU General Data Protection Regulation (GDPR) Achieving compliance EU General Data Protection Regulation (GDPR) Achieving compliance GDPR enhancing data protection and privacy The new EU General Data Protection Regulation (GDPR) will apply across all EU member states,

More information

Service Level Agreement (SLA)

Service Level Agreement (SLA) Service Level Agreement (SLA) of PlusServer GmbH, Hohenzollernring 72, 50672 Cologne, Germany hereinafter referred to as the Provider. Version: 04.09.2015 V1.1 PlusServer GmbH Contacts Registered office

More information

Part B of this Policy sets out the rights that all individuals have in relation to the collection and use of your personal information

Part B of this Policy sets out the rights that all individuals have in relation to the collection and use of your personal information Date: 15 Feb 2018 Issue No: 1 Page: 1 of 15 Site: UK Kingspan Insulation Limited ("Kingspan") has issued this Data Protection Policy for its customers. The term customer refers to those that receive a

More information

TOOLBOX SUBSCRIPTION AGREEMENT FOR OPEN SOURCE PROJECTS

TOOLBOX SUBSCRIPTION AGREEMENT FOR OPEN SOURCE PROJECTS This is a new version of the agreement for open source projects that will be effective October 1, 2017. Please review and contact us at sales@jetbrains.com if you have any questions. TOOLBOX SUBSCRIPTION

More information

Blue Alligator Company Privacy Notice (Last updated 21 May 2018)

Blue Alligator Company Privacy Notice (Last updated 21 May 2018) Blue Alligator Company Privacy Notice (Last updated 21 May 2018) Who are we? Blue Alligator Company Limited (hereafter referred to as BAC ) is a company incorporated in England with company registration

More information

M T BUCKLEY & Co Chartered Accountants

M T BUCKLEY & Co Chartered Accountants M T BUCKLEY & Co Chartered Accountants 2 Beulah Walk, Woldingham, Caterham, Surrey CR3 7LL Telephone: 01883 650420 Mobile: 07876 030622 1. PURPOSE OF THIS POLICY PRIVACY POLICY This policy describes how

More information

CAPGEMINI BINDING CORPORATE RULES

CAPGEMINI BINDING CORPORATE RULES CAPGEMINI BINDING CORPORATE RULES Introduction As one of the world s foremost providers of consulting, technology and outsourcing services to a wide array of clients around the world, Capgemini is committed

More information

Just-Property Ltd GDPR Client Data Register

Just-Property Ltd GDPR Client Data Register GDPR Client Data Register Company Name Contact Justin Coughlan Role Managing Director Email jcoughlan@just-property.ie Contact number 01 631 52 51 1. Point of Contact with responsibility for Data Protection

More information

Privacy Notice - Stora Enso s Supplier and Stakeholder Register. 1 Purpose

Privacy Notice - Stora Enso s Supplier and Stakeholder Register. 1 Purpose Privacy Notice - Stora Enso s Supplier and Stakeholder Register Date 29.1.2018 1 Purpose Purpose of this privacy notice is to provide the persons communicating with Stora Enso in the role of a supplier

More information

TERMS AND CONDITIONS OF USE FOR THE WEBSITE This version is valid as from 1 October 2013.

TERMS AND CONDITIONS OF USE FOR THE WEBSITE This version is valid as from 1 October 2013. TERMS AND CONDITIONS OF USE FOR THE WEBSITE This version is valid as from 1 October 2013. I. GENERAL TERMS AND CONDITIONS OF USE 1. Applicability The website http://www.stubbetobacco.com (hereinafter referred

More information