BACKGROUND, PURPOSE AND DEFINITIONS. The Parties to this Data Processing Agreement are defined in Appendix 1. This Data Processing Agreement governs each Party’s rights and obligations, in order to ensure that all processing of personal data is conducted in compliance with applicable data protection legislation, including EU Regulation 2016/679 (“GDPR”) and its applicable national implementation from its effective date. Processor will process personal data in order to deliver services under the Agreement, as specified in Appendix 1. The ultimate recipient of the services will be EPIM or EPIM's customers. EPIM's terms regarding processing of personal data are published on ▇▇▇.▇▇▇▇.▇▇/▇▇▇▇▇ and ▇▇▇.▇▇▇▇.▇▇/▇▇▇▇▇▇▇. To the extent this Data Processing Agreement refers to documents published on ▇▇▇.▇▇▇▇.▇▇/▇▇▇▇▇ and ▇▇▇.▇▇▇▇.▇▇/▇▇▇▇▇▇▇, they shall be considered an integrated part of the Data Processing Agreement. EPIM may make changes to the documents published on ▇▇▇.▇▇▇▇.▇▇/▇▇▇▇▇ and ▇▇▇▇://▇▇▇.▇▇▇▇.▇▇/privacy on at least 30 days’ prior notice. EPIM shall involve both the Controller and/or the Processor when making changes to documents which may affect delivery of the Processor's services. The subject-matter, nature and purpose of the processing, the types of personal data and the categories of data subjects involved are specified in Appendix 1. When this Data Processing Agreement is used in delivery of services by a data processor's sub- contractor (or further down the contractor chain), the term Controller will refer to the data processor and the term Processor to the data processor's sub-contractor. The ultimate data controller (EPIM or EPIM's customer) will also have such rights as the Controller has in this Data Processing Agreement regarding the personal data for which they are the controller, and the data controller may choose to invoke and enforce their and the Controller's rights directly towards the Processor.
Appears in 1 contract
Sources: Data Processing Agreement
BACKGROUND, PURPOSE AND DEFINITIONS. The Parties to this Data Processing Agreement are defined in Appendix 1. This Data Processing Agreement governs each Party’s rights and obligations, in order to ensure that all processing of personal data is conducted in compliance with applicable data protection legislation, including EU Regulation 2016/679 (“GDPR”) and its applicable national implementation from its effective date. Processor will process personal data in order to deliver services under the Agreement, as specified in Appendix 1. The ultimate recipient of the services will be EPIM or EPIM's customers. EPIM's terms regarding processing of personal data are published on ▇▇▇.▇▇▇▇.▇▇/▇▇▇▇▇ and ▇▇▇.▇▇▇▇.▇▇/▇▇▇▇▇▇▇. To the extent this Data Processing Agreement refers to documents published on ▇▇▇.▇▇▇▇.▇▇/▇▇▇▇▇ and ▇▇▇.▇▇▇▇.▇▇/▇▇▇▇▇▇▇, they shall be considered an integrated part of the Data Processing Agreement. EPIM may make changes to the documents published on ▇▇▇.▇▇▇▇.▇▇/▇▇▇▇▇ and ▇▇▇▇://▇▇▇.▇▇▇▇.▇▇/privacy on at least 30 days’ prior notice. EPIM shall involve both the Controller and/or the Processor when making changes to documents which may affect delivery of the Processor's services. The subject-matter, nature and purpose of the processing, the types of personal data and the categories of data subjects involved are specified in Appendix 1. When this Data Processing Agreement is used in delivery of services by a data processor's sub- contractor (or further down the contractor chain), the term Controller will refer to the data processor and the term Processor to the data processor's sub-contractor. The ultimate data controller (EPIM or EPIM's customer) will also have such rights as the Controller has in this Data Processing Agreement regarding the personal data for which they are the controller, and the data controller may choose to invoke and enforce their and the Controller's rights directly towards the Processor.
Appears in 1 contract
Sources: Data Processing Agreement