Data Processors Clause Samples

Data Processors. 8.1 MedLIS was developed by Cerner Ireland on behalf of the HSE and they will continue to provide on-going support and maintenance of the system and as such will fulfil the role of Data Processor. 8.2 Each party shall not appoint any additional Data Processors for MedLIS without having first obtained the written approval of the other parties. 8.3 All additional Data Processors will be required to sign a copy of the HSE Service Provider Confidentiality Agreement prior to them gaining access to MedLIS. (▇▇▇▇://▇▇▇.▇▇▇.▇▇/eng/services/publications/pp/ict/HSE-Service-Provider-Confidentiality- Agreement-v3-0.pdf)

Data Processors. Where a party wishes to appoint a Data Processor to process the shared data, the organisation must ensure that this is agreed as part of this protocol, or as part of the Tier 3 protocol, and must ensure it is governed by a robust contract and detailed written instructions for processing.

Data Processors. 4.1 Where the Data Receiver appoints a Data Processor to process the Shared Personal Data, it shall comply with Article 28 of the UK GDPR and shall remain liable to the Data Discloser for the acts and/or omissions of the Data Processor. 4.2 Data Receiver shall choose such Data Processor diligently with special attention to its good standing and experience. 4.3 Data Receiver shall enter into a written contract with any Data Processor and such contract shall impose upon the Data Processor the same obligations imposed by the UK GDPR, to the extent applicable to the subcontracted activities.

Data Processors a. If any processing on the data transferred by the University to the Union is required to be performed by any third parties, the Union should ensure that this is consistent with the purposes of this Agreement and should also ensure that the formal contract is compliant with current and future data protection legislation is in place before any processing takes place. The Union will also provide all possible information related to this Agreement to the other party. The Data Processors should be named on any data privacy notices.

Data Processors. St Andrew’s Children’s Society is the data processor on behalf of the Scottish Government. St Andrew’s Children’s Society is acting on the instruction of the Scottish Government as laid out in the controller processor contract.

Data Processors. 1. Any of the Joint Controllers that deems it necessary to make use of a data processor for the performance of specific activities required under the joint project shall notify the other party with adequate notice. 2. Specific data protection obligations shall be imposed on that controller by means of a contract or other legal act under Union or Member State law, in particular by providing for sufficient safeguards to put in place appropriate technical and organisational measures in such a way that the processing meets the requirements of applicable law. 3. The relationship between the Joint Controllers and any data processors shall remain governed by Article 28 of the GDPR.

Data Processors. 10.1. Defra will ensure that the requirements of Article 28 and 29 are met in relation to the use of a Processor or Sub Processor for the processing of the Data.

Data Processors. 23.3.1 Where any Green Deal Provider or any Supplier (the first party) acts as a Data Processor regarding Personal Data Processed in connection with the Green Deal, on behalf of, as appropriate, any Supplier or any Green Deal Provider (the second party), the first party shall: (a) take appropriate technical and organisational measures to protect those data against unauthorised or unlawful Processing and against accidental loss, destruction, alteration or damage; (b) only Process those data in the performance of its obligations under this Agreement or the Data Transfer Services Agreement (and, (i) in respect of each Supplier, under its Electricity Supply Licence, and (ii) in respect of each Green Deal Provider, under its Provider Authorisation) and act on the second party's instructions (such instructions being, as set out in this Agreement); (c) take reasonable steps to ensure the reliability of its employees who may have access to those data; (d) provide, at its own cost, reasonable assistance to the second party to enable it to comply with such obligations as are imposed on it by the Data Protection Act, including responding to any data subject access requests received in respect of which the second party is the Data Controller; and (e) not transfer those data to any country or territory outside the European Economic Area without the second party's prior written consent. 23.3.2 Each Supplier and each Green Deal Provider undertakes that it shall not Process any Personal Data collected by another participant in the Green Deal in connection with the Green Deal for any purposes other than performing its obligations and exercising its rights under this Agreement or the Data Transfer Services Agreement and otherwise complying with a Relevant Instrument and, in particular, shall not, and shall not seek to collect consent from relevant Data Subjects to permit it to, Process such data for its own marketing purposes or commercial promotion without the prior written consent of that other participant in the Green Deal.

Data Processors. The Data Importer may engage Data Processors. To the extent feasible the Data Importer will take steps to ensure that: the Data Processor will observe the obligations of a Data Controller under the Data Protection Laws in respect of the Personal Data being processed by it; and the Data Processor shall act only on the instructions of the Data Exporter or the Data Importer. Governing Law. THE LAWS THAT SHALL GOVERN THIS AGREEMENT SHALL BE THE LAWS OF THE COUNTRY IN WHICH THE DATA EXPORTER IS ESTABLISHED.