Joint Controller Status and Allocation of Responsibilities Sample Clauses

The "Joint Controller Status and Allocation of Responsibilities" clause defines how two or more parties jointly determine the purposes and means of processing personal data, establishing them as joint controllers under data protection laws such as the GDPR. This clause typically outlines the specific roles and obligations of each party regarding compliance, such as handling data subject requests, ensuring data security, and managing notifications of data breaches. Its core function is to ensure legal clarity and accountability between the parties, reducing the risk of non-compliance and disputes by clearly allocating responsibilities for data protection.
Joint Controller Status and Allocation of Responsibilities. 1.1 With respect to Personal Data under Joint Control of the Parties, the Parties envisage that they shall each be a Data Controller in respect of that Personal Data in accordance with the terms of this Annex 2 (Joint Controller Agreement) in replacement of paragraphs 2 to 15 of Schedule 4 of the Framework Agreement (Where one Party is Controller and the other Party is Processor) and paragraphs 17-27 of Schedule 4 (Independent Controllers of Personal Data). Accordingly, the Parties each undertake to comply with the applicable Data Protection Legislation in respect of their Processing of such Personal Data as Data Controllers. 1.2 The Parties agree that the [delete as appropriate Supplier/Buyer]: (a) is the exclusive point of contact for Data Subjects and is responsible for all steps necessary to comply with the GDPR regarding the exercise by Data Subjects of their rights under the GDPR; (b) shall direct Data Subjects to its Data Protection Officer or suitable alternative in connection with the exercise of their rights as Data Subjects and for any enquiries concerning their Personal Data or privacy; (c) is solely responsible for the Parties’ compliance with all duties to provide information to Data Subjects under Articles 13 and 14 of the GDPR; (d) is responsible for obtaining the informed consent of Data Subjects, in accordance with the GDPR, for Processing in connection with the Services where consent is the relevant legal basis for that Processing; and (e) shall make available to Data Subjects the essence of this Annex (and notify them of any changes to it) concerning the allocation of responsibilities as Joint Controller and its role as exclusive point of contact, the Parties having used their best endeavours to agree the terms of that essence. This must be outlined in the [Supplier’s/Buyer’s] privacy policy (which must be readily available by hyperlink or otherwise on all of its public facing services and marketing). 1.3 Notwithstanding the terms of clause 1.2, the Parties acknowledge that a data subject has the right to exercise their legal rights under the Data Protection Legislation as against the relevant Party as Controller.
View SourceView Similar (43)
Joint Controller Status and Allocation of Responsibilities. With respect to Personal Data under Joint Control of the Parties, the Parties envisage that they shall each be a Data Controller in respect of that Personal Data in accordance with the terms of this Annex 2 (Joint Controller Agreement) in replacement of paragraphs 2 to 15 of Schedule 7 (Where one Party is Controller and the other Party is Processor) and paragraphs 17 to 27 of Schedule 7 (Independent Controllers of Personal Data). Accordingly, the Parties each undertake to comply with the applicable Data Protection Legislation in respect of their Processing of such Personal Data as Data Controllers.
View SourceView Similar (22)
Joint Controller Status and Allocation of Responsibilities. With respect to Personal Data under Joint Control of the Parties, the Parties envisage that they shall each be a Controller in respect of that Personal Data in accordance with the terms of this Appendix D (Joint Controller Agreement) in replacement of clauses B38.2 to B38.15 (Where one Party is Controller and the other Party is Processor) and clauses B38.17 to B38.27 (Independent Controllers of Personal Data). Accordingly, the Parties each undertake to comply with the applicable Data Protection Legislation in respect of their Processing of such Personal Data as Controllers.
View SourceView Similar (4)
Joint Controller Status and Allocation of Responsibilities. 1.1 With respect to Personal Data under Joint Control of the Parties, the Parties envisage that they shall each be a Data Controller in respect of that Personal Data in accordance with the terms of this Annex 2 (Joint Controller Agreement) in replacement of paragraphs 2 to 15 of Schedule 7 (Where one Party is Controller and the other Party is Processor) and paragraphs 17 to 27 of Schedule 7 (Independent Controllers of Personal Data). Accordingly, the Parties each undertake to comply with the applicable Data Protection Legislation in respect of their Processing of such Personal Data as Data Controllers. 1.2 The Parties agree that the [select: Supplier or CCS]: (a) (a) is the exclusive point of contact for Data Subjects and is responsible for using all steps necessary reasonable endeavours to comply with the UK GDPR regarding the exercise by Data Subjects of their rights under the UK GDPR; (b) (b) shall direct Data Subjects to its Data Protection Officer or suitable alternative in connection with the exercise of their rights as Data Subjects and for any enquiries concerning their Personal Data or privacy;
View SourceView Similar (3)
Joint Controller Status and Allocation of Responsibilities. 1.1 In relation to the processing of Customer personal data carried out by SocietyWorks in relation to the provision of the Services, the parties are joint controllers, except that: (a) The parties may process contact and other business information of the other party’s staff or representatives for routine communication and other business dealing, in which case the parties are independent controllers; (b) Public Data, which SocietyWorks may process for its own purposes, including as a part of the making available generic versions of the Services to the general public and when it does so it is an independent controller. (c) Information exchanged as a result of the operation of TUPE or of any obligations under this agreement relating to TUPE, shall be exchanged between the parties as independent controllers. 1.2 Where the parties are independent controllers in relation to the processing of Customer personal data: (a) Each party shall comply with Data Protection Law in relation to its processing of Customer personal data; (b) Otherwise, the remainder of this schedule shall not apply.
View Source

Related to Joint Controller Status and Allocation of Responsibilities

  • Allocation of Responsibilities The persons responsible for the Plan and the duties and responsibilities allocated to each are as follows:

  • Allocation of Responsibility The City assumes no responsibility for the tax consequences of any VEBA contributions made by or on behalf of any member. Each union that elects to require VEBA contributions for the benefit of its members assumes sole responsibility for insuring that the VEBA complies with all applicable laws, including, without limitation, the Internal Revenue Code, and agrees to indemnify and hold the City harmless for any taxes, penalties and any other costs and expenses resulting from such contributions.

  • Joint Responsibilities The relationship between SAE ITC, the Activities and its Members shall be, and at all times, advisory only, and no party shall have the authority to enter into any contract or commitment in the name of, or on behalf of, any other party. Nothing in this Agreement shall be construed to confer upon either party the status of employee, agent, partner, joint venturer or legal representative of the other, it being intended by all parties to remain independent legal entities solely responsible for its own actions.