Joint Controllers Clause Samples
The Joint Controllers clause defines the arrangement where two or more parties share responsibility for determining the purposes and means of processing personal data. In practice, this clause outlines how the parties will cooperate, allocate responsibilities, and communicate with data subjects regarding their rights and data protection obligations. Its core function is to ensure legal compliance and transparency under data protection laws, such as the GDPR, by clarifying each party's role and preventing gaps or overlaps in accountability.
POPULAR SAMPLE Copied 27 times
Joint Controllers. 11.1. As at the date of the Agreement, the parties do not consider themselves to be joint controllers (that is, where two or more controllers jointly determine the purposes and means of processing) for the purpose of the processing activities referred to in this Addendum.
11.2. If and to the extent that the parties later determine that their arrangement has become one of joint controllers, they shall comply with the requirements set out in article 26 GDPR.
Joint Controllers. 18.23.1 Where the Parties include two or more Joint Controllers as identified in Annex 1 – Protection of Personal Data to Schedule 1 (Specification), those Parties shall comply with the terms outlined in Annex 2 – Joint Controller Agreement to Schedule 1 (Specification).
Joint Controllers. 2.1 The BID Company acknowledges that the Council is under no obligation to transfer any Personal Data to the BID Company. Any such transfers will be made by the Council as a good- will gesture.
2.2 Each Party shall be responsible for its own obligations as a Controller under the Data Protection Legislation.
2.3 Each Party shall perform or receive the Services in compliance with the Data Protection Legislation.
2.4 The subject matter, duration, nature, and purpose of Processing of Personal Data by and on behalf of the Parties under this Agreement is detailed in Annex A below.
2.5 Each Party shall:
2.4.1 maintain its own records of processing under Article 30 of the UK GDPR;
2.4.2 be responsible for determining its data security obligations, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of the processing of Personal Data, as well as the risks of varying likelihood and severity to the rights and freedoms of the DataSubjects;
2.4.3 implement appropriate Protective Measures to protect the Personal Data against unauthorised or unlawful Processing and accidental destruction or loss; and
2.4.4 ensure the protection of the rights of the Data Subject, in such a manner that the Processing will meet the requirements of the Data Protection Legislation where Personal Data have been transmitted by it, or while the Personal Data are in its possession or control.
Joint Controllers. The Parties acknowledge that they are Joint Controllers for the purposes of the Data Protection Legislation in respect of:
Joint Controllers general powers and corporate governance arrangements The Parties collaboratively Process personal data in the exercise of their general powers. Processing to support the following activities: • The appointment of joint executive positions to the Board and at a senior level • Shared HR service; • Planning for operational management of integrated teams; • Line management of integrated teams; • The establishment of a shared secretariat for servicing boards and committees.
Joint Controllers. To the extent a Party is deemed to be a joint Controller with the other in relation to Personal Data, the Parties will be jointly responsible for the compliance obligations imposed on a Controller by the Data Protection Laws, and the Parties will co-operate to do all necessary things to enable performance of such compliance obligations.
Joint Controllers. If and to the extent that the parties jointly determine the purposes and means of processing of Personal Data, acting as “Joint Controllers”, the parties shall agree in writing on a Joint Controller agreement that determines their respective responsibilities for compliance under applicable data protection legislation and that shall apply in addition to the other provisions of this Section.
Joint Controllers. If and to the extent that the Parties jointly determine the purposes and means of processing of Personal Data, acting as “Joint Controllers” (Art. 26 GDPR), the Parties shall agree in writing on a Joint Controller agreement that determines their respective responsibilities for compliance under Applicable Laws on data protection and that shall apply in addition to the other provisions of this Article 8. In case of a Clinical Trial according to Article 7, MRK shall be responsible to provide all relevant information to patients and shall be responsible to handle any patient requests regarding the exercise of their data protection rights; ArcherDX shall assist MRK in handling and comply with legitimate requests of data subjects regarding their rights under Applicable Laws on data protection.
Joint Controllers. 2.1 The Partners agree that they are joint controllers within the meaning of Art. 4 No. 7 GDPR in connection with Art. 26 GDPR. The subject of the processing results from Annex 1 of this agreement.
Joint Controllers. 2.1 The BID Company acknowledges that the Council is under no obligation to transfer any Personal Data to the BID Company. Any such transfers will be made by the Council as a good- will gesture.
2.2 Each Party shall be responsible for its own obligations as a Controller under the Data Protection Legislation.
2.3 Each Party shall perform or receive the Services in compliance with the Data Protection Legislation
2.4 Each Party shall:
2.4.1 maintain its own records of processing under Article 30 of the GDPR;
2.4.2 be responsible for determining its data security obligations, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of the processing of Personal Data, as well as the risks of varying likelihood and severity to the rights and freedoms of the Data Subjects;
2.4.3 implement appropriate Protective Measures to protect the Personal Data against unauthorised or unlawful Processing and accidental destruction or loss; and
2.4.4 ensure the protection of the rights of the Data Subject, in such a manner that the Processing will meet the requirements of the Data Protection Legislation where Personal Data have been transmitted by it, or while the Personal Data are in its possession or control.
2.5 When transferring Personal Data:
2.5.1 the Party transferring the Personal Data (the - Data Transferor) warrants and undertakes to the Party receiving the Personal Data (the Data Recipient) that such Personal Data have been collected, processed and transferred in accordance with the Data Protection Legislation, this paragraph 2, and any other laws applicable to the Data Transferor and to the Personal Data;
2.5.2 the Data Recipient warrants and undertakes to the Data Transferor that:
(a) it will process the Personal Data in accordance with the Data Protection Legislation;
(b) it has and will continue to have in place appropriate technical and organisational measures to protect the Personal Data against accidental or unlawful destruction or accidental loss, alteration, unauthorised disclosure or access, and which provide a level of security appropriate to the risk represented by the processing and the nature of the data to be protected; and
(c) it has the legal authority to give the warranties and fulfil the undertakings set out in this Agreement; and
2.5.3 if the Data Recipient is in breach of any of its obligations under this Agreement then the Data Transferor may temporarily suspend the transfer of the Person...