This is how Edgecumbe manages international transfers in its data processing agreement. This is for subprocessors, but can also be addressed to a data processor. You are also responsible for ensuring that some companies with which you share your users` data treat them with the same respect as you do. 13.1. At the expiry of the contract, the data manager (at the data manager`s choice) must destroy or return to the data manager all data in his possession or control. The processing manager reserves the right to delete personal data from all locations after 90 days if the processing manager has not chosen either option. This requirement does not apply to the extent that current legislation requires the processor to retain some or all of the data. 6.2. The data processor will ensure that all data processor staff required for access to personal data are informed of the confidentiality of personal data and the security procedures applicable to the processing or access to personal data. Most of the mandatory requirements required by a data processing agreement are obligations for the data processor. These are set out in Chapter 4 of the RGPD, with article 28 being particularly important. 3.
The processing includes the following types of personal data concerning the individuals concerned: the data processing agreement must be explicit about what the data processor is actually doing. For example, the following aspects of data processing should be indicated: Note that many of them are written by large data processors whose customers or customers are responsible for data. It doesn`t matter. Although the wording is different, these clauses are mandatory in any data processing agreement, whether written by a data manager or a data processor. (i) personal data covered by Article 9 or 10 of the 2016/679 Regulation of 27 April 2016 (i) any request by a person concerned to exercise any of his or her rights under applicable data protection legislation (including access, rectification, redress, cancellation and data portability, if applicable); and one. The goal of the data processor`s processing of personal data on behalf of the data company is to ensure that both parties (you and the data processor) sign the agreement effectively to make it enforceable.