Rgpd Data Processing Agreement


3.4 Objection to subcontractors. Customers may object in writing to DigitalOcean`s order for a new subprocessor for justifiable data protection reasons, notifying DigitalOcean immediately in writing within five (5) calendar days of receiving the DigitalOcean notification in accordance with Section 3.3. This opinion must explain the reasons for the objection. In this case, the parties discuss these concerns in good faith in order to reach an economically reasonable solution. If this is not possible, each party can terminate the corresponding services that cannot be provided by DigitalOcean without the use of the offending subprocessor again. The contract (or any other legislative act) contains details about the treatment, including: This guide serves as an introduction to data processing agreements – what they are, why they are important, who they are and what they have to say. You can also follow the link to find a RGPD data processing model that you can download, customize and use for your business. (B) The company wishes to provide the data processor with certain services that involve the processing of personal data. 8.1 To the extent that the client is unable to independently access relevant personal data within the Services, DigitalOcean (at the customer`s expense) will provide appropriate cooperation, given the nature of the treatment, to assist the client with appropriate technical and organizational measures, where possible, to respond to requests from individuals or data protection authorities in relation to the processing of personal data as part of the agreement.

In the event that such a request is addressed directly to DigitalOcean, DigitalOcean will not respond directly to this communication without the customer`s prior consent, except under a legal obligation to do so. If DigitalOcean is required to respond to such a request, DigitalOcean will immediately notify the Customer and provide a copy of the request, unless that request is prohibited by law. ☐ the subcontractor must delete all personal data (at the choice of the processing manager) at the end of the contract or return it to the processing manager, and the subcontractor must also delete existing personal data, unless the law requires its storage; and 2.2 the role of the contracting parties.