Was Ist Eine Data Processing Agreement

Posted on

The controller transmits the personal data listed in sections 3, 4 and 5 below, with regard to the processing operations referred to in section 6 below. “Agreement” means Mailchimp`s standard terms of use or any other written or electronic agreement governing the provision of the Service to Customer, as such terms or agreements may be updated from time to time. 2.2 Limitation of Purpose. Mailchimp will only process Customer Data in accordance with Customer`s documented legal instructions as set forth in this DTA to the extent necessary to comply with applicable law, or as otherwise agreed in writing (“Permitted Purposes”). The parties agree that the agreement contains the customer`s complete and final instructions to Mailchimp with respect to the processing of customer data and that processing outside the scope of these instructions (if any) must be subject to prior written agreement between the parties. Processing by a processor is covered by a contract or other legal act under Union or Member State law, which binds the processor to the controller and defines the object and duration of the processing, the nature and purpose of the processing, the nature of the data and categories of data subjects and the obligations and rights of the controller. 8.2 Data protection impact assessment. To the extent necessary by applicable data protection legislation, Mailchimp (taking into account the type of processing and information available to mailchimp) provides all reasonably requested information about the service so that the customer can carry out data protection impact assessments or prior consultations with data protection authorities in accordance with data protection legislation. Mailchimp must comply with the above by adhering to: (i) Section 5 (security reports and audits); (ii) provide the information contained in the Agreement, including this DPA; and (iii) if the preceding subsections (i) and (ii) are not sufficient to enable the Customer to perform these obligations, upon request, additional appropriate assistance (at customer`s expense).

Overview of the data processing activities to be carried out by the Processor 10.6 The Controller and the Processor and, where applicable, their representatives shall cooperate with a data protection supervisory authority upon request to fulfil their respective obligations under this DTA. storage and any other processing necessary to provide, maintain and improve the service provided to the Customer in accordance with the Agreement; and/or personal data that are only used for internal purposes, e.B. in the context of the respective customer relationship, may only be transferred to a third party such as a subcontractor, taking into account contractual regulations and corresponding data protection requirements. (h) Types of Customer Data: The Customer may upload, transmit or transmit to the Service certain Personal Data, the volume of which is generally determined and controlled by the Customer at its discretion and may include the following types of Personal Data: 2.1 Roles of the Parties. . . .