DATA PROCESSING AND PROTECTION. 2.1. Customer may be either of the following (a) a Controller of Customer Personal Data, or (b) a Processor when it Processes Customer Personal Data on behalf of its End-users. Consequently, BMIT is a Processor where Customer is Controller or Processor, or a sub- processor when Customer is acting as a Processor on behalf of its End-users; 2.2. In the circumstances were either as a result of a legal obligation, lawful request or legitimate criteria BMIT are obliged to take a decision on the processing of the personal data, Controller obligations will apply in line with applicable legislation; 2.3. The subject matter of the Processing is BMIT's provision and Customer's use of the Services and the detection, prevention and resolution of technical issues as provided for in the applicable Agreement; 2.4. The purpose of the Processing is to provide Services to Customer under the Agreement and the detection, prevention and resolution of technical issues as provided for in the applicable Agreement and any purposes compatible therewith; 2.5. The type of Personal Data Processed is any Personal Data provided or made available to BMIT by or on behalf of Customer or any End-user through the use or provision of the Services; and 2.6. The categories of Data Subjects are those whose Personal Data are provided or made available to BMIT by or on behalf of Customer or any End-user through the use or provision of the Services, including staff, Customers, partners of Customer or End-users and any End- users who are individuals.
Appears in 2 contracts