DATA PROCESSOR’S OBLIGATIONS. 3.1. The Data Controller determines the purposes of Processing Client Personal Data for the provision of the Service.
DATA PROCESSOR’S OBLIGATIONS. 5.1 The Data Processor shall process the Personal Data:
DATA PROCESSOR’S OBLIGATIONS. 3.1 Data Processor shall only Process Customer Personal Data on behalf of Data Controller and in accordance with, and for the purposes set out in the documented instructions received from Data Controller from time to time. If Data Processor cannot provide such compliance for whatever reason (including if the instruction violates Applicable Data Protection Laws), it agrees to inform Data Controller of its inability to comply as soon as reasonably practicable.
DATA PROCESSOR’S OBLIGATIONS. The Data Processor acts solely on behalf of and on instructions from the Data Controller in connection with the performance of the agreed Project tasks. The Data Controller thus decides the purposes for which the processing of personal data may take place. The Data Processor undertakes to comply with the Data Protection Rules. Among other things, the Data Processor must (list not exhaustive): Process personal data in accordance with the general principles laid down in Art. 5 of the General Data Protection Regulation. Assist the Data Controller in complying with and protecting the rights of the data subject(s). Prepare a record of processing activities, cf. Art 28(2) of the General Data Protection Regulation. Upon request, the Data Processor must provide the Data Controller with sufficient information to allow the Data Controller to ensure that appropriate technical and organisational security measures have been implemented. Among other things, this includes information about where the personal data are located, as well as physical access to the personal data, if so required by the Data Controller. The Data Processor must ensure that only persons who have a need for such information for the purpose of fulfilling the purpose of the agreement and instructions have access to the personal data. The Data Processor must not, except when instructed by the Data Controller, disclose data which come into the possession of the Data Processor in connection with the performance of the Data Processor’s task. Moreover, the Data Processor must not use or process data from the data processing task for their own purposes or for purposes other than those stipulated by the Data Controller. If, in contravention of this agreement, the Data Processor processes data for their own purposes or for purposes other than the purposes stipulated by the Data Controller, an independent legal basis must exist, and the Data Processor will have the independent status of Data Controller for such processing. If the Data Controller finds that an impact assessment must be carried out, cf. Art. 35 of the General Data Protection Regulation, the Data Processor must contribute to carrying out this impact assessment, if so requested by the Data Controller. The Data Processor must implement appropriate technical and organisational security measures, cf. Art. 32 of the General Data Protection Regulation, to protect the personal data against accidental or unlawful destruction, loss or deterioration, and ...
DATA PROCESSOR’S OBLIGATIONS. 4.1 To the extent that the Data Processor processes Personal Data in the course of providing the Services, each party acknowledges that, for the purposes of the Data Protection Legislation the Data Processor is the processor of any Personal Data.
DATA PROCESSOR’S OBLIGATIONS. 3.1 To the extent Data Processor Processes Personal Data on behalf of Data Controller, it shall:
DATA PROCESSOR’S OBLIGATIONS. 4.1. The Data Processor processes personal data under concluded agreements only, with the purpose, nature and scope of data processing being subject exclusively to the Data Controller’s direction. The Data Processor may not transfer personal data to third parties. The Data Processor shall, upon the Data Controller’s request, provide to the Data Controller all information on the Data Controller’s personal data and information. In its processing of data, the Data Processor may deviate from such directions only to the extent that the Data Controller has consented thereto in writing.
DATA PROCESSOR’S OBLIGATIONS. 4.1. Prohibition of disposal and notification duty Azets shall only Process Personal Data in accordance with documented instructions from the Data Controller, including in the Agreement and in Appendix 1 to this Data Processor Agreement. If Azets believes that an instruction from the Data Controller, cf. the first paragraph, is contrary to the Norwegian Personal Data Legislation, the Data Controller shall be notified of this. Azets must without undue delay notify the Data Controller if Azets will not be able to comply with its obligations under this data Processor Agreement.
DATA PROCESSOR’S OBLIGATIONS. The Service Provider undertakes and agrees with the Company that:
DATA PROCESSOR’S OBLIGATIONS. 3.1 The Data Processor may sub-contract its duties or obligations arising under this data processing agreement in accordance with the terms of this agreement. Details regarding any changes to sub-contracting relationships (if any) will be supplied to the Data Controller as appropriate.
