GDPR COMPLIANT CLAUSES Clause Samples

GDPR COMPLIANT CLAUSES. The data protection clauses in our contract with you are amended to state; 17.1 When acting for you, we are a Data Controller in respect of any personal data you provide to us or to which we have access. This is because IT Support Providers and similar providers of professional services work under a range of professional obligations which oblige them to take responsibility for the personal data they process. In doing so we would not be acting on your instructions but in accordance with our own professional obligations and therefore as a Data Controller in our own right. 17.2 Where we and you are deemed in accordance with the data protection laws to be joint Data Controllers, you shall be liable for the personal data you process and we shall only be liable for the personal data we process. 17.3 You confirm that you have the right to supply personal data to us and you will not breach applicable data protection laws. Where you are providing personal data to us about a third-party, for example, a Director (including a non-executive Director) and/or any other type of employee, business associate, customer, supplier or third-party, you confirm that you have their authority and express permission to provide us with their personal data. 17.4 Neither of us will by our act of omission put the other in breach of the applicable data protection laws. 17.5 Where we and you are joint Data Controllers, you should provide all relevant information to data subjects relating to the processing of their personal data (including the processing carried out by us) and to the exercise of their rights in relation to the processing of their personal data as required by the data protection laws in written notice (“Fair Processing Notice”) and you will act as the contact point for the data subject. 17.6 To enable us to discharge the services agreed under our engagement and for other related purposes, including updating and enhancing client records, analysis for management purposes and statutory returns, crime prevention and legal and regulatory compliance, we may obtain, use, process and disclose personal data about you or your entity, its officers and employees, as applicable. We confirm when processing data on your behalf we will comply with the relevant provisions of the applicable data protection laws. 17.7 In the course of providing the services to the Controller pursuant to this Agreement, the Processor may process personal data on behalf of the Controller. The Processor agrees t...