UK GDPR Sample Clauses
The UK GDPR clause establishes the requirements for handling personal data in accordance with the United Kingdom's data protection laws. It typically outlines obligations for data controllers and processors, such as ensuring data security, obtaining proper consent, and enabling data subject rights like access or erasure. This clause ensures that parties comply with legal standards for privacy and data protection, thereby reducing the risk of regulatory penalties and safeguarding individuals' personal information.
POPULAR SAMPLE Copied 1 times
UK GDPR. Approved Addendum The template Addendum issued by the ICO and laid before Parliament in accordance with s119A of the Data Protection Act 2018 on 2 February 2022, as it is revised under Section 18. Approved EU SCCs The Standard Contractual Clauses set out in the Annex of Commission Implementation Decision (EU) 2021/914 of 4 June 2021. ICO The Information Commissioner. Restricted Transfer A transfer which is covered by Chapter V of the UK GDPR. UK The United Kingdom of Great Britain and Northern Ireland. UK Data Protection Laws All laws relating to data protection, the Processing of personal data, privacy, and/or electronic communications in force from time to time in the UK, including the UK GDPR and the Data Protection Act 2018. UK GDPR As defined in section 3 of the Data Protection Act 2018.
4. This Addendum must always be interpreted in a manner that is consistent with UK Data Protection Laws and so that it fulfils the Parties’ obligation to provide the Appropriate Safeguards.
5. If the provisions included in the Addendum EU SCCs amend the Approved SCCs in any way which is not permitted under the Approved EU SCCs or the Approved Addendum, such amendment(s) will not be incorporated in this Addendum and the equivalent provision of the Approved EU SCCs will take their place.
6. If there is any inconsistency or conflict between UK Data Protection Laws and this Addendum, UK Data Protection Laws applies.
7. If the meaning of this Addendum is unclear or there is more than one meaning, the meaning which most closely aligns with UK Data Protection Laws applies.
8. Any references to legislation (or specific provisions of legislation) means that legislation (or specific provision) as it may change over time. This includes where that legislation (or specific provision) has been consolidated, re-enacted and/or replaced after this Addendum has been entered into.
9. Although Clause 5 of the Approved EU SCCs sets out that the Approved EU SCCs prevail over all related agreements between the parties, the parties agree that, for Restricted Transfers, the hierarchy in Section 10 will prevail.
10. Where there is any inconsistency or conflict between the Approved Addendum and the Addendum EU SCCs (as applicable), the Approved Addendum overrides the Addendum EU SCCs, except where (and in so far as) the inconsistent or conflicting terms of the Addendum EU SCCs provides greater protection for Data Subjects, in which case those terms will override the Approved Addendum.
11. Where...
UK GDPR. In relation to Personal Data that is protected by the UK GDPR, UK Addendum to the EU Standard Contractual Clauses (“UK Addendum”) issued by the Information Commissioner’s Office (“ICO”) under s.119A(1) of the Data Protection ▇▇▇ ▇▇▇▇ is hereby incorporated and will apply as follows: (i) the EU SCCs, completed as set out at Section 10(a) above shall also apply to transfers of such Personal Data, and (ii) the UK Addendum shall be deemed executed between Customer and ClickDimensions, and the EU SCCs shall be deemed amended as specified by the UK Addendum in respect of the transfer of such Personal Data.
UK GDPR. The subject matter and duration of the Processing of the Personal Data are set out in the Agreement and this DPA.
UK GDPR. Pursuant to Art. 77(1) UK GDPR, you also have the right to file a complaint with a supervisory authority if you are of the opinion that the processing of your personal data infringes GDPR.
UK GDPR. The purpose of the data processing and our legitimate interest is the performance of the business relationship between us.
UK GDPR. Vendor will Process Personal Data in accordance with the UK Data Protection Legislation and UK GDPR requirements directly applicable to Vendor’s provision of the Service.
UK GDPR. With respect to transfer to which the UK GDPR applies, the parties agree to Process such Personal Data in compliance with the UK Amendment, which is automatically incorporated by reference and form an integral part of the DPA, as follows:
(a) the EU SCCs as implemented under Sections 1(a) (Workato as Controller) and 1(b) (Workato as Processor or Sub-Processor) of this Schedule 3 shall be deemed amended as specified by Part 2 of the UK Amendment;
(b) Tables 1 to 3 in Part 1 of the UK Addendum shall be deemed completed respectively with the information set out in Schedules 1 and 2 of the DPA (as applicable); and
(c) Table 4 in Part 1 of the UK Addendum shall be deemed completed by selecting “Importer” and “Exporter.”
UK GDPR. 4.1. This clause is to be considered a data processing agreement as stipulated in article 28.
4.2. As part of this agreement the Data Processor renders it services to the Data Controller;
4.3. The Data Controller has determined that the Data Processor is willing and is able to deliver the services in all its aspects in a manner which complies with applicable laws;
4.4. In the course of the performance of its services the Data Processor processes personal data (hereinafter to be referred to as “Personal Data”) on behalf of the Data Controller;
4.5. To the extent that the Data Processor will be processing Personal Data on behalf of the Data Controller in the course of the performance of this agreement, an overview of the categories of Personal Data, categories of data subjects, nature of the processing, retention period and purposes for which the Personal Data are being processed is provided in Annex 3.
4.6. The Data Processor will act as the processor and the Data Controller will act as the controller.
4.7. The Processor warrants that it will only process the Personal Data in such manner as – and to the extent that is necessary for the performance of the services under this agreement or to comply with a legal obligation to which the Data Processor is subject, in which case the Data Processor will notify the Data Controller of such legal obligation.
4.8. The Data Processor will immediately inform the Data Controller in writing, including e-mail, if the Data Processor is of the opinion that an instruction of the Data Controller is in violation of, or causes a breach with this Agreement or applicable legislation, including – but not limited to – the UK GDPR.
4.9. Data Controller warrants that it processes the Personal Data used by the Data Processor to render the services in accordance with all applicable data protection laws, including – but not limited to - the UK GDPR.
4.10. Confidentiality relating to UK GDPR
4.10.1. Without prejudice to any existing contractual arrangements between the Parties, the Data Processor warrants that it shall treat all Personal Data as strictly confidential. The Data Processor shall ensure that all persons or parties (employees, agents and other persons involved in the processing of Personal Data) have signed and are bound by an adequate confidentiality agreement and/or are under any other binding obligation of confidentiality.
4.10.2. The Data Processor is not violating this obligation if and when such disclosure is mandatory u...
UK GDPR. Subject matter and duration of the Processing of Personal Data
UK GDPR. The subject matter and duration of the Processing of the Personal Data are set out in the Agreement and this DPA. The Supplier will Process Personal Data as necessary to provide the Services pursuant to the Agreement, and as further instructed by the Customer in its use of the Services. The Customer may submit Personal Data to the Services, the extent of which, is determined and controlled by the Customer in its sole discretion, and which may include, but is not limited to the following types of Personal Data: Personal details Personal details issued as an identifier by a public authority Financial information The Customer may submit Personal Data to the Services, the extent of which is determined and controlled by the Customer in its sole discretion, and which may include, but is not limited to Personal Data relating to the following categories of Data Subjects: Customers (including their staff) Clients (including their staff) Suppliers (including their staff) The obligations and rights of the Customer (and any Customer Affiliates) are set out in the Agreement and this DPA.