Where Personal Data relating to an EU Data Subject is transferred outside of the EEA it shall be processed in accordance with the provisions of the Standard Contractual Clauses, unless the processing takes place: (i) in a third country or territory recognised by the EU Commission to have an adequate level of protection; or (ii) by an organisation located in a country which has other legally recognised appropriate safeguards in place, such as the EU-US Privacy Shield or Binding Corporate Rules.
Where Personal Data is transferred from Europe to a country outside of Europe, the parties acknowledge that steps must be taken to ensure that such data transfers comply with European Data Protection Laws. The parties acknowledge that similar obligations can apply for international transfers of Personal Data from a non-European country and shall in good faith take the steps required where necessary under Data Protection Laws to ensure the transfer complies with Data Protection Laws.
Where Personal Data is Processed by SysAid its agents, sub-contractors or employees under or in connection with the Agreement, SysAid shall, and shall procure that its agents, sub-contractors and employees shall:
Where Personal Data relating to a Data Subject are collected from the Data Subject, or, someone other than the Data Subject, by either of the Controllers, the Controller obtaining the Personal Data shall, at the time when Personal Data is obtained, be it from the other Controller, Data Subject or any other party provide the Data Subject with all of the following information:-
Where Personal Data relating to the Customer and its employees, directors and other officers and those of Local Affiliates, End Users and third parties is received by the Supplier from the Customer under or in connection with this Agreement, the Customer warrants and undertakes that such Personal Data has been collected, processed and transferred in accordance with applicable data privacy laws and that the Customer has provided all notices and obtained all consents required by applicable law to enable:
Where Personal Data is Processed by the Operator under or in connection with this agreement, the Operator, as Data Processor, shall:
Where Personal Data is to be exported outside the EEA as part of any processing by or on behalf of the Providers, the Providers must obtain prior written consent from the Owner. Any such consent given by the Owner will be subject to additional requirements in relation to the processing of Personal Data set out in the EU Standard Contract Clauses published by the European Commission.
Where Personal Data is transferred outside the UK due to a request by the Client for LTT to book arrangements for the Client in a location outside the UK, where LTT is not able to put into place any of the safeguards stipulated at 5.2(a)-(f), or they are otherwise inappropriate in the circumstances, LTT shall rely on the derogation under Article 49 of the UK GDPR to legalise the transfer of data outside the UK, on the basis the transfer relates to the performance of a contract for the benefit of the Data Subject.
Where Personal Data relating to an EU Data Subject is transferred outside of the EEA it shall be processed only by entities which:
Where Personal Data will be transferred to a country outside the EU/EEA, the Supplier shall ensure that the subcontractor signs the EU’s standard agreement clauses for transferring Personal Data to a third country.
