GDPR processor compliance
Assign topic to the user
Answer:
Things are not so simple as you would imagine, among the responsibilities for processors under the EU GDPR the most important are:
To appoint a representative if based outside of the Union;
- ensure certain minimum provisions in contracts with controllers (see Mandatory obligations for data processor contracts);
- Not appoint sub-processors without specific or general authorisation of the controller and to ensure there is a contract with the sub-processor containing certain minimum provisions;
- process personal data on the instructions of the controller unless required to process for other purposes by Union or Member State law ;
- keep a record of processing carried out on behalf of a controller );
- co-operate with the supervisory authorities;
- implement appropriate security measures;
- notify the controller o f any personal data breach without undue delay;
- appoint a data protection officer in certain cases;
- comply with the rules on transfers of personal data outside of the Union (see Transfers outside the Union).
To learn more about the EU GDPR check out our free “EU GDPR Foundations Course“ https://advisera.com/training/eu-gdpr-foundations-course//
Comment as guest or Sign in
Jul 12, 2018