Supplier Data Processing Agreements
Assign topic to the user
Answer:
In this case you don’t need to have to have a signed DPA nor will Microsoft accept such document, just think of the sheer number of DPAs would need to be signed by Microsoft. Microsoft and similar companies use Terms & Conditions/Product Privacy Statements to make known to the customers what are their (Microsoft) obligations in terms of processing personal data.
In this instance though, is it the obligation of the MSP/reseller to ensure that there are appropriate Terms & Conditions/Product Privacy Statements are in place?
Is the reseller's duty to ensure the products its sells are compliant with the legal requirements including the EU GDPR.
Comment as guest or Sign in
May 12, 2018