Personal data processing schedule—controller and processor—intra-group

The following Information Law precedent provides comprehensive and up to date legal information covering:

  • Personal data processing schedule—controller and processor—intra-group

Personal data processing schedule—controller and processor—intra-group

STOP PRESS: On 13 July 2021 the European Data Protection Board published its finalised and updated Guidelines 07/2020 following public consultation. This Precedent will be updated shortly to reflect that development.

Defined terms: In addition to the definitions below, this precedent also uses the defined terms ‘Agreement’, ‘Business Day’, ‘Customer’, ‘party’ / ‘parties’, ‘Services’ and ‘Supplier’, which are not specific to data processing and which it is assumed are separately defined in the relevant agreement. See the drafting notes for further guidance.

The Schedule

    1. 1

      Definitions and interpretation

      1. 1.1

        In this Schedule:

        Adequacy Regulation

        1. means any valid adequacy regulation as referred to in Article 45 of the GDPR;

        Attached Standard Contractual Clauses

        1. means the provisions set out in[ Annex [insert] to ]Appendix 7;

        Binding Corporate Rules

        1. means the binding corporate rules referred to in Appendix 6;

        Controller

        1. has the meaning given in Data Protection Laws;

        Data Protection Impact Assessment

        1. shall be construed in accordance with Data Protection Laws;

        Data Protection Laws

        1. means all applicable laws relating to the processing, privacy, and/or use of Personal Data, as applicable to either party or the Services, including:

          1. (a)

            the GDPR;

          2. (b)

            the Data Protection Act 2018;

          3. (c)

            any laws which implement or supplement any such laws; and

          4. (d)

            any laws which replace, extend, re-enact, consolidate or amend any of the foregoing;

        Data Protection Supervisory Authority

        1. means [any regulator, authority or body responsible by law for administering Data

Popular documents