2. The parties agree that the choice of the data subject shall not affect his or her substantive or procedural rights of redress, in accordance with other provisions of national or international law. ☐, the processor must ensure that the persons processing the data are subject to an obligation of trust; Rest Status: We store user passwords in accordance with policies that correspond to industry security practices. We have implemented technologies to ensure that stored data is encrypted at rest. As you may know, this website is operated by the encrypted email provider ProtonMail (and funded in part by the European Union`s Horizon 2020 programme). As part of our efforts to comply with the GDPR, we have made available to all users of the company our own data processing contract for download, verification and signature. c. Even if the data importer is unable to disclose a subcontracting agreement to the data exporter, the parties agree that the data importer, at the request of the data exporter, shall provide the data exporter with all the information reasonably necessary for it under such a subcontracting agreement. Any use of information systems and personal data that does not comply with routines, instructions from the controller or current data protection legislation, as well as security breaches, are treated as a deviation.
The provider (taking into account the nature of the processing and the information available to the seller) will assist the customer in an appropriate manner in the performance of its obligations under data protection legislation with regard to data protection impact assessments and prior consultations, including, where applicable, the customer`s obligations under Articles 35 and 36 of the GDPR, in a) copies of the security documentation or other documents. or provides information describing aspects relevant for verification. s the supplier`s information security program and related security measures; and (b) provide the other information contained in the Agreement, including this DPA. 2. The previous written contract concluded between the data importer and the processor also provides for a third-party clause, provided for in clause 3, in cases where the data subject is unable to assert the right of compensation referred to in clause 6(1) against the data exporter or data importer because they have actually disappeared, if they no longer exist legally or have become insolvent and no successor has taken all the legal obligations of the data exporter or data importer have been contracted contractually or by law. This liability of the subcontractor is limited to its own transformation operations, in accordance with the clauses. (h) make available to data subjects, upon request, a copy of the clauses, with the exception of Annex 2, together with a summary description of the security measures, as well as a copy of any subcontract that is to be concluded in accordance with the clauses, unless the clauses or the contract contain commercial information, in which case it may withdraw such commercial information; 2. The data importer and the processor shall ensure that, at the request of the data exporter and/or the supervisory authority, it subjects its data processing facilities to an examination of the measures referred to in paragraph 1. . .