Data Processor-to-Sub-processor Transfers of UK Personal Data Sample Clauses
This clause governs how a data processor may transfer UK personal data to sub-processors. It typically requires the processor to ensure that any sub-processor receiving UK personal data is bound by data protection obligations equivalent to those in the main agreement, and may require prior approval or notification to the data controller before engaging sub-processors. The core function of this clause is to maintain the protection of UK personal data when it is handled by third parties, thereby ensuring compliance with UK data protection laws and mitigating the risk of unauthorized or non-compliant data processing.
Data Processor-to-Sub-processor Transfers of UK Personal Data. Where Customer, as a Data Processor, transfers or directs the transfer of UK Personal Data to Conga, as a Sub-processor, the Parties agree to implement Module Three of the SCCs, with Customer acting as the “Data Exporter” and Conga as the “Data Importer,” along with any necessary modifications and addenda to make the SCCs applicable to transfers of UK Personal Data (including the adoption and incorporation by reference of the UK transfer addendum available at ▇▇▇▇▇://▇▇▇.▇▇▇.▇▇/media/for- organisations/documents/4019483/international-data-transfer-addendum.pdf) (“UK Transfer Addendum”). The information required by Table 1 of the UK Transfer Addendum appears within Attachment A to this DPA. In addition, the contents of Annex I of the SCCs are included within Attachment A, and the contents of Annex II of the SCCs are included within Attachment B. The Parties further agree to the following implementation choices: • Clause 7: The Parties choose not to include the optional docking clause.