Common use of Obligations Processor Clause in Contracts

Obligations Processor. 3.1. With regard to the processing referred to in Article 1, Processor shall ensure compliance with the conditions laid down, pursuant to the GDPR, for the processing of personal data by Processor in its role. 3.2. Processor shall inform Controller, at its first request and within a reasonable period of time, of the measures taken regarding its obligations under this DPA. 3.3. Processor shall notify Controller if, in its opinion, an instruction from Controller is in breach of relevant privacy laws and regulations. 3.4. Processor shall provide Controller with the necessary cooperation when a data protection impact assessment, or prior consultation of the supervisor, should be necessary in the context of the processing. 3.5. The obligations of Processor arising from this DPA also apply to those who process personal data under the authority of Processor, including but not limited to employees, in the broadest sense of the word. 3.6. The processing takes place under the responsibility of Controller. 3.7. Processor shall only make the personal data available to those employees who need the personal data for the performance of their work or who necessarily need to take note of the personal data in the context of and for the performance of the Agreement, and shall otherwise keep it confidential, except where it is subject to different statutory obligations.