Part 1: CONTROLLER-PROCESSOR CONTRACTS Sample Clauses

Part 1: CONTROLLER-PROCESSOR CONTRACTS. 2.1 For the purposes of this Schedule 5, the terms “data subject”, “personal data breach” and “processing” shall have the meanings given to them in the GDPR. 2.2 ETF shall be the Data Controller of any Personal Data given to the Supplier and to which the Data Protection Legislation applies. To the extent that the Supplier processes Personal Data as part of the provision of Services it shall do so in accordance with this Schedule 5 as a Data Processor. 2.3 Both Parties shall comply with all applicable requirements of the Data Protection Legislation. The provisions relating to data protection in this Agreement are in addition to, and do not relieve, remove or replace, a Party’s obligations under the Data Protection Legislation. 2.4 Part 2 to this Schedule 5 sets out certain information regarding the Supplier's Processing of the Personal Data as required by article 28(3) of the GDPR. ETF may make reasonable amendments to Part 2 by written notice to the Supplier from time to time as ETF reasonably considers necessary to meet those requirements. Nothing in Part 2 of Schedule 5 (including as amended pursuant to this paragraph 2.4) confers any right or imposes any obligation on any party to this Agreement.