Records of Processing Activities. 6.1 The Data Processor shall keep records of all categories of processing activities performed on behalf of the Data Controller. Records of Processing activities shall include at least the following:
(a) the name and contact details of the Data Processor and the Data Controller on whose behalf Processing is performed;
(b) the name of the Data Protection Officer (DPO), if appointed either on a voluntary basis or on a mandatory basis in accordance with the relevant provisions of Regulation;
(c) the categories of Processing carried out on behalf of the Data Controller;
(d) where applicable, transmissions of Personal Data to a third country, including the identification of that third country, and, in the case of transmissions without a decision on adequacy or appropriate safeguards, including company binding regulations, evidence of the fulfillment of the conditions referred to in the second subparagraph of Article 49(1);
(e) a general description of the technical and organizational security measures described in Article 32 (1) of the Regulation.
6.2 The records of Processing activity are kept by the Data Processor in writing and, in any case, in electronic form. The Data Processor has the obligation to keep the relevant records up to date and to add or remove Processing activities and related information, as appropriate.
6.3 The Data Processor shall make the Processing activity file available to the Supervisory Authority upon request.
6.4 The Data Processor shall place the records of Processing activity at the disposal of the concerned Data Controller at the latter's request. The Data Controller reserves the right to request specific explanations from the Data Processor in relation to the content of the records of Processing activity, as well as to propose reasonable modifications and additions to achieve xxxxxx and more effective compliance with all obligations under the Regulation.
Records of Processing Activities. Publisher will maintain all records required by Article 30(2) of the GDPR and, to the extent applicable to the processing of Personal Data on behalf of Customer, make them available to Customer upon request.
Records of Processing Activities. The Supplier shall keep and maintain records of all Processing activities in respect of provision of the Services in accordance with the requirements of Data Protection Law.
Records of Processing Activities. 8.1 You will maintain all records required by the Data Protection Legislation (including Article 30(2) of the GDPR as applicable) and, to the extent applicable to the Processing of Personal Data on our behalf, make them available to us as required.
Records of Processing Activities iManage shall maintain, to the extent and in the manner required by applicable Data Protection Legislation, a record of all categories of Processing activities carried out on behalf of Customer and, to the extent applicable to the Processing of Personal Data on behalf of Customer, make such record available to Customer upon request.
Records of Processing Activities. 4.4.1 The Processor shall maintain a record of the processing of personal data, provided that the following conditions are met:
a) The Processor has more than 250 employees;
b) The processing of personal data by the Processor is likely to result in a risk to the rights and freedoms of data subjects;
c) The processing is not occasional
d) The processing includes special categories of personal data; or
e) The processing relates to criminal convictions and offences.
4.4.2 The record must include the following information:
a) Categories of processing carried out on behalf of the Controller.
b) Processors' employees who process the personal data.
c) If relevant, Sub-Processors (as defined in clause 6) and their employees who process the personal data.
d) A general description of technical and organisational measures in connection with the processing.
e) If relevant, specification of third countries or international organisations to which the personal data are transferred as well as documentation for appropriate safeguards.
f) Contact details of the Processor's and Sub-Processor's contact person or data processing adviser (if appointed).
4.4.3 Upon request, the Processor shall make the records available to the Controller or any relevant supervisory authority within reasonable time.
Records of Processing Activities. Pursuant to Art. 30(2) GDPR, Shiji will maintain the Records of Processing Activities. Client may request this Record in writing and Shiji will make the Records available within five (5) business days after the receipt of the request, unless special circumstances apply (e.g. regulatory audit).
Records of Processing Activities. Supplier will maintain an up-to-date record of the details of the Supplier’s representative and data protection officer, categories of Processing activities performed, information regarding cross-border data transfer, a general description of the security measures implemented in respect of the Processed data, the name, contact and Processing details of each Sub- processor of Seagate Personal Information, and, where applicable, any Sub- processors’ representative and data protection officer. Upon request, Supplier will provide an historical and current copy of this record to Seagate.
Records of Processing Activities. 6.4.1 The Processor shall maintain a record of the processing of Personal data.
6.4.2 The record must include the following information:
a) Categories of processing carried out on behalf of the Controller.
b) Processors' employees who process the Personal data.
c) If relevant, Sub-Processors who process the Personal data.
d) A general description of technical and organisational measures in connection with the processing.
e) If relevant, specification of third countries or international organisations to which the personal data are transferred as well as documentation for appropriate safeguards.
f) Contact details of the Processor's and Sub-Processor's contact person or Data pro- cessing adviser (if appointed).
6.4.3 Upon request, the Processor shall make the records available to the Controller or any rele- vant supervisory authority within reasonable time.
Records of Processing Activities. Publisher will maintain all records required by Article
