Responsibilities of the Controller. 2.1.1 The Controller is responsible to confirm that the processing activities relating to the Personal Data, as specified in the Services Agreement and this DPA, are lawful, fair and transparent in relation to the Data Subjects, as set out in Appendix 1. The Controller is responsible to confirm that Data Subjects are informed of the collection of special categories of personal data or Personality Profiles, whereas Data Subjects must be notified of the Controller, the purpose of the processing and the categories of data recipients (article 14 FADP).
2.1.2 The Controller is responsible to confirm before processing is carried out that the technical and organizational measures of the Processor, as set out in Appendix 2, are appropriate and sufficient to protect the rights of the Data Subject.
2.1.3 The Controller is responsible to comply with any notification and/or registration obligation set forth by the FADP prior to the a transfer of Personal Data.
Responsibilities of the Controller. 1. As between the parties, the Controller is solely responsible for the lawfulness of data processing and ensuring observance of the rights of data subjects. Should third parties assert claims against the Processor related to the processing of data under this Agreement, the Controller will indemnify the Processor against all such claims on first demand.
2. The Controller is responsible for providing data to the Processor on a timely basis in order to perform under the Primary Agreement and is responsible for the quality of Controller-provided data. The Controller must inform the Processor immediately and comprehensively should it discover errors or irregularities concerning data protection laws and regulations or its instructions when auditing the Processor’s work.
3. Upon request, the Controller will provide the Processor the information described in Art. 30(2) GDPR provided that the Processor does not already have such information available.
4. If the Processor is obliged to provide information on the processing of data from the Controller to a government agency or other person, or to cooperate with such bodies in some other way, the Controller is obliged, on first request, to support the Processor in providing such information and/or satisfying other obligations to cooperate.
Responsibilities of the Controller. (a) The Controller confirms that, in respect of the processing to be carried out under this DPA, the technical and organisational measures of the Processor, as set out in Annex 2, are appropriate and sufficient to protect the rights of the data subject.
(b) The Controller confirms that the processing to be carried out under this DPA is lawful according to Art. 6 GDPR and that data subjects were informed sufficiently.
(c) The Controller warrants that all personal data provided to the Processor for its performance of the Services by the Controller has been and shall be processed (including its disclosure to Processor) by the Controller in accordance with GDPR and other applicable data protection laws at all times.
Responsibilities of the Controller. (a) The Controller confirms that, in respect of the processing to be carried out under this DPA, the technical and organizational measures of the Processor, as set out in Annex 2, are appropriate and sufficient to protect the rights of the data subject.
(b) The Controller is responsible for ensuring that the processing activities relating to the personal data, as specified in the Agreement and this DPA, are lawful, fair and transparent in relation to the data subjects, as set out in Annex 1.
(c) The Controller warrants on the date of this Addendum and during the Agreement that all personal data processed by the Processor on behalf of the Controller has been and shall be processed (including its disclosure to Processor) by the Controller in accordance with GDPR and other applicable data protection laws.
Responsibilities of the Controller. 4.1 The CONTROLLER ensures there is a legal basis for the processing of personal data. All processing instructions will be in writing to enable the PROCESSOR and any sub-processors to carry out their duties in accordance with the Data Processing Agreement.
4.2 The CONTROLLER informs the PROCESSOR in a timely manner of changes in the processing that affect the obligations of the PROCESSOR pursuant to current Data Protection Act or other relevant legislation.
4.3 The CONTROLLER is responsible for advising data subjects of the processing carried out in accordance with the agreement and, if required, for obtaining the data subjects’ consent, and for addressing the rights of the data subjects.
Responsibilities of the Controller. On the date of this Schedule and during the term of the Agreement:
(a) The Controller confirms that, in respect of the processing to be carried out under this Schedule, the technical and organisational measures of the Processor, as set out in Annex 2, are appropriate and sufficient to protect the rights of the data subject. The Processor will not be required to change any of those measures unless required to do so by law.
(b) The Controller is responsible for ensuring that the processing activities relating to the personal data, as specified in the Agreement and Annex 1 to this Schedule, are in accordance with Applicable data protection laws and are lawful, fair and transparent in relation to the data subjects. In particular, the Controller shall take all steps necessary, including without limitation, providing appropriate fair processing notices to data subjects and ensuring that there is a lawful basis for the Processor to process the personal data as part of the Services.
(c) The Controller warrants on the date of this Schedule and during the Agreement that all personal data processed by the Processor on behalf of the Controller has been and shall be processed (including its disclosure to Processor) by the Controller in accordance with GDPR and other Applicable data protection laws.
Responsibilities of the Controller. On the date of this Schedule and during the term of the Services Agreement:
(a) The Controller confirms that, in respect of the processing to be carried out under this Schedule, the technical and organisational measures of the Processor, as set out in Annex 2, are appropriate and sufficient to protect the rights of the data subject. The Processor will not be required to change any of those measures unless required to do so by law.
(b) The Controller is responsible for ensuring that the processing activities relating to the personal data, as specified in the Services Agreement and Annex 1 to this Schedule, are in accordance with Applicable Data Protection Laws and are lawful, fair and transparent in relation to the data subjects. In particular, the Controller shall take all steps necessary, including without limitation, providing appropriate fair processing notices to data subjects and ensuring that there is a lawful basis for the Processor to process the personal data as part of the Services or providing all relevant notices to, and obtaining all relevant consents from, data subjects (as the case may be).
(c) The Controller warrants on the date of this Schedule and during the Services Agreement that all personal data processed by the Processor on behalf of the Controller has been and shall be processed (including its disclosure to Processor) by the Controller in accordance with Applicable Data Protection Laws.
Responsibilities of the Controller. 5.1 The Controller is responsible for ensuring that there is at all times a legal basis for the Processing and for formulating correct Instructions taking into account the nature of the Processing so that the Processor and any Sub-Processor can fulfil their assignment(s) under this DPA and Main Agreement where applicable.
5.2 The Controller shall, without undue delay, inform the Processor of any changes to the Processing that affect the Processor's obligations under the Data Protection Legislation.
5.3 The Controller is responsible for informing Data Subjects about the Processing and for safeguarding the rights of Data Subjects under the Data Protection Legislation and for taking any other action that is incumbent on the Controller under the Data Protection Legislation.
