Processing of Customer Personal Data. 3.1 UKG will:
3.1.1 comply with all applicable Data Protection Laws in the Processing of Customer Personal Data; and
3.1.2 not Process Customer Personal Data other than for the purpose, and in accordance with, the relevant Customer’s instructions as documented in the Agreement and this DPA, unless Processing is required by the Data Protection Laws to which the relevant UKG Processor is subject, in which case UKG to the extent permitted by the Data Protection Laws, will inform Customer of that legal requirement before the Processing of that Customer Personal Data.
3.2 Customer hereby:
3.2.1 instructs UKG (and authorizes UKG to instruct each Subprocessor) to: (a) Process Customer Personal Data; and (b) in particular, transfer Customer Personal Data to any country or territory subject to the provisions of this DPA, in each case as reasonably necessary for the provision of the Services and consistent with the Agreement.
3.2.2 warrants and represents that it is and will at all relevant times remain duly and effectively authorized to give the instructions set out in Section 3.2.1 on behalf of each relevant Customer Affiliate; and
3.2.3 warrants and represents that it has all necessary rights in relation to the Customer Personal Data and/or has collected all necessary consents from Data Subjects to Process Customer Personal Data to the extent required by Applicable Law.
3.3 Schedule 1 to this DPA sets out certain information regarding UKG’s Processing of Customer Personal Data as required by Article 28(3) of the GDPR (and equivalent requirements of other Data Protection Laws).
Processing of Customer Personal Data. 2.1. The Parties acknowledge that:
(a) Crunchy Data acts as a Processor; and
(b) Customer acts as the Controller.
2.2. Crunchy Data shall:
(a) comply with the GDPR in Processing Customer Personal Data; and
(b) not Process Customer Personal Data other than:
(i) on Customer’s instructions (subject always to Paragraph 2.9); and
(ii) as required by applicable laws.
2.3. To the extent permitted by applicable laws, Crunchy Data shall inform Customer of:
(a) any Processing to be carried out under Paragraph 2.2(b)(ii); and
(b) the relevant legal requirements that require it to carry out such Processing, before the relevant Processing of that Customer Personal Data.
2.4. Customer instructs Crunchy Data to Process Customer Personal Data as necessary:
(a) to provide the Services to Customer; and
(b) to perform Crunchy Data’s obligations and exercise Crunchy Data’s rights under the Agreement.
2.5. Annex 1 (Data Processing Details) sets out certain information regarding Crunchy Data’s Processing of Customer Personal Data as required by Article 28(3) of the GDPR.
2.6. Customer may amend Annex 1 (Data Processing Details) on written notice to Crunchy Data from time to time as Customer reasonably considers necessary to meet any applicable requirements of the GDPR.
2.7. Nothing in Annex 1 (Data Processing Details) (including as amended pursuant to Paragraph 2.6) confers any right or imposes any obligation on any party to this Data Processing Addendum.
2.8. Where Crunchy Data receives an instruction from Customer that, in its reasonable opinion, infringes the GDPR, Crunchy Data shall inform Customer.
2.9. Customer acknowledges and agrees that any instructions issued by Customer with regards to the Processing of Customer Personal Data by or on behalf of Crunchy Data pursuant to or in connection with the Agreement:
(a) shall be strictly required for the sole purpose of ensuring compliance with the GDPR; and
(b) shall not relate to the scope of, or otherwise materially change, the Services to be provided by Crunchy Data under the Agreement.
2.10. Notwithstanding anything to the contrary herein, Crunchy Data may terminate the Agreement in its entirety upon written notice to Customer with immediate effect if Crunchy Data considers (in its reasonable discretion) that:
(a) it is unable to adhere to, perform or implement any instructions issued by Customer due to the technical limitations of its systems, equipment and/or facilities; and/or
(b) to adhere to, perform or implement any ...
Processing of Customer Personal Data. 2.1 Processor shall:
2.1.1 comply with all applicable Data Protection Laws in the Processing of Customer Personal Data; and
2.1.2 not Process Customer Personal Data other than on the relevant Customer’s documented instructions.
2.2 The Customer instructs Processor to process Customer Personal Data.
Processing of Customer Personal Data. 2.1 SentinelOne shall:
2.1.1 comply with all applicable Data Protection Laws in the Processing of Customer Personal Data; and
2.1.2 not Process Customer Personal Data other than for the purpose described in Annex 1 to this Addendum, unless Processing is required by Applicable Laws to which the relevant Contracted Processor is subject, in which case SentinelOne or the relevant SentinelOne Affiliate shall to the extent permitted by Applicable Laws inform the Customer of that legal requirement before the relevant Processing of that Personal Data.
2.2 Customer hereby:
2.2.1 instructs SentinelOne (and authorizes SentinelOne to instruct each Subprocessor) to:
2.2.1.1 Process Customer Personal Data; and
2.2.1.2 in particular, transfer Customer Personal Data to any country or territory, as reasonably necessary for the provision of the Solutions and consistent with the Agreement; and
2.2.2 warrants and represents that it is and will at all relevant times remain duly and effectively authorised to give the instruction set out in section 2.2.1 on behalf of each relevant Customer Affiliate.
2.3 Annex 1 to this Addendum sets out certain information regarding the Contracted Processors' Processing of the Customer Personal Data as required by article 28(3) of the GDPR (and, possibly, equivalent requirements of other Data Protection Laws). Customer may make reasonable amendments to Annex 1 by written notice to SentinelOne from time to time as Customer reasonably considers necessary to meet those requirements. Nothing in Annex 1 (including as amended pursuant to this section 2.3) confers any right or imposes any obligation on any party to this Addendum.
Processing of Customer Personal Data. 3.1 JourneyApps and each JourneyApps Affiliate shall:
3.1.1 comply with all applicable Data Protection Laws in the Processing of Customer Personal Data; and
3.1.2 not Process Customer Personal Data other than on the relevant Customer Group Member’s documented instructions, including instructions included in the Principal Agreement as part of the scope of the Services, unless Processing is required by Applicable Laws to which the relevant Contracted Processor is subject, in which case JourneyApps or the relevant JourneyApps Affiliate shall to the extent permitted by Applicable Laws inform the relevant Customer Group Member of that legal requirement before the relevant Processing of that Personal Data.
3.2 Each Customer Group Member:
3.2.1 instructs JourneyApps and each JourneyApps Affiliate (and authorises JourneyApps and each JourneyApps Affiliate to instruct each Subprocessor) to:
3.2.1.1 Process Customer Personal Data; and
3.2.1.2 in particular, transfer Customer Personal Data to any country or territory, as reasonably necessary for the provision of the Services and consistent with the Principal Agreement; and
3.2.2 warrants and represents that it is and will at all relevant times remain duly and effectively authorised to give the instruction set out in section 3.2.1 on behalf of each relevant Customer Affiliate.
3.3 Annexure 1 to this DPA sets out certain information regarding the Contracted Processors’ Processing of the Customer Personal Data as required by article 28(3) of the GDPR (and, possibly, equivalent requirements of other Data Protection Laws). Customer may make reasonable amendments to Annexure 1 by written notice to JourneyApps from time to time as Customer reasonably considers necessary to meet those requirements. Nothing in Annexure 1 (including as amended pursuant to this section 3.3) confers any right or imposes any obligation on any party to this DPA.
Processing of Customer Personal Data. 2.1 During the term of this Agreement Sage warrants and represents that it:
2.1.1 shall comply with the Data Protection Laws applicable to Sage whilst such Customer Personal Data is in Sage’s control;
2.1.2 when acting in the capacity of a Data Processor, shall only Process the Customer Personal Data:
2.1.2.1 as is necessary for the provision of the Program under this Agreement and the performance of Sage’s obligations under this Agreement; or
2.1.2.2 otherwise on your documented instructions.
2.2 Sage agrees to comply with the following provisions with respect to any Customer Personal Data Processed for you in connection with the provision of the Program under this Agreement.
Processing of Customer Personal Data. 3.1 The Customer is the Controller and Hevo and/or Hevo Affiliate are the Processor of Customer Personal Data. To the extent any Customer Identification Data is considered Personal Data, Hevo and/or Hevo Affiliate would be the Controller of such Customer Identification Data, and would Process such data in accordance with Hevo’s privacy policy, which is available at xxx.xxxxxxxx.xxx/xxxxxxx/xxxxxxxxx.
3.2 Each party will comply with its respective obligations under Applicable Laws with respect to processing of Customer Personal Data.
3.3 The Customer acknowledges that the Customer Personal Data may be Processed from a Hevo Affiliate, from time to time, subject to such Hevo Affiliate being bound by all of the obligations applicable to Hevo under this Addendum and Hevo being responsible for the Hevo Affiliate’s obligations under this Addendum.
3.4 The subject-matter of the data processing covered by this Addendum is the provision of the Services and the processing will be carried out for the duration of the Principal Agreement, except insofar as Hevo and/or Hevo Affiliate is required to process such data thereafter, in accordance with its obligations under Applicable Laws. Hevo shall have provided the Customer relevant details of any Hevo Affiliate which acts as a Processor under this Addendum.
3.5 Hevo and each relevant Hevo Affiliate shall:
3.5.1 comply with applicable Data Protection Laws in the Processing of Customer Personal Data; and
3.5.2 not Process Customer Personal Data other than on the Customer’s documented instructions, or as set out in the Principal Agreement or this Addendum or as otherwise notified by the Customer from time to time, unless Processing is required by Applicable Laws to which the Customer is subjected, in which case Hevo and/or Hevo Affiliate shall to the extent permitted by Applicable Laws inform the Customer of that legal requirement before the relevant Processing of that Customer Personal Data.
Processing of Customer Personal Data. 2.1. This DPA shall only apply with respect to Personal Data obtained by Coralogix as a result of Customer’s use of Coralogix’s Services, as described in Annex 1 (Details of Processing of Customer Personal Data) attached hereto. In connection with each Party’s rights and obligations under this Agreement, as between the Parties, Coralogix shall Process Customer Personal Data solely as a data Processor acting on behalf of Customer, and Customer shall be deemed the Controller of such Personal Data.
2.2. Coralogix shall not Process Customer Personal Data other than according to the Customer’s documented reasonable and customary instructions as specified in the Principal Agreement or this DPA, which were specifically and explicitly agreed to by Coralogix, unless such Processing is required by Applicable Laws. The Coralogix shall inform the Customer of such legal requirement before processing unless the law prohibits such action on public interest grounds, provided, however, that such duty to inform Customer shall not constitute a general obligation on Coralogix to interpret or monitor the laws applicable to Customer and any information provided by Coralogix in connection thereto shall not be deemed legal advice.
2.3. Customer instructs Coralogix (and authorizes Coralogix to instruct each Sub Processor) to (i) Process Customer Personal Data to the extent required for the provision of Coralogix’s Services under the Agreement; and, in particular (ii) transfer Customer Personal Data to any country or territory, all as reasonably necessary for the provision of the Services and consistent with Sections 2.1-2.2 above, Section 12 below, and the Principal Agreement, and in accordance with Applicable Laws.
2.4. Furthermore, Customer warrants and represents that it is and will remain duly and effectively authorized to give the instruction set out in Section 2.1 and any additional instructions as provided pursuant to the Agreement and/or in connection with the performance thereof, on behalf of itself and each relevant Customer Affiliate, at all relevant times and at least for as long as the Agreement is in effect and for any additional period during which Coralogix is lawfully processing the Customer Personal Data. In addition, Customer warrants and represents that it has obtained all permissions, consents, authorizations and approvals, including by making all notices, required for it to allow Coralogix to access and process Customer Personal Data as permitted hereunder.
2...
Processing of Customer Personal Data. Where BlueBridge One Processes Customer Personal Data under the terms of the agreement, the following terms shall apply:
Processing of Customer Personal Data. 2.1 Supplier shall:
2.1.1 comply with all applicable Data Protection Laws in the Processing of Customer Personal Data; and
2.1.2 not Process Customer Personal Data other than on the relevant Customer Group Member’s documented instructions unless Processing is required by Applicable Laws to which the relevant Contracted Processor is subject, in which case Supplier shall to the extent permitted by Applicable Laws inform the relevant Customer Group Member of that legal requirement before the relevant Processing of that Personal Data.
