RGPD and Subcontracting, what are we talking about and how do we do it?
Oct 7, 2021 | 10:15 AM CEST - 11:00 AM CEST
Oct 7, 2021 | 10:15 AM CEST - 11:00 AM CEST
Description
On January 27, the CNIL reminded us of the importance of supervising subcontracting by pronouncing, for the first time, a sanction against a company and its subcontractor, which had not put in place satisfactory security measures...
But what are we talking about when we talk about "personal data processors"? Is the notion of processor in the light of the RGPD clear to you?
Are you aware that any company, whatever its size and legal structure, must manage its relations with its subcontractors? That it can be held responsible in case of failure of one of them, in accordance with the principle of responsibility provided for by the RGPD?
So how do we manage this risk? What should we do to negotiate "satisfactory security measures"?
On June 4, the European Commission wished to provide clarification and published standard contractual clauses for subcontracting.
These standard clauses establish a European Commission doctrine aimed at facilitating negotiations on personal data protection.
Are you up to speed? Have you integrated these elements in your negotiations with your subcontractors?
This masterclass aims to make these new clauses more accessible and to help you integrate them into your contracts during your future negotiations: regulatory reminders, practical advice and initial feedback.
