Manage Suppliers In Compliance With Data Protection

Data Protection

How Do You Manage Your Suppliers When Processing Order Data?

If a supplier or service provider, i.e. someone who is to provide services in your interest (processor), is commissioned, then an agreement must be concluded here. Certainly nothing new and practice that has been practiced for you for years. But now this also applies to those suppliers who, for example, operate the server for you, do payroll accounting, provide data center services, collect customer data, operate the website, do data backup, etc. You must also have an agreement with them in order to lock data processing.

This agreement deals with the instruction on the exclusive processing of personal data for the purpose of fulfilling the contract.

Be Able To Provide Information

As the person responsible, you should be able to provide the following information to your responsible data protection supervisory authority:

  1. The processor is able to meet all the requirements of the GDPR and the BDSG and he can give guarantees regarding the security of data processing and ensure the necessary technical and organizational measures.
  2. Sub-contractors are only commissioned if additional or generally valid written approval has been granted in advance.
  3. The order data processing agreement (ADV) corresponds to the legal minimum requirements.

Check Supplier Agreements

As a result, you have to re-examine all agreements with your contractors with regard to compliance with data protection and, if necessary, agree on the corresponding ADVs here. Various service providers, for example operators of data center services or cloud solutions, already offer such ADVs themselves. However, it remains your responsibility to check these, adjust them if necessary and then close them.

Also Read: 5 Keys To Know If Your Mobile Has Been Hacked

Leave a Reply

Your email address will not be published. Required fields are marked *

Changing Jobs

Changing Jobs: When Is It Worth It And What Are The Best Reasons?

You Should Ask Yourself These Questions When Changing Jobs I’m sure you know that too: Sometimes you’re just not sure whether the job you’re doing is still the one you want to do. But should you change jobs right away? Or is it perhaps even normal to have doubts from time to time? You could […]

Read More

The Future Of Auditing: How Digitization Is Revolutionizing An Industry

One hears more and more often that auditors will hardly be needed in the future due to digitization. Is that correct? no There is no question that artificial intelligence will radically change the industry – and is already doing so. We explain why you should still consider becoming an auditor. Artificial Intelligence: It’s Getting Serious […]

Read More
Training Measures

Check The Effectiveness Of Training Measures

How Can You Check The Effectiveness Of Information Security Training Measures? Your employee comes back from further training and you, as the managing director, naturally want to know whether it has brought anything. Your employee agrees almost out of reflex. But how can you really measure the long-term effectiveness of training? Monitoring and measuring the […]

Read More