The parties recognize that they are, within the meaning of data protection legislation and at different times, joint managers of the processing and may process personal data on behalf of the other. Appendix 1 defines the scope and duration of treatment by the parties, the types of personal data and the categories of persons involved. A real estate management company manages university residences for the owner, the university. The company enters into lease agreements with students on behalf of the university and chases all rent arrears. She collects the rent and hands it to the university after a commission. Data Protection Statement: A statement provided instead of data collection, which informs the person concerned of the means by which the processing manager will use, transmit and manage his or her data. Companies will be jointly responsible for the personal data processed as part of the draw, as they have both decided on the purpose and means of processing. The company is a common manager of rental information, including rents. It will decide what information it needs from residents to establish and manage leases, but will share this data with the university.
Yes, yes. Individuals can seek redress from common controllers, just like any chief. Each common manager is responsible for all the damage caused by the treatment, unless he can prove that he is in no way responsible for the event that caused the damage. The intermediate regime is not relevant to these purposes. In addition, joint controllers are fully accountable to the supervisory authorities (for example. B.dem ICO) for not respecting their responsibilities. (i) in the event of termination or expiry of the agreement, for any reason; If, as a joint manager, you had to pay compensation to one person but were not fully responsible for the damage, you may be able to recover from another manager or subcontractor the portion of the compensation for which you are responsible. Part 1 processes your data and the applicant`s data in accordance with its privacy policy and the www.onlinescr.co.uk (iii) of the ability to restore timely availability and access to personal data in the event of a physical or technical incident; and 13.2 The responsibilities of the data processor. With respect to the personal data processed in the context of the data processor`s performance of its obligations under this joint documentation contract, the processor is not in a position to access the relevant information, assist the processor and, in any event, provide appropriate assistance at the processor`s expenses to respond to any request from a supervisory authority or a person concerned. compliance with its obligations under data protection legislation with respect to security rules, offences, impact assessments and consultations with supervisory or supervisory authorities; 7.3 For the above purposes, each party ensures that shared personal data is treated only on one of the legal grounds covered by Article 6, paragraph 1, of the RGPD.