Key Data Privacy Considerations For Vendor Management

Odia Kagan
Fox Rothschild LLP
Contact
LinkedIn
Facebook
X
Send
Embed

Fox Rothschild LLP

Key takeaways from my recent presentation titled “Service Providers v. Data Processors: What Should Your Agreement Address?”  with Lexology and Exterra.

  • As the “business,” the “buck stops with you” as it relates to liability to the individual regarding processing their data.
  • Between you and your service provider/data processor, you can and should impose liability for tasks that you are engaging them to do for you.
  • To comply with your legal obligations under the General Data Protection Regulation, California Consumer Privacy Act and other data protection laws, be sure to perform due diligence on the vendor and ensure that they can deliver to the standard you need.
  •  When performing the due diligence, cover both information security (How will you protect my data from unauthorized access?) AND privacy (What are you allowed to do with my data?)
  • Enter into a data processing agreement with your vendor. GDPR and CCPA have different requirements but make sure that your concerns are addressed.

[View source.]

Send Print Report

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Fox Rothschild LLP | Attorney Advertising

Written by:

Fox Rothschild LLP
Fox Rothschild LLP
Contact
more
less

PUBLISH YOUR CONTENT ON JD SUPRA NOW

  • Increased visibility
  • Actionable analytics
  • Ongoing guidance

Fox Rothschild LLP on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign Up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide