Key Data Privacy Considerations For Vendor Management

Fox Rothschild LLP

Fox Rothschild LLP

Key takeaways from my recent presentation titled “Service Providers v. Data Processors: What Should Your Agreement Address?”  with Lexology and Exterra.

  • As the “business,” the “buck stops with you” as it relates to liability to the individual regarding processing their data.
  • Between you and your service provider/data processor, you can and should impose liability for tasks that you are engaging them to do for you.
  • To comply with your legal obligations under the General Data Protection Regulation, California Consumer Privacy Act and other data protection laws, be sure to perform due diligence on the vendor and ensure that they can deliver to the standard you need.
  •  When performing the due diligence, cover both information security (How will you protect my data from unauthorized access?) AND privacy (What are you allowed to do with my data?)
  • Enter into a data processing agreement with your vendor. GDPR and CCPA have different requirements but make sure that your concerns are addressed.

[View source.]

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Fox Rothschild LLP | Attorney Advertising

Written by:

Fox Rothschild LLP

Fox Rothschild LLP on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide

This website uses cookies to improve user experience, track anonymous site usage, store authorization tokens and permit sharing on social media networks. By continuing to browse this website you accept the use of cookies. Click here to read more about how we use cookies.