Data Processing Agreement (DPA)
This agreement defines the roles, responsibilities and obligations regarding the processing of personal data between the Controller and Deltasys as Processor.
This Agreement is entered into between:
The user registered on tin-check.com, designated as Controller
and
Deltasys – Engenharia e Tecnologias de Informação, Lda, designated as Processor.
Note: This Data Processing Agreement (DPA) forms part of the Universal Terms of service. The Processor will receive Tax Identification Numbers (Personal Data) and process them solely to validate their accuracy, for as long as the service is used.
The Processor hereby accepts and acknowledges its role and agrees to comply with the following obligations:
- Only act on the documented instructions of the Controller.
- Ensure that all personnel processing data are subject to confidentiality obligations.
- Implement appropriate security measures under Article 32 of the GDPR.
- Only engage sub-processors with prior written consent of the Controller.
- Assist the Controller with security, breach notification and data protection impact assessments.
- Delete or return all personal data at the end of the contract upon request.
- Submit to audits and provide all necessary compliance information.
- Inform the Controller immediately if any instruction violates GDPR or EU law.
- Not transfer personal data outside the EU without written authorization.
- Ensure appropriate technical and organizational measures to protect personal data.
Last update: 05-12-2022