5.2 For the purposes of agreed objectives 1-2, as noted in point 2.5 of this Agreement, each party ensures that it processes personal data on the basis of one of the following legal bases: 1. Object and intended use of data transmission – This section generally presents the data to be shared, the organizations concerned and how the data should be used. This language must be in accordance with the approval agreement. 9.3 Paragraph 9.2 does not apply to data transfers made by the data developer with respect to common personal data. 2.8 The entity will seek permission, on behalf of the supplier, for the purpose of sending marketing messages. This consent is passed on to the supplier when the shared personal data is transmitted for the supplier`s own records. The Company provides the disclosed personal data listed in item 4 of this agreement only as a listing in point 2.5. As the data manager, the provider retains the responsibility to ensure that all uses of shared personal data comply with applicable data protection and data protection laws and regulations. 2.1 This agreement establishes the framework for the joint exchange of personal data between the parties as those responsible for processing and sets out the principles and procedures to which the parties discharge and the responsibility that the parties owe to each other. Data protection legislation has never prevented you from doing so and the RGPD is no different. However, you must ensure that your data sharing is legal, fair and transparent and that you adhere to other fundamental principles of data protection. Data lists are often shared by data agents, credit reference agencies, political parties and even marketing agencies.
The draft OIC code clearly states: “You are responsible for complying with the laws relating to the data you receive and the data that is shared on your behalf. They must conduct appropriate investigations and audits of the data, including its source and consent. 7.4 Contracting parties agree to provide each other with appropriate and immediate assistance (within 5 working days of a request for assistance) in order to respond to requests for access to persons and to respond to any other requests or complaints from the persons concerned. 3.1 Each party must ensure compliance with existing national data protection legislation at all times during the campaign. 8. Resources and costs associated with data sharing and data management – if any, the agreement can determine which organizations are responsible for the specific costs of data sharing. 9. No data guarantee or connection quality – This section provides protection to the receiving organization, which is committed to making reasonable efforts to promote data quality but does not guarantee specific standards. 2. Contract duration – The length of time the data-sharing agreement is valid is set for this purpose.
The various parties to the data exchange agreement should have the right to terminate their participation with reasonable notice. 4.1 For the purposes of Objectives 1-2 set out in paragraph 2.5 of this Agreement, the following types of personal data may be transmitted between the parties during the campaign: first name, surname, e-mail address, course of interest, expected departure year, nationality, country of residence, level of education, date of birth, telephone number and sources of funding. 3. Data Description – This provides a more accurate description of the data to be shared with the exact fields that are listed in an installation. For reasons of consistency, the list of fields should be consistent with the description of the data that must be disclosed in the written authorization agreement. 11.2 Paragraph 11.1 also applies to possible security breaches that could affect the security of shared personal data.