Lumen portal11/19/2022 Restrict the disclosure and processing of Personal Data to the extent necessary to provide the Services, or as otherwise permitted under the Agreement and this DP Exhibit, or by Customer in writing, and only disclose Personal Data on a need to know basis in connection with the Services to those who have committed themselves to confidentiality, or as required by applicable law Only process Personal Data in accordance with the Customer’s documented instructions, including as set out in the Agreement and this DP Exhibit and ensure that CenturyLink personnel process Personal Data only on such instructions of the Customer, unless processing is required by EU or member state law to which CenturyLink are subject, in which case CenturyLink shall, to the extent permitted by such law, inform Customer of that legal requirement before processing that Personal Data In so far as CenturyLink processes Personal Data on behalf of Customer as a Data Processor, CenturyLink will (and will procure that CenturyLink affiliates will): The subject matter, duration and nature of the processing, the types of Personal Data and applicable Data Subjects are described in the applicable Services Exhibit(s). name, address, email address)to the extent it is Personal Data, which is necessary for CenturyLink’s performance of its obligations under the Agreement and the applicable Services Exhibit(s), or with respect to any Personal Data held for general business purposes.ĬenturyLink and Customer shall each comply at all times with its obligations under Data Protection Laws in respect of any Personal Data processed by it under the Agreement.ĬenturyLink acknowledges that it is a Data Processor on behalf of the Customer for the purposes of providing Services and performing its related obligations (including incident resolution, support or consultancy services). “Services” means the CenturyLink Services to be provided to Customer under the Agreement and the applicable Services Exhibit(s).ĬenturyLink and Customer agree that, Customer is an independent Data Controller with respect to the processing of Personal Data which is necessary for the operation of the Services, and CenturyLink is an independent Data Controller with respect to the processing of billing, utilisation, usage patterns/counts/statistics, traffic data and other Customer account related information (e.g. “Data Protection Laws” means the provisions of applicable laws regulating the use and processing of data relating to persons, as may be defined in such provisions, including a) prior to, the EU Data Protection Directive 95/46/EC, b) after the EU General Data Protection Regulation (Regulation 2016/679) (“GDPR”), c) the Electronic Communications Data Protection Directive 2002/58/EC, the Privacy and Electronic Communications (EC Directive) Regulations 2003 and d) all other applicable laws and regulations relating to processing of personal data. “Data Controller” “Data Processor” “Data Subjects” “Personal Data” and “Personal Data Breach” shall have the meanings ascribed to them in the GDPR. In this DP Exhibit, the following definitions apply: In the event of a conflict between the Agreement, the applicable Services Exhibit(s) and this DP Exhibit, the terms of this DP Exhibit shall control.ĭefinitions. This Data Protection Exhibit (“DP Exhibit”) forms part of the Agreement between Customer and CenturyLink and is applicable to the provision of certain CenturyLink Services.
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |