Basecamp Data Processing Agreement

The data subject may enforce this clause, clause 4(b) to i), clause 5 (a) to (e) and (g) to (j), clause 6(1) and (2), clause 7, clause 8(2) and clauses 9 to 12. The controller has the right to process the personal data of data subjects on the basis of the following information: 3.2.2. ClickUp only processes the Customer`s Personal Data in accordance with the Customer`s instructions described in point 3.2.1 (including with respect to data transfers) (“Customer Instructions”) unless the applicable global data protection laws to which ClickUp is subject require different processing of the Customer`s personal data by ClickUp, in which case ClickUp will inform the customer (unless: this law prohibits Il ClickUp from doing so for important reasons of public interest). As of October 5, 2020, we have added a Data Processing Addendum (DPA) to our Terms of Use. You will find the DPA, which is linked to clause 7 of the Availability, Security and Data Protection section. This addition will come into effect when the General Data Protection Regulation applies to your use of the basecamp services for the processing of customer data as defined in the DPA. The DPA contains the standard contractual clauses of the European Commission (controllers` subcontractors and controllers) in order to extend the data protection principles, rights and obligations of the GDPR wherever personal data is processed. If you would like to have a signed copy of the DPA for your documents, you can sign a copy online. We offer all customers the same privacy rights and protection, whether they opt for the execution of a DPA.

Article 30 meets similar requirements for data processors. After submitting the appropriate and necessary information, the data subject shall have the right to know, where applicable, the data that the controller has stored in that register. When providing the requested information to the data subject, the controller must also inform the data subject of the regular sources of information in the register, the use of the personal data and the place where they are regularly transmitted. The EU-US Privacy Shield is an agreement between certain European jurisdictions and the United States that, until 16 July 2020, allowed the transfer of personal data from the EU to the United States. Participation in the Privacy Shield program is voluntary. We may use the information you provide in your user profile to populate other databases maintained by us and our service providers.. . . .