GDPR data processing agreement

Sebastian Kippe's Avatar

Sebastian Kippe

25 May, 2018 12:47 PM


This is a follow-up to

Any company who wishes to be GDPR-compliant, and of whose customers Tender knows the IP address and probably email address, must ensure that Tender is also GDPR-compliant. As a data processor (not a data controller, which is the role you mostly described when people asked about it before), Tender needs to provide/sign a data processing agreement (DPA), which in turn as you state has to sufficiently guarantee that all of Tender's providers and processors are in turn GDPR-compliant.

Obviously, this regulation is nothing short of a total nightmare and the EU is pretty much trying to both regulate companies that aren't even in the EU, as well as pushing European companies to cut ties with foreign companies who cannot comply with GDPR, because they in turn have to have DPAs with all of their processors, which might not cater to EU businesses and/or users, and thus have no interest in being compliant.

However, if Tender wishes to be officially compliant, that means we need a DPA from you.

  1. Support Staff 1 Posted by Courtenay on 29 May, 2018 12:32 AM

    Courtenay's Avatar

    Hey Sebastian, this is coming very soon (it's a holiday weekend in the US). We have a draft but are getting it re-checked as there is some conflicting terms with existing data export provisions.

  2. brandi closed this discussion on 10 Jun, 2018 10:30 PM.

Discussions are closed to public comments.
If you need help with Tender please start a new discussion.

Keyboard shortcuts


? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac