Data Processing Agreement

Information about our Data Processing Agreement (DPA) for controlling and processing personal data.

Last updated: January 2023

A Data Processing Agreement (DPA) is a legally binding contract that outlines the rights and obligations of each party regarding the protection of personal data when one party (the data processor) processes personal data on behalf of the other party (the data controller).

Request a Data Processing Agreement

If you are a business client who requires a Data Processing Agreement with Fides Bridge, please download our standard DPA template below or contact our Data Protection Officer to request a customized agreement.

Contact DPO

Key Components of Our DPA

Our Data Processing Agreement includes the following key components to ensure compliance with data protection laws, including the GDPR:

Subject Matter and Duration

Clearly defines what personal data will be processed, the duration of processing, and the purpose of processing.

Nature and Purpose of Processing

Outlines the specific processing activities that will be carried out and why they are necessary.

Types of Personal Data

Lists the categories of personal data that will be processed, including any special categories of data.

Categories of Data Subjects

Identifies whose personal data will be processed (e.g., employees, customers, users).

Obligations and Rights of the Controller

Specifies what the data controller (you) can expect and what responsibilities they have.

Obligations of the Processor

Details our responsibilities as the data processor, including security measures, confidentiality, and assistance obligations.

Sub-processors

Outlines the conditions under which we may engage other processors and how we ensure their compliance.

International Transfers

Addresses how transfers of personal data outside the EEA or UK will be handled to ensure adequate protection.

Data Subject Rights

Specifies how we will assist you in responding to requests from data subjects exercising their rights.

Data Breach Notification

Details the process for notifying you of any personal data breaches without undue delay.

When is a DPA Required?

A Data Processing Agreement is required in the following scenarios:

  • When you use Fides Bridge to process personal data of EU or UK residents on your behalf
  • When you act as a data controller and Fides Bridge acts as a data processor
  • When you need to demonstrate compliance with GDPR or other data protection regulations
  • When you engage us for services that involve handling employee, candidate, or other personal data

DPA Compliance and Updates

Our Data Processing Agreement is regularly reviewed and updated to ensure compliance with evolving data protection laws and regulations. We also ensure that our sub-processors comply with the same data protection obligations as set out in our DPA with you.

Contact Information

If you have any questions about our Data Processing Agreement or need assistance with executing a DPA, please contact our Data Protection Officer:

Data Protection Officer
Fides Bridge Ltd
123 Privacy Street
London, EC1A 1BB
United Kingdom

Email: dpo@fidesbridge.com
Phone: +44 20 1234 5679

Related policies:

Privacy PolicyData ProtectionGDPR ComplianceData Protection Officer