With the GDPR looming, vendor management is top of everyone’s mind. The first step, of course, is a good contract. To help with that, volunteers from the IAPP’s Privacy Bar Section have worked together to crowdsource a model data processing agreement that is now freely available for IAPP members. This is not legal advice, and you use or modify it at your own risk, but some really good lawyers put time and energy into this as part of a larger effort of writing “Negotiating Data Processing Agreements,” a book edited by Naspers Global Head of Data Privacy Justin Weiss, CIPP/A, CIPP/E, CIPP/US, to be released this fall. Further, if you’d like to add your thoughts on how we might improve the template, we’re soliciting comments for the next 30 days. Email John Clarke, one of our current legal externs from the University of New Hampshire, at firstname.lastname@example.org.
If you want to comment on this post, you need to login.