The terms used above and below result from the General Data Protection Regulation and have the following meaning:
1.1 Personal data:
any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
a natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
natural or legal person, public authority, agency or other body who or which processes personal data on behalf of the controller;
1.5 Data subject:
identified or identifiable natural person the processed personal data relate to;
1.6 Processing Agreement:
this Agreement including the Appendixes;
the Agreement as referred to in recital (A) and this Processing Agreement resulting from the Principal Agreement.
You will undertake to process personal data by my order according to the conditions set out in this Processing Agreement. Processing operations will only take place in the context of the Processing Agreement for the achievement of the registration of domain names, SSL certificates, managed services en other services offered by you and for those purposes as laid down in the Principal Agreement with indication of assent.
1.9 Breach in connection with personal data:
a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed ( ‘data breach’);
1.10 Supervisory authority:
an independent public authority responsible for ensuring the compliance with the provisions of the Directive with regard to processing of Personal Data. In the Netherlands this is the Dutch Data Protection Authority [Autoriteit Persoonsgegevens];