Data Controller, Data Processor, Data Subject, Personal Data and Processing |
has the meanings ascribed to them in the Data Protection Legislation; |
Data Protection Legislation |
(a) prior to 25 May 2018, all applicable data protection and privacy legislation, regulations and guidance including the Data Protection Act 1998 (and from 25 May 2018, Regulation (EU) 2016/679 (the “General Data Protection Regulation” or “GDPR”) and the Privacy and Electronic Communications (EC Directive) regulations and any guidance or codes of practice issued by the information commissioner from time to time (all as amended, updated or re-enacted from time to time); and (b) all applicable laws and regulations relating to the processing of personal data and privacy where the Property Partner and the Accommodation are located. |
EU Privacy Shield |
the EU-US Privacy Shield Framework adopted between the European Union and the United States of America on July 12, 2016. |
Permitted Territory |
the UK and the European Union and any third country which is from time to time the subject of an adequacy decision by the European Commission. |
Privacy Shield Principles |
the privacy shield principles established under the EU Privacy Shield regarding the Processing of Personal Data. |
Standard Contractual Clauses |
the standard contractual clauses for the transfer of personal data from the European Union to processors or controllers (as applicable) established in third countries as set out in the Annex to Commission Decision 2010/87/EU (controller-to-processor transfers) or Decision 2004/915/EC (controller-to-controller transfers). |