Effective Date: September 21, 2025
1. Introduction This Data Processing Agreement (“Agreement”) is entered into by and between Prish Partners, Inc. dba Partner Partner (“Partner Partner,” “Company,” “we,” “us,” or “our”) and the client (“Controller”) and outlines the terms under which personal data will be processed in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and other relevant privacy regulations.
2. Definitions
- Personal Data: Any information relating to an identified or identifiable individual processed under this Agreement.
- Processing: Any operation performed on Personal Data, including collection, storage, transmission, and deletion.
- Controller: The entity determining the purpose and means of processing Personal Data.
- Processor: Partner Partner, which processes Personal Data on behalf of the Controller.
- Subprocessor: A third party engaged by Partner Partner to assist in processing Personal Data.
3. Scope of Data Processing
- Partner Partner will process Personal Data solely for the purpose of providing its Services, in accordance with the Controller’s instructions.
- Processing activities include data storage, organization, transmission, and related support functions necessary for the performance of the Services.
- Partner Partner shall not process Personal Data for any purpose other than as instructed by the Controller unless required by law.
4. Obligations of Partner Partner as Processor
- Process Personal Data lawfully and in compliance with applicable data protection laws.
- Implement appropriate technical and organizational measures to protect Personal Data against unauthorized access, loss, or alteration.
- Ensure employees and subcontractors with access to Personal Data are bound by confidentiality obligations.
- Cooperate with the Controller in responding to data subject requests and regulatory inquiries.
5. Subprocessing
- Partner Partner may engage third-party subprocessors to assist with processing activities, provided they offer equivalent data protection measures.
- A list of subprocessors will be made available upon request.
- The Controller will be notified of any new subprocessors, and may object to their appointment based on legitimate concerns.
6. Data Subject Rights
- Partner Partner will assist the Controller in fulfilling obligations related to data subject rights, including requests for access, correction, deletion, or portability of Personal Data.
- If Partner Partner receives a data subject request directly, it will promptly inform the Controller unless legally prohibited.
7. Data Security & Breach Notification
- Partner Partner will implement appropriate security measures to prevent unauthorized or unlawful processing, accidental loss, destruction, or damage of Personal Data.
- In the event of a data breach, Partner Partner will notify the Controller without undue delay, providing relevant information about the nature of the breach and mitigation measures taken.
8. Data Retention & Deletion
- Personal Data will be retained only for as long as necessary to fulfill the purposes of processing.
- Upon termination of services, Partner Partner will delete or return Personal Data unless retention is required by law.
9. Liability & Indemnification
- Each party shall be liable for breaches of this Agreement in accordance with applicable laws.
- Partner Partner shall not be liable for any indirect, consequential, or incidental damages arising from data processing activities unless due to gross negligence or willful misconduct.
10. Governing Law
- This Agreement is governed by the laws of Washington. Any disputes shall be resolved through negotiation or, if necessary, through binding arbitration.
11. Contact Us For any questions regarding this Data Processing Agreement, please contact us at:
Email: support@yourpartnerpartner.com
Website: yourpartnerpartner.com