Introduction

  1. This agreement regulates the processing of personal data by CULTRIX LIMITED, a company incorporated in England and Wales (registration number 04556716) having its registered office at Kendray Business Centre, Thornton Road, Barnsley, S70 3NA (the "Processor"); on behalf of the customer (the "Controller").
  2. This agreement is an addendum to the Main Contract in which the parties have agreed the terms for the Processor’s delivery of services to the Controller.

Background

  1. The Processor processes Personal Data on behalf of other businesses and organisations.
  2. The Controller processes Personal Data in connection with its business activities.
  3. The Controller wishes to engage the services of the Processor to process personal data on its behalf.
  4. Data Protection Laws provide that, where processing of personal data is carried out by a processor on behalf of a data controller the controller must choose a processor providing sufficient guarantees in respect of the technical security measures and organisational measures governing the processing to be carried out, and must ensure compliance with those measures.
  5. Data Protection laws require that where processing is carried out by a processor on behalf of a controller such processing shall be governed by a contract or legal act binding the processor to the controller stipulating, in particular, that the processor shall act only on instructions from the controller and shall comply with the technical and organisational measures required under the appropriate national law to protect personal data against accidental or unlawful destruction or accidental loss, alternation, unauthorised disclosure or access and against all other unlawful forms of processing;

Agreement