SINGAPORE POPULATION | ID NUMBER 101605
• Supplier hosts the Supplier Data
• Supplier is a Sub-processor of Client Information
• Client Information includes Personal Data
• The Sub-processor is located in Singapore
• The Sub-processor is located outside of the EEA
• Where GDPR applies to the End User, the End User must rely on a derogation to transfer Client Information to the Sub-processor who uses further Sub-processors based outside of the EEA in accordance with Article 49 GDPR
• The End User must not provide Personal Data belonging to EEA Data Subjects for sub-processing by this Data Supplier
The Supplier Data that GBG uses to provide Singapore Population is supplied by GBG’s Data Supplier. GBG is obliged under the terms of its agreement with its Data Supplier to ensure that all End Users agree to comply with the following provisions:
1. DEFINITIONS
1.1. In these Additional Terms, the following definitions shall apply, in addition to the definitions set out in the General Terms:
“Permitted Purpose” means verifying or contributing to the verification of the identity only and solely for the End User’s internal business purposes.
2. USE OF THE SUPPLIER DATA
2.1 The End User may only use the Supplier Data for the Permitted Purpose in accordance with these terms.
2.2 The End User acknowledges that the data is provided on an “as is” basis.
3. DATA PROTECTION AND COMPLIANCE WITH RELEVANT LAWS
3.1 The Supplier Data used to provide you with this element of the Service is hosted by the Data Supplier. In order to perform the Services, the Data Supplier shall act as Sub-processor of your Client Information (including any Personal Data supplied) for the sole purpose of delivering this element of the Service. The End User authorises GBG to appoint the Data Supplier as Sub-Processor for the purposes specified in this clause 3.1.
3.2 The Data Supplier is based in Singapore, which is located outside of the EEA. Where GDPR applies to the End User, the End User acknowledges that prior to submitting Client Information to GBG for processing it shall determine, and is solely liable for ensuring that it can rely on a derogation to transfer Client Information to the Sub-processor based outside of the EEA in accordance with Article 49 GDPR.
3.3 The End User warrants that it shall not provide Personal Data belonging to EEA Data Subjects for sub-processing by this Data Supplier.