The Supplier Data used to provide 0547 Canada Mobile Identity Verification and 0552 Canada Mobile Fraud Verification Datasets is supplied by GBG’s supplier, TMT Analysis Limited. GBG is obliged under the terms of its agreement with its Supplier to ensure that all End Users agree to comply with the following licencing provisions. These Additional Terms apply to 0547 Canada Mobile Identity Verification and 0552 Canada Mobile Fraud Verification Datasets. Individual 0547 Canada Mobile Identity Verification and 0552 Canada Mobile Fraud Verification Datasets can be identified by the ID number listed on the End User’s Order Form.

1. DEFINITIONS
1.1. In these Additional Terms, the following definitions shall apply, in addition to the definitions set out in the General Terms and Product Terms:
“End User Data” means any data provided to GBG by the End User for processing in accordance with the terms of the Agreement including where relevant any personal data.
“Permitted Purpose” means the purposes, restrictions and or conditions for use of the Dataset outlined by the Supplier as set out in these Additional Terms below in addition to the Customer User Case set out in the Agreement.

2. USE OF THE DATASET
2.1. The End User shall comply with all applicable Canadian laws.
2.2. The End User obtain the express consent from each data subject, in accordance with all applicable privacy laws, in order to authorise and permit the End User to disclose the End User Data, for the purpose of verifying the identity of the data subject.
2.3. The End User shall maintain a log of data subject consents for all the verification transactions and must provide or otherwise make available, at the request of the Supplier and/or GBG, evidence of such data subject consent, in a form reasonably acceptable for each verification transaction.
2.4. The End User warrants that it will not use the Dataset for any reason outside of the Permitted Purpose.

3. DATA PROTECTION AND COMPLIANCE WITH RELEVANT LAWS
3.1. The Supplier Data used to provide you with this Dataset is hosted by the Supplier’s supplier.
3.2. In order to deliver the Dataset, the Supplier shall receive and process the End User Data in its capacity as an independent controller.
3.3. If the End User is located in the UK or EEA, the Supplier processes the End User Data within the EEA. The EEA is deemed to offer an adequate level of data protection for personal data by the UK Government, therefore the End User Data can be safely transferred to the Supplier without further data export safeguards. If the End User is not located in the UK or EEA, the Supplier processes the End User Data in Singapore. GBG has entered into the Standard Contractual Clauses with the Supplier to ensure safe onward transit of the End User Data.
3.4. In order to deliver the Dataset, the Supplier’s supplier shall receive and process the End User Data as an independent controller appointed by the Supplier.
3.5. The Supplier’s supplier processes the End User Data in Canada.