Addendum Processing Data Backup

YADDA AKE CIKA DA WANNAN DPA

1. Wannan DPA ta ƙunshi sassa biyu: babban jikin DPA, da Jadawalin 1, 2, 3, 4, da 5.
2. An riga an sanya hannu kan wannan DPA a madadin OwnBackup.
3. Don kammala wannan DPA, Abokin ciniki dole ne:
   1. Cika Sashen Sunan Abokin Ciniki da Adireshin Abokin Ciniki a shafi na 2.
   2. Kammala bayanin a cikin akwatin sa hannu kuma sa hannu a shafi na 6.
   3. Tabbatar da cewa bayanin da ke kan Jadawalin 3 ("Bayani na Gudanarwa") yana nuna daidai da batutuwa da nau'ikan bayanan da za a sarrafa.
   4. Aika da kammala kuma sanya hannu DPA zuwa OwnBackup a sirri@ownbackup.com.

Bayan karɓar OwnBackup na ingantaccen kammala DPA a wannan adireshin imel, wannan DPA za ta zama abin ɗaure bisa doka.
Sa hannun wannan DPA a shafi na 6 za a yi la'akari da zama sa hannu da yarda da Ma'auni na Kwangilar Kwangila (ciki har da abubuwan da suka shafi su) da kuma UK Addendum, duka an haɗa su a nan ta hanyar tunani.

YADDA WANNAN DPA AKE AIKI

• Idan ƙungiyar Abokin Ciniki da ke sanya hannu kan wannan DPA ƙungiya ce a cikin Yarjejeniyar, wannan DPA ƙari ce kuma ta zama wani ɓangare na Yarjejeniyar. A irin wannan yanayin, ƙungiyar OwnBackup wacce ke cikin Yarjejeniyar tana cikin wannan DPA.
• Idan ƙungiyar Abokin Ciniki da ke sa hannu akan wannan DPA ta aiwatar da Fom ɗin oda tare da OwnBackup ko Alamar sa bisa ga Yarjejeniyar, amma ba ita kanta ƙungiyar ba ce a cikin Yarjejeniyar, wannan DPA ƙari ne ga wancan Form ɗin oda da kuma Samfuran oda na sabuntawa, da OwnBackup. ƙungiyar da ke cikin irin wannan Form ɗin oda, ƙungiya ce ga wannan DPA.
• Idan Abokin Ciniki na Abokin Ciniki da ke sa hannu akan wannan DPA ba su da hannu a cikin Form ɗin oda ko Yarjejeniyar, wannan DPA ba ta da inganci kuma ba ta aiki bisa doka. Irin wannan mahaluƙi ya kamata ya nemi ƙungiyar Abokin ciniki wanda ke cikin Yarjejeniyar ta aiwatar da wannan DPA.
• Idan ƙungiyar Abokin Ciniki da ke sanya hannu kan DPA ba ƙungiya ba ce zuwa Form ɗin oda ko Yarjejeniyar Biyan Kuɗi ta Jagora kai tsaye tare da OwnBackup amma a maimakon haka abokin ciniki ne a kaikaice ta hanyar mai siyar da sabis na OwnBackup mai izini, wannan DPA ba ta da inganci kuma baya ɗaure ta bisa doka. Irin wannan mahaluƙi ya kamata ya tuntuɓi mai siyar da izini don tattaunawa ko ana buƙatar gyara ga yarjejeniyarta da mai siyarwar.
• Idan akwai wani rikici ko rashin daidaituwa tsakanin wannan DPA da duk wata yarjejeniya tsakanin Abokin Ciniki da OwnBackup (ciki har da, ba tare da iyakancewa ba, Yarjejeniyar ko duk wani ƙari na sarrafa bayanai a cikin Yarjejeniyar), sharuɗɗan wannan DPA za su sarrafawa kuma su yi nasara.

Wannan Ƙarin Ƙirƙirar Bayanai, gami da Jadawalin sa da Abubuwan Rataye, ("DPA") ya zama wani ɓangare na Yarjejeniyar Biyan Kuɗi ko wata yarjejeniya ta rubutu ko lantarki tsakanin OwnBackup Inc. ("OwnBackup") da Abokin Ciniki mai suna a sama don siyan sabis na kan layi. daga OwnBackup ("Yarjejeniyar") don rubuta yarjejeniyar ɓangarorin game da sarrafa bayanan sirri. Idan irin wannan ƙungiyar Abokin Ciniki da OwnBackup ba su shiga yarjejeniya ba, to wannan DPA ba ta da wani tasiri kuma ba ta da wani tasiri na doka.
Ƙungiyar Abokin Ciniki mai suna a sama yana shiga cikin wannan DPA don kansa kuma, idan ɗaya daga cikin Ƙungiyoyin sa yana aiki a matsayin Masu Gudanar da Bayanan Keɓaɓɓu, a madadin waɗanda ke da izini. Duk manyan kalmomin da ba a fayyace su a nan ba za su sami ma'anar da aka bayyana a cikin Yarjejeniyar.
A yayin samar da Sabis na SaaS ga Abokin Ciniki a ƙarƙashin Yarjejeniyar, OwnBackup na iya sarrafa Bayanan Keɓaɓɓu a madadin Abokin ciniki. Bangarorin sun yarda da sharuɗɗan da suka biyo baya game da irin wannan Gudanarwa.

BAYANI

• “CCPA” na nufin Dokar Sirri na Abokin Ciniki na California, Cal. Civ. Lambar § 1798.100 et. seq., kamar yadda Dokar Haƙƙin Sirri ta California ta 2020 ta gyara kuma tare da kowane ƙa'idodin aiwatarwa. "Mai kula" yana nufin mahallin da ke ƙayyade dalilai da hanyoyin sarrafa bayanan sirri kuma ana ɗaukar ma'anar "kasuwanci" kamar yadda aka ayyana a cikin CCPA.
• “Abokin ciniki” na nufin mahallin mai suna a sama da Rarrabansa.
• "Dokokin Kariyar Bayanai da Dokokin" na nufin duk dokoki da ka'idoji na Tarayyar Turai da membobinta, Ƙungiyar Tattalin Arziki ta Turai da ƙasashe membobinta, Burtaniya, Switzerland, Amurka, Kanada, New Zealand, da Ostiraliya, da su. ɓangarorin siyasa daban-daban, waɗanda suka dace don Gudanar da Bayanan Keɓaɓɓu. Waɗannan sun haɗa da, amma ba'a iyakance su ba, masu biyowa, gwargwadon abin da aka zartar: GDPR, Dokar Kariyar Bayanai ta Burtaniya, CCPA, Dokar Kariyar Bayanan Masu Amfani da Virginia ("VCDPA"), Dokar Sirri na Colorado da ƙa'idoji masu alaƙa ("CPA). ”), Dokar Sirri na Abokin Ciniki na Utah (“UCPA”), da Dokar Connecticut Game da Keɓaɓɓen Bayanai na Keɓaɓɓu da Kula da Kan layi (“CPDPA”). "Batun Bayanai" yana nufin wanda aka gano ko wanda za'a iya gane shi wanda Bayanan sirri ke da alaƙa da shi kuma ya haɗa da "masu amfani" kamar yadda aka ayyana a Dokokin Kariyar Bayanai da Dokokin. "Turai" na nufin Tarayyar Turai, Ƙungiyar Tattalin Arzikin Turai, Switzerland, da Ƙasar Ingila.
• Ƙarin tanadin da ya dace don canja wurin bayanan sirri daga Turai suna ƙunshe a cikin Jadawalin 5. A cikin yanayin da aka cire Jadawalin 5, Abokin ciniki ya ba da garantin cewa ba zai aiwatar da bayanan Keɓaɓɓun bayanan da ke ƙarƙashin Dokokin Kariyar Bayanai da Dokokin Turai ba.
• "GDPR" na nufin ka'idar (EU) 2016/679 na Majalisar Turai da na Majalisar 27 Afrilu 2016 game da kare lafiyar mutane game da sarrafa bayanan sirri da kuma motsi na irin wannan bayanan, da umarnin sokewa. 95/46/EC (Dokar Kariya ta Gabaɗaya).
• "Rukunin Bada Aiki" yana nufin OwnBackup da Abokan haɗin gwiwar sa da ke tafiyar da bayanan Keɓaɓɓu.
• “Bayanai na Sirri” na nufin duk wani bayani da ya shafi (i) wanda aka gano ko za a iya gane shi da kuma, (ii) wani abu na shari’a da aka gano ko wanda za a iya gane shi (inda irin waɗannan bayanan ke da kariya kamar bayanan sirri, bayanan sirri, ko bayanan da za a iya gane kansu a ƙarƙashin bayanan da suka dace). Dokokin Kariya da Dokokin), inda ga kowane (i) ko (ii), irin waɗannan bayanan shine Bayanan Abokin Ciniki.
• "Sabis na Sarrafa Bayanai na Sirri" na nufin Sabis na SaaS da aka jera a cikin Jadawalin 2, wanda OwnBackup zai iya sarrafa bayanan Keɓaɓɓu.
• “Tsarin aiki” na nufin duk wani aiki ko saitin ayyuka da aka yi akan bayanan Keɓaɓɓu, ko ta hanyar atomatik ko a'a, kamar tarin, rikodi, tsari, tsarawa, ajiya, daidaitawa ko canji, dawowa, shawarwari, amfani, bayyanawa ta hanyar watsawa, yadawa ko akasin haka samarwa, daidaitawa ko haɗuwa, ƙuntatawa, gogewa ko lalata. “Processor” na nufin mahallin da ke sarrafa bayanan sirri a madadin Mai Gudanarwa, gami da yadda ya dace kowane “mai bada sabis” kamar yadda CCPA ta ayyana wannan kalmar.
• "Tsarin Yarjejeniyar Kwangila" na nufin Annex zuwa shawarar aiwatar da Hukumar Tarayyar Turai (EU) 2021/914 don canja wurin bayanan sirri ga masu sarrafawa da aka kafa a cikin ƙasashe na uku bisa ga Doka (EU) 2021/914 na Majalisar Tarayyar Turai da na Majalisar Tarayyar Turai da kuma batun gyare-gyaren da ake buƙata don Switzerland da aka bayyana a cikin Jadawalin 4.
• "Sub-processor" na nufin duk wani Mai sarrafawa ta hanyar OwnBackup, ta memba na OwnBackup Group ko ta wani Sub-processor.
• “Hukumar Kulawa” tana nufin wata hukuma ce ta gwamnati ko wacce ke da ikon doka akan Abokin ciniki.
• "Birtaniya Addendum" na nufin Ƙaddamar da Canja wurin Bayanan Ƙasa ta Ƙasar Ingila zuwa Ƙididdigar Ƙa'idar Kwangilar Hukumar EU (akwai har zuwa 21 ga Maris 2022 a https://ico.org.uk/for-organisations/guideto-data-protection/guide-to ---babban-bayanai-kare-kariyar-gdpr/sassarar-bayanai-da-shiriya/), kammala kamar yadda aka bayyana a Jadawalin 5.
• "Dokar Kariya ta Burtaniya" tana nufin ka'ida ta 2016/679 na Majalisar Tarayyar Turai da na Majalisar game da kare lafiyar mutane game da sarrafa bayanan sirri da kuma jigilar irin waɗannan bayanan kyauta kamar yadda ya zama wani ɓangare na dokar Ingila. da Wales, Scotland da Ireland ta Arewa ta hanyar sashe na 3 na Dokar Tarayyar Turai (Fitarwa) ta 2018, kamar yadda za a iya gyarawa lokaci zuwa lokaci ta Dokokin Kariyar Bayanai da Dokokin Burtaniya

YIN SAMUN DATA

• Iyakar Bangarorin sun yarda cewa wannan DPA za ta yi aiki ne kawai ga Gudanar da bayanan Keɓaɓɓu a cikin Sabis ɗin sarrafa bayanan Keɓaɓɓu.
• Matsayin Jam'iyyun. Bangarorin sun yarda cewa dangane da sarrafa bayanan sirri, Abokin ciniki shine Mai Gudanarwa kuma OwnBackup shine Mai sarrafawa.
• Gudanar da bayanan sirri na OwnBackup. OwnBackup zai ɗauki bayanan Keɓaɓɓun azaman Bayanin Sirri kuma zai aiwatar da bayanan Keɓaɓɓu a madadin kuma kawai bisa ga rubutattun umarnin Abokin ciniki don dalilai masu zuwa: (i) Gudanarwa bisa ga Yarjejeniyar da Dokokin da suka dace; (ii) Gudanarwa da ma'aikatan Abokin ciniki suka fara a cikin amfani da Sabis na SaaS; da (iii) Yin aiki don biyan wasu takaddun bayanai masu ma'ana da Abokin ciniki ya bayar (misali, ta imel) inda irin waɗannan umarnin suka yi daidai da sharuɗɗan Yarjejeniyar.
• Ƙuntatawar sarrafawa. OwnBackup ba zai: (i) "sayar" ko "raba" Bayanan sirri ba, kamar yadda aka bayyana irin waɗannan sharuɗɗan a cikin Dokokin Kariyar Bayanai da Dokokin; (ii) riƙe, amfani, bayyana ko Gudanar da Bayanan sirri don kowane kasuwanci ko wata manufa ban da yin Sabis na SaaS; ko (iii) riƙe, amfani, ko bayyana bayanan Keɓaɓɓu a wajen dangantakar kasuwanci kai tsaye tsakanin Abokin Ciniki da OwnBackup. OwnBackup zai bi ƙaƙƙarfan ƙuntatawa a ƙarƙashin Dokokin Kariya da Dokoki akan haɗa bayanan Keɓaɓɓu tare da bayanan sirri wanda OwnBackup ke karɓa daga, ko a madadin, wani mutum ko mutane, ko kuma OwnBackup yana tattarawa daga kowace hulɗa tsakaninsa da kowane mutum.
• Sanarwa na Umarnin Haramun; Gudanarwa mara izini. OwnBackup zai sanar da Abokin ciniki nan da nan idan, a ra'ayinsa, umarnin abokin ciniki ya keta kowace doka ko ka'ida ta Kariyar bayanai. Abokin ciniki yana riƙe da haƙƙi, kan sanarwa, don ɗaukar matakai masu ma'ana kuma masu dacewa don dakatarwa da gyara amfani da bayanan Keɓaɓɓu mara izini, gami da amfani da bayanan Keɓaɓɓen da ba a ba da izini ba a cikin wannan DPA.
• Cikakkun bayanai na Gudanarwa. Batun Gudanar da Bayanan Keɓaɓɓu ta OwnBackup shine aikin Sabis na SaaS bisa ga Yarjejeniyar. Tsawon lokacin Gudanarwa, yanayi da maƙasudin Gudanarwa, nau'ikan bayanan sirri da nau'ikan Abubuwan da aka sarrafa a ƙarƙashin wannan DPA an ƙara fayyace su a cikin Jadawalin 3 (Bayani na Gudanarwa).
• Ƙimar Tasirin Kariyar Bayanai. Dangane da buƙatar abokin ciniki, OwnBackup zai taimaka wa Abokin ciniki cikin hankali don cika wajibcin Abokin ciniki a ƙarƙashin Dokokin Kariya da Dokokin don aiwatar da ƙimar tasirin kariyar bayanai dangane da amfanin Abokin ciniki na Sabis na SaaS, gwargwadon yadda abokin ciniki ba zai sami damar yin amfani da bayanan da suka dace ba. Irin wannan bayanin yana samuwa ga OwnBackup. OwnBackup zai taimaka wa Abokin ciniki da kyau a cikin haɗin gwiwa ko tuntuɓar tuntuɓar Hukumar Kulawa game da duk irin wannan ƙimar tasirin kariyar bayanai gwargwadon abin da ake buƙata a ƙarƙashin Dokokin Kariyar Bayanai da Dokokin.
• Wajiban Abokin Ciniki Game da Bayanan Keɓaɓɓu. A cikin amfani da Sabis ɗin SaaS, Abokin Ciniki zai bi Dokokin Kariyar Bayanai da Dokokin, gami da duk wani buƙatu masu dacewa don ba da sanarwa zuwa da/ko samun izini daga Abubuwan Bayanai don Gudanarwa ta OwnBackup. Abokin ciniki zai tabbatar da cewa umarninsa don sarrafa bayanan sirri sun bi Dokoki da Dokokin Kariyar Bayanai.
• Abokin ciniki zai kasance shi kaɗai ke da alhakin daidaito, inganci, da halaccin bayanan Keɓaɓɓen mutum da hanyoyin da abokin ciniki ya sami bayanan Keɓaɓɓen. Abokin ciniki zai tabbatar da cewa amfani da Sabis ɗin SaaS ba zai keta haƙƙin kowane Batun Bayanai wanda ya fice daga tallace-tallace, rabawa, ko wasu bayanan bayanan sirri, gwargwadon abin da ya dace. Abokin ciniki ya tabbatar da cewa Bayanan Abokin Ciniki bai ƙunshi kowane bayani wanda ya cancanta azaman bayanan lafiyar mutum wanda aka kare a ƙarƙashin Mataki na L.1111-8 na Kundin Kiwon Lafiyar Jama'a na Faransa

BUKATA GA BAYANIN CUTOMER

• Bukatu daga Abubuwan Bayanai. OwnBackup zai, gwargwadon izinin doka, da sauri sanar da Abokin ciniki idan OwnBackup ya karɓi buƙatu daga Batun Bayanai don aiwatar da haƙƙin samun dama ga Maudu'in Bayanai, haƙƙin gyarawa, haƙƙin hana sarrafawa, haƙƙin gogewa (“haƙƙin mantawa”) , haƙƙin ɗaukar bayanai, haƙƙin ƙin aiwatarwa, ko haƙƙin ƙa'idar yanke shawara na mutum ta atomatik, kowane irin wannan buƙatun shine "Buƙatar Batun Bayanai." Yin la'akari da yanayin Gudanarwa, OwnBackup zai taimaka wa Abokin ciniki ta matakan fasaha da ƙungiyoyi masu dacewa, gwargwadon abin da zai yiwu, don cika alhakin abokin ciniki don amsa buƙatun Batun Bayanai a ƙarƙashin Dokokin Kariyar Bayanai da Dokokin. Bugu da kari, gwargwadon yadda Abokin ciniki, a cikin amfani da Sabis ɗin SaaS, ba shi da ikon magance buƙatun Batun Bayanai, OwnBackup bisa buƙatar abokin ciniki zai yi amfani da yunƙurin kasuwanci mai ma'ana don taimakawa Abokin ciniki wajen amsa irin wannan buƙatun Batun bayanai, ga Har zuwa OwnBackup an ba da izinin yin hakan bisa doka kuma ana buƙatar amsa irin wannan Buƙatun Bayanai a ƙarƙashin Dokokin Kariyar Bayanai da Dokokin. Inda irin wannan taimakon ya zarce iyakar Sabis ɗin SaaS da aka yi kwangila, kuma gwargwadon izinin doka, Abokin ciniki zai ɗauki alhakin duk wani ƙarin farashin da ya taso daga taimakon.
• Bukatu Daga Wasu Bangare Na Uku. Idan OwnBackup ya karɓi buƙatu daga wani ɓangare na uku ban da Maudu'in Bayanai (ciki har da, ba tare da iyakancewa ba, hukumar gwamnati) don Bayanan Abokin Ciniki, OwnBackup zai jagoranci mai buƙatun zuwa Abokin ciniki kuma nan da nan ya sanar da Abokin ciniki buƙatar. Inda doka ba ta ba da izinin OwnBackup don sanar da Abokin ciniki buƙatun ba, OwnBackup kawai zai ba da amsa ga mai neman idan doka ta buƙaci yin hakan kuma zai yi ƙoƙarin yin aiki tare da ƙungiyar da ke nema don taƙaita iyakar buƙatar bayanan Abokin ciniki. .

MUTUM MAI BAYA

• Asiri. OwnBackup zai tabbatar da cewa an sanar da ma'aikatan sa masu aiki da sarrafa bayanan sirri game da sirrin bayanan Keɓaɓɓen, sun sami horon da ya dace game da alhakinsu kuma sun aiwatar da yarjejeniyar sirri a rubuce. OwnBackup zai tabbatar da cewa irin waɗannan wajibai na sirri sun tsira bayan ƙarshen aikin ma'aikata.
• Dogara. OwnBackup zai ɗauki matakai masu ma'ana na kasuwanci don tabbatar da amincin kowane ma'aikacin Ajiyayyen Ma'aikacin da ke Gudanar da Bayanan Keɓaɓɓu.
• Iyakance Samun shiga. OwnBackup zai tabbatar da cewa samun damar OwnBackup zuwa Bayanan Keɓaɓɓen ke iyakance ga ma'aikatan da ke buƙatar irin wannan damar yin Sabis na SaaS daidai da Yarjejeniyar.
• Jami'in Kare Bayanai. Membobin rukunin OwnBackup za su nada jami'in kariyar bayanai inda Dokoki da Dokokin Kariyar Bayanai ke buƙata. Ana iya samun wanda aka nada a sirri@ownbackup.com.

SUB-PROCESSORS

• Nada na Sub-processors. Abokin ciniki yana ba da OwnBackup gabaɗaya izini don nada Sub-processors na ɓangare na uku dangane da Sabis na SaaS, daidai da hanyoyin da aka zayyana.
  a cikin wannan DPA. OwnBackup ko Ƙwararrun Ƙarfafawa na OwnBackup sun shiga yarjejeniya a rubuce tare da kowane Mai sarrafawa wanda ke ƙunshe da wajibcin kariyar bayanai ba ƙasa da kariya fiye da waɗanda ke cikin wannan DPA ba game da
  kare bayanan Abokin ciniki, gwargwadon abin da ya dace da ayyukan da irin wannan Sub-processor ke bayarwa.
• Sub-processors na yanzu da Sanarwa na Sabbin Masu sarrafawa. Jerin Sub-processors na Sabis na SaaS, kamar ranar da aka aiwatar da wannan DPA, an haɗa shi a cikin Jadawalin 1. OwnBackup zai sanar da Abokin ciniki a rubuce na kowane sabon Sub-processor kafin ba da izini irin wannan sabon Sub-processor don sarrafa bayanan sirri.
• Haƙƙin Haƙƙin Haƙƙin Sabbin Masu sarrafawa. Abokin ciniki na iya kin amfani da OwnBackup na sabon Mai sarrafawa ta hanyar sanar da OwnBackup a rubuce cikin kwanaki 30 bayan samun sanarwar da aka kwatanta a cikin sakin layi na baya. Idan Abokin ciniki ya ƙi sabon Sub-processor kamar yadda aka ba da izini a cikin jumlar da ta gabata, OwnBackup zai yi amfani da ƙoƙarce-ƙoƙarce na kasuwanci don samar wa Abokin ciniki canji a cikin Sabis ɗin SaaS ko bayar da shawarar canji ga daidaitawar Abokin ciniki ko amfani da Sabis na SaaS, don guje wa sarrafawa. Na Keɓaɓɓen Bayanan da aka ƙi zuwa sabon Sub-processor ba tare da ɗora wa abokin ciniki nauyi mara dalili ba. Idan OwnBackup ba zai iya samar da irin wannan canji a cikin Sabis na SaaS ba, ko ba da shawarar irin wannan canji ga daidaitawar Abokin ciniki ko amfani da Sabis ɗin SaaS wanda ya gamsar da Abokin ciniki, a cikin madaidaicin lokaci (wanda ba zai wuce kwanaki 30 ba. ), Abokin ciniki na iya dakatar da Form(s) da suka dace ta hanyar ba da sanarwa a rubuce zuwa OwnBackup. A irin wannan yanayin, OwnBackup zai mayar wa Abokin ciniki duk wani kuɗin da aka riga aka biya wanda ya ƙunshi ragowar wa'adin irin wannan Form(s) na waɗannan oda biyo bayan ranar da za ta ƙare, ba tare da sanya hukunci ga irin wannan ƙarewa ga Abokin ciniki ba.
• Alhaki ga Sub-Processors. OwnBackup zai kasance abin dogaro ga ayyuka da tsallake-tsallake na Sub-processors zuwa daidai gwargwado OwnBackup zai kasance abin dogaro idan yin ayyukan kowane Sub-processor kai tsaye a ƙarƙashin sharuɗɗan wannan DPA.

TSARO

• Sarrafa don Kariyar Bayanan Abokin Ciniki. OwnBackup zai kula da matakan da suka dace na jiki, fasaha da tsari don kariya ga tsaro (ciki har da kariya daga sarrafawa mara izini ko ba bisa ka'ida ba da kuma daga lalacewa ko lalacewa ba bisa ka'ida ba, asara ko canji ko lalacewa ba tare da izini ba, ko samun damar shiga, bayanan Abokin ciniki), sirri da Mutuncin Bayanan Abokin Ciniki, gami da Keɓaɓɓen Bayanai, daidai da Jadawalin 4 (Sakon Tsaro na Nasa). OwnBackup ba zai rage cikakken tsaro na Sabis ɗin SaaS a zahiri ba yayin lokacin biyan kuɗi.
• Rahotan Bincike na Sashe na Uku da Takaddun shaida. Bayan rubutaccen buƙatun abokin ciniki a cikin tsaka mai ma'ana, kuma bisa ga wajibcin sirrin da ke cikin Yarjejeniyar, OwnBackup zai samar wa Abokin ciniki kwafin rahoton binciken na OwnBackup na kwanan nan na rahoton duba na SOC 2, da na kowane rahoton duba da takaddun shaida OwnBackup yana samarwa ga abokan ciniki, muddin Abokin ciniki ba mai fafatawa bane na OwnBackup.

SANARWA DA SANARWA DA BAYANIN BAYANIN ABUBUWA

OwnBackup yana kula da tsare-tsare da tsare-tsare na tsaro kuma zai sanar da Abokin ciniki ba tare da bata lokaci ba bayan sanin wani ɓarna ko ɓarna ba bisa ƙa'ida ba, hasara, canji, bayyanawa mara izini, ko samun damar zuwa bayanan Abokin ciniki, gami da bayanan Keɓaɓɓu, wanda aka watsa, adanawa ko aka sarrafa shi ta hanyar. OwnBackup ko Sub-processors wanda OwnBackup ya sani ("Bayanin Abokin Ciniki"). OwnBackup zai yi yunƙuri masu ma'ana don gano musabbabin faruwar irin wannan lamari na Bayanan Abokin ciniki kuma ya ɗauki matakai kamar yadda OwnBackup ya ga ya zama dole da ma'ana don gyara sanadin irin wannan lamari na Bayanan Abokin ciniki gwargwadon yadda gyaran ya kasance cikin ikon OwnBackup. Abubuwan da ke cikin wannan ba za su shafi abubuwan da abokin ciniki ko ma'aikatansa suka haifar ba.

MAYARWA DA GYARA DATA CUSTEM
OwnBackup zai mayar da Bayanan Abokin Ciniki ga Abokin ciniki kuma, gwargwadon izinin da doka ta zartar, ta share bayanan Abokin ciniki daidai da tsari da lokacin da aka kayyade a cikin Yarjejeniyar.

AUDIT

Bayan buƙatar abokin ciniki, kuma dangane da wajibcin sirrin da ke cikin Yarjejeniyar, OwnBackup zai ba da samuwa ga Abokin ciniki (ko abokin ciniki na ɓangare na uku kuma wanda ya sanya hannu kan yarjejeniyar rashin bayyanawa wanda ya yarda da OwnBackup) bayanan da suka dace don nuna ƙimar OwnBackup Group tare da wajibai. wanda aka bayyana a cikin wannan DPA da wajibcin sa a matsayin Mai sarrafawa a ƙarƙashin Dokokin Kariyar Bayanai da Dokokin a cikin nau'i na cikakkun daidaitattun tambayoyin tsaro na OwnBackup, takaddun shaida na ɓangare na uku da rahotannin tantancewa (misali, Cikakkun Tattaunawar Bayanai na Daidaitawa (SIG) da Yarjejeniyar Tsaro ta Cloud Security Alliance Tambayoyin Tambayoyi na Ƙididdigar Ƙaddamarwa (CSA CAIQ), rahoton SOC 2 da taƙaitaccen rahotannin gwajin shiga) da kuma, ga Ma'aikatan Gudanarwa, takaddun shaida na ɓangare na uku da rahoton duba da aka samar da su. Bin duk wata sanarwa ta OwnBackup ga Abokin ciniki na ainihin ko abin da ake zargi ba tare da izini ba na bayanan Keɓaɓɓen, bisa ga imanin abokin ciniki cewa OwnBackup ya saba wa wajibcin kariya na bayanan sirri a ƙarƙashin wannan DPA, ko kuma idan ana buƙatar irin wannan binciken daga Hukumar Kula da Abokin Ciniki, Abokin ciniki. na iya tuntuɓar OwnBackup don neman duba hanyoyin da suka dace da kariyar bayanan Keɓaɓɓu. Duk wani irin wannan binciken za a gudanar da shi daga nesa, in ban da Abokin ciniki da/ko Hukumar Kulawa za ta iya gudanar da bincike a wurin OwnBackup idan Dokokin Kariyar Bayanai da Dokokin sun buƙaci haka. Duk wani irin wannan buƙatun ba zai faru ba fiye da sau ɗaya a shekara, sai dai a cikin wani lamari na ainihi ko abin da ake zargin samun damar shiga bayanan sirri mara izini. Kafin fara kowane duba, Abokin Ciniki da OwnBackup za su yarda da juna akan iyaka, lokaci, da tsawon lokacin binciken. Babu wani yanayi da za a duba na Sub-processor, fiye da sakeview na rahotanni, takaddun shaida da takaddun da Mai sarrafawa ya samar, a ba su izini ba tare da izinin Sub-processor ba.

MASU KYAUTA

• Dangantakar Kwangila. Ƙungiyar Abokin Ciniki da ke sanya hannu kan wannan DPA yana yin haka don kansa kuma, kamar yadda ya dace, a cikin suna da kuma madadin Abokan haɗin gwiwa, don haka kafa DPA daban tsakanin OwnBackup da kowane irin Alamar da ke ƙarƙashin tanade-tanaden Yarjejeniyar, wannan Sashe na 10, da Sashe na 11. XNUMX kasa. Kowane irin Haɗin gwiwar ya yarda ya ɗaure shi da wajibai a ƙarƙashin wannan DPA kuma, gwargwadon abin da ya dace, Yarjejeniyar. Don kauce wa shakku, irin waɗannan Ƙungiyoyin ba kuma ba su zama jam'iyyun Yarjejeniyar ba, kuma ƙungiyoyi ne kawai ga wannan DPA. Duk samun dama da amfani da Sabis na SaaS ta irin waɗannan Ƙungiyoyin dole ne su bi Yarjejeniyar, kuma duk wani keta Yarjejeniyar ta hanyar Abokin Ciniki za a yi la'akari da cin zarafi ta Abokin ciniki.
• Sadarwa. Ƙungiyar Abokin Ciniki da ke sanya hannu kan wannan DPA za ta kasance da alhakin daidaita duk sadarwa tare da OwnBackup a ƙarƙashin wannan DPA kuma za su sami damar yin da karɓar kowace sadarwa dangane da wannan DPA a madadin Abokan haɗin gwiwa.
• Hakkokin Abokin Ciniki. Inda Alamar Abokin Ciniki ta zama ƙungiya ga wannan DPA tare da OwnBackup, to gwargwadon abin da ake buƙata a ƙarƙashin Dokokin Kariyar Bayanai da Dokokin da suka dace za su sami damar yin amfani da haƙƙoƙi da kuma neman magunguna ƙarƙashin wannan DPA, ƙarƙashin waɗannan abubuwan:
• Sai dai inda Dokokin Kariyar Bayanai da Dokokin ke buƙatar Abokin Haɗin gwiwar Abokin Ciniki don aiwatar da hakki ko neman kowane magani ƙarƙashin wannan DPA akan OwnBackup kai tsaye, ƙungiyoyin sun yarda cewa
  • kawai Abokin ciniki wanda ya rattaba hannu kan wannan DPA zai yi amfani da kowane irin wannan haƙƙi ko neman kowane irin wannan magani a madadin Abokin Ciniki, kuma (ii) Abokin ciniki wanda ya sanya hannu kan wannan DPA zai yi amfani da kowane irin wannan haƙƙin ƙarƙashin wannan DPA ba daban ba ga kowane Abokin haɗin gwiwa daban-daban amma a haɗe-haɗe don kanta da duk Ƙungiyoyin sa tare (kamar yadda aka tsara, ga misaliample, a cikin Sashe na 10.3.2 a ƙasa).
  • Ƙungiyar Abokin Ciniki da ke sanya hannu kan wannan DPA, yayin gudanar da binciken izini na hanyoyin da suka dace da kariyar bayanan sirri, za su ɗauki duk matakan da suka dace don iyakance duk wani tasiri akan OwnBackup da Sub-Processors ta hanyar haɗawa, gwargwadon iyawa, da yawa. buƙatun binciken da aka gudanar a madadin kanta da duk masu haɗin gwiwa a cikin bincike guda ɗaya.

IYAKA NA HAKURI

• Matsakaicin da Dokokin Kariya da Ka'idoji suka ba da izini, alhakin kowane bangare da duk wani abin da ke da alaƙa da shi, wanda aka ɗauka tare a cikin jimillar, wanda ya taso daga cikin ko alaƙa da wannan DPA, ko a cikin kwangila, azabtarwa ko kuma ƙarƙashin kowace ka'idar abin alhaki, shine. dangane da juzu'i na "Liability Limit", da kuma irin sauran sassan da suka keɓance ko iyakance abin alhaki, na Yarjejeniyar, da duk wani nuni a cikin irin wannan juzu'i game da alhaki na ƙungiya yana nufin jimlar alhakin wannan ƙungiya da duk masu haɗin gwiwa.

CANJIN CANJIN INGANCI

• A yayin da tsarin canja wuri na yanzu da bangarorin suka dogara da shi don sauƙaƙe canja wurin bayanan sirri zuwa ɗaya ko fiye da ƙasa waɗanda ba su tabbatar da ingantaccen matakin kariya ba a cikin ma'anar Dokokin Kariyar bayanai da ƙa'idodi, an gyara. , ko maye gurbin ɓangarorin za su yi aiki cikin aminci don aiwatar da irin wannan hanyar canja wurin don ba da damar ci gaba da sarrafa bayanan sirri da yarjejeniyar ta tsara. Amfani da irin wannan hanyar canja wuri zai kasance ƙarƙashin cikar kowane ɓangare na duk buƙatun doka don amfani da irin wannan hanyar canja wurin.

Masu sa hannun masu izini na jam'iyyun sun aiwatar da wannan Yarjejeniyar da kyau, gami da duk Jadawalai masu dacewa, Annexes, da Appendices waɗanda aka haɗa a nan.

Abokin ciniki 

• Sa hannu:
• Suna:
• Take:
• Kwanan wata:

Jerin Jadawalin

• Jadawalin 1: Jerin Sub-Processor na Yanzu
• Jadawalin 2: Sabis na SaaS Masu Aiwatar da Gudanar da Bayanai na Keɓaɓɓu
• Jadawali na 3: Cikakkun Bayanan Gudanarwa
• Jadawali na 4: Ikon Tsaro na Ajiyayyen
• Jadawali na 5: Abubuwan da Turai ke bayarwa

Jerin Sub-Processor na Yanzu

Abokin ciniki na iya zaɓar ko dai Amazon Web Sabis ko Microsoft (Azure) da wurin da ake so na Gudanarwa yayin saitin farko na Abokin ciniki na Sabis na SaaS.
Yana aiki ne kawai ga abokan cinikin OAwnBackup Archive waɗanda suka zaɓi turawa a cikin Microsoft (Azure) Cloud.

Sabis ɗin Saas Masu Aiwatar da Ayyukan Gudanar da Bayanan Keɓaɓɓu

• Kasuwancin OwnBackup don Salesforce
• OwnBackup Unlimited don Salesforce
• OwnBackup Governance Plus don Salesforce
• Taskar Ajiyayyen OwnBackup
• Kawo Gudanarwar Maɓalli Naku
• Sandbox Seeding

Cikakkun bayanai na Gudanarwa

Mai fitarwa Data

• Cikakken Sunan Shari'a: Sunan abokin ciniki kamar yadda aka ƙayyade a sama
• Babban Adireshin: Adireshin abokin ciniki kamar yadda aka ƙayyade a sama
• Tuntuɓar: Idan ba haka ba idan wannan zai zama farkon lamba akan asusun Abokin ciniki.
• Tuntuɓi Imel: Idan ba haka ba, wannan zai zama adireshin imel na farko akan asusun Abokin ciniki.

Mai shigo da bayanai

• Cikakken Sunan Shari'aKudin hannun jari OwnBackup Inc.
• Babban Adireshi: 940 Sylvan Ave, Englewood Cliffs, NJ 07632, Amurka
• Tuntuɓar: Jami'in Kere Sirri
• Tuntuɓi Imel: sirri@ownbackup.com

Hali da Manufar Gudanarwa

• OwnBackup zai sarrafa bayanan sirri kamar yadda ya cancanta don aiwatar da Sabis ɗin Saa bisa ga
• Yarjejeniya da Umarni, kuma kamar yadda Abokin ciniki ya ba da umarni a cikin amfani da Sabis na SaaS.

Tsawon Lokaci

OwnBackup zai aiwatar da bayanan sirri na tsawon lokacin yarjejeniyar, sai dai in an yarda a rubuce.

Riƙewa
OwnBackup zai riƙe bayanan Keɓaɓɓu a cikin Sabis na SaaS na tsawon lokacin Yarjejeniyar, sai dai in an yarda da ita a rubuce, dangane da matsakaicin lokacin riƙewa da aka ƙayyade a cikin Takardun.

Yawan Canja wurin
Kamar yadda Abokin ciniki ya ƙaddara ta hanyar amfani da Sabis ɗin SaaS.

Canja wurin zuwa Sub-processors
Kamar yadda ya cancanta don yin Sabis na SaaS bisa ga Yarjejeniyar da Umarni, kuma kamar yadda aka bayyana a cikin Jadawalin 1.

Rukunin Abubuwan Bayanai
Abokin ciniki na iya ƙaddamar da Bayanan Keɓaɓɓu zuwa Sabis na SaaS, gwargwadon abin da Abokin ciniki ya ƙaddara kuma ke sarrafa shi a cikin ikonsa kawai, kuma wanda zai iya haɗawa amma ba'a iyakance ga keɓaɓɓen bayanan da ke da alaƙa da nau'ikan batutuwan bayanai masu zuwa:

• Masu yiwuwa, abokan ciniki, abokan kasuwanci da masu siyar da Abokin ciniki (waɗanda mutane ne na halitta)
• Ma'aikata ko tuntuɓar abokan ciniki, abokan ciniki, abokan kasuwanci da masu siyarwa
• Ma'aikata, wakilai, masu ba da shawara, masu zaman kansu na Abokin ciniki (waɗanda mutane ne na halitta)
• Abokin ciniki ya ba masu amfani da izini daga Abokin ciniki don amfani da Sabis na SaaS

Nau'in Bayanan Mutum
Abokin ciniki na iya ƙaddamar da Bayanan Keɓaɓɓu zuwa Sabis na SaaS, gwargwadon abin da Abokin ciniki ya ƙaddara kuma yana sarrafa shi a cikin ikon sa kawai, kuma wanda zai iya haɗawa amma ba'a iyakance ga waɗannan nau'ikan na gaba ba.

Bayanan sirri:

• Sunan farko da na ƙarshe
• Take
• Matsayi
• Ma'aikaci
• ID data
• Bayanan rayuwa na sana'a
• Bayanin tuntuɓar (kamfanin, imel, waya, adireshin kasuwanci na zahiri)
• Bayanan rayuwa na sirri
• Bayanan yanki

Nau'ikan bayanai na musamman (idan ya dace)
Abokin ciniki na iya ƙaddamar da nau'ikan bayanan sirri na musamman ga Sabis na SaaS, gwargwadon abin da Abokin ciniki ya ƙaddara kuma ke sarrafa shi a cikin ƙwararrun sa, kuma wanda saboda tsabta zai iya haɗawa da sarrafa bayanan kwayoyin halitta, bayanan biometric don manufar musamman. gano wani na halitta ko bayanai game da lafiya. Dubi matakan a Jadawalin 4 don yadda OwnBackup ke kare nau'ikan bayanai na musamman da sauran bayanan sirri.

Gabatarwa

1. OwnBackup software-as-a-service applications (Saabis Sabis) an tsara su daga farkon tare da tsaro a zuciya. Sabis na SaaS an tsara su tare da sarrafa tsaro iri-iri a cikin matakai da yawa don magance kewayon haɗarin tsaro. Waɗannan matakan tsaro na iya canzawa; duk da haka, kowane canje-canje zai kiyaye ko inganta yanayin tsaro gabaɗaya.
2. Bayanin sarrafawar da ke ƙasa ya shafi aiwatar da Sabis na SaaS akan duka Amazon Web Sabis (AWS) da dandamali na Microsoft Azure (Azure) (tare da ake kira da Masu Ba da Sabis ɗinmu na Cloud, ko CSPs), sai dai kamar yadda aka ƙayyade a cikin ɓoyayyen ɓoyayyen da ke ƙasa. Waɗannan kwatancin abubuwan sarrafawa ba su shafi software na RevCult sai dai kamar yadda aka tanadar a ƙarƙashin “Tabbataccen Ci gaban Software” a ƙasa.

Web Sarrafa Tsaro na Aikace-aikace

• Samun damar abokin ciniki zuwa Sabis na SaaS kawai ta hanyar HTTPS (TLS1.2+), yana kafa ɓoyayyen bayanan da ke wucewa tsakanin mai amfani da aikace-aikacen kuma tsakanin OwnBackup da tushen bayanan ɓangare na uku (misali, Salesforce).
• Masu gudanar da Sabis na SaaS na abokin ciniki na iya samarwa da kuma ba da damar masu amfani da Sabis na SaaS da haɗin kai kamar yadda ya cancanta.
• Sabis na SaaS suna ba da ikon sarrafawa na tushen rawar don bawa abokan ciniki damar sarrafa izini na org da yawa.
• Ma'aikatan Sabis na SaaS na abokin ciniki na iya samun damar hanyoyin tantancewa gami da sunan mai amfani, mataki, lokaciamp, da kuma tushen filayen adireshin IP. Ana iya yin rajistar rajistan ayyukan viewed da fitarwa ta mai kula da Sabis na abokin ciniki ya shiga cikin Sabis ɗin SaaS da kuma ta API ɗin Sabis na SaaS.
• Ana iya iyakance damar zuwa Sabis na SaaS ta hanyar adireshin IP na tushen.
• Sabis na SaaS suna ba abokan ciniki damar ba da damar tabbatar da abubuwa da yawa don samun dama ga asusun Sabis na SaaS ta amfani da kalmomin shiga na lokaci ɗaya.
• Sabis na SaaS suna ba abokan ciniki damar kunna sa hannu guda ɗaya ta hanyar masu ba da shaidar SAML 2.0.
• Sabis na SaaS suna ba abokan ciniki damar ba da damar manufofin kalmar sirri da za a iya daidaita su don taimakawa daidaita kalmomin shiga Sabis na Sabis zuwa manufofin kamfanoni.

Rufewa

• OwnBackup yana ba da zaɓuɓɓukan Sabis na SaaS masu zuwa don ɓoye bayanan a sauran:
  • Daidaitaccen bayarwa.
    • An rufaffen bayanai ta amfani da boye-boye-gefen uwar garken AES-256 ta hanyar tsarin sarrafa maɓalli wanda aka inganta a ƙarƙashin FIPS 140-2.
    • Ana amfani da ɓoyayyen ambulan kamar yadda babban maɓalli bai taɓa barin Module Tsaro na Hardware (HSM).
    • Ana juya maɓallan ncryption ba kasa da kowace shekara biyu ba.
  • Zaɓin Gudanar da Maɓalli na Babba (AKM).
    • An rufaffen bayanai a cikin keɓaɓɓen akwati na ma'auni tare da maɓallin ɓoyayyen ɓoyayyen da abokin ciniki ya samar (CMK).
    • AKM yana ba da damar adana maɓalli na gaba da jujjuya shi tare da wani maɓallin ɓoyayyen mahimmin.
    • Abokin ciniki na iya soke babban maɓallan ɓoyewa, wanda ke haifar da rashin isa ga bayanan nan take.
  • Kawo Zaɓin Tsarin Gudanar da Maɓalli naka (KMS) (akwai akan AWS kawai).
    • Ana ƙirƙira maɓallan ɓoyewa a cikin na abokin ciniki, asusun da aka siya daban ta amfani da AWS KMS.
    • Abokin ciniki yana bayyana manufar maɓallin ɓoyewa wanda ke ba da izinin asusun Sabis na abokin ciniki akan AWS don samun damar maɓalli daga AWS KMS na abokin ciniki.
    • An rufaffen bayanai a cikin kwalin ajiyar abu na musamman wanda OwnBackup ke sarrafa, kuma an saita shi don amfani da maɓallin ɓoyewar abokin ciniki.
    • Abokin ciniki na iya soke samun dama ga rufaffen bayanan nan take ta soke samun damar OwnBackup zuwa maɓallin ɓoyewa, ba tare da yin mu'amala da OwnBackup ba.
    • Ma'aikatan OwnBackup ba su da damar yin amfani da maɓallan ɓoyewa a kowane lokaci kuma ba sa samun dama ga KMS kai tsaye.
    • Dukkan ayyukan maɓalli na amfani suna shiga cikin KMS na abokin ciniki, gami da dawo da maɓalli ta wurin ajiyar abu da aka keɓe.
• Rufewa cikin wucewa tsakanin Sabis na SaaS da tushen bayanan ɓangare na uku (misali, Salesforce) yana amfani da HTTPS tare da TLS 1.2+ da OAuth 2.0.

Cibiyar sadarwa

• Sabis na SaaS suna amfani da sarrafawar hanyar sadarwa na CSP don ƙuntata shigar da cibiyar sadarwa.
• Ana amfani da ƙungiyoyin tsaro na jihohi don iyakance shigowar hanyar sadarwa da ficewa zuwa wuraren ƙarshe masu izini.
• Sabis na SaaS suna amfani da tsarin gine-ginen cibiyar sadarwa da yawa, gami da mahara, rarrabuwar hankali ta Amazon Virtual Private Clouds (VPCs) ko Azure Virtual Networks (VNets), ba da damar masu zaman kansu, DMZs, da yankuna marasa amana a cikin kayan aikin CSP.
• A cikin AWS, ana amfani da ƙuntatawa na VPC S3 a kowane yanki don ba da izinin shiga kawai daga VPCs masu izini.

Kulawa da Auditing

• Ana kula da tsarin Sabis na Sabis da cibiyoyin sadarwa don abubuwan tsaro, lafiyar tsarin, rashin daidaituwa na cibiyar sadarwa, da samuwa.
• Sabis na SaaS suna amfani da tsarin gano kutse (IDS) don saka idanu ayyukan cibiyar sadarwa da faɗakar da OwnBackup na halayen da ake tuhuma.
• Ana amfani da Sabis na SaaS web aikace-aikace Firewalls (WAFs) ga duk jama'a web ayyuka.
• Aikace-aikacen rajista na OwnBackup, cibiyar sadarwa, mai amfani, da abubuwan tsarin aiki zuwa uwar garken syslog na gida da takamaiman SIEM na yanki. Ana bincika waɗannan rajistan ayyukan ta atomatik kuma a sake sake suviewed don ayyukan tuhuma da barazana. Duk wani anomalies yana ƙaruwa yadda ya dace.
• OwnBackup yana amfani da bayanan tsaro da tsarin gudanar da taron (SIEM) yana ba da ci gaba da nazarin tsaro na cibiyoyin sadarwa na Sabis na SaaS da yanayin tsaro, faɗakarwar mai amfani da rashin fahimta, umarni da sarrafawa (C&C) binciken harin, gano barazanar atomatik, da bayar da rahoton alamun sasantawa (IOC). ). Ma'aikatan tsaro da ayyuka na OwnBackup ne ke gudanar da duk waɗannan damar.
• Ƙungiyar mayar da martani ta OwnBackup tana sa ido kan security@ownbackup.com alias kuma yana ba da amsa bisa ga Tsarin Ba da Amsa na Kamfanin (IRP) idan ya dace.

Warewa Tsakanin Asusu

• Sabis na SaaS suna amfani da sandboxing na Linux don ware bayanan asusun abokin ciniki yayin aiki. Wannan yana taimakawa wajen tabbatar da cewa duk wani rashin lafiya (misaliample, saboda matsalar tsaro ko kwaro na software) ya kasance a tsare ga asusun OwnBackup guda ɗaya.
• Ana sarrafa samun damar bayanan ɗan haya ta musamman masu amfani da IAM tare da bayanai tagging wanda ke hana masu amfani mara izini shiga bayanan mai haya.

Farfado da Bala'i

• OwnBackup yana amfani da ma'ajin abu na CSP don adana rufaffen bayanan abokin ciniki a cikin yankuna da dama.
• Don bayanan abokin ciniki da aka adana akan ma'ajiyar abu, OwnBackup yana amfani da sigar abu tare da tsufa ta atomatik don tallafawa bin ƙa'idodin dawo da bala'i da OwnBackup. Don waɗannan abubuwan, an tsara tsarin OwnBackup don tallafawa manufar dawo da manufa (RPO) na sa'o'i 0 (wato, ikon dawo da kowane sigar kowane abu kamar yadda ya kasance a cikin kwanakin 14 da suka gabata).
• Duk wani dawo da misalan lissafin da ake buƙata yana cika ta hanyar sake gina misalin bisa tsarin sarrafa sarrafa kansa na OwnBackup.
• An ƙirƙira Tsarin Farfado da Bala'i na OwnBackup don tallafawa manufar lokacin dawowa na awa 4 (RTO).

Gudanar da Rashin Lafiya

• OwnBackup yana yin lokaci-lokaci web Ƙimar raunin aikace-aikacen, ƙididdigar lambar ƙididdiga, da kimantawa na waje mai ƙarfi a matsayin wani ɓangare na ci gaba da shirin sa na sa ido don taimakawa tabbatar da aiwatar da matakan tsaro na aikace-aikacen da kyau da aiki yadda ya kamata.
• A kan tsarin shekara-shekara, OwnBackup yana hayar masu gwajin shiga na ɓangare na uku masu zaman kansu don yin duka hanyar sadarwa da web kimantawa rauni. Iyakar waɗannan binciken na waje sun haɗa da yarda da Buɗewa Web Aikace-aikacen Tsaro Project (OWASP) Manyan 10 Web Rashin lahani (www.owasp.org).
• An shigar da sakamakon kimar rauni cikin tsarin ci gaban software na OwnBackup (SDLC) don gyara lahanin da aka gano. An ba da fifiko na musamman na rashin lahani kuma an shigar da su cikin tsarin tikitin cikin gida na OwnBackup don bin diddigin ƙuduri.

Martanin Lamarin

Idan akwai yuwuwar warware matsalar tsaro, Teamungiyar Ba da Amsa Abin da Ya faru ta OwnBackup za ta yi kimanta halin da ake ciki kuma ta samar da dabarun rage da suka dace. Idan aka tabbatar da yuwuwar cin zarafi, OwnBackup nan da nan zai yi aiki don rage cin zarafi da adana bayanan bincike, kuma zai sanar da abokan hulɗar da abin ya shafa ba tare da bata lokaci ba don taƙaita musu halin da ake ciki tare da samar da sabunta matsayin ƙuduri.

Amintaccen Ci gaban Software

OwnBackup yana amfani da amintattun ayyukan haɓaka don OwnBackup da aikace-aikacen software na RevCult a duk tsawon rayuwar ci gaban software. Waɗannan ayyukan sun haɗa da nazarin lambobin a tsaye, Salesforce security review don aikace-aikacen RevCult da na OwnBackup aikace-aikacen da aka shigar a cikin misalin abokan ciniki' Salesforce, peer review na canje-canje na lamba, ƙuntata samun damar ma'ajin lambar tushe bisa ƙa'idar mafi ƙarancin gata, da shiga ma'ajiyar lambar tushe da canje-canje.

Tawagar Tsaro ta sadaukar

OwnBackup yana da ƙwararrun ƙungiyar tsaro tare da fiye da shekaru 100 na haɗe-haɗe da gogewar tsaro na bayanai masu fuskoki da yawa. Bugu da ƙari, membobin ƙungiyar suna kiyaye takaddun shaida da masana'antu da yawa, gami da amma ba'a iyakance ga CISM, CISSP, da ISO 27001 Jagoran Masu Auditor ba.

Sirri da Kariyar Bayanai
OwnBackup yana ba da tallafi na asali don buƙatun samun damar jigon bayanai, kamar haƙƙin gogewa (damar mantawa) da ɓoyewa, don tallafawa bin ƙa'idodin keɓancewar bayanai, gami da Babban Kariyar Kariyar Bayanai (GDPR), Dokar Kula da Inshorar Lafiya da Lamuni. (HIPAA), da Dokar Sirri na Masu Amfani da California (CCPA). OwnBackup kuma yana ba da ƙarin Ƙaddamar Gudanar da Bayanai don magance keɓantawa da dokokin kariyar bayanai, gami da buƙatun doka don canja wurin bayanai na duniya.

Bayanan Bayani

OwnBackup yana aiwatar da kwamitin bincike na baya, gami da binciken bayanan laifuka, na ma'aikatansa waɗanda za su iya samun damar yin amfani da bayanan abokan ciniki, dangane da hurumin zama na ma'aikaci a cikin shekaru bakwai da suka gabata, ƙarƙashin doka da ta dace.

Inshora

OwnBackup yana kiyaye, aƙalla, ɗaukar hoto mai zuwa: (a) inshorar diyya na ma'aikata daidai da duk wata doka; (b) inshorar abin alhaki na mota don motocin da ba mallakarsu ba da hayar, tare da iyaka guda ɗaya na $1,000,000; (c) Babban abin alhaki na kasuwanci (abin alhaki na jama'a) inshora tare da iyakacin iyaka na $1,000,000 a kowane abin da ya faru da $2,000,000 gabaɗaya ɗaukar hoto; (d) kurakurai da tsallake-tsallake (labaran ƙwararru) inshora tare da iyakacin $20,000,000 a kowane taron da jimillar $20,000,000, gami da firamare na farko da wuce gona da iri, gami da alhaki na cyber, fasaha da sabis na ƙwararru, samfuran fasaha, bayanai da tsaro na cibiyar sadarwa, amsa cin zarafi, tsari. tsaro da hukunce-hukunce, satar yanar gizo da kuma lamunin dawo da bayanai; da (e) inshorar rashin gaskiya/laifi na ma'aikaci tare da ɗaukar nauyin $5,000,000. OwnBackup zai ba wa Abokin ciniki shaidar irin wannan inshora akan buƙata.

Taimakon Turai

Wannan jadawalin zai shafi canja wurin bayanan Keɓaɓɓu ne kawai (gami da canja wuri na gaba) daga Turai wanda, in babu aikace-aikacen waɗannan tanade-tanaden, zai haifar da abokin ciniki ko na Ajiyayyen don keta Dokokin Kariyar Bayanai da Dokokin.

Tsarin Canja wurin don Canja wurin Bayanai.
Ka'idodin Yarjejeniyar Ƙa'idar ta shafi duk wani canja wurin bayanan sirri a ƙarƙashin wannan DPA daga Turai zuwa ƙasashen da ba su tabbatar da ingantaccen matakin kariyar bayanai a cikin ma'anar Dokokin Kariya da Ka'idojin Kariyar bayanai na irin waɗannan yankuna, gwargwadon irin wannan canja wurin. irin su Dokokin Kariya da Ka'idoji. OwnBackup yana shiga cikin Ma'auni na Kwangila a matsayin mai shigo da bayanai. Ƙarin sharuɗɗan a cikin wannan Jadawalin kuma sun shafi irin wannan canja wurin bayanai.

Canje-canje bisa ga Ma'auni na Kwangila.

• Abokan ciniki da Ma'auni na Kwangilar Kwangilar ta rufe. Matsakaicin Ƙa'idodin Yarjejeniyar Yarjejeniya da ƙarin sharuɗɗan da aka kayyade a cikin wannan Jadawalin sun shafi (i) Abokin ciniki, gwargwadon yadda Abokin ciniki ke ƙarƙashin Dokokin Kariyar Bayanai da Dokokin Turai da, (ii) Abokan haɗin gwiwar sa. Don manufar Ma'auni na Kwangilar Kwangila da wannan Jadawalin, irin waɗannan ƙungiyoyi sune "masu fitar da bayanai".
• Modules. Ƙungiyoyin sun yarda cewa inda za a iya amfani da na'urori na zaɓi a cikin Ma'auni na Kwangila, waɗanda kawai za a yi amfani da su "MODULE TWO: Transfer controller to processor" kawai.
• Umarni. Umurnin da aka bayyana a cikin Sashe na 2 na sama ana ɗaukarsu ga umarni daga Abokin ciniki don aiwatar da bayanan Keɓaɓɓu don dalilai na Sashe na 8.1 na Ma'auni na Kwangila.
• Nadin Sabbin Ma'aikata Masu Gudanarwa da Jerin Ma'aikata na Yanzu. Dangane da ZABI 2 zuwa Sashe na 9(a) na Ma'auni na Kwangilar Kwangila, Abokin ciniki ya yarda cewa OwnBackup na iya shigar da sabbin na'urori masu sarrafawa kamar yadda aka bayyana a cikin Sashe na 5.1, 5.b, da 5.c na sama kuma ana iya riƙe Ƙungiyoyin OwnBackup a matsayin Sub-Sub. -Masu sarrafawa, da OwnBackup da OwnBackup's Affiliates na iya haɗa da Ma'aikata na ɓangare na uku dangane da samar da Sabis ɗin sarrafa bayanai. Lissafin Subprocessors na yanzu kamar yadda aka haɗe kamar Jadawalin 1.
• Yarjejeniyar Sub-processor. Bangarorin sun yarda cewa canja wurin bayanai zuwa Sub-processors na iya dogaro da tsarin canja wuri ban da Ma'auni na Kwangila (na misali).ample, daure dokokin kamfani), kuma yarjejeniyar OwnBackup tare da irin waɗannan Sub-processors bazai iya haɗawa ko madubi ƙa'idodin Yarjejeniyar Kwangila ba, duk da wani abu da ya saba wa sashe na 9 (b) na ƙa'idodin Yarjejeniyar. Koyaya, duk irin wannan yarjejeniya tare da Sub-processor zai ƙunshi wajiban kariya na bayanai ba ƙasa da kariya fiye da waɗanda ke cikin wannan DPA ba game da kariyar bayanan Abokin ciniki, gwargwadon ayyukan da irin wannan Sub-processor ke bayarwa. Kwafi na yarjejeniyoyin Sub-processor wanda dole ne OwnBackup ya bayar ga Abokin ciniki bisa ga Sashe na 9(c) na Ma'auni na Kwangilar Kwangila ta OwnBackup kawai bisa rubutaccen buƙatun Abokin ciniki kuma yana iya samun duk bayanan kasuwanci, ko sassan da basu da alaƙa da su. Ƙimar Kwangilar Kwangila ko makamancin su, wanda OwnBackup ya cire a gaba.
• Audits da Takaddun shaida. Bangarorin sun yarda cewa binciken da aka siffanta a Sashe na 8.9 da Sashe na 13(b) na Ma'auni na Kwangila za a yi shi daidai da Sashe na 9 na sama.
• Goge Bayanai. Jam'iyyun sun yarda cewa shafewa ko dawo da bayanan da aka yi la'akari da Sashe na 8.5 ko Sashe na 16(d) na Ma'auni na Ƙa'idar Yarjejeniyar za a yi daidai da Sashe na 8 da ke sama kuma duk wani takaddun shaida na gogewa za a ba da shi ta OwnBackup kawai bisa buƙatar abokin ciniki.
• Masu amfana na ɓangare na uku. Bangarorin sun yarda cewa dangane da yanayin Sabis na SaaS, Abokin ciniki zai ba da duk taimakon da ake buƙata don ba da damar OwnBackup ya cika wajibcin sa ga batutuwan bayanai a ƙarƙashin Sashe na 3 na Madaidaicin Ƙirar Kwangilar.
• Tasirin Tasiri. Dangane da Sashe na 14 na Ma'auni na Ƙa'idar Yarjejeniyar Ƙungiyoyin sun gudanar da bincike, dangane da takamaiman yanayi na canja wuri, na dokoki da ayyuka na ƙasar da aka nufa, da kuma takamaiman ƙarin kwangila, ƙungiya, da fasaha. tsare-tsaren da suka shafi, kuma, bisa ga bayanan da aka sani da su a lokacin, sun ƙaddara cewa dokoki da ayyuka na ƙasar da aka nufa ba su hana ƙungiyoyin cika wajibai na kowane ɓangare a ƙarƙashin ƙa'idodin kwangila
• Doka da Dandalin Gudanarwa. Bangarorin sun yarda, dangane da ZABI 2 zuwa Sashe na 17, cewa idan Ƙungiyar Tarayyar Turai da aka kafa mai fitar da bayanai ba ta ba da izinin haƙƙin masu cin gajiyar ɓangare na uku ba, Standard Contractual Clauses za a gudanar da su ta hanyar dokar Ireland. Dangane da Sashe na 18, kotunan da aka kayyade a cikin Yarjejeniyar za su warware rikice-rikicen da ke da alaƙa da Ma'auni na Yarjejeniyar, sai dai idan irin wannan kotun ba ta kasance a cikin Ƙasar Memba ta EU ba, wanda a cikin wannan yanayin taron na irin wannan takaddama zai zama kotunan Ireland. .
• Annexes. Don dalilai na aiwatar da ƙa'idodin Yarjejeniyar Kwangila, Jadawalin 3: Za a haɗa cikakkun bayanai game da aiwatarwa azaman ANNEX IA da IB, Jadawalin 4: Gudanar da Tsaro na Ajiyayyen (wanda za'a iya sabuntawa daga lokaci zuwa lokaci a https://www.ownbackup.com/trust/) za a haɗa shi azaman ANNEX II, da Jadawalin 1: Jerin Sub-Processor na Yanzu (kamar yadda za'a iya sabuntawa daga lokaci zuwa lokaci a https://www.ownbackup.com/legal/sub-p/) za a haɗa shi azaman ANNEX III.
• Tafsiri. Sharuɗɗan wannan Jadawalin an yi niyya ne don fayyace kuma ba don gyara Madaidaitan Ƙirar Kwangila ba. Idan akwai wani rikici ko rashin daidaituwa tsakanin jikin wannan Jadawalin da Ka'idojin Kwangila, Ma'auni na Kwangila zai yi nasara.

Abubuwan da suka dace don Canja wuri daga Switzerland

Bangarorin sun yarda cewa saboda dalilan da suka dace na Matsakaicin Yarjejeniyar Yarjejeniyar don sauƙaƙe canja wurin bayanan sirri daga Switzerland waɗannan ƙarin tanadi masu zuwa za a yi amfani da su: (i) Duk wani nassoshi ga Doka (EU) 2016/679 za a fassara shi don yin la’akari da tanadin da suka dace. na Dokar Tarayyar Swiss akan Kariyar Bayanai da sauran ka'idodin kariyar bayanai na Switzerland ("Dokokin Kariyar Bayanai"), (ii) Duk wani nassoshi game da "Jihar Memba" ko "Ƙasar Memba ta EU" ko "EU" za a fassara ta zuwa Switzerland , da (iii) Duk wani nassoshi ga Hukumar Kulawa, za a fassara shi don komawa zuwa Kwamishinan Kare Bayanai da Bayanai na Tarayyar Swiss.

Sharuɗɗan da suka dace don Canja wuri daga Ƙasar Ingila

Ƙungiyoyin sun yarda cewa Ƙaddamarwar Burtaniya ta shafi canja wurin bayanan Keɓaɓɓen da ke ƙarƙashin Dokar Kariyar Bayanai ta Burtaniya kuma za a yi la'akari da kammala kamar haka (tare da ƙayyadaddun sharuddan da ba a ayyana a wani wuri ba tare da ma'anar da aka bayyana a cikin UK Addendum):

• Table 1: Jam'iyyun, cikakkun bayanansu, da abokan hulɗarsu sune waɗanda aka bayyana a cikin Jadawalin 3.
• Tebur na 2: "Ƙa'idodin Kwangilar Ƙa'idar Yarjejeniyar EU da aka Amince" za su kasance daidaitattun ƙa'idodin Kwangila kamar yadda aka bayyana a cikin wannan Jadawalin 5.
• Tebur na 3: An kammala annexes I(A), I(B), da II kamar yadda aka tsara a sashe na 2(k) na wannan Jadawali na 5.
• Tebur 4: OwnBackup na iya yin amfani da haƙƙin ƙaddamarwa na zaɓi na farko da aka bayyana a Sashe na 19 na Ƙarin UK.

Takardu / Albarkatu

Addendum Processing Data Backup [pdf] Umarni Ƙarfafa sarrafa bayanai, Ƙarfafa sarrafa bayanai, Ƙara

Magana

• Manual mai amfani