Data Processing Services
WHY THE NEED FOR A DATA PROCESSOR AGREEMENT?
According to the General Data Protection Regulation (GDPR), data processing made on behalf of others must be regulated by a contract or other legally binding document. As Statistics Denmark performs services that involve processing of our customers’ data, e.g. personal data, we must draw up a so-called data processor agreement by which the customer is the data controller and Statistics Denmark is the data processor.
THE DANISH DATA PROTECTION AGENCY’S STANDARD AGREEMENT
Statistics Denmark uses the Data Protection Agency’s standard template and we use the same agreement for all services where we act as a data processor for our customers.
In addition to the data processor agreement, we also draw up a contract for the individual services.
Statement of assurance
- For resource and security reasons, Statistics Denmark has decided not to be open for inspections by the data controllers. Instead, Statistics Denmark has commissioned an audit report by an external auditing firm to ensure that Statistics Denmark, as a data processor, complies with the General Data Protection Regulation in its capacity of data processor. Upon request, customers with whom we enter a data processor agreement will receive a copy of the audit report.