������Ƶ

1. Parties: Identification of the data fiduciary (data controller) and data processor, including their registered addresses and company details

2. Background: Context of the addendum, reference to the main agreement, and purpose of data processing relationship

3. Definitions: Definitions of key terms including personal data, sensitive personal data, processing, data principal, data breach, etc., aligned with DPDP Act 2023

4. Scope and Purpose of Processing: Detailed description of the data processing activities, categories of data, and purposes of processing

5. Data Protection Obligations: Core obligations regarding data protection, security measures, confidentiality, and compliance with applicable laws

6. Data Principal Rights: Procedures for handling data principal (data subject) requests and ensuring their rights under DPDP Act

7. Data Security: Security measures, standards, and protocols to be implemented for data protection

8. Data Breach Notification: Procedures for identifying, reporting, and managing data breaches

9. Cross-border Data Transfers: Rules and requirements for international data transfers, including necessary safeguards

10. Sub-processing: Conditions and requirements for engaging sub-processors

11. Audit Rights: Rights and procedures for conducting audits and assessments of data protection compliance

12. Term and Termination: Duration of the DPA and circumstances for termination

13. Return or Deletion of Data: Obligations regarding data handling upon termination of the agreement

14. Liability and Indemnification: Allocation of liability and indemnification obligations for data protection breaches

15. Governing Law and Jurisdiction: Specification of Indian law as governing law and jurisdiction for disputes

1. Description of Processing Activities: Detailed description of data processing activities, including data types, purposes, and processing operations

2. Technical and Organizational Measures: Detailed security measures and controls implemented for data protection

3. Approved Sub-processors: List of approved sub-processors and their processing activities

4. Data Transfer Mechanisms: Details of mechanisms used for international data transfers

5. Security Breach Response Plan: Detailed procedures and protocols for responding to data breaches

6. Compliance Checklist: Checklist of compliance requirements under DPDP Act and other applicable regulations