What is a sub-processor?
A sub-processor is a third-party data processor engaged by Proofpoint Targeted Attack Protection For Personal Webmail. The sub-processor has or potentially will get access to personal data that Proofpoint Targeted Attack Protection For Personal Webmail processes on behalf of its customers.
Why and how should I assess this?
If you choose to use Proofpoint Targeted Attack Protection For Personal Webmail as a processor, the sub-processors listed will have access to personal data processed on your behalf. When you assess the sub-processors of your vendors, you need to ensure the following:
A signed data processing agreement
You need to have a signed contract in place that commits Proofpoint Targeted Attack Protection For Personal Webmail to only use sub-processors with your permission.
Transfers of data out of Europe
If Proofpoint Targeted Attack Protection For Personal Webmail uses a sub-processor located outside Europe, there must be a legal basis for the transfer.