The Customer agrees that TokenChannel may engagethird parties to process personal data in order to assist TokenChannel to deliver the Services on behalf of the Customer (“Sub-processors”). TokenChannel has or will enter into written agreement with each Sub-processor containing data protection obligations not less protective than those in this DPA to the extent applicable to the nature of the Services provided by such Sub-processor. If the Sub-processor processes the Services outside the EU/EEA, TokenChannel shall ensure that the transfer is made pursuant to European Commission approved standard contractual clauses for the transfer of Personal Data which the Customer authorizes TokenChannel to enter into on its behalf, or that other appropriate legal data transfer mechanisms are used.
The current Sub-processors are outlined in the table below and the Customer agrees and approves that TokenChannel has engaged such Sub-processors to process personal data as set out in the list:
|Third Party Service/ Vendor||Purpose||Website|
|Digital Ocean||Data hosting||https://www.digitalocean.com/legal/gdpr/|
|Google Inc.||Google Cloud Platform||https://cloud.google.com/security/compliance/gdpr/|
|Stripe||Billing and invoicing||https://stripe.com/en-es/guides/general-data-protection-regulation|
|Twilio||Email (Sendgrid) and SMS notifications||https://www.twilio.com/gdpr|