Transparency obligations according to Art. 28 EU Data Act
1. Jurisdiction
The web application is hosted on Microsoft Azure, providing a reliable and scalable cloud infrastructure. Only the initial access to atwork’s solution is provided via a one-time link, which is sent by email through the AWS Simple Email Service.
Further details can be found in the table below.
|
Server Name |
Server Location |
Jurisdiction |
|
Microsoft Ireland Operations Limited One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, D18 P521, Ireland |
Zurich, Switzerland |
Switzerland |
|
Amazon Web Services EMEA SARL
|
Frankfurt, Germany |
Germany, applicable European law |
2. Technical, organizational and contractual measures
This annex to the Data Processing Agreement (DPA) outlines the technical and organizational measures (“TOMS”) implemented by atwork ("Processor" or “The data processor”) in compliance with its data protection obligations as a data processor. These measures aim to ensure the security and protection of personal data processed on behalf of ‘Customer’ ("Controller") in accordance with applicable data protection laws, including the Federal Act on Data Protection (FADP) and the General Data Protection Regulation (GDPR). Further, the TOMS support preventing international governmental access to, or transfer of, non-personal data held in the Union, where such access or transfer would conflict with Union law or the national law of the relevant Member State.