CIPP-E - European Data Protection Law and Regulation - Section 2.4
Understand the principles of effective and responsible vendor management and know the key requirements for sharing personal data with third parties.
Understand the Article 28 GDPR requirement for a data processing agreement when a controller engages a processor, and the mandatory clauses it must contain. Apply vendor management principles to evaluate third-party risk and ensure data sharing arrangements remain lawful.
data processing agreementArticle 28 GDPRvendor managementthird-party transfers
More in this domain
Back to all European Data Protection Law and Regulation objectives, or the CIPP-E cert hub.
Examworthy is not affiliated with or endorsed by IAPP. Original, blueprint-aligned practice material only.