GDPR – Checklist
JESI is considered to be a Processor that engages and integrates with Sub-processors
A natural person or legal entity that processes personal data on behalf of the controller (e.g., a call centre acting on behalf of its client) is considered to be a processor. At times, a processor is also called a third party.
JESI provides cloud-based software that ‘customers’ or ‘controllers’ purchase and as a company JESI has a responsibility to ensure that the security provisions maintained in the SAAS are compliant to the obligations under the GDPR.