Skip to main content

Standard Contractual Clauses

This addendum is part of your existing agreement with us and incorporates the clauses attached to EU Commission Decision 2010/87/EU of 5 February 2010 which are available here (the “SCCs”).

To the extent you provide ART19 with information which is subject to the General Data Protection Regulation or the privacy laws in Switzerland or the UK (together, the “GDPR”):

  1. You hereby authorize ART19 to transfer personal data from the EEA or the UK to any country deemed adequate by the EU Commission or the Swiss or UK government on the basis of appropriate safeguards in accordance with the GDPR or pursuant to SCCs.
  2. In case of a transfer pursuant to the SCCs, these are completed as follows: you are the “data exporter”; ART19 is the “data importer”; the governing law in Clause 9 and Clause 11.3 of the SCCs is the law of the country in which you are established; Appendix 1 and Appendix 2 to the SCCs are Appendix 1 and 2 listed below; and the optional indemnification clause is struck. Where personal data is transferred out of the UK based on the SCCs, the following changes apply: (i) references to EU data protection law are replaced with references to applicable UK data protection law, (ii) references to the EU or Member States are replaced with references to the UK, (iii) references to EU authorities are replaced with references to the competent UK authority, and (iv) references to the Member State governing law in Clause 9 and Clause 11.3 of the SCCs are replaced with references to the law of England and Wales.
  3. In the event that additional, replacement or alternative SCCs are approved by the relevant EEA or UK data protection supervisory authorities, ART19 reserves the right to amend the terms of this addendum by adding to, changing or replacing, the SCCs that form part of it at the date of signature in order to ensure continued compliance with the GDPR. ART19 may do this by providing a link to you, directly or through its website.

APPENDIX 1 – Description of the Processing

  1. Data Subjects: any listeners of your podcasts.
  2. Categories of Personal Data: IP address
  3. Sensitive data: N/A
  4. Processing operations: collection and matching to extract high level geolocation.

APPENDIX 2 – Security Measures

Please see here for a list of security measures taken to safeguard your data.