GDPR is a legal framework that sets guidelines for collecting and processing personal information from individuals who live in the European Union (EU). Since the Regulation applies regardless of where websites are based, it must be adhered to by all sites that attract European visitors, even if they don't specifically market goods or services to EU residents.
Data processing agreement (DPA) - As you can see, this is a significant change in what is required by law. Still, in practice, you already may have included many of those requirements in your existing contracts as good data privacy practices.
For that reason, many companies decide to insert a DPA into existing contracts with their partners. After all, there's no legal restriction stipulating that a DPA can't be a part of a regular contract between the processor and the controller.
We have created a legal agreement that users and external parties can request from us. In addition, the addendum promises the protection of all personally identifiable information that CallHub collects and stores.
We promise to be transparent about all aspects of the CallHub product and the website regarding privacy, terms, and personal data and support the efforts of ensuring customer protection.
You may also check this link to read more about GDPR implementation at CallHub.