To prevent unauthorized persons from having access to data processing systems that process or use personal data: – Mailgun uses providers of data centers and cloud infrastructures. Access to all data centers is strictly controlled. All data centers are equipped with 24x7x365 biometric monitoring and access control systems. In addition, all suppliers are SOC Type II and ISO 27001 certified. – Data centres are equipped with at least one N+1 redundancy for electrical, grid and cooling infrastructures. – In a region, data processing takes place on at least three different Availability Zones. The services are designed to withstand the failure of an Availability Zone without customer disruption. 4. The parties shall not object to a data subject being represented by an association or other entity if the data subject expressly so wishes and if national law so permits. 1. The data subject may enforce this clause, clause 4(b) to i), clause 5(a) to (e) and (g) to (j), clause 6(1) and (2), clause 7, clause 8(2) and clauses 9 to 12 as third party beneficiaries vis-à-vis the data exporter. DATA IMPORTER The data importer is Mailgun Technologies, Inc., a mailgun™ service provider.
4. The data exporter shall draw up a list of sub-processing agreements concluded in accordance with the clauses and notified by the data importer in accordance with point (j) of clause 5, which shall be updated at least once a year. The list shall be available to the data protection supervisory authority of the data exporter. 8. Personal data protection breaches (a) Mailgun will immediately notify the customer as soon as Mailgun becomes aware of a personal data protection breach concerning the customer`s personal data. Taking into account the nature of the processing and the information available, Mailgun makes economically reasonable efforts to provide the customer with sufficient information to enable the customer to fulfil, at the customer`s expense, its obligations to notify or inform supervisory authorities, data subjects and other bodies about such a breach of the protection of personal data; where necessary under EU data protection legislation. 7. Data Subject Requests (a) Mailgun provides specific tools to help customers respond to data subject requests. These include our APIs and interfaces for browsing event data, deleting and retrieving message content. If Mailgun receives directly from data subjects a complaint, request or request (including requests from data subjects to exercise their rights under European data protection law) regarding the customer`s personal data, Mailgun will inform the customer within 14 days of receipt of the complaint, of the application or application. Taking into account the type of processing, Mailgun assists the customer, at the customer`s expense, by appropriate technical and organizational measures, as far as possible, as far as possible, in fulfilling the customer`s obligation to respond to requests to exercise the rights of these data subjects.
. . .