Wherever a sub-processor is engaged, a similar information safety obligations during the deal among the controller and processor needs to be imposed over the sub-processor Through agreement or other “organisational actions.”[45] The processor will remain absolutely liable on the controller for performance of the sub-processor’s obligations. Compliance with PCI DSS https://gdprcomplianceserviceinuae.blogspot.com/