Data processing agreement

Data processing agreement (DPA) is a legally binding document. It’s signed between two key data processing actors under GDPR – the data controller and the data processor.

It regulates the details of data processing, such as the scope and purpose, as well as the relationship between those actors. In addition, it assigns certain obligations required by the new EU law.

Read more about this topic on the Piwik PRO blog: Check out the 7 elements every DPA should have.


  • PHI and PII

    PHI and PII: How they impact HIPAA compliance and your marketing strategy

    Personally identifiable information (PII) and protected health information (PHI) may seem similar. However, there are critical distinctions between the two. While PII is a catch-all term for any information that can be associated with an individual, PHI applies specifically to HIPAA-covered entities dealing with identifiable patient information. Keeping HIPAA compliant and protecting patient information requires…

  • How can healthcare organizations benefit from using a customer data platform (CDP)

    Like many industries, healthcare has been undergoing significant change and is under immense pressure. Patients expect personalized healthcare experiences, but are increasingly aware of their privacy rights and demand that their data is safe and not misused. Healthcare providers have been seeking ways to connect, scale, and leverage customer data more effectively to meet consumers’…