Data Processing Agreements (DPAs) that Embrace Reality

<p>In this episode, Arohi Kashyap tears down the Salesforce Data Processing Addendum (DPA).</p> <p>Companies that deal with private data every day may not see managing data as mission-critical. However, as Kashyap points out, corporate counsel needs to understand and manage data risks.</p> <p>Kashyap uses Salesforce's agreement to illustrate a few important principles:</p> <p>•Roles must defined, particularly as they shift during an engagement,<br /> •Liability should be clear in the event of a plausible data breach, and<br /> •Counsel must understand that not-urgent is not the same as not-important when it comes to data risks.</p> <p>Review the contract here: https://www.salesforce.com/content/dam/web/en_us/www/documents/legal/Agreements/data-processing-addendum.pdf</p>