A data processor is an entity that processes personal data on behalf of a controller rather than deciding the overall purpose itself. It matters because outsourced or platform-based processing needs clear role boundaries so responsibility and control do not become confused.
What is Data Processor?
Processors provide services such as hosting, analytics, support, communication, or infrastructure while operating under controller instructions. Their obligations typically include security, confidentiality, and contract-defined handling limits.
What Data Processor Commonly Supports
Common uses include vendor management, cloud contracting, subprocessors governance, and privacy operating models.
Data Processor vs. Data Controller
A processor acts on behalf of another entity. A controller decides the why and how behind the processing.
Frequently Asked Questions
Why is processor status important?
Because processor obligations, contractual controls, and accountability differ from those of a controller.
Can processors choose their own security controls?
Usually yes operationally, but they still need to meet contractual and legal requirements set by the relationship.
