(A) HubSpot must not transmit European data to a country or recipient that is not recognised as sufficiently protected for personal data (in accordance with current EU data protection legislation), unless HubSpot takes all necessary measures to ensure that the transfer complies with existing EU data protection legislation. These measures may include (without restriction) the transfer of this data to a recipient under an appropriate framework or other legally appropriate transmission mechanism, recognised by the competent authorities or the relevant courts as an appropriate level of protection of personal data, to a recipient who has obtained binding authorisation for company rules, in accordance with EU data protection legislation. , or to a recipient, the standard contractual clauses that are appropriate in any event, in accordance with current EU data protection legislation. 22.214.171.124 the transfer of personal data from the company by a contract subcontractor to a subcontractor or between two branches of a commercial subcontractor, at least where such transmission would be prohibited by data protection legislation (or by the conditions of data transfer agreements put in place to impose restrictions on data protection); (i) that processing services be provided by the subcontractor in accordance with Point 11; 7.1 When the Services are deactivated, all personal data is deleted, unless this requirement does not apply, as current legislation requires DigitalOcean to retain certain or all personal data or for personal data it has archived on protection systems that isolate digitalOcean and protect it from further processing. unless necessary under existing legislation. one. The data exporter agrees that these clauses constitute confidential information of the data importer, as defined in the agreement, and cannot be disclosed to third parties by the data exporter without the prior written consent of the data importer, unless the agreement permits. This does not preclu her disclosure of these clauses to a person concerned, in accordance with paragraph 4, point h), or to a supervisory authority referred to in paragraph 8. 1. The data importer cannot outsource the processing carried out on behalf of the data exporter in accordance with the clauses without the prior written consent of the data exporter. If the data importer signs its obligations under the clauses with the agreement of the data exporter, it does so only through a written agreement with the subcontract, which imposes on the subcontractor the same obligations as those imposed on the data importer under the clauses.