Data Sharing Agreement

Parties:

  • CM Network Ltd, a company registered in United Kingdom, having its registered office at Unit 3, Ambrose House, Meteor Court, Barnett Way, Barnwood, Gloucester, Glos, England, GL4 3GG (“CMN”).

     

  • Purchasing Organisation, a company/charity registered in the United Kingdom, with its registered office noted on the signed order form. (“Customer”).
     

1. Purpose of Sharing

1.1 CMN and the Customer agree to share personal data for the purpose of providing access to the PushFar coaching and mentoring platform and facilitating reporting and oversight for the Customer’s users.

1.2 Each party is a separate and independent data controller for the personal data it processes.

2. Data Being Shared

2.1 The following types of personal data may be shared:

  • Full name

     

  • Email address

     

  • Organisation / Job title (if provided)

     

  • Platform usage and reporting metrics

     

2.2 No special category data will be shared under this Agreement.

3. Roles & Responsibilities

3.1 Each party shall comply with its obligations under applicable data protection laws, including the UK GDPR.

3.2 CMN shall:

  • Act as the platform administrator and manage user accounts

     

  • Provide data insights and reports back to the Customer

     

  • Ensure a Data Processing Agreement is in place with PushFar, the platform provider

     

3.3 The Customer shall:

  • Provide accurate and up-to-date user information

     

  • Ensure its staff are informed that their data is shared with CMN for access to the platform

     

  • Not attempt to access or process user data directly via PushFar

     

4. Data Security

4.1 Each party shall implement appropriate technical and organisational measures to safeguard personal data.

4.2 CMN confirms that appropriate security measures are also in place with PushFar, including a Data Processing Agreement.

5. Data Subject Rights

5.1 Each party is responsible for handling data subject rights requests related to the data it controls.

5.2 Where a request is misdirected, the receiving party shall promptly forward the request to the appropriate controller.

6. Data Retention

6.1 CMN will retain personal data for as long as necessary to provide access and reporting services, or as required by law.

6.2 Upon request or termination of access, CMN will anonymise or delete Customer user data within a reasonable timeframe.

7. International Transfers

7.1 Where applicable, CMN shall ensure that any international transfers of personal data (e.g., to PushFar hosting providers) are subject to lawful safeguards (e.g., Standard Contractual Clauses).

8. Liability

8.1 Each party shall be individually liable for its own acts or omissions in breach of data protection law.

9. General

9.1 This Agreement shall remain in effect for as long as personal data is shared between the parties.

9.2 This Agreement is governed by the laws of England and Wales.