On May 25 2018 the General Data Protection Regulation (GDPR) came into effect.
The GDPR is a European Union (EU) privacy law which intends to strengthen and unify data protection for all individuals
within the European Union.
This law affects business around the world if they process "personally identifiable data" from EU citizens.
Since an organization's failure to comply with the GDPR can lead to be high fines it is important to validate your compliance.
The complete General Data Protection Regulation can be found at https://gdpr-info.eu.
Chapter 4 addresses the Controller-Processor relationship.
For any questions please contact firstname.lastname@example.org.