Access Control and Documentation. In accordance with section 10 of the Regulations, and to the extent that Customer requires the processing of a database which would be classified under the Regulation as an intermediate or high level of security, Customer shall retain all documentation data of the Control Mechanism (as defined in the Regulations) for at least 24 months. Such retention by Customer shall be on behalf of SAP as well and copies shall be provided to SAP upon request. Customer shall further be responsible to ensure that the Control Mechanism shall not enable, to the extent possible, the cancellation or modification of its operation; the control mechanism will detect changes or cancellations in its operation and will send alerts to those responsible.
Appears in 4 contracts
Samples: Data Processing Agreement for Sap Services, Data Processing Agreement, Data Processing Agreement
Access Control and Documentation. In accordance with section Section 10 of the Regulations, and to the extent that Customer requires the processing of a database which would be classified under the Regulation as an intermediate or high level of security, Customer shall retain all documentation data of the Control Mechanism (as defined in the Regulations) for at least 24 months. Such retention by Customer shall be on behalf of SAP as well and copies shall be provided to SAP upon request. Customer shall further be responsible to ensure that the Control Mechanism shall not enable, to the extent possible, the cancellation or modification of its operation; the control mechanism will detect changes or cancellations in its operation and will send alerts to those responsible.
Appears in 4 contracts
Samples: Personal Data Processing Agreement, Personal Data Processing Agreement, Personal Data Processing Agreement
