BREACH OF PERSONAL DATA SECURITY. 8.1. After becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Customer Data, including Personal Data, transmitted, stored or otherwise Processed by Pancake or its Subprocessors of which Pancake becomes aware (a “Customer Data Incident”), Pancake shall notify Customer without undue delay, within forty-eight (48) hours. Pancake shall make reasonable efforts to identify the cause of such Customer Data Incident and take those steps as Pancake deems necessary and reasonable in order to remediate the cause of such a Customer Data Incident to the extent the remediation is within Pancake’s reasonable control. The obligations herein shall not apply to incidents that are caused by Customer or Customer’s Users. 8.2. Pancake’s notice shall include the following information to the extent it is reasonably available to Pancake at the time of the notice, and Pancake shall update its notice as additional information becomes reasonably available: • the dates and times of the Customer Data Incident; • the facts that underlie the discovery of the Customer Data Incident; • a description of the Personal Data involved in the Customer Data Incident; and • the measures planned or underway to remedy or mitigate the vulnerability giving rise to the Customer Data Incident.
Appears in 4 contracts
Samples: Data Processing Addendum, Data Processing Addendum, Data Processing Addendum
BREACH OF PERSONAL DATA SECURITY. 8.1. After becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Customer Data, including Personal Data, transmitted, stored or otherwise Processed by Pancake or its Subprocessors of which Pancake becomes aware (a “Customer Data Incident”), Pancake shall notify Customer without undue delay, within forty-eight seventy- two (4872) hours. Pancake shall make reasonable efforts to identify the cause of such Customer Data Incident and take those steps as Pancake deems necessary and reasonable in order to remediate the cause of such a Customer Data Incident to the extent the remediation is within Pancake’s reasonable control. The obligations herein shall not apply to incidents that are caused by Customer or Customer’s Users.
8.2. Pancake’s notice shall include the following information to the extent it is reasonably available to Pancake at the time of the notice, and Pancake shall update its notice as additional information becomes reasonably available: • the dates and times of the Customer Data Incident; • the facts that underlie the discovery of the Customer Data Incident; • a description of the Personal Data involved in the Customer Data Incident; and • the measures planned or underway to remedy or mitigate the vulnerability giving rise to the Customer Data Incident.
Appears in 3 contracts
Samples: Data Processing Addendum, Data Processing Addendum, Data Processing Addendum