Common use of Confidentiality and Security Measures Clause in Contracts

Confidentiality and Security Measures. The Processor shall ensure that all personnel processing Personal Data have committed to process such Personal Data in confidence. Consistent with good practice the Processor is required to implement and maintain appropriate technical safeguards to protect any such Personal Data, including, where appropriate, by: • the pseudonymisation and encryption of Personal Data; • ensuring ongoing confidentiality, integrity, availability and resilience of processing systems and services; • restoring the availability and access to Personal Data in the event of a physical or technical incident; and • regularly testing, assessing and evaluating the effectiveness of technical and organisational measures for ensuring security of the processing. Upon request the Processor shall make available to the Controller any information deemed reasonable to demonstrate compliance with the Data Protection Legislation and sufficient information to demonstrate that the appropriate technical and organisational security measures have been implemented.

Confidentiality and Security Measures. The Processor shall ensure that all personnel processing Personal Data have committed to process such Personal Data in confidence. Consistent with good practice the Processor is required to implement and maintain appropriate technical safeguards to protect any such Personal Data, including, where appropriate, by: • : (A) the pseudonymisation and encryption of Personal Data; • ; (B) ensuring ongoing confidentiality, integrity, availability and resilience of processing systems and services; • ; (C) restoring the availability and access to Personal Data in the event of a physical or technical incident; and • and (D) regularly testing, assessing and evaluating the effectiveness of technical and organisational measures for ensuring security of the processing. Upon request the Processor shall make available to the Controller any information deemed reasonable to demonstrate compliance with the Data Protection Legislation and sufficient information to demonstrate that the appropriate technical and organisational security measures have been implemented.

Confidentiality and Security Measures. The Processor shall ensure that all personnel processing Personal Data have committed to process such Personal Data in confidence. Consistent with good practice the Processor is required to implement and maintain appropriate technical safeguards to protect any such Personal Data, including, where appropriate, by: • : (A) the pseudonymisation and encryption of Personal Data; • ; (B) ensuring ongoing confidentiality, integrity, availability and resilience of processing systems and services; • ; (C) restoring the availability and access to Personal Data in the event of a physical or technical incident; and • and (D) regularly testing, assessing and evaluating the effectiveness of technical and organisational measures for ensuring security of the processing. Upon request the Processor shall make available to the Controller any information deemed reasonable to demonstrate compliance with the Data Protection Legislation and sufficient information to demonstrate that the appropriate technical and organisational security measures have been implemented.