Data Protection Schedule Sample Clauses

Data Protection Schedule. An agreement between the Customer and Open Systems Lab as a processor of personal data on behalf of the Customer. This schedule is based on the standard template published by the Crown Commercial Service, with some alterations, which are highlighted. Standard Definitions Party: a Party to this Agreement Agreement: this contract; Law: means any law, subordinate legislation within the meaning of Section 21(1) of the Interpretation Act 1978, bye-law, enforceable right within the meaning of Section 2 of the European Communities Act 1972, regulation, order, regulatory policy, mandatory guidance or code of practice, judgment of a relevant court of law, or directives or requirements with which the Processor is bound to comply; Processor Personnel: means all directors, officers, employees, agents, consultants and contractors of the Processor and/or of any Sub-Processor engaged in the performance of its obligations under this Agreement. GDPR Clause Definitions Data Protection Legislation: (i) the GDPR, the LED and any applicable national implementing Laws as amended from time to time (ii) the DPA 2018 to the extent that it relates to processing of personal data and privacy; (iii) all applicable Law about the processing of personal data and privacy; Data Protection Impact Assessment: an assessment by the Controller of the impact of the envisaged processing on the protection of Personal Data. Controller, Processor, Data Subject, Personal Data, Personal Data Breach, Data Protection Officer take the meaning given in the GDPR. Data Loss Event: any event that results, or may result, in unauthorised access to Personal Data held by the Processor under this Agreement, and/or actual or potential loss and/or destruction of Personal Data in breach of this Agreement, including any Personal Data Breach. Data Subject Request: a request made by, or on behalf of, a Data Subject in accordance with rights granted pursuant to the Data Protection Legislation to access their Personal Data. DPA 2018: Data Protection Act 2018 GDPR: the General Data Protection Regulation (Regulation (EU) 2016/679) Joint Controllers: where two or more Controllers jointly determine the purposes and means of processing LED: Law Enforcement Directive (Directive (EU) 2016/680) Protective Measures: appropriate technical and organisational measures which may include: pseudonymising and encrypting Personal Data, ensuring confidentiality, integrity, availability and resilience of systems and services, ensuring that...
Sample 1
AutoNDA by SimpleDocs
Data Protection Schedule. The applicable University standard data protection schedule shall be incorporated into the relevant schedule to this MoC. Any changes to the standard version must be agreed by the University and the agreed version will be incorporated in the Data Protection Schedule. Qualification Certificate Qualification certificates shall be produced by the University in accordance with the template included within this document. Programme Details [COMPLETE TABLE – APPF TO ASSIST AND VALIDATION REPORT TO REFINE LATER] Name of Partner Institution Administrative Address Primary Address at which the Programme(s) shall be delivered (if different from Administrative Address) Additional Study Site(s) /Location(s) of delivery Telephone Number Responsible University Faculty and Department Within the University, the Programme(s) shall be the responsibility of the [NAME OF FACULTY] (hereafter referred to as the University Faculty). It will be aligned to the [NAME OF DEPARTMENT] Department within the Faculty. Validation Period Start and End Dates (Day/Month/Year) First cohort start date (i.e. date of first cohort at the Partner Institution immediately after current validation/review event) [LIST FOR EACH PROGRAMME IF DIFFERENT] Latest Date of Recruitment to the Programme(s) [LIST FOR EACH PROGRAMME IF DIFFERENT] Pattern of entry of Programme(s’) Intakes (e.g. Months each year or every other year) [IF MULTIPLE PROGRAMMES WITH DIFFERENT PATTERNS- LIST SEPARATELY] ☐ Annual ☐ Bi-Annual ☐ Multiple entry points Month(s) of entry ☐ Jan ☐ Feb ☐ Mar ☐ Apr ☐ May ☐ Jun ☐ Jul ☐ Aug ☐ Sep ☐ Oct ☐ Nov ☐ Dec Indicative Duration (number of years) & Mode of Attendance (full-time or part-time) [IF MULTIPLE PROGRAMMES THAT DIFFER- LIST SEPARATELY] FT duration: xx years PT duration: xx years Maximum Registration Periods [LIST FOR EACH PROGRAMME IF DIFFERENT] FT duration: xx years PT duration: xx years Method of Delivery / Student Interaction ☐ Taught / Blended ☐ Distance Education Programme code(s)/award ID (as generated by the University). Application Route ☐ PARTNER [normally for Validated or Franchised] ☐ MU [normally for Joint and Collaborative Research] ☐ UCAS Admissions Responsibility ☐ PARTNER [normally for Validated] ☐ MU [normally for Joint and Collaborative Research] Articulation Agreement EITHER: An articulation agreement has been agreed for the Programme(s), and subject to the stated conditions, students shall be offered entry on the Programme(s) as detailed in an Ar...
Sample 1
Data Protection Schedule. Introduction
Sample 1
Data Protection Schedule. 1. This Schedule shall apply to the extent Supplier collects, records, stores, or otherwise accesses (collectively, "Process," "Processed," or "Processing") information that can be used to directly or indirectly identify an individual in connection with the Services ("Client Personal Data"). Supplier shall only Process Client Personal Data in accordance with the instructions of Client as detailed in the Agreement and applicable data privacy law ("Privacy Laws"). Where applicable law requires Supplier to Process Client Personal Data under terms other than those of the Agreement, Supplier shall promptly notify Client of such legal requirement before Processing, unless applicable law prohibits such disclosure. Supplier shall also notify Client if Supplier determines any of Client's instructions infringes applicable Privacy Laws.
Sample 1
Data Protection Schedule. INTRODUCTION In order to ensure compliance with the GDPR the Authority will require all Providers to adhere to the following Memorandum of Understanding (“MoU”) • The Provider agrees to process personal information in accordance with their own information governance policies and procedures, or as directed by the standards applicable to the information being processed. • Where applicable, Providers are committed to undertaking, following and complying with the Information Governance Toolkit as a minimum of Level 2. Where Level 2 has not been met, there should be an action plan for necessary improvements agreed with either the Authority. Where another Information Governance Assurance Framework applies, Providers will commit to complying with the relevant standards within that regime and sharing the evidence of attainment and any associated action plans on request with the Authority. • Providers shall appoint a responsible / accountable officer who will ensure the protection of personal information (for example a Caldicott Guardian or senior manager responsible for data protection). • Providers will take appropriate organisational and technical measures towards compliance with Data Protection Act 1998, Caldicott Principles, ISO 27001 Series of Information Security Standards, Freedom of Information Act 2000 and national guidance and rules around processing personal confidential information and other relevant legislation. • Providers are committed to identifying, documenting and risk assessing their data flows with any mitigating actions defined and agreed. • Providers are committed to ensuring staff are appropriately trained and comply with organisational policies in relation to Information Governance, including data protection, Confidentiality, Caldicott Principles, Information Security, Records Management and Freedom of Information. • Providers will promptly notify the Authority of any Information Governance breach, vulnerability or threat that could affect the security of the data being shared. • Providers will agree, security clearances permitting, to allow the Authority to carry out audits or visits to confirm compliance with agreed assurance requirements. • Providers commit to ensuring that the data is shared in a safe and secure manner meeting the agreed purpose of the sharing. • Any requests for information under the Freedom of Information Act 2000 or the Data Protection Act 1998 should be directed to the original organisation's FOIA officer/data prote...
Sample 1
Data Protection Schedule. Part A -
Sample 1
Data Protection Schedule. The Schedule attached to this Contract describing how the Parties will comply with the Data Protection Legislation.
Sample 1
AutoNDA by SimpleDocs

Related to Data Protection Schedule

  • Data Protection Impact Assessment If, pursuant to Data Protection Law, Customer (or its Controllers) are required to perform a data protection impact assessment or prior consultation with a regulator, at Customer’s request, SAP will provide such documents as are generally available for the Cloud Service (for example, this DPA, the Agreement, audit reports or certifications). Any additional assistance shall be mutually agreed between the Parties.

  • Data Protection Impact Assessments Where the Customer is required to complete a data protection impact assessment or privacy impact assessment under Data Protection Laws, Jamf, upon written request by the Customer, will provide reasonable assistance to the Customer in relation to that requirement. Customer is responsible for any costs arising from Jamf’s assistance to the extent such assistance exceeds the scope of Jamf’s obligations under Data Protection Laws and/or routine customer service.

  • Data Protection All personal data contained in the agreement shall be processed in accordance with Regulation (EC) No 45/2001 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data by the EU institutions and bodies and on the free movement of such data. Such data shall be processed solely in connection with the implementation and follow-up of the agreement by the sending institution, the National Agency and the European Commission, without prejudice to the possibility of passing the data to the bodies responsible for inspection and audit in accordance with EU legislation (Court of Auditors or European Antifraud Office (XXXX)). The participant may, on written request, gain access to his personal data and correct any information that is inaccurate or incomplete. He/she should address any questions regarding the processing of his/her personal data to the sending institution and/or the National Agency. The participant may lodge a complaint against the processing of his personal data with the [national supervising body for data protection] with regard to the use of these data by the sending institution, the National Agency, or to the European Data Protection Supervisor with regard to the use of the data by the European Commission.

  • DATA PROTECTION AND PRIVACY 14.1 In addition to Supplier’s obligations under Sections 6, 9, 10, and 15, Supplier will comply with this Section 14 when processing Accenture Personal Data. "

  • Data Protection Impact Assessment and Prior Consultation Processor shall provide reasonable assistance to the Company with any data protection impact assessments, and prior consultations with Supervising Authorities or other competent data privacy authorities, which Company reasonably considers to be required by article 35 or 36 of the GDPR or equivalent provisions of any other Data Protection Law, in each case solely in relation to Processing of Company Personal Data by, and taking into account the nature of the Processing and information available to, the Contracted Processors.

  • DATA PROTECTION AND DATA PROCESSING 6.1 The Company and the Client acknowledge that for the purposes of the Data Protection Xxx 0000 and the GDPR, that the Client and the Company shall be considered separate data controllers in relation to the provision of the Services, save and except that in the case of lead generation services, the Client shall be the data controller and the Company shall be the data processor.

Draft better contracts in just 5 minutes Get the weekly Law Insider newsletter packed with expert videos, webinars, ebooks, and more!