DATA SECURITY AND DATA PROTECTION. 8.1 The Supplier shall ensure that any system on which the Supplier holds Balfour Xxxxxx Data, is secure and ensures complete data integrity in accordance with Good Industry Practice.
DATA SECURITY AND DATA PROTECTION. Seller will use data security procedures for Jeppesen data that conform to the highest standards in (i) Seller’s industry and to those used by Seller to protect its own confidential information, or (ii) ISO 27002, whichever are more stringent. Seller’s obligations under this Section 15 are a material condition of this PO. In the course of performing its obligations hereunder, Seller may have access to personal data related to identified or identifiable information of natural persons (“Personal Data”). Seller will comply with all applicable privacy and data protection laws relating to Personal Data. In case of Personal Data from data subjects located in the European Union, Seller will ensure a level of data protection which is deemed adequate by the European Commission (e.g. through Model Clauses or the participation in the EU-U.S. Privacy Shield Program).
DATA SECURITY AND DATA PROTECTION. 12.1 The Supplier shall ensure that any system on which the Supplier holds SB3 Data, is secure and ensures complete data integrity in accordance with Good Industry Practice.
DATA SECURITY AND DATA PROTECTION. 9.1 Data Security Frends has built in data security protections in accordance with industry standards. An overview is available at xxxxx://xxxxxx.xxx/legal/security, which describes the appropriate technical and organizational measures that Frends has implemented to ensure the security, privacy and confidentiality of Customer Data. Xxxxxx has defined security incident management policies and procedures, and will notify Customer without undue delay after becoming aware of Data Breach. Frends will take remedial steps pursuant to its security incident management policies and procedures that are necessary and reasonable to identify and remediate the cause of such Data Breach.
DATA SECURITY AND DATA PROTECTION. 12.1 The Supplier shall ensure that any system on which the Supplier holds Balfour Xxxxxx Data, is secure and ensures complete data integrity in accordance with Good Industry Practice.
12.2 The Supplier shall indemnify Balfour Xxxxxx on demand and shall keep Balfour Xxxxxx indemnified from and against any and all Losses arising out of or in connection with the Supplier's breach of its obligations under this Clause 12.
12.3 Each party shall at all times comply with its respective obligations under all applicable data protection and privacy legislation ("Data Protection Legislation") in relation to all Balfour Xxxxxx Personal Data that are processed by it in connection with this Agreement, including by maintaining all necessary registrations or notifications in respect of such processing.
12.4 The Supplier shall not process any Balfour Xxxxxx Data that is processed by or in connection with this Agreement for any purposes other than those expressly authorised by Xxxxxxx Xxxxxx (and in any event only in the United Kingdom and only to the extent required for the performance of its obligations under this Agreement) and shall comply with all instructions given by Xxxxxxx Xxxxxx from time to time in relation to such processing.
12.5 The Supplier warrants that it has appropriate technical and organisational processes and procedures in place to safeguard against any unauthorised or unlawful processing against accidental loss or destruction of or damage to the Personal Data.
DATA SECURITY AND DATA PROTECTION. The Supplier shall adhere to all applicable data protection laws and all specific data protection and security requirements agreed to in the Contract.
DATA SECURITY AND DATA PROTECTION. 9.1 Each Party shall ensure that the part of the Service and the Party’s own environments, such as equipment, service production facilities and business premises, within that Party’s responsibility under the Agreement, are protected against data security threats in accordance with the adequate data security procedures used by the Party and shall ensure that measures relating to data security and backup are complied with.
9.2 Each Party is responsible for the data security of its own data system and communications network. Neither Party is responsible for the data security of the general communications network or any disturbance in the general communications network or for any other impediment affecting the use of the Service beyond its control nor for damage resulting thereof.
9.3 Unless otherwise agreed expressly in writing, each Party shall be responsible for making back-up copies of its own data and data files and for verifying the functionality of such back-up copies.
9.4 Customer shall comply with all applicable data protection laws, including but not limited to the General Data Protection Regulation of the European Union (2016/679/EU, “GDPR"), which relate to Customer’s activities or use of the Service or Customer Material.
9.5 In connection with the processing of personal data in the Service, Customer shall be the data controller referred to in the GDPR. Supplier shall process the personal data in question on Customer’s behalf and by the order of Customer.
9.6 Parties have agreed on the processing of personal data in more detail on a separate appendix attached to the Service Agreement.
DATA SECURITY AND DATA PROTECTION. (1) The data security and data protection requirements to be observed are specified in Annex 3. Section 18 of JIT 2015 – General Terms and Conditions shall also be applied.
(2) The Supplier shall handle any personal data contained by the Service or received in connection with the delivery of the Service or Application only in so far as it is necessary for the fulfilment of this agreement and only until the expiry of this agreement or the Supplier’s duty to provide assistance. The Supplier is not allowed to use the personal data in their own activities, process them in a manner prohibited by this agreement, combine them with other data in their possession, or to release them to third parties.
(3) The Supplier may not handle the personal data, contained by the Service or received in connection with the delivery of the Service or Application, outside the EU or the EEA or from outside the EU or the EEA or transfer such data outside the EU or the EEA.
(4) The limitations to liability presented in this agreement or its annexes do not apply to violations of data security and data protection.
DATA SECURITY AND DATA PROTECTION. 14.1 Both parties will comply with all applicable requirements of the Data Protection Legislation. This Condition 14 is in addition to, and does not relieve, remove or replace, a party's obligations or rights under the Data Protection Legislation.
14.2 The parties acknowledge that for the purposes of the Data Protection Legislation, the Company is the Controller and the Consultant is the Processor.
14.3 Without prejudice to the generality of Condition 14.1, the Company will ensure that it has all necessary appropriate consents and notices in place to enable lawful transfer of the Personal Data to the Consultant for the duration and purposes of this Contract.
14.4 Without prejudice to the generality of Condition 14.1, the Consultant shall, in relation to any Personal Data processed in connection with the performance by the Consultant of its obligations under this Contract:
14.4.1 process that Personal Data only on the documented written instructions of the Company and comply with the obligations as Processor under the Data Protection Legislation;
14.4.2 ensure that it has in place appropriate technical and organisational measures to protect against unauthorised or unlawful processing of Personal Data and against accidental loss or destruction of, or damage to, Personal Data, appropriate to the harm that might result from the unauthorised or unlawful processing or accidental loss, destruction or damage and the nature of the data to be protected, having regard to the state of technological development and the cost of implementing any measures (those measures may include, where appropriate, pseudonymising and encrypting Personal Data, ensuring confidentiality, integrity, availability and resilience of its systems and services, ensuring that availability of and access to Personal Data can be restored in a timely manner after an incident, and regularly assessing and evaluating the effectiveness of the technical and organisational measures adopted by it);
14.4.3 ensure that all personnel who have access to and/or process Personal Data are obliged to keep the Personal Data confidential; and
14.4.4 not transfer any Personal Data outside of the UK or EEA unless the prior written consent of the Company has been obtained;
14.4.5 assist the Company, at the Company's cost, in responding to any request from a Data Subject and in ensuring compliance with its obligations under the Data Protection Legislation with respect to security, breach notifications, impact assessment...
DATA SECURITY AND DATA PROTECTION. 15.1 In this clause:
(a) “data controller”, "data processor", "data subject", “personal data” and "processing" shall bear the respective meanings given them under the Data Protection Law;
