Data Security Breach. A breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to the Shared Personal Data, and which is further subject to the provisions of Section 6 below.
Data Security Breach. “Data Security Breach” means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, Personal Data transmitted, stored, or otherwise processed.
Data Security Breach. Each party agrees that, should there be any unauthorized access to Personal Information it will notify the other parties of such unauthorized access. Notification is to occur promptly after determination that a security incident may have occurred and will contain reasonable details relating to the incident. Each party will cooperate on an as-needed basis with General Agency Agreement M1252 (2/2021) another party to this Agreement who undertakes an investigation of the incident. Each party with a security incident will keep the other parties to this Agreement informed of actions taken in connection with its response to each security incident involving Personal Information. Each party to this Agreement will act in good faith, and work with and assist the party with a security incident with any required customer notification or remediation; such activities will be consistent with applicable laws, rules, and regulations including, but not limited to, the Privacy Laws and the Cybersecurity Laws. The party with a security incident shall indemnify and hold the other parties to this Agreement harmless from any cost or expense of remediation, unless the negligence or willful misconduct of a party who did not experience a security incident contributed to the breach.
Data Security Breach. The parties acknowledge and agree to comply with the requirements of §501.171, Florida Statutes. A breached party shall notify the other party immediately, but in no event later than thirty (30) calendar days following a determination of a breach of data security involving the other party’s data. Additionally, each shall fully cooperate with the other regarding the statutory notification requirements.
Data Security Breach. 7.1 At any time during the Processing of Personal Data, Service Provider shall notify Customer as soon as is practicable of any Data Security Breach involving Personal Data, including any breach of facilities, systems or equipment of Service Provider Subcontractors, provided that it is reasonable for Service Provider to believe that such Data Security Breach creates a real risk of significant harm to the Data Subject. Service Provider agrees to assist and cooperate with Customer concerning any disclosures to affected parties, government, or regulatory agencies, and with any other remedial measures requested by Customer or required under any applicable law. Service Provider shall take such mutually agreeable steps to prevent the continuation or repetition of such Data Security Breach.
7.2 Unless otherwise required by applicable Data Protection Laws or order, Service Provider shall make no disclosures to affected parties or any government, law enforcement or regulatory agencies concerning a Data Security Breach relating to the Personal Data except as directed by Customer. Notwithstanding the foregoing, Service Provider may contact local police in the event of a physical breach of Service Provider’s facilities or theft of equipment or documents.
7.3 In the event of a Data Security Breach involving Service Provider’s Processing of Personal Data, Service Provider shall assist and cooperate with Customer concerning any disclosures to such parties or agencies, and with any other remedial measures requested by Customer or required under any Data Protection Laws or orders to Service Provider or Customer, at Service Provider’s expense, including providing notice to Data Subjects of a Data Security Breach.
Data Security Breach a. In the event of a confirmed Security Incident, McGraw Hill shall (i) investigate the Security Incident, identify the impact of the Security Incident and take commercially reasonable actions to mitigate the effects of any such Security Incident, (ii) timely provide any notifications to Subscriber or individuals affected by the Security Incident that McGraw Hill is required by law, subject to applicable confidentiality obligations and to the extent allowed and/or required by and not prohibited by Applicable Laws or law enforcement.
b. Except to the extent prohibited by Applicable Laws or law enforcement, McGraw Hill shall, upon Subscriber’s written request and to the extent available, provide Subscriber with a description of the Security Incident and the type of data that was the subject of the Security Incident.
Data Security Breach. The Parties acknowledge their respective obligations to comply with all data privacy laws, including Section 501.171, Florida Statutes. Upon knowledge of a data security breach, the breached Party shall notify the other Party immediately, and in no event later than thirty (30) calendar days following a determination of a breach of data security involving the other Party’s data. Additionally, each Party shall fully cooperate with the other regarding their respective statutory obligations with respect to security breaches, including all statutory and regulatory notification requirements.
Data Security Breach. In the event there is any unauthorised or unlawful access to or use of Personal Data that is required to be notified by Interneuron under the DPA (or which is required to be notified by Client under the DPA) (a “Security Incident”), Interneuron shall as soon as reasonably possible notify Client of the Security Incident, subject to applicable confidentiality obligations and tothe extent required by the DPA. In the event of a Security Incident, Interneuron and Client shall cooperate in good faith to resolve any data privacy or security issues involving Personal Data.
Data Security Breach. 10.1 In case of a Data Security Breach for which the Data Processor (or any Pre-Approved Sub-processor) is responsible, the Data Processor shall as soon as practical possible, inform Data Controller hereof, to enable the Data Controller to comply with the Data Controller’s obligation to notify the personal data breach to the competent supervisory authority, cf. GDPR, Article 33.
10.2 This notification must at least:
a) include a description of the nature of the Data Security Breach includ- ing, if possible, the categories and the estimated number of affected Data Subjects as well as the categories and estimated number of affected reg- istrations of Personal Data,
b) include the name of and contact information for the data protection officer (DPO) or another point of contact where further information may be obtained,
c) describe the probable consequences of the Data Security Breach,
d) describe the measures taken by the Data Processor or which the Data Processor proposes are taken in order to handle the Data Security Breach including, if relevant, measures to limit the possible consequential dam- ages.
10.3 The Data Processor must document all Data Security Breaches, including the actual circumstances surrounding the Data Security Breach, its con- sequences and the remedial measures that have been taken.
10.4 This documentation must enable the regulatory authority to check that Data Processor complies with its duty to inform of any Data Security Breach.
Data Security Breach. 11.1 In case of a Data Security Breach for which the Data Processor (or any Pre-Approved Subcontractor) is responsible, the Data Processor shall as soon as practical possible, inform Data Controller hereof.
11.2 This notification must at least:
a) include a description of the nature of the Data Security Breach including, if possible, the categories and the estimated number of affected Data Subjects as well as the categories and estimated number of affected registrations of Personal Data,
b) include the name of and contact information for the data protection officer (DPO) or another point of contact where further information may be obtained,
c) describe the probable consequences of the Data Security Breach,
d) describe the measures taken by the Data Processor or which the Data Processor proposes are taken to handle the Data Security Breach including, if relevant, measures to limit the possible consequential damages.
11.3 The Data Processor must document all Data Security Breaches, including the actual circumstances surrounding the Data Security Breach, its consequences and the remedial measures that have been taken.
11.4 This documentation must enable the regulatory authority to check that Data Processor complies with its duty to inform of any Data Security Breach.