Data Security; Privacy. Except as would not, individually or in the aggregate, have a Material Adverse Effect: (i) the Company and the Company Subsidiaries have complied and are presently in compliance with all internal and external written privacy policies, contractual obligations, industry standards, applicable laws, statutes, judgments, orders, rules and regulations of any court or arbitrator or other governmental or regulatory authority and any other applicable legal obligations, in each case, relating to the collection, use, transfer, import, export, storage, protection, disposal and disclosure by the Company or any Company Subsidiary of personal, personally identifiable, household, sensitive, confidential or regulated data (“Data Security Obligations,” and such data, “Personal Data”); (ii) the Company and the Company Subsidiaries maintain and have maintained commercially reasonable policies and procedures designed to ensure the Company’s, and the Company Subsidiaries’, compliance with the Data Security Obligations; (iii) neither the Company nor any Company Subsidiary has received any notification of or complaint regarding and is unaware of any other facts that, individually or in the aggregate, would reasonably indicate non-compliance with any Data Security Obligation; and (iv) there is no action, suit or proceeding by or before any court or governmental agency, authority or body pending, or, to the Company’s knowledge, threatened in writing against the Company or any Company Subsidiary alleging non-compliance with any Data Security Obligation.
Appears in 4 contracts
Samples: Subscription Agreement (Oatly Group AB), Investment Agreement (Oatly Group AB), Investment Agreement (Oatly Group AB)
