Documentation and Audit. 5.1. If requested by the Data Controller the Data Processor must provide the Data Controller with sufficient information to allow the Data Controller to verify that the Data Processor has implemented appropriate technical and organizational security measures in locations and systems relevant to the personal data processed under this DPA, provided however that any information and documentation beyond Data Processor standard security documentation, see Appendix B, will be provided at the Data Controller’s cost.
5.2. The Data Controller is entitled to inspect the Data Processor’s premises relevant to the services under the Agreement, subject to prior agreement with the Data Processor. Any costs incurred by the Data Processor in connection with the Data Controller’s inspection will be payable by the Data Controller. In addition, the Data Controller is entitled at its own expense to engage an independent third party of its own choice to conduct an annual audit of the Data Processor’s processing activities. If the Data Controller inspects the Data Processor’s premises, the Data Controller must accept any requirements of the Data Processor as to security and confidentiality. Where the Data Controller uses a third-party auditor, the Data Controller warrants that the third party will accept and comply with the Data Processor’s security and confidentiality requirements.
5.3. The Data Processor must give authorities who by Union or member state law have a right to enter the Data Controller's or the Data Controller's Data Processor's facilities, or representatives of the authorities, access to the Data Processor's physical facilities against proper proof of identity. The Data Controller will reimburse the Data Processor for its costs in this regard.
Documentation and Audit. Merchant may audit Amazon’s controls relating to Processing Personal Data in relation to Off- Amazon Transaction Data transmitted by Merchant. Following receipt of any such audit request by Merchant, Amazon and Merchant will agree to a reasonable start date, scope and duration, and security and confidentiality controls, applicable to the audit. Merchant agrees that the sole purpose of the audit is to allow Merchant to reasonably verify Amazon’s compliance with its obligations under this DPA. Merchant is not entitled to receive (1) information about any system, hardware, software, technology, know-how, program, process, or policy that does not involve Personal Data relating to Off-Amazon Transaction Data and the obligations set out in this DPA, (2) any information that, in Amazon’s reasonable opinion, could compromise the security of any Amazon systems or premises or cause Amazon or any Amazon Affiliate to breach its obligations under the GDPR or other applicable laws and regulations or privacy obligations to Amazon customers or any third party, or (3) any information that Merchant seeks to access for any reason other than good faith fulfilment of Merchant’s obligations under the Applicable Data Protection Legislation. Any audit requests must set out the reasons justifying the audit. Amazon may object to any third party auditor appointed by Merchant to conduct any audit under this Article if the auditor is, in Amazon’s reasonable opinion, not suitably qualified or independent. Any such objection will require Merchant to appoint another auditor or conduct the audit itself. Amazon will be entitled to a reasonable fee from Merchant upon providing and making available all the necessary information.
Documentation and Audit. Provider shall make available to ALX all information necessary (including records of processing) to demonstrate compliance with EU Data Protection Law and this DPA and allow for and contribute to audits (including inspections) conducted by a Supervisory Authority, ALX or an ALX auditor’s mandate. ALX will bear the costs of any audit requested or required by ALX.
Documentation and Audit. Upon request by a Data Controller, the Data Processor shall make available to the Data Controller all relevant information necessary to demonstrate compliance with this DPA, and shall allow for and reasonably cooperate with audits, including inspections by the Data Controller or an auditor mandated by the Data Controller.
Documentation and Audit. Whenever the Cost of the Work for any purpose is to be determined pursuant to this Article 13, Contractor and pertinent Subcontractors will establish and maintain records of the costs in accordance with generally accepted accounting practices. Subject to prior written notice, Owner will be afforded reasonable access, during normal business hours, to all Contractor’s accounts, records, books, correspondence, instructions, drawings, receipts, vouchers, memoranda, and similar data relating to the Cost of the Work and Contractor’s fee. Contractor shall preserve all such documents for a period of three years after the final payment by Owner. Pertinent Subcontractors will afford such access to Owner, and preserve such documents, to the same extent required of Contractor.
Documentation and Audit. For the avoidance of doubt, all of the Costs of the Work and Contractor’s General Conditions shall be made available to Owner on an Open Book Basis, and subject to the Books and Records requirements of Article 11 of the Agreement.
Documentation and Audit
