Documentation and compliance Sample Clauses

Documentation and compliance. (a) The data importer shall promptly and adequately deal with enquiries from the data exporter that relate to the processing under these Clauses.
AutoNDA by SimpleDocs
Documentation and compliance. (a) The Parties shall be able to demonstrate compliance with these Clauses.
Documentation and compliance. (a) Each Party shall be able to demonstrate compliance with its obligations under these Clauses. In particular, the data importer shall keep appropriate documentation of the processing activities carried out under its responsibility.
Documentation and compliance. (a) The Parties shall be able to demonstrate compliance with this DPA.
Documentation and compliance. 2 The Agreement on the European Economic Area (EEA Agreement) provides for the extension of the European Union's internal market to the three EEA States Iceland, Liechtenstein and Norway. The Union data protection legislation, including Regulation (EU) 2016/679, is covered by the EEA Agreement and has been incorporated into Annex XI thereto. Therefore, any disclosure by the data importer to a third party located in the EEA does not qualify as an onward transfer for the purpose of these Clauses.
Documentation and compliance. The data importer shall promptly and adequately deal with enquiries from the data exporter that relate to the processing under these Clauses. The Parties shall be able to demonstrate compliance with these Clauses. In particular, the data importer shall keep appropriate documentation on the processing activities carried out on behalf of the data exporter. The data importer shall make available to the data exporter all information necessary to demonstrate compliance with the obligations set out in these Clauses and at the data exporter’s request, allow for and contribute to audits of the processing activities covered by these Clauses, at reasonable intervals or if there are indications of non- compliance. In deciding on a review or audit, the data exporter may take into account relevant certifications held by the data importer. The data exporter may choose to conduct the audit by itself or mandate an independent auditor. Audits may include inspections at the premises or physical facilities of the data importer and shall, where appropriate, be carried out with reasonable notice. The Parties shall make the information referred to in paragraphs (b) and (c), including the results of any audits, available to the competent supervisory authority on request. Clause 9 Use of sub-processors OPTION 1: SPECIFIC PRIOR AUTHORISATION The data importer shall not sub- contract any of its processing activities performed on behalf of the data exporter under these Clauses to a sub-processor without the data exporter’s prior specific written authorisation. The data importer shall submit the request for specific authorisation at least 30 days prior to the engagement of the sub- processor, together with the information necessary to enable the data exporter to decide on the authorisation. The list of sub-processors already authorised by the data exporter can be found in Annex III. The Parties shall keep Xxxxx XXX up to date.
Documentation and compliance. The data importer shall promptly and adequately deal with enquiries from the data exporter that relate to the processing under these Clauses. The Parties shall be able to demonstrate compliance with these Clauses. In particular, the data importer shall keep appropriate documentation on the processing activities carried out on behalf of the data exporter. The data importer shall make available to the data exporter all information necessary to demonstrate compliance with the obligations set out in these Clauses and at the data exporter’s request, allow for and contribute to audits of the processing activities covered by these Clauses, at reasonable intervals or if there are indications of non-compliance. In deciding on a review or audit, the data exporter may take into account relevant certifications held by the data importer. The data exporter may choose to conduct the audit by itself or mandate an independent auditor. Audits may include inspections at the premises or physical facilities of the data importer and shall, where appropriate, be carried out with reasonable notice. The Parties shall make the information referred to in paragraphs (b) and (c), including the results of any audits, available to the competent supervisory authority on request.
AutoNDA by SimpleDocs
Documentation and compliance. 2 This includes whether the transfer and further processing involves personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data or biometric data for the purpose of uniquely identifying a natural person, data concerning health or a person’s sex life or sexual orientation, or data relating to criminal convictions or offences.
Documentation and compliance. Audits: The PARTIES shall be able to demonstrate compliance with this DPA. ATOSS shall deal promptly and adequately with inquiries from the CUSTOMER about the pro- cessing of data in accordance with this DPA. ATOSS shall make available to the CUS- TOMER all information necessary to demonstrate compliance with the obligations that are set out in this DPA and stem directly from GDPR. At the CUSTOMER’s request, ATOSS shall also permit and contribute to audits of the processing activities covered by this DPA, at reasonable intervals or if there are indications of non-compliance. In decid- ing on an audit, CUSTOMER may take into account relevant information and certifica- tions held by ATOSS. The CUSTOMER may choose to conduct the audit by itself or mandate an independent auditor. ATOSS may object to the inspection by an independent auditor if the auditor selected by the CUSTOMER is in a competitive relationship with ATOSS or has not been obliged to observe confidentiality. The costs of audits pursuant to § 7 (5) lit. a) shall be borne by the CUSTOMER. Documentation: In particular, proof of documentation of technical and organizational measures can be provided by way of compliance with approved codes of conduct pur- suant to Art. 40 GDPR or suitable certification by means of an IT security or data pro- tection audit. Data protection officer: The contact details of the data protection officer of ATOSS are listed in DPA-Exhibit II - Technical and organizational measures.
Documentation and compliance. Documentazione e rispetto
Draft better contracts in just 5 minutes Get the weekly Law Insider newsletter packed with expert videos, webinars, ebooks, and more!