Incidents and Notification. If the Personal Data is subject to a Security Incident, Nectar HR will promptly (but no later than 48 hours of becoming aware of the incident) provide written notification to Client of the Security Incident. The written notification will contain information such as (a) a description of the Security Incident; (b) the type of Personal Data involved; (c) the identity of each impacted data subject (and approximate estimation of the number of data subjects); (d) a description of the potential consequences; and (e) information concerning the measures taken by Nectar HR to address the Security Incident. Further, in the event of a Security Incident, Nectar HR agrees to provide timely information and cooperation as Client may require to satisfy its breach reporting requirements under Data Protection Laws and take such reasonable measures and actions to mitigate the effects of the Security Incident.
