Information Obligations and Incident Management. 7.1 When the Data Processor becomes aware of an incident that impacts the Processing of the Personal Data that is the subject of the Services Agreement, it shall promptly notify the Data Controller about the incident, shall at all times cooperate with the Data Controller, and shall follow the Data Controller’s instructions with regard to such incidents, in order to enable the Data Controller to perform a thorough investigation into the incident, to formulate a correct response, and to take suitable further steps in respect of the incident.
Information Obligations and Incident Management. When the Data Processor becomes aware of an Incident that impacts the Processing of the Personal Data that was provided under the Services Agreement, it shall promptly notify the Data Controller about the Incident within 48 hours of its becoming aware of the Incident. The Data Processor shall reasonably cooperate with the Data Controller and shall follow the Data Controller’s reasonable instructions with regard to such Incidents that solely affect Personal Data that was provided to the Data Processor under the Services Agreement in order to enable the Data Controller to perform a thorough investigation into the Incident, to formulate a correct response, and to take suitable further steps in respect of the Incident.
Information Obligations and Incident Management. 9.1 When the Data Importer becomes aware of an incident that impacts the Processing of the Personal Data that is the subject of the Service Agreement, it shall promptly notify the Data Exporter about the incident, shall at all times cooperate with the Data Exporter, and shall follow the Data Exporter’s instructions with regard to such incidents, in order to enable the Data Exporter to perform a thorough investigation into the incident, to formulate a correct response, and to take suitable further steps in respect of the incident.
Information Obligations and Incident Management. When the Data Processor becomes aware of an incident that impacts the Processing of the Personal Data that is the subject of the Services Agreement, it shall promptly notify the Data Controller about the incident, shall at all times cooperate with the Data Controller, and shall follow the Data Controller’s instructions with regard to such incidents, in order to enable the Data Controller to perform a thorough investigation into the incident, to formulate a correct response, and to take suitable further steps in respect of the incident. The term “incident” used in Article 7.1 shall be understood to mean in any case: a complaint or a request with respect to the exercise of a data subject’s rights under EU Data Protection Law; an investigation into or seizure of the Personal Data by government officials, or a specific indication that such an investigation or seizure is imminent; any unauthorized or accidental access, processing, deletion, loss or any form of unlawful processing of the Personal Data; any breach of the security and/or confidentiality as set out in Articles 3 and 4 of this Data Processing Agreement leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, the Personal Data, or any significant indication of such breach having taken place or being about to take place; where, in the opinion of the Data Processor, implementing an instruction received from the Data Controller would violate applicable laws to which the Data Controller or the Data Processor are subject. The Data Processor shall at all times have in place written procedures which enable it to promptly respond to the Data Controller about an incident. Where the incident is reasonably likely to require a data breach notification by the Data Controller under applicable EU Data Protection Law, the Data Processor shall implement its written procedures in such a way that it is in a position to notify the Data Controller no later than 48 hours of having become aware of such an incident. Any notifications made to the Data Controller pursuant to this Article 7 shall be addressed to the employee of the Data Controller whose contact details are provided in Annex 1 of this Data Processing Agreement, and shall contain, to the extent known after reasonable investigation:
Information Obligations and Incident Management a. The Data Processor shall notify the Data Controller promptly of becoming aware of a personal data breach involving Data Controller Personal Data and provide the Data Controller with information relevant to reasonably assist the Data Controller with its own notification obligations as applicable to Data Controller under EU Data Protection Law which may include the following: (i) a description of the nature of the personal data breach; (ii) the categories and approximate number of data subjects impacted; (iii) a description of the measures taken or proposed to be taken by the Data Processor to address the personal data breach.
Information Obligations and Incident Management. 8.1. When the Operator becomes aware of an incident that has a material impact on the processing of the personal information that is the subject of the agreement between the parties, it shall promptly notify the Responsible Party about the incident, shall at all times cooperate with the Responsible Party, and shall follow the Responsible Party’s instructions with regard to such incidents, in order to enable the Responsible Party to perform a thorough investigation into the incident, to formulate a correct response, and to take suitable further steps in respect of the incident.
Information Obligations and Incident Management. 9.1. The Data Processor shall at all times without undue delay notify the Data Controller of any incident with regard to the processing of the Personal Data, shall at all times cooperate with the Data Controller and shall follow the Data Controllers instructions with regard to such incidents, in order to enable the Data Controller to perform a thorough investigation into the incidents, to formulate a correct response and to take suitable further steps in respect of the incident. Specifically, the Data Processor warrants that it provides the Data Controller with all information necessary to fulfil its legal obligations, such as the obligation to notify incidents as stipulated in article 33 and 34 UK GDPR.
Information Obligations and Incident Management. When Xxxxxx becomes aware of a Personal Data Breach, it shall notify the Customer at their registered address about the Personal Data Breach without undue delay, shall provide commercially reasonable cooperation to the Customer, and shall take commercially reasonable steps to remediate the Personal Data Breach, if applicable, to the extent that remediation is within Ahrefs' control. At the Customer’s request and subject to the Customer paying all of Ahrefs’ fees at prevailing rates, and all expenses, Ahrefs will promptly provide the Customer with all reasonable assistance necessary to enable the Customer to notify relevant Personal Data Breaches to the relevant regulators and/or affected individuals, if Customer is required to do so under applicable Data Protection Law. Customer is solely responsible for complying with Personal Data Breach notification requirements applicable to Customer and fulfilling any third-party notification obligations related to any Personal Data Breach. The obligations of this Section 4 do not apply to Personal Data Breaches that are caused by the Customer, individuals, and/or any products and services other than Ahrefs'.
Information Obligations and Incident Management. 7.1. When the Operator becomes aware of an incident that has an impact on the Processing of the Personal Information that is the subject of this DPA, it will notify the Responsible Party as soon as reasonably possible about the incident and will cooperate with the Responsible Party’s reasonable requests in order to enable the Responsible Party to comply with their obligations. Where appropriate, the Operator may charge for these services.
Information Obligations and Incident Management. (a) If Xxxxxx becomes aware of an incident that materially adversely affects the Processing of the Personal Data that is the subject of the Agreement, it shall promptly notify the Customer about the incident, shall provide commercially reasonable cooperation to the Customer, and (to the extent such incident was caused by Xxxxxx’s negligent acts or omissions) shall take commercially reasonable steps designed to remediate the incident, if applicable, to the extent that remediation is within Xxxxxx’s control. The obligations of this Section 16(a) do not apply to incidents that are caused by the Customer, Authorized Users, and/or any products and services other than Nasuni’s.
