Common use of Organizational and Security measures Clause in Contracts

Organizational and Security measures. JetBrains hereby declares that: a. JetBrains has internal personal data processing policies in place. Every employee of JetBrains is obliged to familiarize themselves with the policies before accessing personal data. b. Every employee of JetBrains is obliged to sign an NDA before commencing their work at JetBrains. c. The policies are reviewed annually to keep them up-to-date in accordance with the industry standards. The review is based upon testing, assessing, and evaluating the effectiveness of the covered measures for ensuring the security of the processing of personal data. d. Depending on the harm caused, violation of the policies by an employee may cause penalties varying from written notice to dismissal. e. Security breaches are reported to the company’s senior management. f. To achieve compliance with up-to-date security standards, JetBrains runs security audits for business-critical applications. g. JetBrains maintains a personal data processing policy and ensures reasonable awareness of it within the company. h. JetBrains ensures the compliance of Subprocessors and data processing partners with applicable data protection regulations. i. JetBrains ensures reasonable awareness of the applicable data protection regulations within the company.