Personal Data and Security. Unless Supplier receives consent directly from the End User, Supplier will not and will not permit any of its Affiliates to use information about End Users provided by Expedia to directly or indirectly, identify or engage in any solicited or unsolicited marketing, promotional, or similar communications. The Supplier shall: (i) when processing Personal Data, comply with applicable Data Protection Legislation and not, by act or omission, place Expedia in violation of any applicable Data Protection Legislation; (ii) process Personal Data only for the purposes of providing the Services under this Agreement or otherwise on the written instruction of Expedia; (iii) ensure appropriate operational and technical measures are in place to safeguard the Personal Data against any unauthorized access, loss, destruction, theft, use or disclosure; (iv) ensure that any third party vendor or service provider that is engaged by Supplier to process the Personal Data on Expedia’s behalf has entered into a written contract that contains data protection provisions substantially similar to these in this Agreement; (v) promptly notify Expedia if it becomes aware of any unauthorized or unlawful processing or breaches of security relating to the Personal Data; (vi) in relation to the transfer of Personal Data, not process Personal Data relating to EU Travelers outside of the European Economic Area (“Data Transfer”), except where the transfer is necessary for the conclusion or performance of a contract concluded in the interest of Expedia or the End User, is required by law and/or in relation to the transfer of Personal Data to Supplier’s group companies for the sole purpose of providing services to Expedia or End Users under this Agreement; and (vii) in relation to Data Transfer outside of the European Economic Area, shall ensure that any transfer of Personal Data relating to EU Travelers outside the European Economic Area is adequately protected as required Data Protection Legislation applicable in jurisdictions where Decolar operates. The Supplier warrants, represents and undertakes that any data it receives and/or has access to under or in relation to this Agreement, that it shall use such data in accordance with this Section E.5.c, and only as strictly necessary to fulfill each Standalone or Package Booking and not for any other purpose.
Personal Data and Security. You agree that You have in place and will maintain, or will establish and maintain, adequate security procedures and controls to prevent the unintended disclosure of, and the unauthorized access to or misappropriation of, any personal data or information of any guest. Unless you receive consent directly from the guest, You will not directly or indirectly engage in any solicited or unsolicited marketing, promotional, or similar communications with any guest that has booked a room through the Expedia System. You will process, store, transmit and access any guest information that includes payment information (including, without limitation, credit card, debit card, or financial account information) in compliance with applicable law including, without limitation, the data security rules of the Payment Card Industry Data Security Standard for protecting credit and debit cardholder information applicable to You, and the EU Data Protection Directive (and all laws promulgated thereunder), in each case as the same may be amended, updated, replaced or augmented. Upon Expedia’s request, You will provide evidence that You have established and maintain technical and organizational security measures governing the processing of personal data in accordance with this Section B.4.c.
Personal Data and Security. The Parties undertake to comply with the provisions of the regulations on the protection of personal data: When Provider acts as a data processor within the meaning of these regulations: Provider shall only proceed on documented instructions of the Accenture, it shall implement the appropriate technical and organizational measures to warrant the security of data and shall sign on first request the specific contract related to personal data processing as proposed by the Accenture. The Provider is advised that Accenture implements processing of personal data to manage its relations with its own providers. The data collected are essential for such management and will be analyzed, processed and transmitted by the concerned Accenture departments. Data relating to the employees of the Provider may, for the communication of or operations involving such data, be transferred to companies in the Accenture Group, their subcontractors or service providers located in countries that may or may not benefit from adequate levels of protection. Internal rules designed to organize cross-border flow of personal data intragroup and agreements aimed at organizing the transmission of such data to third companies have been developed in order to ensure adequate levels of protection. The right of the Provider’s employees to query or/and access to their personal data can be exercised by writing to the Procurement Department, 000 Xxxxxx xx Xxxxxx, 00000 Xxxxx, together with a copy of title of identity, or by emailing the Accenture Data Privacy Officer at the following address: xxxxxxxxxxx@xxxxxxxxx.xxx. It's the Provider’s responsibility to inform its employees of the contents of this clause. The obligations concerning data and system security notified by the Accenture are an integral part of this Agreement and are enforceable against the Provider on the grounds of compliance obligations.
Personal Data and Security. The Parties undertake to comply with the provisions of the regulations on the protection of personal data:
Personal Data and Security. 15.1 The personal data to be processed by Xxxxxxxxx & Partners in the performance of the Services is subject to the General Data Protection Regulation (hereinafter: “GDPR”).
15.2 In the context of the Services to be provided, Akkermans & Partners will ensure compliance with its obligations under the GDPR, which may vary depending on its role of processor or controller. These obligations in any case include offering an appropriate level of security, taking into consideration the risks involved in the processing operations and the nature of the personal data to be protected.
15.3 In the context of the Services to be purchased, the Client will ensure compliance with his obligations under the GDPR. These obligations in any case include the correctness and correct collection of the personal data to be processed.
15.4 A processing agreement, which applies if Akkermans & Partners may be regarded as the processor, that includes additional safeguards with regard to the processing of personal data, forms part of the Agreement and these General Terms and Conditions.
15.5 At any time, the Client can download, through the interface, the Data that is used or processed by the Client via the Services. Akkermans & Partners is not obliged to make Data or any other form of backup available to the Client of its own accord.
Personal Data and Security a. As a result of this PO, Seller may obtain certain information relating to identified or identifiable individuals (“Personal Data”). Seller shall have no right, title, or interest in Personal Data obtained as a result of this PO.
b. To the extent it actually processes Personal Data, Seller will:
(i) implement and maintain appropriate technical and organizational measures and other protections for Personal Data (including, without limitation, not loading any Personal Data provided to Seller on any laptop computer or any portable storage media that can be removed from Seller's premises unless such Personal Data has been encrypted);
(ii) report to Buyer's Office of Legal Counsel any breaches of security of Personal Data immediately, but no later than 24 hours, after discovery;
(iii) cooperate fully with Buyer in investigating any breach;
(iv) cooperate fully with Buyer's requests for access to, correction of, or destruction of Personal Data in Seller's possession; and
(v) comply with all instructions or other requirements provided or issued by Buyer from time to time relating to Personal Data.
Personal Data and Security. Each Party agrees that it has in place and will maintain, adequate security procedures and controls to prevent the unintended disclosure of, and the unauthorized access to or misappropriation of, any personal data or information of any guest. Each Party agrees that it will process, store, transmit, and access any guest information in compliance with applicable law and, for guest information that includes payment information (including, without limitation, credit card, debit card, or financial account information), will do so in compliance with the current Payment Card Information Data Security Standard (“PCI
Personal Data and Security. (i) Each Party agrees that it has in place and will maintain, or will establish and maintain, adequate security procedures and controls to prevent the unintended disclosure of, and the unauthorized access
(ii) This Section B.4.c.ii applies to circumstances where You are the merchant of record and Expedia possesses, stores, processes, or transmits guests’ cardholder data on Your behalf, or to the extent that Expedia could impact the security of Your cardholder data environment: Expedia acknowledges that Expedia is responsible for the security of cardholder data that Expedia possesses, stores, processes or transmits and will comply with the PCI DSS as issued by the PCI Security Standard Council, as updated from time to time.
Personal Data and Security. 12.1 Each Party warrants, represents and undertakes that it shall comply with all Applicable Laws (including without limitation, the Data Protection Legislation), regulations, codes of practice and industry standards when carrying out its obligations under this Agreement and has all necessary licences and consent to enable it to perform its obligations under this Agreement.
12.2 The parties shall comply with the terms of Schedule 8 in respect of the protection of Personal Data.
12.3 The Supplier warrants it has appropriate business continuity and disaster recovery plans in place in accordance with Good Industry Practice and tests them regularly; and will continue do so throughout the Term.
Personal Data and Security a. We will only use your personal data for internal purposes in order to fulfil our obligations under our contracted terms.
b. We will not share your personal data with third parties.
c. Only if we are required by law, will your information may be disclosed to police or other United States government agencies.
d. You must provide us with all and any updates to information held on our file to ensure that such information is accurate and current.(e.g., if you change your email, telephone contact details or address)
e. We reserve the right (unless specifically requested in writing) to hold your general contact details on our files for a period of no more than 24months after receipt of CTI . These will be used only to inform you of any company information or updates which we consider may be of interest.
f. All Client financial details will be erased from our files immediately following settlement of all and any outstanding amounts due post CTI receipt.
