PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. Data Processor maintains security incident management policies and procedures specified in Security Documentation and, to the extent required under applicable Data Protection Laws and Regulations, shall notify Client without undue delay after becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data, including Personal Data, transmitted, stored or otherwise Processed by Data Processor or its Sub-processors of which Data Processor becomes aware (a “Personal Data Incident”). Data Processor shall make reasonable efforts to identify the cause of such Personal Data Incident and take those steps as Data Processor deems necessary and reasonable in order to remediate the cause of such a Personal Data Incident to the extent the remediation is within Data Processor’s reasonable control. The obligations herein shall not apply to incidents that are caused by Client or Client’s users. In any event, Client will be the party responsible for notifying supervisory authorities and/or concerned data subjects (where required by Data Protection Laws and Regulations).
PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. Braze maintains security incident management policies and procedures specified in the Security, Privacy and Architecture Datasheet and shall notify Customer without undue delay after becoming aware of a Personal Data Breach. Braze shall provide information to Customer necessary to enable Customer to comply with its obligations under Data Protection Laws and Regulations in relation to such Personal Data Breach. The content of such communication to Customer will (i) include the nature of Processing and the information available to Braze, and (ii) take into account that under applicable Data Protection Laws and Regulations, Customer may need to notify regulators or individuals of the following: (a) a description of the nature of the Personal Data Breach including, where possible, the categories and approximate number of individuals concerned and the categories and approximate number of Personal Data records concerned; (b) a description of the likely consequences of the Personal Data Breach; and (c) a description of the measures taken or proposed to be taken to address the Personal Data Breach, including, where appropriate, measures to mitigate its possible adverse effects. As between the parties, Customer is responsible for any required notification to Data Subjects and/or regulators of a Personal Data Breach. Braze shall make commercially reasonable efforts, based on its expertise, to identify the cause of such Personal Data Breach and take those steps as Braze deems necessary and reasonable in order to remediate the cause of such Personal Data Breach to the extent the remediation is within Braze’s reasonable control. The obligation to remediate the cause of a Personal Data Breach shall not apply to Personal Data Breaches that are caused by Customer or Customer’s Dashboard Users.
PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. Data Processor maintains security incident management policies and procedures and, to the extent required under applicable Data Protection Laws and Regulations, shall notify Customer without undue delay after becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data, including Personal Data, transmitted, stored or otherwise Processed by Data Processor or its Sub-processors of which Data Processor becomes aware (a “Personal Data Incident”). Data Processor shall make reasonable efforts to identify the cause of such Personal Data Incident and take those steps as Data Processor deems necessary and reasonable in order to remediate the cause of such a Personal Data Incident to the extent the remediation is within Data Processor’s reasonable control. The obligations herein shall not apply to incidents that are caused by Customer or Customer’s users. In any event, Customer will be the party responsible for notifying supervisory authorities and/or concerned data subjects (where required by Data Protection Laws and Regulations).
PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. Contentsquare maintains security incident management policies and procedures and, to the extent required under applicable Data Protection Laws, shall notify Customer’s notification email address (as informed by Customer to Contentsquare) without undue delay (no later than forty-eight (48) hours) after becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data Processed on behalf of the Customer, including Personal Data transmitted, stored or otherwise Processed by Contentsquare or its Sub- processors of which Contentsquare becomes aware (a “Personal Data Incident”). Contentsquare shall make reasonable efforts to identify the cause of such Personal Data Incident and take those steps as Contentsquare deems necessary and reasonable in order to remediate the cause of such a Personal Data Incident to the extent the remediation is within Contentsquare’s reasonable control. The obligations herein shall not apply to incidents that are caused by Customer or Customer’s users. Customer’s notification email: . Customer may inform Contentsquare of changes to such notification email by emailing xxxxxxx@xxxxxxxxxxxxx.xxx.
PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. Stripe will implement and maintain a data security incident management program, compliant with Applicable Law, that addresses management of data security incidents including a loss, theft, misuse, unauthorized access, disclosure, or acquisition, destruction or other compromise of Personal Data (“Incident”). Except to the extent necessary to comply with applicable legal, regulatory or law enforcement requirements, Stripe will inform you without unreasonable delay in accordance with Applicable Law after it becomes aware of any Incident that has occurred in its systems which affects Personal Data Stripe processes on your behalf.
PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. Processor maintains security incident management policies and procedures and, to the extent required under applicable Data Protection Laws, shall notify Customer without undue delay after becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data Processed on behalf of the Customer, including Personal Data transmitted, stored or otherwise Processed by Processor or its Sub-processors of which Processor becomes aware (a “Personal Data Incident”). Processor shall make reasonable efforts to identify the cause of such Personal Data Incident and take those steps as Processor deems necessary and reasonable in order to remediate the cause of such a Personal Data Incident to the extent the remediation is within Processor’s reasonable control. The obligations herein shall not apply to incidents that are caused by Customer or Customer’s users.
PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. To the extent required under applicable Data Protection Laws and Regulations, Applitools shall notify Client without undue delay after becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data, including Personal Data, transmitted, stored or otherwise Processed by Applitools or its Sub-processors of which Applitools becomes aware (a “Personal Data Incident”). Applitools shall make reasonable efforts to identify the cause of such Personal Data Incident and take those steps as Applitools deems necessary, possible and reasonable in order to remediate the cause of such a Personal Data Incident to the extent the remediation is within Applitools’s reasonable control. The obligations herein shall not apply to incidents that are caused by Client or Client’s users. In any event, Client will be the party responsible for notifying supervisory authorities and/or concerned data subjects (where required by Data Protection Laws and Regulations).
PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION nShift maintains personal data breach management policies and procedures in compliance with GDPR and shall notify the Customer without undue delay after a personal data incident has been discovered. nShift shall make reasonable efforts to identify the cause of such Personal Data Breach and take those steps as nShift deems necessary and reasonable in order to remediate the cause of such a Personal Data Breach to the extent the remediation is within nShift’s reasonable control. The obligations herein shall not apply to incidents that are caused by Customer or Customer’s users.
PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. VTEX maintains security incident management policies and procedures specified in the Security Practices Data Sheet (xxxxx://xxxxxxxxxx.xxxx.xxx). VTEX shall notify Customer without undue delay of any breach relating to Personal Data of which VTEX becomes aware and which may require a notification to be made to a Supervisory Authority or Data Subject under applicable Data Protection Law or which VTEX is required to notify to Customer under applicable Data Protection Law (a “Personal Data Incident”). VTEX shall provide commercially reasonable cooperation and assistance in identifying the cause of such Personal Data Incident and take commercially reasonable steps to remediate the cause to the extent the remediation is within VTEX’s control.
PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. To the extent required under applicable Data Protection Laws, Wiz shall notify Customer without undue delay after becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Customer Personal Data (a “Personal Data Incident”). Wiz shall make reasonable efforts to identify the cause of such Personal Data Incident and take those steps as Wiz deems necessary, possible and reasonable in order to remediate the cause of such a Personal Data Incident. Customer (or its customers), as the Controller, will be the party responsible for notifying supervisory authorities and/or concerned Data Subjects (where required by Data Protection Laws).
