PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. Processor maintains security incident management policies and procedures and, to the extent required under applicable Data Protection Laws, shall notify Customer without undue delay after becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data Processed on behalf of the Customer, including Personal Data transmitted, stored or otherwise Processed by Processor or its Sub-processors of which Processor becomes aware (a “Personal Data Incident”). Processor shall make reasonable efforts to identify the cause of such Personal Data Incident and take those steps as Processor deems necessary and reasonable in order to remediate the cause of such a Personal Data Incident to the extent the remediation is within Processor’s reasonable control. The obligations herein shall not apply to incidents that are caused by Customer or Customer’s users.
Appears in 2 contracts
Samples: Data Processing Agreement, Data Processing Agreement
PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. Processor maintains security incident management policies and procedures and, to the extent required under applicable Data Protection Laws, shall notify Customer without undue delay after becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data Processed on behalf of the Customer, including Personal Data transmitted, stored or otherwise Processed by Processor or its Sub-processors of which Processor becomes aware (a “"Personal Data Incident”"). Processor shall make reasonable efforts to identify the cause of such Personal Data Incident and take those steps as Processor deems necessary and reasonable in order to remediate the cause of such a Personal Data Incident to the extent the remediation is within Processor’s 's reasonable control. The obligations herein shall not apply to incidents that are caused by Customer or Customer’s 's users.
Appears in 1 contract
Samples: Data Processing Agreement
PERSONAL DATA INCIDENT MANAGEMENT AND NOTIFICATION. Processor maintains security incident management policies and procedures and, to the extent required under applicable Data Protection Laws, shall notify Customer without undue delay after becoming aware of the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data Processed on behalf of the Customer, including Personal Data transmitted, stored or otherwise Processed by Processor or its Sub-Sub- processors of which Processor becomes aware (a “Personal Data Incident”). Processor shall make reasonable efforts to identify the cause of such Personal Data Incident and take those steps as Processor deems necessary and reasonable in order to remediate the cause of such a Personal Data Incident to the extent the remediation is within Processor’s reasonable control. The obligations herein shall not apply to incidents that are caused by Customer or Customer’s users.
Appears in 1 contract
Samples: Data Processing Agreement
