Processing of personal data by the beneficiaries. 1.4. The beneficiaries must process personal data under the Agreement in compliance with applicable EU and national law on data protection (including authorisations or notification requirements). The beneficiaries may grant their personnel access only to data that is strictly necessary for implementing, managing and monitoring the grant contract. The beneficiary must ensure that the personnel authorised to process personal data has committed itself to confidentiality or is under appropriate statutory obligation of confidentiality. The beneficiaries must adopt appropriate technical and organisational security measures having regard to the risks inherent in the processing and to the nature, scope, context and purposes of processing of the personal data concerned. This is in order to ensure, as appropriate:
Processing of personal data by the beneficiaries. Where the Agreement requires the processing of personal data by the partner, the partner may act only under the supervision of the data controller identified in Article 6, Part I, in particular with regard to the purpose of the processing, the categories of data which may be processed, the recipients of the data and the means by which the data subject may exercise his or her rights. The access to data that the partner grants to their personnel shall be limited to the extent strictly necessary for the implementation, management and monitoring of the Agreement. The partner undertakes to adopt appropriate technical and organisational security measures having regard to the risks inherent in the processing and to the nature of the personal data concerned, in order to:
Processing of personal data by the beneficiaries. 1. The beneficiaries must process personal data under the Grant Agreement in compliance with applicable EU and national law on data protection (including authorisations or notification requirements).
