Processing of Personal Information. We treat your personal information confidentially and in accordance with applicable legislation. When you purchase insurance from us, we gather information in connection with enrolment, filing a claim and use of our digital platforms, e.g. civil registration number, telephone number, e-mail address, membership of Sygeforsikringen ”danmark”, industry, employment, marital status and any health information. This information is used to create and administer the insurance policy for use in case of a claim and in the ongoing case processing to ensure the best possible service and as part of sales management, product development, quality assurance, advice and determination of general user behaviour. We retain the gathered information for as long as necessary and in accordance with the applicable legislation. You can always contact us if you want to know which personal information, we have registered about you. You are entitled to change incorrect information. On our website, xx-xxxxxxx.xx, you can read more about data security and how we handle your personal information. In some cases, we pass personal information about you to the suppliers with whom we cooperate.
Processing of Personal Information. 2.1 The Recipient shall comply with Data Protection Laws and Regulations.
2.2 For the avoidance of doubt, Disclosing Party’s instructions to the Recipient for the Processing of Personal Information must comply with Data Protection Laws and Regulations. In addition, Disclosing Party shall have sole responsibility for the accuracy, reliability, integrity, quality, and legality of Personal Information, and the means by which Disclosing Party acquired Personal Information, including providing any required notices to, and obtaining any necessary consent from, its employees, agents or third parties.
2.3 The Recipient will not sell, share, or rent Disclosing Party’s Personal Information to any third party or use Disclosing Party’s phone number for unsolicited messages, without the express consent of the Disclosing Party. Any messages sent by the Recipient will only be pursuant to this Agreement.
2.4 It is expressly stated that the Recipient agrees and warrants:
2.4.1 that the Processing of Personal Information shall be carried out in accordance with the relevant provisions of the Data Protection Laws and Regulations and does not violate the relevant provisions of the POPI Act;
2.4.2 that it shall instruct throughout the duration of the Processing the Recipient to process the Personal Information only on the Disclosing Party's behalf and in accordance with the Data Protection Laws and Regulations; and
2.4.3 that after assessment of the requirements of the Data Protection Laws and Regulations, the security measures are appropriate to protect Personal Information against accidental or unlawful destruction or accidental loss, alteration, unauthorised disclosure or access, in particular where the Processing involves the transmission of data over a network, and against all other unlawful forms of processing, and that these measures ensure a level of security appropriate to the risks presented by the Processing and the nature of the Personal Information to be protected having regard to the state of the art and the cost of their implementation.
2.5 The Disclosing Party hereby consents to the Processing of their Personal Information in accordance with this Processing Agreement.
2.6 The Recipient shall keep the Personal Information of the Disclosing Party confidential and shall only Process Personal Information on behalf of and in accordance with Disclosing Party’s documented and lawful instructions to:
2.6.1 fulfil the purpose set out in Attachment 1 to this Processing Ag...
Processing of Personal Information. If Cyanre processes any Personal Information on the Customer’s behalf when performing its obligations under the Contract Documents, the parties record their intention that the Customer shall be the Responsible Party and Cyanre shall be an Operator and in any such case:
12.3.4.1 the Customer shall ensure that the Customer is entitled (as per applicable data protection legislation) to transfer the relevant Personal Information to Cyanre so that Cyanre may lawfully use, process and transfer the Personal Information in accordance with Contract Documents on the Customer's behalf;
12.3.4.2 Cyanre shall process the Personal Information only in accordance with the terms of the Contract Documents and any lawful instructions reasonably given by the Customer from time to time;
12.3.4.3 Cyanre shall notify the Customer immediately in writing if there are reasonable grounds to believe that the Personal Information has been accessed or acquired by any unauthorised person or that there has been any loss or corruption of Personal Information. Cyanre agrees to use its best endeavours to assist the Customer, where such information has been used, lost, corrupted or disclosed in remedying such unauthorised use, loss, corruption or disclosure.
12.3.4.4 In the event that Cyanre uses a third party for any or all of the processing activities required of Cyanre in connection with a Contract Document, it will ensure that it has signed terms and conditions sufficient to meet its obligations under this Agreement.
12.3.4.5 Disclosure of any Personal Information to any of Cyanre’s Personnel, which will be done on a need to know basis only, and without prejudice to the Customer’s rights in terms of the Contract Documents, Cyanre shall procure that each employee or representative is aware of the confidential nature of the information being disclosed and shall be bound by am applicable confidentiality provision.
12.3.4.6 (where required) the Customer acknowledges and agrees that the Personal Information may be transferred or stored outside the country where Cyanre may make use of third party service providers in order to carry out the Services and Cyanre’s other obligations under the Contract Documents;
Processing of Personal Information. (a) Both Parties shall cooperate to ensure that their respective Processing of Personal Information hereunder does and will materially comply with all applicable Privacy Requirements and take all reasonable precautions to avoid acts that place the other Party in breach of its obligations under any applicable Privacy Requirements. Nothing in this Section 6.9 shall be deemed to prevent any Party from taking the steps it reasonably deems necessary to comply with any applicable Privacy Laws.
(b) To the extent required to do so by applicable Privacy Requirements as a result of or in connection with the transactions contemplated hereby, including the completion of the Internal Reorganization, the Parties agree to enter into such data processing agreements as required to comply with applicable Privacy Laws and shall act reasonably and in good faith in doing so.
(c) It is understood and agreed by the Parties that the transfer of Personal Information in connection with the Transfer of Assets will not violate any Privacy Requirements in any material respect.
Processing of Personal Information. 21.1 We may, and you expressly consent to the collecting and Processing of your Personal Information by us and the Supplier to:
21.1.1 provide any combination of services or analysis linked to the SnapScan Merchant Service;
21.1.2 monitor and analyse your use of the SnapScan Merchant Service for fraud, compliance and other risk-related purposes;
21.1.3 carry out statistical and other analyses to identify potential markets and trends; and
21.1.4 develop new products and services.
21.2 You hereby expressly consent that we may:
21.2.1 Process and further Process your Personal Information within the Group for the above purposes;
21.2.2 need to disclose your Personal Information to our legal advisors, financial advisors, auditors or a competent court in connection with any legal proceedings.
21.2.3 disclose your Personal Information to any person who provides services to us or acts as our agent or to whom we have transferred or propose to transfer any of our rights and duties in respect of the Agreement. Some of these persons may be located in countries outside of the Republic of South Africa. We ask persons who provide services to us to agree to our privacy policies if they need access to any Personal Information to carry out their services;
21.2.4 disclose your Personal Information to any Payment Scheme, Regulatory Authority or other financial institutions in the Kingdom of Lesotho, Kingdom of Swaziland, the Republic of South Africa and the Republic of Namibia;
21.2.5 disclose your Personal Information to MATCH (Member Alert to Control High- Risk Merchants System), MPRS (Merchant Performance Reporting Service), HMT (Her Majesty’s Treasury), OFAC (Office of Foreign Asset Control), UNSC (United Nations Security Council), MINEFI (the Ministry of Economy, Finance and Industry (France)) and/or any other sanctions issuing body, all as amended from time to time; and
21.2.6 where applicable disclose your Personal Information to any entity that referred you to us, for the specific and express purpose of calculating the referral commission due to such entity.
21.3 You acknowledge that:
21.3.1 we will at all times remain responsible for determining the purpose of and means for Processing your Personal Information;
21.3.2 we are required by various applicable laws to collect or Process some of your Personal Information;
21.3.3 without your Personal Information we may be unable to open or continue to offer the SnapScan Merchant Service to you; and
21.3.4 you are providing...
Processing of Personal Information. Supplier covenants and agrees to comply with the terms and conditions of this Schedule if Supplier Processes Personal Information.
Processing of Personal Information. 5.1 Personal information will be shared and processed by the partners in accordance with UK data protection legislation.
5.2 It is the responsibility of each partner agency to ensure staff understand the importance of protecting personal data, that they are familiar with the organisations security policy and that they put its security procedures into practice. Partner agencies should ensure staff have undertaken Data Protection training which covers their duties under the Data Protection Act.
5.3 All information shared under this agreement, personal or otherwise, must only be used for the purpose(s) specified at the time of disclosure as defined in the relevant data sets/lists unless obliged under statute or regulation, or under the instructions of a court.
5.4 The data shared under this agreement must NOT be used for any other purpose other than the specific scrutiny and assurance activity for which it has been shared. Where a partner receiving information under this agreement, wants to use that information for any other purpose, they must seek and receive permission from the original data controller before using the information for that further purpose. Further use of the information undertaken without the permission of the data controller will not be lawful or covered by this agreement.
5.5 In the event that the scrutiny and assurance activity identifies the need to share the information wider than that for conducting an audit, the personal data may need to be shared with other agencies. However, this would be in accordance with Information Sharing: advice for practitioners providing safeguarding services to children, young people, parents and carers, and should directly involve the agency from which the information originated.
5.6 Any data breaches involving shared data will be reported and investigated internally by the organisation that has caused the data breach. The outcome of the investigation will be reported to the Children’s MARS Board. Organisations have a responsibility to report data breaches that are likely to result in a high risk to the rights and freedoms of the data subject to the Information Commissioner’s Office within 72 hours of becoming aware of the breach.
5.7 The Data Protection Notification and Privacy Notice of each partner must reflect the processing of personal information under this agreement, to ensure that data subjects are fully informed about the information held about them and to their rights to gain access to informati...
Processing of Personal Information. 9.1 This paragraph 9 of the Information Security Terms comprises requirements in relation to the processing of any “personal information” (as defined in the Data Protection Act 1998) which is subject to any law or regulation implementing European Union Directive 95/46/EC, where this is applicable. MSFA and Customer agree that the Services are not anticipated to involve any processing of personal information, but acknowledge that if any personal information is ever processed in the course of providing the Services, this paragraph 9 shall apply.
9.2 Where Customer is obliged by law or regulations, or the rules of a regulatory authority to which Customer is subject, MSFA shall disclose the results of the security assessments referred to in these Information Security Terms to a regulator (including national data protection authorities) MSFA hereby consents to such disclosure.
9.3 MSFA shall ensure that:
(a) only authorised MSFA employees with job-related needs access any personal information in the course of providing goods and services under the Agreement (and such personal information cannot be read, copied, modified or removed without authorisation, either in the course of processing or use or after storage);
(b) such access is only given to such authorised staff to the extent necessary for the performance of their duties;
(c) an up-to-date list is kept of such authorised staff and their level of authorised access (and authorisation credentials are checked at least on an annual basis);
(d) personal information collected for different purposes can be processed separately; and
(e) a documented procedure is put in place to control access by authorised users under which each user is provided with a particular identification code that cannot be assigned to any other user at any time, while passwords:
(i) are at least eight characters long (or less, but only if the password is as long as the maximum number of characters allowed by the electronic device involved),
(ii) do not contain any clear reference to the user, and
(iii) are changed after the first access and periodically, at least every six (6) months, or disenabled if they are not used for six (6) months or if the means necessary to access personal information are lost (and in each case, if the user has access to Sensitive Personal Data the six (6) month period is reduced to three months). Such passwords shall be kept secret/confidential and not shared or otherwise disclosed whilst still valid.
9.4 MSFA sha...
Processing of Personal Information. 9.1 The Customer consents to:
9.1.1 The Bank to disclose to any third party involved in the marketing, sale and transfer of the Asset such Personal Information and other details as the Bank in its sole discretion may decide;
9.1.2 The Processing by the Bank of the Customer’s Personal Information in accordance with the Bank’s Processing practices and privacy statements available on its website or on request; and
9.1.3 The collection of Personal Information of the Customer by the Bank and, where lawful and reasonable, from public sources for credit, fraud and compliance purposes;
9.2 The Customer confirms:
9.2.1 That should Personal Information be given to the Bank in respect of or on behalf of another person, that the Customer is authorised to do so, consents on such person’s behalf to the Processing of the said Personal Information and confirms that the Customer is authorised to receive any privacy notices on such person’s behalf; and
9.2.2 That the Processing of Personal Information may be used by the Bank to provide other Bank products and services to the Customer, to carry out statistical and other analyses and to share the Personal Information with the Bank’s third-party service providers and within the various business units of the Bank.
Processing of Personal Information. The processing of personal information is defined by the POPI-Act as any activity relating to the: • collection, receipt, recording, organising, storing, updating, retrieval or use of personal information • dissemination by means of transmission, distribution or making available in any form of personal information • merging, linking, restriction, degradation, erasure or destruction of personal information
