RECORDS, INFORMATION AND AUDIT. 8.1 Edukey shall maintain, in accordance with Privacy and Data Protection Requirements binding on Edukey, written records of all categories of processing activities carried out on behalf of the School.
RECORDS, INFORMATION AND AUDIT. 16.1 TDL will maintain, in accordance with Data Protection Laws binding on TDL, written records of all categories of processing activities carried out on behalf of the Client.
16.2 TDL will, in accordance with Data Protection Laws, make available to the Client such information as is reasonably necessary to demonstrate TDL’s compliance with its obligations as a data processor under this Agreement and the Data Protection Laws, and allow for and contribute to audits, including inspections, by the Client (or another auditor mandated by the Client) for this purpose, subject to the Client:
16.2.1 giving TDL reasonable prior notice of such information request, audit and/or inspection being required by the Client;
16.2.2 ensuring that all information obtained or generated by the Client or its auditor(s) in connection with such information requests, inspections and audits is kept strictly confidential (save for disclosure to the relevant regulator or as otherwise required by Applicable Law);
16.2.3 ensuring that such audit or inspection is undertaken during normal business hours, with minimal disruption to TDL’s business, the Sub-Processors’ business and the business of other customers of TDL.
RECORDS, INFORMATION AND AUDIT. 7.1 The Data Processor shall maintain, in accordance with Data Protection Laws binding on the Data Processor, written records of all categories of processing activities of the Protected Data carried out on behalf of the Data Controller.
7.2 The Data Processor shall provide, upon the Data Controller’s request, all information reasonably necessary to demonstrate the Data Processor’s compliance with this Addendum.
7.3 If the Data Controller has justifiable reason to believe that the Data Processor is not complying with the terms and conditions under the Addendum, in particular with the obligation to maintain and implement the agreed technical and organizational measures, or those arising out of inquiries by its auditors or regulators, the Data Processor will use commercially reasonable efforts to work in good faith to respond to further inquiries by Data Controller (including Data Controller inquiries arising out of inquiries by its auditors or regulators) regarding Data Processor’s information security program as it relates to Protected Data, which may include (1) an onsite visit of Data Processor's offices at 0000 X. Xxxx Street Arlington, VA 22202 no more than once per calendar year, at a mutually agreed upon time during Data Processor’s normal business hours and (2) no more than once every calendar year, requiring Data Processor to complete or respond to a risk due diligence document provided by Data Controller requesting information on information security and related measures. During the course of any onsite visit by Data Controller, Data Processor shall make available to Data Controller (i) information pertaining to Data Processor’s information security program as it relates to Protected Data, (ii) appropriate personnel to review with Data Controller such information security program and (iii) other information related to compliance with the Agreement and this Addendum as requested by Data Controller and reasonably available to the Data Processor. Any onsite visit shall be subject to Data Processor’s standard security and confidentiality procedures and practices, including but not limited to, Data Processor’s requirement that Data Controller must enter into a non-disclosure agreement before the visit. In addition, Data Processor shall provide Data Controller with the following information: (x) updates on internal security measures (y) risk reports (e.g. SOC reviews, where available), penetration assessment summaries and due diligence documentation, and...
RECORDS, INFORMATION AND AUDIT. 7.1. Vendor shall make available to Company on request in a timely manner and in any event within 3 working days copies of complete, accurate and up to date written records of all categories of Processing activities carried out on behalf of Company, containing such information as Company reasonably requires to demonstrate Vendor’s and Company’s compliance with their respective obligations under applicable data protection laws and this DPA.
7.2. Vendor shall upon reasonable notice and at no cost to Company allow for and contribute to audits, for the purpose of demonstrating compliance by Vendor and Company with their respective obligations under applicable data protection laws and under this DPA. Especially, Vendor shall provide and procure reasonable access (where practicable, during normal business hours) to information, documentation, facilities, equipment, premises and sites relating to Company Personal Data and/or the records referred to in clause 7.1, and to Vendor Personnel.
7.3. Vendor shall promptly resolve, at its own cost and expense, all data protection and security issues discovered by Company and reported to Vendor that reveal a breach or potential breach by Vendor of its obligations under this DPA.
7.4. If Vendor is in breach of its obligations under this DPA, Company may suspend the transfer of Company Personal Data to Vendor until the breach is remedied.
7.5. Company shall be entitled to share any notification, details, records or information provided by or on behalf of Vendor under this DPA with Company, its professional advisors and/or the Supervisory Authority.
RECORDS, INFORMATION AND AUDIT. 8.1 The Relevant Daisy Group Member shall maintain, in accordance with Data Protection Laws binding on the Relevant Daisy Group Member, written records of all categories of Processing activities carried out on behalf of the Customer.
8.2 The Relevant Daisy Group Member shall, in accordance with Data Protection Laws, upon prior written request make available to the Customer:
8.2.1 a summary of the audit reports demonstrating Xxxxx’s or the Relevant Daisy Group Member’s compliance with their respective obligations as a Processor under Data Protection Laws; and
8.2.2 confirmation that the audit has not revealed any material vulnerability in Xxxxx’s or the Relevant Daisy Group Member’s systems, or to the extent that any such vulnerability was detected, that the Relevant Daisy Group Member has taken steps to remedy such vulnerability.
8.3 If the measures set out at clause 8.2 are not sufficient to confirm Xxxxx’s or the Relevant Daisy Group Member’s compliance with Data Protection Laws, the Relevant Daisy Group Member will allow for and contribute to audits, including inspections, by the Customer (or another auditor mandated by the Customer) as is reasonably necessary to demonstrate Xxxxx's or the Relevant Daisy Group Member’s compliance with its obligations under Article 28 of the GDPR (and under any Data Protection Laws equivalent to that Article 28), subject to the Customer:
8.3.1 giving the Relevant Daisy Group Member reasonable prior notice of such information request, audit and/or inspection being required by the Customer;
8.3.2 the parties mutually agreeing upon the scope, timing and duration of the audit;
8.3.3 ensuring that all information obtained or generated by the Customer or its auditor(s) in connection with such information requests, inspections and audits is kept strictly confidential (save for disclosure to the Supervisory Authority or as otherwise required by Applicable Law);
8.3.4 ensuring that such audit or inspection is undertaken during normal business hours, with minimal disruption to Xxxxx's or the Relevant Daisy Group Member’s business, the Sub-Processors’ business and the business of other customers of the Relevant Daisy Group Member; and
8.3.5 paying Xxxxx's or the Relevant Daisy Group Member’s reasonable charges for assisting with the provision of information and allowing for and contributing to inspections and audits.
RECORDS, INFORMATION AND AUDIT. 9.1 Workbooks shall maintain, in accordance with Data Protection Laws binding on Workbooks, written records of all categories of processing activities carried out on behalf of the Customer.
9.2 Workbooks shall, in accordance with Data Protection Laws, make available to the Customer such information as is reasonably necessary to demonstrate Workbooks' compliance with the obligations of Data Processors under Data Protection Laws, and allow for and contribute to audits, including inspections, by the Customer (or another auditor mandated by the Customer and agreed by Workbooks) for this purpose, subject to clause 6.2 and subject to the Customer:
9.2.1 giving Workbooks reasonable prior notice of such information request, audit and/or inspection being required by the Customer;
9.2.2 ensuring that all information obtained or generated by the Customer or its auditor(s) in connection with such information requests, inspections and audits is kept strictly confidential (save for disclosure to the Supervisory Authority or as otherwise required by applicable law);
9.2.3 ensuring that such audit or inspection is undertaken during normal business hours in England, with minimal disruption to Workbooks' business and the business of other customers of Workbooks; and
9.2.4 paying Workbooks' reasonable costs for assisting with the provision of information and allowing for and contributing to inspections and audits.
9.3 Workbooks may object to any third party auditor appointed by the Customer to conduct any audit under clause 9.2 if the auditor is not in Workbooks’ reasonable opinion, suitably qualified or independent.
9.4 Nothing in clause 9.2 gives the Customer any right to access any data of any other customer of Workbooks or any information that could cause Workbooks to breach its obligations under Data Protection Laws and/or its confidentiality or privacy obligations to any third party.
RECORDS, INFORMATION AND AUDIT. 7.1. The Service Provider shall maintain, in accordance with Data Protection Laws binding on the Service Provider, written records of all categories of processing activities carried out on behalf of the Customer.
RECORDS, INFORMATION AND AUDIT. 37.1 Records Provisions
(a) Project Co shall comply with Schedule 26 − Record Provisions.
(b) Project Co shall ensure the back up and storage in safe custody of the data, materials and documents referred to in this Article 37 and all Project Data and Drawings in accordance with Good Industry Practice. Project Co shall submit to the City Representative Project Co’s proposals for the back up and storage in safe custody of such data, materials and documents and the City shall be entitled to object if the same is not in accordance with Good Industry Practice, Project Co shall comply, and shall cause all Project Co Parties to comply, with all procedures to which the City Representative has not objected. Project Co may vary its procedures for such back up and storage subject to submitting its proposals for change to the City Representative, who shall be entitled to object on the basis set out above. Any Disputes in connection with the provisions of this Section 37.1(b) may be referred for resolution in accordance with Schedule 27 − Dispute Resolution Procedure with reference to Good Industry Practice.
RECORDS, INFORMATION AND AUDIT.
10.1 The Intermediary will and will procure that the Advisers will make and maintain full and accurate records and accounts in respect of the marketing and selling of Policies undertaken pursuant to this Agreement.
10.2 The Intermediary will promptly notify Fairmead of all material information that a Policyholder notifies to the Intermediary pursuant to a Policy.
10.3 The Intermediary will provide management information as reasonably requested by Fairmead from time to time in the form determined by Fairmead.
10.4 Fairmead will provide management information in the form determined by Fairmead from time to time.
10.5 Following termination of this Agreement, the Intermediary will allow Fairmead to retain copies of any records relating to the Policies accepted by the Intermediary and its Sub Intermediaries for such time as is required under Applicable Laws.
10.6 Fairmead may appoint its auditors (both internal and external), officers, employees and representatives (including internal compliance and business standards departments) to inspect, audit, examine and verify, during normal office hours:
10.6.1 at the offices of the Intermediary and any of the Advisers all accounts, books, files, and papers relating to the marketing and selling of the Policies by the Intermediary and the Advisers; and
10.6.2 the computer systems used which contain data, files and programs relating to the marketing and selling of the Policies by the Intermediary and the Advisers; and the Intermediary shall (and shall procure that the Advisers shall), whenever required and on reasonable notice, give such auditors (both internal and external), officers, employees and representatives access to its offices for such purposes.
10.7 The Intermediary shall permit the representatives and appointees of any Regulatory Authority access to its offices and to the accounts, books, correspondence, files, papers and computer systems referred to in clause 10.6, and shall procure access to those of the Advisers and shall allow the representatives and appointees of the any Regulatory Authority to copy any documents or other material and to print any data or information held on any computer system and to remove such copies and printed materials.
10.8 The Intermediary shall at all times comply with any reasonable request made by Fairmead to produce for inspection during normal office hours by any Regulatory Authority or any other person or persons authorised by Fairmead any accounts, books, correspondenc...
RECORDS, INFORMATION AND AUDIT. Company shall maintain, in accordance with Data Protection Laws binding on Company, written records of all categories of Processing activities carried out on behalf of Customer.
