Safeguarding Data. 1. Taking into consideration the state of the art, costs of implementation and the nature, scope, context and purposes of the Data Processing, the likelihood and potential severity of risks to the rights and freedoms of natural persons, and the risk of data breach, the Parties represent and warrant that it shall implement technical, physical, and administrative security measures appropriate to such risks, which may include, but are not necessarily limited to: a. The de-identification, anonymization, pseudonymization, and encryption of Personal Data; b. The ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems, facilities, and services; c. The ability to restore the availability of and access to Personal Data in a timely manner in the event of a physical or technical incident; and d. A process for regularly testing, assessing, and evaluating the effectiveness of technical, physical, and administrative measures for ensuring the security of the Data Processing. 2. The Parties’ measures for protecting Personal Data shall be based on the concepts of privacy by design and by default.
Appears in 5 contracts
Samples: Local Agreement, Local Agreement, Local Agreement
