SECURITY AND TRAINING. 6.1. Each party shall only provide and receive the Shared Personal Data using secure methods, having regard to the availability of joint or shared IT systems, the technology for facilitating data transfers, the risk of data loss or breach and the cost of implementing such measures. 6.2. It is the responsibility of each party to ensure that its staff members are appropriately trained to handle and process the Shared Personal Data in accordance with any agreed technical and organisational measures to keep it secure and to uphold the data protection principles set out in Data Protection Legislation. 6.3. The parties shall only disclose or transfer the Shared Personal Data to a third party located outside the EEA in line with the provisions of the applicable Data Protection Legislation. 6.4. Each party is responsible for their own legal compliance and self-audit. A party, however, reasonably may ask to inspect another party or parties’ arrangements for the processing of Shared Personal Data and may request a review of the Data Sharing Agreement where it considers that another party is not processing the Shared Personal Data in accordance with this Data Sharing Agreement, and the matter has demonstrably not been resolved through discussions between the parties.
Appears in 15 contracts
Samples: General Terms Agreement, General Terms Agreement, General Terms Agreement
