Common use of SECURITY BREACH MANAGEMENT AND NOTIFICATION Clause in Contracts

SECURITY BREACH MANAGEMENT AND NOTIFICATION. 7.1 If Bluecore becomes aware of a Security Breach, Bluecore will promptly notify Customer of the Security Breach. Notifications made pursuant to this section will describe, to the extent possible, details of the Security Breach, including steps taken to mitigate the potential risks and steps Bluecore recommends Customer take to address the Security Breach. 7.2 Customer agrees that an unsuccessful Security Breach attempt will not be subject to this Section. An unsuccessful Security Breach attempt is one that results in no unauthorized access to Customer Personal Data or to any of Bluecore’s equipment or facilities storing Customer Personal Data, and may include, without limitation, pings and other broadcast attacks on firewalls or edge servers, port scans, unsuccessful log-on attempts, denial of service attacks, or similar incidents. 7.3 Notification(s) of Security Breaches, if any, will be delivered to one or more of Customer’s business, technical or administrative contacts by any means Bluecore selects, including via email. It is Customer’s sole responsibility to ensure it maintains accurate contact information on Bluecore’s support systems at all times. 7.4 Bluecore’s notification of or response to a Security Breach under this Section 7 will not be construed as an acknowledgement by Bluecore of any fault or liability with respect to the Security Breach. 7.5 Bluecore shall implement reasonable technical and organizational Security Measures to provide a level of security appropriate to the risk in respect to the Customer Personal Data. As technical and organizational measures are subject to technological development, Bluecore is entitled to implement alternative measures provided they do not fall short of the level of data protection set out by the Data Protection Laws.

SECURITY BREACH MANAGEMENT AND NOTIFICATION. 7.1 If Bluecore becomes aware of a any accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to any Customer Personal Data transmitted, stored or otherwise Processed on Bluecore’s equipment or facilities (“Security Breach”), Bluecore will promptly notify Customer of the Security Breach. Notifications made pursuant to this section will describe, to the extent possible, details of the Security Breach, including steps taken to mitigate the potential risks and steps Bluecore recommends Customer take to address the Security Breach. 7.2 Customer agrees that an unsuccessful Security Breach attempt will not be subject to this Section. An unsuccessful Security Breach attempt is one that results in no unauthorized access to Customer Personal Data or to any of Bluecore’s equipment or facilities storing Customer Personal Data, and may include, without limitation, pings and other broadcast attacks on firewalls or edge servers, port scans, unsuccessful log-on attempts, denial of service attacks, or similar incidents. 7.3 Notification(s) of Security Breaches, if any, will be delivered to one or more of Customer’s business, technical or administrative contacts by any means Bluecore selects, including via email. It is Customer’s sole responsibility to ensure it maintains accurate contact information on Bluecore’s support systems at all times. 7.4 Bluecore’s notification of or response to a Security Breach under this Section 7 will not be construed as an acknowledgement by Bluecore of any fault or liability with respect to the Security Breach. 7.5 Bluecore shall implement reasonable technical and organizational Security Measures to provide a level of security appropriate to the risk in respect to the Customer Personal Data. As technical and organizational measures are subject to technological development, Bluecore is entitled to implement alternative measures provided they do not fall short of the level of data protection set out by the Data Protection LawsLaw.