Common use of Security of Data Processing Clause in Contracts

Security of Data Processing. 5.1 AWS has implemented and will maintain the technical and organizational measures for the AWS Network as described in the Security Standards and this Section. In particular, AWS has implemented and will maintain the following technical and organizational measures: (a) security of the AWS Network as set out in Section 1.1 of the Security Standards; (b) physical security of the facilities as set out in Section 1.2 of the Security Standards; (c) measures to control access rights for authorized personnel to the AWS Network as set out in Section 1.3 of the Security Standards; and (d) processes for regularly testing, assessing and evaluating the effectiveness of the technical and organizational measures implemented by AWS as described in Section 2 of the Security Standards. 5.2 Customer can elect to implement technical and organizational measures to protect Customer Data. Such technical and organizational measures include the following which can be obtained by Customer from AWS as described in the Documentation, or directly from a third-party supplier: (a) pseudonymization and encryption to ensure an appropriate level of security; (b) measures to ensure the ongoing confidentiality, integrity, availability and resilience of the processing systems and services that are operated by Customer; measures to allow Customer to backup and archive appropriately in order to restore availability and access to Customer Data in a timely manner in the event of a physical or technical incident; and (c) processes for regularly testing, assessing and evaluating the effectiveness of the technical and organizational measures implemented by Customer.

Security of Data Processing. 5.1 AWS has implemented and will maintain the technical and organizational measures for the AWS Network as described in the Security Standards and this Section. In particular, AWS has implemented and will maintain the following technical and organizational measures: (a) security of the AWS Network as set out in Section 1.1 of the Security Standards; (b) physical security physicalsecurity of the facilities as set out in Section 1.2 of the Security Standards; (c) measures to control access rights for authorized personnel to the AWS Network as set out in Section 1.3 of the Security Standards; and (d) processes for regularly testing, assessing and evaluating the effectiveness of the technical and organizational measures implemented by AWS as described in Section 2 of the Security Standards. 5.2 Customer can elect to implement technical and organizational measures to protect Customer Data. Such technical and organizational measures include the following which can be obtained by Customer from AWS as described in the Documentation, or directly from a third-party supplier: (a) pseudonymization and encryption to ensure an appropriate level of security; ofsecurity; (b) measures to ensure the ongoing confidentiality, integrity, availability and resilience of the processing systems and services that are operated by Customer; measures to allow Customer to backup and archive appropriately in order to restore availability and access to Customer Data in a timely manner in the event of a physical or technical incident; and; (c) processes for regularly testing, assessing and evaluating the effectiveness of the technical and organizational measures implemented by Customer.