Technical and Organisational Security Measures. The Parties have agreed that the security measures stated in the Security Annex constitute appropriate technical and organisational security measures to protect personal data from accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access when transmitted, stored or otherwise processed. Sub-processors Axis may and will engage the sub-processors listed on axis-data-sub-processors-for- connected-services-en-US-397714.pdf from time to time. Axis shall notify Data Controller of any changes to subcontractors in accordance with section 9 in the Data Processing Agreement.
Technical and Organisational Security Measures. 3.1 AuditBoard will implement appropriate technical and organizational measures to ensure a level of security appropriate to the risks that are presented by the processing of Personal Data, in particular protection against accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to Personal Data as outlined in Security Policy.
3.2 AuditBoard shall require screening of its personnel who may have access to Personal Data and shall require such personnel (i) to Process Personal Data in accordance with Customer’s instructions as set forth in this DPA, (ii) to receive appropriate training on their responsibilities regarding the handling and safeguarding of Personal Data; and
Technical and Organisational Security Measures. Policies and Procedures: IPSX has a comprehensive suite of policies relating to the assessment, development and implementation of controls that secure information and protect Personal Data. These include policies on IT and Information Security, Business Continuity, and Risk Management. All policies are subject to regular review. • Physical access: IPSX has robust measures in place in relation to matters such as office security and the disposal of material and devices.
Technical and Organisational Security Measures. 6.1.1 The Processor is responsible for implementing necessary technical and organisational measures to ensure an appropriate security level. The measures must be implemented with due regard to the current state of the art, costs of implementation and the nature, scope, context and purposes of the processing and the risk of varying likelihood and sever- ity to the rights and freedoms of natural persons. The Processor shall take the category of Personal data described in appendix 1 into consideration in the determination of such measures.
6.1.2 Processor has implemented the technical and organisational security measures as speci- fied in appendix 2 to this Agreement.
6.1.3 The Processor shall implement the suitable technical and organisational measures in such a manner that the processing by the Processor of Personal data meets the requirements of the applicable Personal data regulation.
6.1.4 Should the Processor implement any new technical or organizational security measures in the meaning of this Article, especially in connection with improvement and development of the Primary Service, technical progress and development of technical and organizational security measures, changes in the organization of the Processor, changes in any applica- ble law etc., the specification in the appendix 2 will be updated if necessary. Any change in the technical or organizational security measures must not reduce the level of technical or organizational security measures as specified at the date of signature of this Agreement.
6.1.5 The Parties agree that the provided safeguards and all technical and organisational measures to ensure an appropriate security level of Personal data as specified in appendix 2 are adequate at the date of conclusion of this Agreement.
Technical and Organisational Security Measures. Each Party will ensure that it has appropriate technical and organisational measures in place to reasonably ensure that the security, confidentiality, integrity, availability and resilience of Processing systems and services involved in the Processing of any Personal Data are commensurate with the risk in respect of such Personal Data and to guard against any Personal Data Breaches. Each party will periodically (i) test and monitor the effectiveness of its safeguards, controls, systems and procedures and (ii) identify reasonably foreseeable internal and external risks to the security, confidentiality and integrity of the Personal Data, and ensure these risks are addressed.
Technical and Organisational Security Measures. 4.1. Stack will implement appropriate technical and organisational security measures appropriate to the risks that are presented by the processing of Personal Data, in particular protection against accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to Personal Data as set out in Appendix 4.
4.2. Stack will take reasonable steps to ensure that only authorised personnel have access to Personal Data and that any persons whom it authorises to access the Personal Data are under obligations of confidentiality.
4.3. Stack may arrange for a qualified and independent assessor to conduct an assessment of Xxxxx’s policies and technical and organisational measures using an appropriate and accepted control standard or framework and assessment procedure for such assessments. Stack shall provide a report of such assessment to Customer upon written request.
Technical and Organisational Security Measures. Description of the technical and organisational measures implemented by the processor(s) / data importer(s) (including any relevant certifications) to ensure an appropriate level of security, taking into account the nature, scope, context and purpose of the processing, and the risks for the rights and freedoms of natural persons. Measure Description Measures of pseudonymisation and encryption of personal data Company warrants and represents that the Measures are in place and shall remain in place for the duration of the processing. Measures for ensuring ongoing confidentiality, integrity, availability and resilience of processing systems and services Measures for ensuring the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident Processes for regularly testing, assessing and evaluating the effectiveness of technical and organisational measures in order to ensure the security of the processing
Technical and Organisational Security Measures. HotelFlex maintains internal policies and procedures, or procures that its Subprocessors do so, which are designed to:
Technical and Organisational Security Measures. The Supplier shall implement and maintain the following technical and organisational security measures to protect the Protected Data:
Technical and Organisational Security Measures. 1.1 The Processor implemented following technical security measures to maximize protection of Per- xxxxx data:
a) SSL/TLS encryption (secure sockets layer / transport layer security) for all data transfers in all parts of the Primary Service
b) Processor's website and web software runs on secured https protocol
c) Processor offers the Controller multiple options to limit processing of Personal data and improve privacy of Data subjects, described in point 2.1 in Appendix 1.
d) All employees of the Processor with access to Personal data have signed a confidentiality agreement with the Processor
e) the Processor appointed a Data Protection Officer to ensure that Personal data are pro- tected. The DPO can be contacted at xxx@xxxxxxxxx.xxx.
1.2 The Processor is using servers and cloud infrastructure of VShosting and Amazon Web Services to store Personal Data (see Appendix 3 - Sub-processors).
1.3 Information about security of Amazon Web Services:
a) Information about security of Amazon Web Services xxx.xxxxxx.xxx/xxxxxxxx
b) Information about physical security of Amazon AWS data centers: xxx.xxxxxx.xxx/xxxxxxxxxx/xxxx-xxxxxx/xxxxxxxx c) Information about GDPR compliance of Amazon Web Services: xxx.xxxxxx.xxx/xxxxxxxxxx/xxxx-xxxxxx
1.4 Information about security of VShosting:
a) Information about security of VShosting data center: xxx.xxxxxxxxx.xx/xxxxxxxxxx-xxxxxxxxxx
b) Information about certifications of VShosting: xxx.xxxxxxxxx.xx/xxxxxxxxxxxxxx
1.5 The Controller can manage and delete any Personal data in his account used to access the Pri- xxxx Service at xxx.xxxxxxxxx.xxx. This allows the Controller to meet his obligations regarding requests of Data subjects for Personal data information or deletion.
