Transfer of Data to a Third Country Sample Clauses

Transfer of Data to a Third Country. A transfer of Data to third countries (states outside the European Economic Area - EEA) can take place • if legally permitted - particularly if the processing is necessary or required or prescribed by law for fulfilling the Player Contract or due to legitimate interests of the Club, EP, another competition organiser and/or the ELPA, their respective service providers and/or other third parties (in particular licensees, advertising partners and marketers, as well as official partners, sponsors, press, broadcasting and other media companies) - and • under the prerequisites of Art. 44 to 49 GDPR (e.g., in case of countries with an appropriate data protection level according to Art. 45 para. 1 GDPR or in case of an agreement of EU Standard Contractual Clauses, Art. 46 para. 2 d) in conjunction with Art. 93 para. 2 GDPR).
Sample 1Sample 2
AutoNDA by SimpleDocs
Transfer of Data to a Third Country. The Parties do not have the right to transfer personal data under this Agreement outside of the European Economic Area (EEA) or to an international organisation governed by international law, except where this is in compliance with Chapter V of the GDPR. This includes making the personal data available, granting access to it and disseminating it further to another third country. Adequate security protection levels for a third country, a territory or specific sectors in a third country may be decided by the European Commission. In the absence of such decision, the Parties are only permitted to transfer personal data to a country outside the EEA where there are appropriate safeguards, in compliance with Articles 46-47 and 49 of the GDPR. The Parties are to inform each other if such transfer mechanisms are in place and of the legal grounds for the transfer. SECURITY, PERSONAL DATA BREACHES and REPORTING PROCEDURES The Parties must have appropriate technical and organisational measures in place to ensure an appropriate level of security in relation to the risks posed by the data processing, in particular the risk of accidental or unlawful destruction, loss or alteration and the risk of unauthorised disclosure of, or unauthorised access to, the personal data transferred, stored or processed in any other way. The Parties are to have internal procedures for both detecting and managing security and personal data breaches, including methods enabling intervention to restore information (e.g. being able to read back-up files). If a Party becomes aware of a (suspected) personal data breach, the Party must inform the other Party of this. The information is to include at least what has happened and the reason why it is deemed to be a breach, the person or organisation that may be contacted for more information regarding the breach, recommended measures as a result of the breach to reduce the negative consequences, the potential risks/effects of the personal data breach on the integrity of the data subjects, and the measures that the Party has taken or proposes to take in order to address the breach. The Parties agree to assist one another with the reasonably necessary support in order to facilitate the management of breaches, promptly and in compliance with applicable legislation. If a Party requests it, the other Party is immediately to collaborate on the reporting of a personal data breach to the appropriate authorities and to inform the data subjects concerned.
Sample 1
Transfer of Data to a Third Country. The Parties do not have the right to transfer personal data under this Agreement outside of the European Economic Area (EEA) or to an international organisation governed by international law, except where this is in compliance with Chapter V of the GDPR. This includes making the personal data available, granting access to it and disseminating it further to another third country. Adequate security protection levels for a third country, a territory or specific sectors in a third country may be decided by the European Commission. In the absence of such decision, the Parties are only permitted to transfer personal data to a country outside the EEA where there are appropriate safeguards, in compliance with Articles 46-47 and 49 of the GDPR. The Parties are to inform each other if such transfer mechanisms are in place and of the legal grounds for the transfer.
Sample 1

Related to Transfer of Data to a Third Country

  • Transfer of Agreement Without prior written consent of the WFOE, the Existing Shareholders or the Domestic Company may not assign its rights and obligations hereunder to any third party.

  • Certification Regarding Prohibition of Certain Terrorist Organizations (Tex Gov. Code 2270) Vendor certifies that Vendor is not a company identified on the Texas Comptroller’s list of companies known to have contracts with, or provide supplies or services to, a foreign organization designated as a Foreign Terrorist Organization by the U.S. Secretary of State. Does Vendor certify? Yes, Vendor certifies Certification Regarding Prohibition of Boycotting Israel (Tex. Gov. Code 2271) If (a) Vendor is not a sole proprietorship; (b) Vendor has ten (10) or more full-time employees; and (c) this Agreement or any agreement with a TIPS Member under this procurement has value of $100,000 or more, the following certification shall apply; otherwise, this certification is not required. Vendor certifies, where applicable, that neither the Vendor, nor any affiliate, subsidiary, or parent company of Vendor, if any, boycotts Israel, and Vendor agrees that Vendor and Vendor Companies will not boycott Israel during the term of this Agreement. For purposes of this Agreement, the term “boycott” shall mean and include refusing to deal with, terminating business activities with, or otherwise taking any action that is intended to penalize, inflict economic harm on, or limit commercial relations with Israel, or with a person or entity doing business in Israel or in an Israeli-controlled territory but does not include an action made for ordinary business purposes. When applicable, does Vendor certify? Yes, Vendor certifies 5 Certification Regarding Prohibition of Contracts with Certain Foreign-Owned Companies (Tex. Gov. 5 Code 2274) Certain public entities are prohibited from entering into a contract or other agreement relating to critical infrastructure that would grant Vendor direct or remote access to or control of critical infrastructure in this state, excluding access specifically allowed by a customer for product warranty and support purposes. Vendor certifies that neither it nor its parent company nor any affiliate of Vendor or its parent company, is (1) owned by or the majority of stock or other ownership interest of the company is held or controlled by individuals who are citizens of China, Iran, North Korea, Russia, or a designated country; (2) a company or other entity, including governmental entity, that is owned or controlled by citizens of or is directly controlled by the government of China, Iran, North Korea, Russia, or a designated country; or (3) headquartered in China, Iran, North Korea, Russia, or a designated country. For purposes of this certification, “critical infrastructure” means “a communication infrastructure system, cybersecurity system, electric grid, hazardous waste treatment system, or water treatment facility.” Vendor certifies that Vendor will not grant direct or remote access to or control of critical infrastructure, except for product warranty and support purposes, to prohibited individuals, companies, or entities, including governmental entities, owned, controlled, or headquartered in China, Iran, North Korea, Russia, or a designated country, as determined by the Governor. When applicable, does Vendor certify? Yes, Vendor certifies 5 Certification Regarding Prohibition of Discrimination Against Firearm and Ammunition Industries (Tex.

  • Data Transfers You acknowledge and agree that we may access and Process Personal Data on a global basis as necessary to provide the Subscription Service in accordance with the Agreement, and in particular that Personal Data may be transferred to and Processed by HubSpot, Inc. in the United States and to other jurisdictions where HubSpot Affiliates and Sub-Processors have operations. Wherever Personal Data is transferred outside its country of origin, each party will ensure such transfers are made in compliance with the requirements of Data Protection Laws.

  • Transfer or Deletion of Student Data The Provider shall review, on an annual basis, whether the Student Data it has received pursuant to the DPA continues to be needed for the purpose(s) of the Service Agreement and this DPA. If any of the Student Data is no longer needed for purposes of the Service Agreement and this DPA, the Provider will provide written notice to the LEA as to what Student Data is no longer needed. The Provider will delete or transfer Student Data in readable form to the LEA, as directed by the LEA (which may be effectuated through Exhibit D of the DPA), within 30 calendar days if the LEA requests deletion or transfer of the Student Data and shall provide written confirmation to the LEA of such deletion or transfer. Upon termination of the Service Agreement between the Provider and LEA, Provider shall conduct a final review of Student Data within 60 calendar days. If the LEA receives a request from a parent, as that term is defined in 105 ILCS 10/2(g), that Student Data being held by the Provider be deleted, the LEA shall determine whether the requested deletion would violate State and/or federal records laws. In the event such deletion would not violate State or federal records laws, the LEA shall forward the request for deletion to the Provider. The Provider shall comply with the request and delete the Student Data within a reasonable time period after receiving the request. Any provision of Student Data to the LEA from the Provider shall be transmitted in a format readable by the LEA.

Time is Money Join Law Insider Premium to draft better contracts faster.