{"component": "definition", "props": {"groups": [{"snippet": "shall have the meaning ascribed to such term in Section 3.1(o).", "snippet_links": [], "size": 32, "samples": [{"hash": "88UXEUzt2Lp", "uri": "/contracts/88UXEUzt2Lp#privacy-and-data-security-laws", "label": "Underwriting Agreement (Arch Therapeutics, Inc.)", "score": 34.0595474243, "published": true}, {"hash": "kz7CgHCBc4e", "uri": "/contracts/kz7CgHCBc4e#privacy-and-data-security-laws", "label": "Underwriting Agreement (Silo Pharma, Inc.)", "score": 33.7446937561, "published": true}, {"hash": "7PDCEOzPnFN", "uri": "/contracts/7PDCEOzPnFN#privacy-and-data-security-laws", "label": "Underwriting Agreement (Silo Pharma, Inc.)", "score": 33.6872024536, "published": true}], "hash": "317b83b728ff45e55f079e6fed4bfc14", "id": 1}, {"snippet": "means all applicable Laws regarding privacy, cybersecurity or the receipt, collection, use, storage, processing, sharing, security, disclosure or transfer of", "snippet_links": [{"key": "all-applicable-laws", "type": "definition", "offset": [6, 25]}, {"key": "transfer-of", "type": "definition", "offset": [146, 157]}], "size": 16, "samples": [{"hash": "PFYMtGa5ci", "uri": "/contracts/PFYMtGa5ci#privacy-and-data-security-laws", "label": "Investment Agreement (AlTi Global, Inc.)", "score": 35.143737793, "published": true}, {"hash": "7eilhDMno24", "uri": "/contracts/7eilhDMno24#privacy-and-data-security-laws", "label": "Investment Agreement (AlTi Global, Inc.)", "score": 35.143737793, "published": true}, {"hash": "7aIHjGQ6SdA", "uri": "/contracts/7aIHjGQ6SdA#privacy-and-data-security-laws", "label": "Investment Agreement (AlTi Global, Inc.)", "score": 35.143737793, "published": true}], "hash": "6900ebaf89d12dd55357f2877971ae64", "id": 2}, {"snippet": "means all laws that apply to the creation, collection, receipt, maintenance, transmission, processing, use, disclosure, transfer (including cross-border transfers), disposal, privacy, security, confidentiality, integrity, availability, or breach of Personally Identifiable Information, including: (a) HIPAA; (b) the Public Health Service Act, 42 U.S.C. \u00a7\u00a7 290dd-3, 290dee-3, including 42 C.F.R. Part 2; (c) the Federal Trade Commission Act, 15 U.S.C. \u00a7 41, et seq.; (d) the federal Telephone Consumer Protection Act; (e) the federal Controlling the Assault of Non-Solicited Pornography and Marketing Act; (f) state privacy, data security, and breach notification laws; (g) state laws prohibiting consumer fraud and deceptive business practices; and each of clauses (a) through (g), as amended from time to time; and all implementing regulations relating to privacy and data security pursuant to all such laws, each as amended from time to time.", "snippet_links": [{"key": "all-laws", "type": "clause", "offset": [6, 14]}, {"key": "breach-of-personally-identifiable-information", "type": "clause", "offset": [239, 284]}, {"key": "public-health-service-act", "type": "definition", "offset": [316, 341]}, {"key": "part-2", "type": "clause", "offset": [395, 401]}, {"key": "federal-trade-commission-act", "type": "definition", "offset": [411, 439]}, {"key": "telephone-consumer-protection-act", "type": "clause", "offset": [482, 515]}, {"key": "breach-notification", "type": "clause", "offset": [643, 662]}, {"key": "state-laws", "type": "definition", "offset": [673, 683]}, {"key": "business-practices", "type": "definition", "offset": [725, 743]}, {"key": "as-amended", "type": "definition", "offset": [782, 792]}, {"key": "from-time-to-time", "type": "clause", "offset": [793, 810]}, {"key": "implementing-regulations", "type": "definition", "offset": [820, 844]}, {"key": "relating-to", "type": "definition", "offset": [845, 856]}, {"key": "privacy-and-data-security", "type": "clause", "offset": [857, 882]}, {"key": "pursuant-to", "type": "clause", "offset": [883, 894]}], "size": 7, "samples": [{"hash": "5DRgO57fwmu", "uri": "/contracts/5DRgO57fwmu#privacy-and-data-security-laws", "label": "Master Note Purchase Agreement (Ontrak, Inc.)", "score": 34.2895278931, "published": true}, {"hash": "dpePzgIjsyu", "uri": "/contracts/dpePzgIjsyu#privacy-and-data-security-laws", "label": "Master Note Purchase Agreement (Ontrak, Inc.)", "score": 33.8870620728, "published": true}, {"hash": "7Wimg2hyyMp", "uri": "/contracts/7Wimg2hyyMp#privacy-and-data-security-laws", "label": "Master Note Purchase Agreement (Ontrak, Inc.)", "score": 33.3559188843, "published": true}], "hash": "1f8cd29bee91eeb22c92e6b8cf04c57a", "id": 3}, {"snippet": "means all Applicable Law, self-regulatory programs to which the Company or Company Subsidiaries are a member and all other industry standards, guidelines, policies (published by the Company, a Company Subsidiary or internal) and practices, in each case, with respect to privacy, security, data protection, direct marketing, consumer protection and workplace privacy.", "snippet_links": [{"key": "applicable-law", "type": "clause", "offset": [10, 24]}, {"key": "company-subsidiaries", "type": "definition", "offset": [75, 95]}, {"key": "a-member", "type": "definition", "offset": [100, 108]}, {"key": "industry-standards", "type": "definition", "offset": [123, 141]}, {"key": "by-the-company", "type": "clause", "offset": [175, 189]}, {"key": "company-subsidiary", "type": "definition", "offset": [193, 211]}, {"key": "each-case", "type": "definition", "offset": [243, 252]}, {"key": "with-respect-to", "type": "clause", "offset": [254, 269]}, {"key": "data-protection", "type": "definition", "offset": [289, 304]}, {"key": "direct-marketing", "type": "definition", "offset": [306, 322]}, {"key": "consumer-protection", "type": "definition", "offset": [324, 343]}, {"key": "workplace-privacy", "type": "clause", "offset": [348, 365]}], "size": 6, "samples": [{"hash": "eh3tgZ5K5tN", "uri": "/contracts/eh3tgZ5K5tN#privacy-and-data-security-laws", "label": "Merger Agreement (Goldfield Corp)", "score": 29.9952087402, "published": true}, {"hash": "l8HuxWCaMjv", "uri": "/contracts/l8HuxWCaMjv#privacy-and-data-security-laws", "label": "Merger Agreement (Goldfield Corp)", "score": 29.8966464996, "published": true}], "hash": "dcc30b57e3e7b8ba8942b66ce151d57e", "id": 4}, {"snippet": "means any foreign or domestic Laws with which the Company or any of its Subsidiaries is required to comply relating to privacy, the Processing of Personal Information, the security of Personal Information, data breach disclosure and notification.", "snippet_links": [{"key": "domestic-laws", "type": "definition", "offset": [21, 34]}, {"key": "the-company", "type": "definition", "offset": [46, 57]}, {"key": "relating-to", "type": "definition", "offset": [107, 118]}, {"key": "processing-of-personal-information", "type": "clause", "offset": [132, 166]}, {"key": "security-of-personal-information", "type": "clause", "offset": [172, 204]}, {"key": "data-breach", "type": "clause", "offset": [206, 217]}, {"key": "disclosure-and-notification", "type": "clause", "offset": [218, 245]}], "size": 5, "samples": [{"hash": "l0V3RAUmYiB", "uri": "/contracts/l0V3RAUmYiB#privacy-and-data-security-laws", "label": "Merger Agreement (Starrett L S Co)", "score": 35.1902809143, "published": true}, {"hash": "fwcPA32K1Ep", "uri": "/contracts/fwcPA32K1Ep#privacy-and-data-security-laws", "label": "Merger Agreement (Starrett L S Co)", "score": 35.1902809143, "published": true}], "hash": "57e5924cd390055b38f5b948319da306", "id": 5}, {"snippet": "means any Laws with which the Company or any of its Subsidiaries is required to comply relating to the privacy, the Processing of Personal Information, the security of Personal Information, data breach disclosure and notification.", "snippet_links": [{"key": "the-company", "type": "definition", "offset": [26, 37]}, {"key": "relating-to", "type": "definition", "offset": [87, 98]}, {"key": "processing-of-personal-information", "type": "clause", "offset": [116, 150]}, {"key": "security-of-personal-information", "type": "clause", "offset": [156, 188]}, {"key": "data-breach", "type": "clause", "offset": [190, 201]}, {"key": "disclosure-and-notification", "type": "clause", "offset": [202, 229]}], "size": 4, "samples": [{"hash": "6HyCURpbxLG", "uri": "/contracts/6HyCURpbxLG#privacy-and-data-security-laws", "label": "Equity Purchase Agreement (Concentra Group Holdings Parent, Inc.)", "score": 36.0609169006, "published": true}, {"hash": "6Lq4xdeaCjy", "uri": "/contracts/6Lq4xdeaCjy#privacy-and-data-security-laws", "label": "Merger Agreement (DecisionPoint Systems, Inc.)", "score": 35.3299102783, "published": true}, {"hash": "gQGrOhmksDW", "uri": "/contracts/gQGrOhmksDW#privacy-and-data-security-laws", "label": "Merger Agreement (Turtle Beach Corp)", "score": 35.2094459534, "published": true}], "hash": "c6fc74ca9dc14f0b89d370fb6729d5b7", "id": 6}, {"snippet": "means (a) all applicable Laws pertaining to privacy, data security, cybersecurity, data breach notification, electronic communications, electronic marketing or the Processing of Personal Data, including the Health Insurance Portability and Accountability Act of 1996, the Health Information Technology for Economic and Clinical Health Act, the Fair Credit Reporting Act, the \u2587\u2587\u2587\u2587\u2587-\u2587\u2587\u2587\u2587\u2587-\u2587\u2587\u2587\u2587\u2587\u2587 Act, the California Consumer Privacy Act, The Telephone Consumer Protection Act, and the NYDFS Cybersecurity Regulation, 23 NYCRR 500 et seq., and, in each case, the rules and regulations implemented thereunder, (b) as may be applicable, the PCI Security Standards Council\u2019s Payment Card Industry Data Security Standard (PCI-DSS) and all other applicable security rules, regulations and requirements promulgated by the PCI Security Standards Council, by any member thereof or by any entity that functions as a card brand, card association, card network, payment processor, acquiring bank, merchant bank or issuing bank and (c) all applicable industry guidelines and self-regulatory programs that are binding on \u2587\u2587\u2587 or STFC applicable to data security and the Processing of Personal Data.", "snippet_links": [{"key": "all-applicable-laws", "type": "definition", "offset": [10, 29]}, {"key": "pertaining-to", "type": "definition", "offset": [30, 43]}, {"key": "data-breach-notification", "type": "clause", "offset": [83, 107]}, {"key": "electronic-communications", "type": "definition", "offset": [109, 134]}, {"key": "electronic-marketing", "type": "clause", "offset": [136, 156]}, {"key": "the-processing-of-personal-data", "type": "clause", "offset": [160, 191]}, {"key": "health-insurance-portability-and-accountability-act-of-1996", "type": "definition", "offset": [207, 266]}, {"key": "health-information-technology", "type": "definition", "offset": [272, 301]}, {"key": "health-act", "type": "definition", "offset": [328, 338]}, {"key": "fair-credit-reporting-act", "type": "definition", "offset": [344, 369]}, {"key": "the-\u2587", "type": "clause", "offset": [371, 376]}, {"key": "california-consumer-privacy-act", "type": "definition", "offset": [403, 434]}, {"key": "telephone-consumer-protection-act", "type": "clause", "offset": [440, 473]}, {"key": "each-case", "type": "definition", "offset": [545, 554]}, {"key": "rules-and-regulations", "type": "clause", "offset": [560, 581]}, {"key": "standards-council", "type": "definition", "offset": [649, 666]}, {"key": "payment-card-industry-data-security-standard", "type": "definition", "offset": [669, 713]}, {"key": "security-rules", "type": "definition", "offset": [749, 763]}, {"key": "regulations-and-requirements", "type": "clause", "offset": [765, 793]}, {"key": "card-brand", "type": "definition", "offset": [904, 914]}, {"key": "card-association", "type": "definition", "offset": [916, 932]}, {"key": "card-network", "type": "definition", "offset": [934, 946]}, {"key": "payment-processor", "type": "clause", "offset": [948, 965]}, {"key": "acquiring-bank", "type": "definition", "offset": [967, 981]}, {"key": "merchant-bank", "type": "clause", "offset": [983, 996]}, {"key": "issuing-bank", "type": "clause", "offset": [1000, 1012]}, {"key": "industry-guidelines", "type": "definition", "offset": [1036, 1055]}, {"key": "applicable-to", "type": "clause", "offset": [1117, 1130]}, {"key": "security-and", "type": "clause", "offset": [1136, 1148]}], "size": 3, "samples": [{"hash": "kzZRSKNG87d", "uri": "/contracts/kzZRSKNG87d#privacy-and-data-security-laws", "label": "Merger Agreement (State Auto Financial CORP)", "score": 32.5263519287, "published": true}, {"hash": "hzn5dF3pgg7", "uri": "/contracts/hzn5dF3pgg7#privacy-and-data-security-laws", "label": "Merger Agreement", "score": 24.8439426422, "published": true}, {"hash": "cNSV3VZRufc", "uri": "/contracts/cNSV3VZRufc#privacy-and-data-security-laws", "label": "Merger Agreement", "score": 24.761806488, "published": true}], "hash": "5cceb66c329edccd43d5edf718f4c8da", "id": 7}, {"snippet": "means all applicable Laws that apply to the Transferred Entities (solely in respect of the Business) pertaining to Personal Information, data protection, data privacy, data security, Data Breach notification, cross-border data transfer, data localization requirements, and self-regulatory standards to which the Transferred Entities are bound, including if applicable those related to PCI DSS.", "snippet_links": [{"key": "all-applicable-laws", "type": "definition", "offset": [6, 25]}, {"key": "transferred-entities", "type": "definition", "offset": [44, 64]}, {"key": "in-respect-of", "type": "clause", "offset": [73, 86]}, {"key": "the-business", "type": "clause", "offset": [87, 99]}, {"key": "pertaining-to", "type": "definition", "offset": [101, 114]}, {"key": "personal-information", "type": "definition", "offset": [115, 135]}, {"key": "data-protection", "type": "definition", "offset": [137, 152]}, {"key": "data-privacy", "type": "definition", "offset": [154, 166]}, {"key": "data-security", "type": "definition", "offset": [168, 181]}, {"key": "data-breach-notification", "type": "clause", "offset": [183, 207]}, {"key": "data-transfer", "type": "definition", "offset": [222, 235]}, {"key": "data-localization", "type": "clause", "offset": [237, 254]}, {"key": "regulatory-standards", "type": "clause", "offset": [278, 298]}, {"key": "if-applicable", "type": "clause", "offset": [354, 367]}, {"key": "related-to", "type": "definition", "offset": [374, 384]}, {"key": "pci-dss", "type": "definition", "offset": [385, 392]}], "size": 3, "samples": [{"hash": "8M5G0sENNjg", "uri": "/contracts/8M5G0sENNjg#privacy-and-data-security-laws", "label": "Transaction Agreement (Endeavor Group Holdings, Inc.)", "score": 36.225189209, "published": true}, {"hash": "5ftP6SNnV4W", "uri": "/contracts/5ftP6SNnV4W#privacy-and-data-security-laws", "label": "Transaction Agreement (Sportradar Group AG)", "score": 36.2142372131, "published": true}], "hash": "7fa22fb66e769e2d413153a2ecda1af1", "id": 8}, {"snippet": "means the Federal Trade Commission Act, 15 U.S.C. \u00a7 45; the CAN-SPAM Act of 2003, 15 U.S.C. \u00a7\u00a7 7701 et seq.; the Telephone Consumer Protection Act, 47 U.S.C. \u00a7 227; California Online Privacy Protection Act, Cal. Bus. & Prof. Code \u00a7 22575, et seq.; regulations promulgated by federal and state agencies; laws or regulations governing notification to consumers and regulatory authorities following data security incidents, including without limitation Cal. Civ. Code \u00a7 1798.82, N.Y. Gen. Bus. Law \u00a7 899-aa, and Mass. Gen. Law 93H; state and local laws and regulations governing data security, including without limitation Massachusetts Gen. Law Ch. 93H, 201 C.M.R. 17.00, and Nev. Rev. Stat. 603A; Cal Civ. Code \u00a7 1798.83; and other analogous local, state, and federal, and privacy, data protection, information security, or related laws or regulations.", "snippet_links": [{"key": "federal-trade-commission-act", "type": "definition", "offset": [10, 38]}, {"key": "act-of-2003", "type": "definition", "offset": [69, 80]}, {"key": "telephone-consumer-protection-act", "type": "clause", "offset": [113, 146]}, {"key": "privacy-protection", "type": "clause", "offset": [183, 201]}, {"key": "federal-and-state-agencies", "type": "clause", "offset": [275, 301]}, {"key": "laws-or-regulations", "type": "clause", "offset": [303, 322]}, {"key": "notification-to", "type": "clause", "offset": [333, 348]}, {"key": "regulatory-authorities", "type": "definition", "offset": [363, 385]}, {"key": "data-security-incidents", "type": "clause", "offset": [396, 419]}, {"key": "including-without-limitation", "type": "clause", "offset": [421, 449]}, {"key": "local-laws-and-regulations", "type": "clause", "offset": [539, 565]}, {"key": "data-protection", "type": "definition", "offset": [781, 796]}, {"key": "information-security", "type": "definition", "offset": [798, 818]}], "size": 2, "samples": [{"hash": "iOiaTRAkWFG", "uri": "/contracts/iOiaTRAkWFG#privacy-and-data-security-laws", "label": "Stock Purchase Agreement", "score": 31.3408622742, "published": true}, {"hash": "houHXjGv4BV", "uri": "/contracts/houHXjGv4BV#privacy-and-data-security-laws", "label": "Stock Purchase Agreement (Beacon Roofing Supply Inc)", "score": 28.6440792084, "published": true}], "hash": "40a3b7c3eb177921c1cb6aa477f22b5c", "id": 9}, {"snippet": "means any and all applicable Laws, rules, or regulations together with any binding guidance, decisions, determinations, orders, or associated judgments of any Governmental Body regarding privacy, cybersecurity or the Processing or protection of personal information or personal data, including, as applicable: the Gramm-Leach- Bliley Act and its implementing regulations; the GDPR and any national laws implementing the GDPR; and all applicable Laws or regulations requiring notification in connection with a Security Incident.", "snippet_links": [{"key": "all-applicable-laws", "type": "definition", "offset": [14, 33]}, {"key": "governmental-body", "type": "definition", "offset": [159, 176]}, {"key": "the-processing", "type": "clause", "offset": [213, 227]}, {"key": "protection-of-personal-information", "type": "clause", "offset": [231, 265]}, {"key": "personal-data", "type": "definition", "offset": [269, 282]}, {"key": "implementing-regulations", "type": "definition", "offset": [346, 370]}, {"key": "the-gdpr", "type": "definition", "offset": [372, 380]}, {"key": "national-laws", "type": "definition", "offset": [389, 402]}, {"key": "laws-or-regulations", "type": "clause", "offset": [445, 464]}, {"key": "in-connection-with", "type": "clause", "offset": [488, 506]}, {"key": "security-incident", "type": "clause", "offset": [509, 526]}], "size": 2, "samples": [{"hash": "aIUid8EJGTc", "uri": "https://document.epiq11.com/document/getdocumentbycode?docId=4110117&projectCode=VDH2&source=DM", "label": "document.epiq11.com", "score": 11.3696098328, "published": false}, {"hash": "ljXX0AmCAzd", "uri": "https://document.epiq11.com/document/getdocumentsbydocket?docketId=967062&projectCode=VDH2&docketNumber=472&source=DM&fbclid=IwAR1O6_5yrjt-PKSfirzBcFj9ozxUrSVnqCoz_h1yDwwvjm4AtRkmh-VxAAo", "label": "document.epiq11.com", "score": 9.3778238297, "published": false}], "hash": "e385298115583bde591ad9cae40ffa43", "id": 10}], "next_curs": "CmsSZWoVc35sYXdpbnNpZGVyY29udHJhY3RzckcLEhpEZWZpbml0aW9uU25pcHBldEdyb3VwX3Y1NiIncHJpdmFjeS1hbmQtZGF0YS1zZWN1cml0eS1sYXdzIzAwMDAwMDBhDKIBAmVuGAAgAA==", "definition": {"snippet": "shall have the meaning ascribed to such term in Section 3.1(o).", "title": "Privacy and Data Security Laws", "size": 131, "id": "privacy-and-data-security-laws", "examples": ["In relation to any Security Incident, none of Company or the Company Subsidiaries, have been notified or been required to notify any Person under applicable <strong>Privacy and Data Security Laws</strong>.", "Since January 1, 2023, neither the Company nor any of the Company Subsidiaries have received any written notice of, or to Company\u2019s Knowledge, been subject to any Action, or, to the Company\u2019s Knowledge, been the subject of any investigation or enforcement action by, any Person, in each case with respect to any applicable <strong>Privacy and Data Security Laws</strong> or compliance therewith or violation thereof.", "In relation to any Security Incident and/or Parent Privacy Requirement, none of Parent or the Parent Subsidiaries, have been notified or been required to notify any Person under applicable <strong>Privacy and Data Security Laws</strong>."], "related": [["privacy-data-security-laws", "Privacy/Data Security Laws", "Privacy/Data Security Laws"], ["privacy-and-security-laws", "Privacy and Security Laws", "Privacy and Security Laws"], ["information-privacy-and-security-laws", "Information Privacy and Security Laws", "Information Privacy and Security Laws"], ["data-security-requirements", "Data Security Requirements", "Data Security Requirements"], ["privacy-and-security-requirements", "Privacy and Security Requirements", "Privacy and Security Requirements"]], "related_snippets": [], "updated": "2026-03-07T04:27:53+00:00"}, "json": true, "cursor": ""}}