DATA CONTROL. Seller will have policies and procedures in place to protect any data that Buyer provides, including destruction methods employed and how audit and system log information is protected. Buyer may upon request, review Seller's applicable policies and procedures.
DATA CONTROL. Certain elements of the Software allow access to data to be controlled. It is Customer’s responsibility to manage such controls and to ensure that any restrictions on accessing data are appropriate.
DATA CONTROL. Under the DPA, any organisation which “determines the purposes for which and manner in which any personal data are, or are to be, processed” is called a “data controller”. All data controllers are required to comply with the DPA whenever they process personal data (bearing in mind, as stated above, that “processing” includes collecting, storing, amending and disclosing data). At all times, when providing data to partners, the partner responsible for delivering a service will be considered the data controller, as opposed to the partner who may be the first point of contact. Partner organisations which receive data from that responsible delivery authority are considered to be “data processors” i.e., processing those data “on behalf of” the delivery partner. As a data processor, partners must at all times process data solely in accordance with the WDP’s instructions and comply with the security obligations set out in section 4.
DATA CONTROL media disposal and servicing. Company confidential information (i) may only be made available and accessible pursuant to the Program Agreement; (ii) if transferred across the internet, any wireless network (e.g., cellular, 802.11x, or similar technology), or other public or shared networks, must be protected using appropriate cryptography consistent with industry best practices or as designated or approved by Company in writing; and (iii) if transferred using removable media (as defined above) must be sent via a bonded courier or protected using cryptography consistent with industry best practices or as designated or approved by Company in writing. The foregoing requirements apply to back-up data stored by Bank at off-site facilities. In the event any hardware, storage media, or removable media must be disposed of or sent off-site for servicing, Bank will ensure all Company confidential information, including personal information, has been “scrubbed” from such hardware and/or media using industry best practices (e.g., dod 5220-22-m standard) and in accordance with the privacy and security requirements. [*] Text Omitted and Filed Separately with the Securities and Exchange Commission Confidential Treatment Requested Under 17 C.F.R. Sections 200.80(b)(4) and 230.406
DATA CONTROL. Customer may only store through the Hosting Service data that Customer is lawfully entitled to store. Certain elements of the Software allow access to data to be controlled. It is Customer’s responsibility to manage such controls and to ensure that any restrictions on accessing data are appropriate.
DATA CONTROL. NeuroBo shall establish internal procedures (including, without limitation, the procedures set forth below) to keep and maintain any Data and Know-How owned and provided by Dong-A in a secure environment and prevent the contamination of Dong-A’s Data and Know-How that is received in accordance with the terms hereunder. NeuroBo agrees that it shall: (a) cause all Data and Know-How of Dong-A to be promptly logged and stored pursuant to this Section 4.4, (b) [**], (c) [**], (d) [**], and (e) comply with any other measures reasonably requested by Dong-A. During the Term of this Agreement and for a period of [**] thereafter, NeuroBo shall keep and maintain complete and accurate records pertaining to the research, Development, manufacturing and supply and Commercialization activities of the Licensed Products and any API and all material results, Data and Developed Technology made in conducting such activities in sufficient detail and in good scientific manner appropriate for Patent application and regulatory purposes and in accordance with applicable Law and to permit Dong-A to confirm the accuracy of all records hereunder.
DATA CONTROL. Under the Data Protection Act, any organisation which “determines the purposes for which and manner in which any personal data are, or are to be, processed” is called a “data controller”. All data controllers are required to comply with the Data Protection Act whenever they process personal data (bearing in mind, as stated above, that “processing” includes collecting, storing, amending and disclosing data). At all times, when providing data to associated members, the supplier responsible for delivering a service will be considered the data controller, as opposed to the partner who may be the first point of contact. Partner organisations which receive data from that responsible delivery authority are considered to be “data processors” i.e., processing those data “on behalf of” the delivery partner. As a data processor, associated members must at all times process data solely in accordance with Amplitude’s instructions and comply with the security obligations set out in section 4. Under this Agreement the Data Controller is the Trust, where patient attends for Treatment. Amplitude are acting as the Data Processor and as such will process data as required by relevant legislation and in accordance with Trust policies.
DATA CONTROL. $Q\ RUJDQLVDWLRQ ZKLFK ³GHWHUPLQHV WKH SXUSRVHV personal data are, or DUH WR EH SURFHVVHG´ LV FDOOHG D ³GDW At all times, when providing data to partners, the partner responsible for delivering a service will be considered to be the data controller, as opposed to the partner who may be the first point of contact. This will include: appropriate technological security measures, having regard to the state of technology available and the cost of implementing such technology, and the nature of the data being protected secure physical storage and management of non-electronic data password protected computer systems restricted access to data and taking reasonable steps to ensure the reliability of employees who have access to sensitive data ensuring data is only held as long as is necessary, in line with Data Protection principles appropriate security on external routes into the organisation, for example Internet firewalls and secure dial-in facilities. Partners are themselves responsible for complying with security irrespective of the specific terms of this agreement. If there is a requirement to supply data to any external body, full records will be kept of when data is supplied to external and other governmental organisations.
DATA CONTROL. The following measures will be implemented to control the data:
DATA CONTROL. As an additional measure to control the data, Miraculous-Life services can only be invoked from the Miraculous-Life system. No debug or test interfaces are exposed externally. Administrative and management interfaces require authentication of an authorized administrator. As for the part of the system that will have access to internet services, required measures will be taken to guarantee protection of the data.
