Common use of Data Protection Audit Clause in Contracts

Data Protection Audit. Upon prior written request by Customer, to the extent required under the Data Protection Legislation, Elastic agrees to cooperate and within reasonable time provide Customer with: (a) a summary of any required audit reports demonstrating Elastic’s compliance with EU Data Protection obligations under this Addendum (without any confidential or commercially sensitive information); and (b) confirmation that such audit has not revealed any material vulnerability in Elastic’s systems, or to the extent that any such vulnerability was detected, that Elastic has fully remedied such vulnerability. If the above measures are not sufficient to confirm compliance with Data Protection Legislation or reveal some material issues, subject to the strictest confidentiality obligations, Elastic allows Customer to request an audit of Elastic’s data protection compliance program by external independent auditors, which are jointly selected by the Parties, at Customer’s sole expense. The Parties will mutually agree upon the scope, timing, and duration of the audit. Elastic will make available to Customer the result of the audit of its data protection compliance program.

Data Protection Audit. Upon prior written request by CustomerCompany, to the extent required under the Data Protection Legislation, Elastic agrees to cooperate and within reasonable time provide Customer Company with: (a) a summary of any required audit reports demonstrating Elastic’s compliance with EU Data Protection obligations under this Addendum (without any confidential or commercially sensitive information); and (b) confirmation that such audit has not revealed any material vulnerability in Elastic’s systems, or to the extent that any such vulnerability was detected, that Elastic has fully remedied such vulnerability. If the above measures are not sufficient to confirm compliance with Data Protection Legislation or reveal some material issues, subject to the strictest confidentiality obligations, Elastic allows Customer Company to request an audit of Elastic’s data protection compliance program by external independent auditors, which are jointly selected by the Parties, at CustomerCompany’s sole expense. The Parties will mutually agree upon the scope, timing, and duration of the audit. Elastic will make available to Customer Company the result of the audit of its data protection compliance program.