Data Protection Breach Sample Clauses
A Data Protection Breach clause outlines the obligations and procedures that parties must follow in the event of a breach involving personal or sensitive data. Typically, this clause requires the party responsible for the breach to promptly notify the other party, take remedial actions to mitigate harm, and comply with applicable data protection laws such as GDPR. Its core function is to ensure that both parties respond swiftly and appropriately to data breaches, thereby minimizing potential harm and legal liability.
POPULAR SAMPLE Copied 2 times
Data Protection Breach. Without prejudice to paragraph 3.2, each Party shall notify the other Party promptly and without undue delay, and in any event within 48 hours, upon becoming aware of any Personal Data Breach or circumstances that are likely to give rise to a Personal Data Breach, providing the other Party and its advisors with:
Data Protection Breach. 3.1 Without prejudice to Paragraph 3.2, each Party shall notify the other Party promptly and without undue delay, and in any event within 48 hours, upon becoming aware of any Personal Data Breach or circumstances that are likely to give rise to a Personal Data Breach, providing the other Party and its advisors with:
(a) sufficient information and in a timescale which allows the other Party to meet any obligations to report a Personal Data Breach under the Data Protection Legislation; and
(b) all reasonable assistance, including:
(i) co-operation with the other Party and the Information Commissioner investigating the Personal Data Breach and its cause, containing and recovering the compromised Personal Data and compliance with the applicable guidance;
(ii) co-operation with the other Party including using such reasonable endeavours as are directed by the other Party to assist in the investigation, mitigation and remediation of a Personal Data Breach;
(iii) co-ordination with the other Party regarding the management of public relations and public statements relating to the Personal Data Breach; and/or
(iv) providing the other Party and to the extent instructed by the other Party to do so, and/or the Information Commissioner investigating the Personal Data Breach, with complete information relating to the Personal Data Breach, including, without limitation, the information set out in Clause 3.2.
3.2 Each Party shall use all reasonable endeavours to restore, re-constitute and/or reconstruct any Personal Data where it has lost, damaged, destroyed, altered or corrupted as a result of a Personal Data Breach as it was that Party’s own data at its own cost with all possible speed and shall provide the other Party with all reasonable assistance in respect of any such Personal Data Breach, including providing the other Party, as soon as possible and within 48 hours of the Personal Data Breach relating to the Personal Data Breach, in particular:
(a) the nature of the Personal Data Breach;
(b) the nature of Personal Data affected;
(c) the categories and number of Data Subjects concerned;
(d) the name and contact details of the Supplier’s Data Protection Officer or other relevant contact from whom more information may be obtained;
(e) measures taken or proposed to be taken to address the Personal Data Breach; and
(f) describe the likely consequences of the Personal Data Breach.
Data Protection Breach. 2.1 Without prejudice to Paragraph 3.2, each Party shall notify the other Party promptly and without undue delay, and in any event within 48 hours, upon becoming aware of any Personal Data Breach or circumstances that are likely to give rise to a Personal Data Breach, providing the Relevant Authority and its advisors with:
a. sufficient information and in a timescale which allows the other Party to meet any obligations to report a Personal Data Breach under the Data Protection Legislation;
b. all reasonable assistance, including: i. co-operation with the other Party and the Information Commissioner investigating the Personal Data Breach and its cause, containing and recovering the compromised Personal Data and compliance with the applicable guidance;
Data Protection Breach. Without prejudice to Paragraph 3.2 of this Part B Joint Controller Agreement (Optional) of Annex 1 – Processing Personal Data3.2 of this Part B Joint Controller Agreement (Optional) of Annex 1 – Processing Personal Data, each Party shall notify the other Party promptly and without undue delay, and in any event within 48 hours, upon becoming aware of any Data Loss Event or circumstances that are likely to give rise to a Data Loss Event, providing the other Party and its advisors with:
Data Protection Breach. Without prejudice to Paragraph 3.2, each Party shall notify the other Party promptly and without undue delay, and in any event within 48 hours, upon becoming aware of any Personal Data Breach or circumstances that are likely to give rise to a Personal Data Breach, providing the other Party and its advisors with: sufficient information and in a timescale which allows the other Party to meet any obligations to report a Personal Data Breach under the Data Protection Legislation; and all reasonable assistance, including: cooperation with the other Party and the Information Commissioner investigating the Personal Data Breach and its cause, containing and recovering the compromised Personal Data and compliance with the applicable guidance; cooperation with the other Party including taking using such reasonable steps endeavours as are directed by the other Party to assist in the investigation, mitigation and remediation of a Personal Data Breach; coordination with the other Party regarding the management of public relations and public statements relating to the Personal Data Breach; and/or
Data Protection Breach. 16.1. The parties shall each comply with their obligation to report a Personal Data Breach to the appropriate Supervisory Authority and (where applicable) Data Subjects under Article 33 of the GDPR and shall each inform the other party of any Personal Data Breach irrespective of whether there is a requirement to notify any Supervisory Authority or Data Subject(s). Each party should be informed of such breaches immediately where possible and no later than 24 hours after the identification of such a breach.
16.2. The parties agree to provide reasonable assistance as is necessary to each other to facilitate the handling of any Personal Data Breach in an expeditious and compliant manner.
Data Protection Breach. 37.1 Without prejudice to Paragraph 37.2 of this Error! Reference source not found. Error! Reference source not found. of Annex 1 – Processing Personal Data, each Party shall notify the other Party promptly and without undue delay, and in any event within 48 hours, upon becoming aware of any Data Loss Event or circumstances that are likely to give rise to a Data Loss Event, providing the other Party and its advisors with:
37.1.1 sufficient information and in a timescale which allows the other Party to meet any obligations to report a Data Loss Event under the Data Protection Legislation;
37.1.2 all reasonable assistance, including: 37.1.2.1 co-operation with the other Party and the Information Commissioner investigating the Data Loss Event and its cause, containing and recovering the compromised Personal Data and compliance with the applicable guidance;
Data Protection Breach. 1.1.3.1 Without prejudice to clause 3.2, each Party shall notify the other Party promptly and without undue delay, and in any event within 48 hours, upon becoming aware of any Personal Data Breach or circumstances that are likely to give rise to a Personal Data Breach, providing the other Party and its advisors Framework Ref:RM6187
Data Protection Breach. 16.1. Each Party shall notify the other as soon as possible or within 24 hours (whichever is sooner) of becoming aware of a Data Protection Breach in respect of Personal Data used under this DSA.
16.2. The Parties agree that where appropriate, they will work together and ensure co-operation regarding the handling of such a breach.
Data Protection Breach