Data Security Incidents. (a) The Supplier must document, implement and maintain a plan setting out the Suppliers' policies, systems and procedures for responding to any Data Security Incident (the Data Security Response Plan). The Supplier must make the Data Security Response Plan available for inspection by Suncorp if requested by Suncorp.
Data Security Incidents. 4.1 Data Security Incidents. AuditBoard will notify Customer of any Data Security Incident as outlined in section 6 of the Agreement for Personal Data breaches.
Data Security Incidents. Each Party is responsible for any and all Data Security Incidents involving Confidential Utility Information that is Processed by, or on behalf of, Confidential Third Party. Information that is solely caused by each Party, or Third Party’s Data Service Providers The Parties agree to notify each other in writing immediately (and in any event within twenty-four seventy-two (24 72) hours whenever such Party reasonably believes that there has been a Data Security Incident. After providing such notice, the Parties agree that each will investigate the Data Security Incident, and immediately take all necessary steps to eliminate or contain any exposure of Confidential Utility Information or Confidential Third Party Information, and keep the other Party advised of the status of such Data Security Incident and all matters related thereto. The Parties further agree to provide, at their sole cost, as mutually agreed beforehand, reasonable assistance and cooperation requested by the other Party and/or the other Party’s designated Data Service Providers, in the furtherance of any correction, remediation, or investigation of any such Data Security Incident and/or the mitigation of any damage, including any notification required by law or that Utility may determine appropriate to send to individuals impacted or potentially impacted by the Data Security Incident, and/or the provision of any credit reporting service required by law. In addition, within thirty (30) days of discovery of a confirmed Data Security Incident, the Parties agree that each shall develop and execute a plan that Utility deems appropriate to provide to reduces the likelihood of a recurrence of such individuals. Unless Data Security Incidents. Further, unless required by law, Third Party shall not notify any individual or any third party other than law enforcement of any potential Data Security Incident involving Confidential Utility Information without first consulting with, and obtaining the permission of, Utility. Notwithstanding anything herein to the contrary, in the event that each of the Parties engages the same electronic data exchange contractor in the course of its performance hereunder, neither Party is more responsible than the other for Data Security Incidents caused by the acts or omissions of such electronic data exchange contractor. In addition, within 30 days of identifyingor being informed of a Data Security Incident, Third Partyshall develop and execute a plan, subject to Utility’s a...
Data Security Incidents. Third Party is responsible for any and all Data Security Incidents involving Confidential Utility Information that is Processed by, or on behalf of, Third Party. Third Party shall notify Utility in writing immediately (and in any event within twenty-four (24) hours) whenever Third Party reasonably believes that there has been a Data Security Incident. After providing such notice, Third Party will investigate the Data Security Incident, and immediately take all necessary steps to eliminate or contain any exposure of Confidential Utility Information and keep Utility advised of the status of such Data Security Incident and all matters related thereto. Third Party further agrees to provide, at Third Party’s sole cost, reasonable assistance and cooperation requested by Utility and/or Utility’s designated representatives, in the furtherance of any correction, remediation, or investigation of any such Data Security Incident and/or the mitigation of any damage, including any notification required by law or that Utility may determine appropriate to send to individuals impacted or potentially impacted by the Data Security Incident, and/or the provision of any credit reporting service required by law or that Utility deems appropriate to provide to such individuals. Unless required by law, Third Party shall not notify any individual or any third party other than law enforcement of any potential Data Security Incident involving Confidential Utility Information without first consulting with, and obtaining the permission of, Utility. In addition, within 30 days of identifying or being informed of a Data Security Incident, Third Party shall develop and execute a plan, subject to Utility’s approval, that reduces the likelihood of a recurrence of such Data Security Incident. Third Party agrees that Utility may at its discretion and without penalty immediately suspend performance hereunder and/or terminate the Agreement if a Data Security Incident occurs.
Data Security Incidents. 4.1. Notice. KlearNow shall notify User within 48 hours of discovering that an Information Security Incident has occurred or is reasonably likely to occur to the extent such notice is required by the GDPR.
Data Security Incidents. (a) Upon becoming aware of a Data Security Incident, the Processor shall inform the other Party without undue delay and shall provide such timely information and assistance in accordance with clause 3.7 as the other Party may require in order for the other Party to fulfil its data breach reporting obligations under Data Protection Law and to mitigate the effects of the Data Security Incident.
Data Security Incidents. If Origin becomes aware of a Security Incident, Origin will promptly:
Data Security Incidents. ThirdEach Party is responsible for any and all Data Security Incidents involving Confidential Utility Information that is Processed by, or on behalf of,Confidential Third Party. Information that is solely caused by each Party, or Third Party shallParty
Data Security Incidents. SRCL Limited has a fully documented data security incident which includes:- Reporting procedures Incident reporting portal Defined escalation procedures Procedures audited in line with ISO 27001 requirements.
Data Security Incidents
