Common use of General Controls Clause in Contracts

General Controls. FF shall implement, or be responsible for its Sub-processor’s implementation of, measures designed to: (a) deny unauthorised persons access to data-processing equipment used for processing Personal Data (equipment access control); (b) prevent the unauthorised reading, copying, modification or removal of data media containing Personal Data (data media control); (c) prevent the unauthorised input of Personal Data and the unauthorised inspection, modification or deletion of stored Personal Data (storage control); (d) prevent the use of automated data-processing systems by unauthorised persons using data communication equipment used to process Personal Data (user control); (e) ensure that persons authorised to use an automated data-processing system only have access to the Personal Data covered by their access authorisation (data access control); (f) ensure that it is possible to verify and establish to which individuals Personal Data have been or may be transmitted or made available using data communication equipment (communication control); (g) ensure that it is subsequently possible to verify and establish which Personal Data have been put into automated data-processing systems and when and by whom the input was made (input control); (h) prevent the unauthorised reading, copying, modification or deletion of Personal Data during transfers of those data or during transportation of data media (transport control); (i) ensure that installed systems used to process Personal Data may, in case of interruption, be restored (recovery); (j) ensure that the functions of the system used to process Personal Data perform, that the appearance of faults in the functions is reported (reliability) and to prevent stored Personal Data from corruption by means of a malfunctioning of the system (integrity).

General Controls. FF shall implement, or be responsible for its Sub-processor’s implementation of, measures designed to:measures (a) deny unauthorised persons access to data-processing equipment used for processing Personal Data (equipment access control); (b) prevent the unauthorised reading, copying, modification or removal of data media containing Personal Data (data media control); (c) prevent the unauthorised input of Personal Data and the unauthorised inspection, modification or deletion of stored Personal Data (storage control); (d) prevent the use of automated data-processing systems by unauthorised persons using data communication equipment used to process Personal Data (user control); (e) ensure that persons authorised to use an automated data-processing system only have access to the Personal Data covered by their access authorisation (data access control); (f) ensure that it is possible to verify and establish to which individuals Personal Data have been or may be transmitted or made available using data communication equipment (communication control); (g) ensure that it is subsequently possible to verify and establish which Personal Data have been put into automated data-processing systems and when and by whom the input was made (input control); (h) prevent the unauthorised reading, copying, modification or deletion of Personal Data during transfers of those data or during transportation of data media (transport control); (i) ensure that installed systems used to process Personal Data may, in case of interruption, be restored (recovery); (j) ensure that the functions of the system used to process Personal Data perform, that the appearance of faults in the functions is reported (reliability) and to prevent stored Personal Data from corruption by means of a malfunctioning of the system (integrity).

General Controls. FF Company shall implement, or be responsible for its Sub-processor’s implementation of, measures designed to: (a) deny unauthorised persons access to data-processing equipment used for processing Personal Data (equipment access control); (b) prevent the unauthorised reading, copying, modification or removal of data media containing Personal Data (data media control); (c) prevent the unauthorised input of Personal Data and the unauthorised inspection, modification or deletion of stored Personal Data (storage control); (d) prevent the use of automated data-processing systems by unauthorised persons using data communication equipment used to process Personal Data (user control); (e) ensure that persons authorised to use an automated data-processing system only have access to the Personal Data covered by their access authorisation (data access control); (f) ensure that it is possible to verify and establish to which individuals Personal Data have been or may be transmitted or made available using data communication equipment (communication control); (g) ensure that it is subsequently possible to verify and establish which Personal Data have been put into automated data-processing systems and when and by whom the input was made (input control); (h) prevent the unauthorised reading, copying, modification or deletion of Personal Data during transfers of those data or during transportation of data media (transport control); (i) ensure that installed systems used to process Personal Data may, in case of interruption, be restored (recovery); (j) ensure that the functions of the system used to process Personal Data perform, that the appearance of faults in the functions is reported (reliability) and to prevent stored Personal Data from corruption by means of a malfunctioning of the system (integrity).