Common use of Notification Format and Content Clause in Contracts

Notification Format and Content. Notification of a Data Security Breach must be in writing via email or other secure method of electronic communication authorized by ICANN to an information or administrative contact identified by the parties (which shall be identified by the parties promptly following the date of this Data Processing Specification and updated as necessary to replace such contact), though communication may take place first via telephone. Any other provisions specifying the manner in which notice is to be provided under the Agreement or the content of such notice do not apply to the notification of a Data Security Breach pursuant to this Section 6 of the Data Processing Specification. Concurrent with the notification provided pursuant to Section 6.1, the notifying party must, to the greatest extent possible, provide the information described in Sections 6.2.1 through Section 6.2.5 below, and shall thereafter regularly update, as additional information becomes available, the information provided to the other party pursuant to this Section 6.2. 6.2.1. A reasonably detailed description of the nature of the incident; 6.2.2. Expected resolution time (if known); 6.2.3. A description of the measures taken or proposed to address the incident, including measures to mitigate the incident’s possible adverse effects on Data Subjects and the parties; 6.2.4. The categories and approximate volume of Personal Registration Data and Data Subjects potentially affected by the incident, and an assessment of the likely risks to and consequences of the incident on that Personal Registration Data and associated Data Subjects; and 6.2.5. The name, email address, and telephone number of a representative of the notifying party with up-to-date knowledge of the incident who may be contacted to obtain incident updates.

Notification Format and Content. Notification of a Data Security Breach must be in writing via email or other secure method of electronic communication authorized by ICANN to an information or administrative contact identified by the parties parties‌ (which shall be identified by the parties promptly following the date of this Data Processing Specification and updated as necessary to replace such contact), though communication may take place first via telephone. Any other provisions specifying the manner in which notice is to be provided under the Agreement or the content of such notice do not apply to the notification of a Data Security Breach pursuant to this Section 6 of the Data Processing Specification. Concurrent with the notification provided pursuant to Section 6.1, the notifying party must, to the greatest extent possible, provide the information described in Sections 6.2.1 through Section 6.2.5 below, and shall thereafter regularly update, as additional information becomes available, the information provided to the other party pursuant to this Section 6.2. 6.2.1. A reasonably detailed description of the nature of the incident;incident;‌ 6.2.2. Expected resolution time (if known); 6.2.3. A description of the measures taken or proposed to address the incident, including measures to mitigate the incident’s possible adverse effects on Data Subjects and the parties; 6.2.4. The categories and approximate volume of Personal Registration Data and Data Subjects potentially affected by the incident, and an assessment of the likely risks to and consequences of the incident on that Personal Registration Data and associated Data Subjects; and 6.2.5. The name, email address, and telephone number of a representative of the notifying party with up-to-date knowledge of the incident who may be contacted to obtain incident updates.updates.‌