Common use of Organization of Information Security Clause in Contracts

Organization of Information Security. ● Information Security governance and data protection compliance for the Company are the responsibility of XxxXxxx’s Vice President of Operations. ● MaxMind has established an Information Security team, with security responsibilities shared across various business units. ● Confidentiality and nondisclosure agreements are required when sharing sensitive, proprietary personal, or otherwise confidential information between MaxMind and a third-party. ● A formal process is in place to manage third parties with access to organizational data, information systems, or data centers. All such third parties commit contractually to maintaining confidentiality of all confidential information.

Organization of Information Security. ● Information Security governance and data protection compliance for the Company are the responsibility of XxxXxxxMaxMind’s Vice President of Operations. ● MaxMind has established an Information Security team, with security responsibilities shared across various business units. ● Confidentiality and nondisclosure agreements are required when sharing sensitive, proprietary personal, or otherwise confidential information between MaxMind and a third-party. ● A formal process is in place to manage third parties with access to organizational data, information systems, or data centers. All such third parties commit contractually to maintaining confidentiality of all confidential information.

Organization of Information Security. ● Information Security governance and data protection compliance for the Company MaxMind are the responsibility of XxxXxxx’s Vice President of OperationsChief Operating Officer. ● MaxMind has established an Information Security team, with security responsibilities shared across various business units. ● Confidentiality and nondisclosure agreements are required when sharing sensitive, proprietary personal, or otherwise confidential information between MaxMind and a third-third- party. ● A formal process is in place to manage third parties with access to organizational data, information systems, or data centers. All such third parties commit contractually to maintaining confidentiality of all confidential information.