Privacy and Cybersecurity. (a) The Company and its Subsidiaries maintain and are in compliance with, and during the last three (3) years have maintained and been in compliance with, (i) all applicable Laws relating to the privacy and/or security of personal information, (ii) the Company’s and its Subsidiaries’ posted or publicly facing privacy policies, and (iii) the Company’s and its Subsidiaries’ contractual obligations concerning cybersecurity, data security and the security of the Company’s and each of its Subsidiaries’ information technology systems, in each case of (i)-(iii) above, other than any non-compliance that, individually or in the aggregate, has not been or would not reasonably be expected to be material to the Company and its Subsidiaries taken as a whole. There are no material Actions by any Person (including any Governmental Authority) pending to which the Company or any of the Company’s Subsidiaries is a named party, or as to which the Company or any of its Subsidiaries has received a threat in writing, alleging a violation of any third Person’s privacy or personal information rights.
Privacy and Cybersecurity. (a) The Company and its Subsidiaries are in compliance with, and during the past three (3) years have been in compliance with, (i) all applicable Laws governing privacy and/or security of personal information, (ii) the Company’s and its Subsidiaries’ posted or publicly facing privacy policies, and (iii) the Company’s and its Subsidiaries’ contractual obligations concerning cybersecurity, data security and the security of the information technology systems used by the Company and its Subsidiaries (the foregoing clauses (i)-(iii), “Privacy and Cybersecurity Requirements”), other than any non-compliance that, individually or in the aggregate, has not been and would not reasonably be expected to be material to the Company and its Subsidiaries. There are not, and have not been in the past three (3) years, any Actions by any Person or, to the knowledge of the Company, by any Governmental Authority, pending to which the Company or any of the Company’s Subsidiaries is a named party or, to the knowledge of the Company, threatened in writing against the Company or its Subsidiaries alleging a violation of any Privacy and Cybersecurity Requirements.
Privacy and Cybersecurity. (a) The Company and its Subsidiaries maintain and are in compliance with, and during the three (3) years preceding the date hereof have maintained and been in compliance with, (i) all applicable Laws relating to the privacy and/or security of personal information, (ii) the Company’s and its Subsidiaries’ posted or publicly facing privacy policies, and (iii) the Company’s and its Subsidiaries’ contractual obligations concerning cybersecurity, data security and the security of the Company’s and each of its Subsidiaries’ information technology systems, in each case of clauses (i) through (iii) above, other than any non-compliance that, individually or in the aggregate, has not been and would not reasonably be expected to be material to the Company and its Subsidiaries. There are no actions by any Person (including any Governmental Entity) pending to which the Company or any of the Company’s Subsidiaries is a named party or, to the knowledge of the Company, threatened in writing against the Company or its Subsidiaries alleging a violation of any third Person’s privacy or personal information rights.
Privacy and Cybersecurity. (a) The Company and its Subsidiaries maintain and have at all times been in material compliance with (i) Privacy Laws, (ii) policies, notices, statements and representations relating to the Processing of Personal Information, (iii) any privacy choices required by applicable Law, including opt-out preferences offered by the Company or its Subsidiaries to end users relating to Personal Information, and (iv) any contractual commitment made by the Company or any Subsidiary of the Company that is applicable to Personal Information, including contractual obligations concerning cybersecurity, data security and the security of the Company’s and each of its Subsidiaries’ information technology systems, ((i)-(iv) together with Privacy Laws, the “Company Privacy Commitments”).
Privacy and Cybersecurity. (a) The Group Companies maintain and are in compliance with, and during the Lookback Period, have maintained and been in compliance with, (i) all applicable Laws relating to the receipt, collection, compilation, use, storage, processing, sharing, safeguarding, security, disclosure or transfer of Personal Information, including all applicable Laws governing breach notification, and the Mexican Federal Protection Law of Personal Data (Ley Federal de Protección de Datos Personales en Posesión de Particulares) and its regulations, (ii) the Company’s and its Subsidiaries’ posted or publicly facing policies, and (iii) the Group Companies’ contractual obligations concerning cybersecurity, Personal Information and data privacy and security and the security of the Group Companies’ IT Assets (collectively, (i)-(iii), “Personal Information Laws and Policies”). There are no Actions by any Person (including any Governmental Authority) pending to which any Group Company is a named party or, to the knowledge of the Company, threatened against the Company or its Subsidiaries alleging a violation of any Personal Information Laws and Policies, and there have been no such Actions brought against any Group Company. None of the Group Companies has received any written notice from any Person relating to an alleged violation of Personal Information Laws and Policies. During the Lookback Period, each Group Company has had written Contracts in place with third parties processing Personal Information or other data for or on behalf of the Group Company in connection with the operation of the businesses of any Group Company (“Processors”), their respective customers and any other Person that shares Personal Information with any Group Company, that are materially consistent with all requirements of the Personal Information Laws and Policies.
Privacy and Cybersecurity. (a) Parent and its Subsidiaries maintain and are in compliance with, and during the three (3) years preceding the date hereof have maintained and been in compliance with, (i) all applicable Laws relating to the privacy and/or security of personal information, (ii) Parent’s and its Subsidiaries’ posted or publicly facing privacy policies, and (iii) Parent’s and its Subsidiaries’ contractual obligations concerning cybersecurity, data security and the security of Parent’s and each of its Subsidiaries’ information technology systems, in each case of (i)-(iii) above, other than any non-compliance that, individually or in the aggregate, has not been and would not reasonably be expected to be material to Parent and its Subsidiaries. There are no actions by any Person (including any Governmental Entity) pending to which Parent or any of Parent’s Subsidiaries is a named party or, to the knowledge of Parent, threatened in writing against Parent or its Subsidiaries alleging a violation of any third Person’s privacy or personal information rights.
Privacy and Cybersecurity. (a) The Company and its Subsidiaries are, and in the past have made themselves, in compliance, in all material respects with all applicable Privacy Obligations.
Privacy and Cybersecurity. (a) The Business Entities have and will have, as of the Closing, established policies, programs and procedures with respect to the collection, retention, use, processing, modification, storage, protection, import, export, disclosure and transfer of Personal Information, including privacy policies, consistent with applicable Laws relating to privacy, data protection, data security or the collection, storage, handling, disclosure, transfer, use or processing of Personal Information (“Privacy Laws”), and for the past three (3) years have maintained and enforced such policies, programs and procedures. Except as would not be expected to be material to the business of the Business Entities, taken as a whole, the Business Entities are in compliance with, and for the past three (3) years has been in compliance with, (i) all Privacy Laws and (ii) the Business Entities’ privacy policies and contractual commitments relating to privacy, data protection, data security or the collection, storage, handling, disclosure, transfer, use or processing of Personal Information or the Company Systems (collectively, “Privacy Obligations”). There are no Actions by any Person (including any Governmental Authority) pending to which one of the Business Entities is a named party or, to the knowledge of the Company, threatened against one of the Business Entities alleging a violation or breach of any Privacy Laws or Privacy Obligations.
Privacy and Cybersecurity. (a) Except as disclosed on Section 3.15(a) of the Company Disclosure Letter or as would not, individually or in the aggregate, reasonably be expected to have a Company Material Adverse Effect, each of the Group Companies, and, to the Knowledge of the Company, any Person acting for or on behalf of any of the Group Companies have in the past three years materially complied with (i) all applicable Privacy Laws, (ii) all of such Group Company’s binding and applicable policies and notices regarding the Processing of Personal Information, and (iii) all of such Group Company’s applicable contractual obligations with respect to cybersecurity and the receipt, collection, compilation, use, storage, Processing, sharing, safeguarding, security (technical, physical and administrative), disposal, destruction, disclosure, or transfer (including cross-border) of Personal Information (the items referred to in clauses (i) through (iv), collectively “Privacy and Cybersecurity Requirements”). Except as disclosed on Section 3.15(a) of the Company Disclosure Letter, none of the Group Companies have in the past three years (a) received any written notice of (including from individuals exercising their rights under Privacy Laws), or claims of (including written notice from third parties acting on its or their behalf),a violation of any Privacy and Cybersecurity Requirements, except as would not, individually or in the aggregate, reasonably be expected to have a Company Material Adverse Effect; (b) been subject to any notices or requests from any Governmental Authority in relation to their data Processing activities, except as would not, individually or in the aggregate, reasonably be expected to have a Company Material Adverse Effect; or (c) been subject to any written notice, threatened investigation, investigation or charge from any Governmental Authority regarding any actual or alleged violation of, or failure to comply with, any Privacy and Cybersecurity Requirements, nor, to the Knowledge of the Company, has any Person initiated or pursued any Action relating to actual or alleged non-compliance by any Group Company with respect to Privacy and Cybersecurity Requirements.
Privacy and Cybersecurity. (a) Except as would not have a Group Company Material Adverse Effect, each Group Company maintains and is in compliance with, and during the last twelve (12) months has maintained and been in compliance with, (i) all applicable Laws relating to the privacy and/or security of personal information in the possession or control of such Group Company, (ii) the contractual obligations concerning cybersecurity, data security and the security of the information technology systems of such Group Company. There are no material Actions by any Person (including any Governmental Authority) pending to which any Group Company is a named party, or as to which such Group Company has received a threat in writing, alleging a violation of any third Person’s privacy or personal information rights.
