PROCEDURES FOR REGULAR REVIEW, ASSESSMENT AND EVALUATION Sample Clauses

PROCEDURES FOR REGULAR REVIEW, ASSESSMENT AND EVALUATION. A comprehensive data protection management system is implemented at Xxxxxxxxxx.Xxx. There is a guideline on data protection and information security and policies to ensure the implementation of the guideline's objectives. The guideline and the policies are regularly evaluated and adjusted with regard to their effectiveness. A Data Protection and Information Security Team is in place to plan, implement, evaluate and make adjustments to data privacy and information security measures. In particular, it is ensured that data protection incidents are recognized by all employees and reported to the team without delay. The team will investigate the incident immediately. If data processed on behalf of customers is affected, care is taken to ensure that they are informed immediately about the nature and scope of the incident.
Sample 1Sample 2Sample 3
AutoNDA by SimpleDocs
PROCEDURES FOR REGULAR REVIEW, ASSESSMENT AND EVALUATION. At doo, a data protection management system has been implemented and a data protection officer has been designated. There is a policy on data protection and information security and guidelines to ensure the implementation of the policy's objectives. The policy and guidelines are regularly evaluated and adjusted with regard to their effectiveness. A data protection and information security team has been set up to plan, implement, evaluate and make adjustments to data protection and information security measures.
Sample 1Sample 2
PROCEDURES FOR REGULAR REVIEW, ASSESSMENT AND EVALUATION. The Contractor implemented a comprehensive data protection management system, including detailed policies on data protection and information security.
Sample 1Sample 2
PROCEDURES FOR REGULAR REVIEW, ASSESSMENT AND EVALUATION. Data Protection Management Pursuant to Art. 32 para. 1 lit. d GDPR, a procedure for the regular review, evaluation and evaluation of the effectiveness of technical and organizational measures to ensure the security of processing shall be established. Furthermore, pursuant to Art. 32 para. 1 lit. d GDPR, Art. 28 para. 1 GDPR, it must be ensured that personal data processed on behalf of the Controller can only be processed in accordance with the instructions of the Controller. Technical MeasuresSoftware solutions for data protection management in use • Approvals or pre-approved requests for granting, re enabling or changing accounts are documented. It is assured that users cannot authorize their own access privileges and that the administrator of the user accounts is not involved in the authorization process. Access to secure data needs manager approvals • Formal on and off boarding procedures are in place that covers among others access control and asset handlingSecurity certification according to ISO 27001 • Other documented safety concept • A review of the effectiveness of the technical protective measures is carried out at least once a year. • Organizational Measures • Employees trained and committed to confidentiality/data secrecy • Central documentation of all procedures and regulations for data protection with access for employees as required / authorized • Regular sensitization of employees at least once a year • The Data Protection Impact Assessment (DPIA) will be carried out as necessary • The organization complies with the information obligations under Art. 13 and 14 GDPR • Formalized process for processing requests for information from data subjects is in place Incident Response Management Support in responding to security breaches Technical Measures • Firewall deployment, regular updates, and regular check of the rule set • Use of spam filters, regular updates, and regular check of the rule set • Use of virus scanners, regular updates, and regular check of the rule set • Intrusion Detection System (IDS) • Intrusion Prevention System (IPS) • In addition to our own Intrusion Detection Systems and Intrusion Prevention Systems, the infrastructure is also protected by Microsoft’s security for Azure. Details can be found here Azure infrastructure security | Microsoft Docs Organizational Measures • Documented process for recognition and reporting of security incidents / data breakdowns (also regarding reporting obligations to supervisory authorit...
Sample 1
PROCEDURES FOR REGULAR REVIEW, ASSESSMENT AND EVALUATION. Data protection management: Systemic security tests are conducted at irregular intervals by a third- party data processor. The results are recorded. • Incident-response-management is conducted and reported. • Default privacy setting of our users: All new profiles are set to private by default.
Sample 1
PROCEDURES FOR REGULAR REVIEW, ASSESSMENT AND EVALUATION cioplenu implemented a comprehensive data protection management system, including detailed policies on data protection and information security.
Sample 1
PROCEDURES FOR REGULAR REVIEW, ASSESSMENT AND EVALUATION of the effectiveness of technical and organisational measures to ensure processing security
Sample 1
AutoNDA by SimpleDocs
PROCEDURES FOR REGULAR REVIEW, ASSESSMENT AND EVALUATION. 4.1. Data protection management, including regular employee training and Contractual obligation of employees.
Sample 1

Related to PROCEDURES FOR REGULAR REVIEW, ASSESSMENT AND EVALUATION

  • AUDIT REVIEW PROCEDURES A. Any dispute concerning a question of fact arising under an interim or post audit of this AGREEMENT that is not disposed of by AGREEMENT, shall be reviewed by LOCAL AGENCY’S Chief Financial Officer.

  • Conformity Assessment Procedures 1. Each Party shall give positive consideration to accepting the results of conformity assessment procedures of other Parties, even where those procedures differ from its own, provided it is satisfied that those procedures offer an assurance of conformity with applicable technical regulations or standards equivalent to its own procedures.

  • ADB’s Review of Procurement Decisions 9. All contracts procured under international competitive bidding procedures and contracts for consulting services shall be subject to prior review by ADB, unless otherwise agreed between the Borrower and ADB and set forth in the Procurement Plan. SCHEDULE 5

  • Project Monitoring Reporting and Evaluation The Recipient shall furnish to the Association each Project Report not later than forty-five (45) days after the end of each calendar semester, covering the calendar semester.

  • Office of Inspector General Investigative Findings Expert Review In accordance with Senate Bill 799, Acts 2021, 87th Leg., R.S., if Texas Government Code, Section 531.102(m-1)(2) is applicable to this Contract, Contractor affirms that it possesses the necessary occupational licenses and experience.

  • GRIEVANCE REPORT Attachment I (Grievance Report) will be used in the processing of all grievances.

  • Important Information About Procedures for Opening a New Account To help the government fight the funding of terrorism and money laundering activities, Federal law requires all financial organizations to obtain, verify, and record information that identifies each person who opens an account. What this means for you: When you open an account, you are required to provide your name, residential address, date of birth, and identification number. We may require other information that will allow us to identify you.

  • Review Procedure If the Plan Administrator denies part or all of the claim, the claimant shall have the opportunity for a full and fair review by the Plan Administrator of the denial, as follows:

Time is Money Join Law Insider Premium to draft better contracts faster.