Common use of Protection of PC and data Clause in Contracts

Protection of PC and data. All PCs must have passwords that comply with the instructions given in the next point below. Passwords must be kept and managed with due diligence and in observance of the instructions provided by the Data Controller or, on its behalf, by the Processor. To prevent illicit access, the screen saver password must always be activated if this setting is not automatically available. As soon as they are available (and in any case at least annually) all software updates necessary for preventing vulnerability and correcting defects must be installed in the PCs. If this does not take place automatically, the Authorised Person must inform his/her Manager. Back-up storage must be carried out at least every week on the assumption that any third party personal data are present only in the PC of the Authorised Person (not filed in corporate IT systems). The storage media used for back-up must be managed in accordance with the rules described in “Processing without electronic devices”.

Protection of PC and data. All PCs must have passwords that comply with the instructions given in the next point below. Passwords must be kept and managed with due diligence and in observance of the instructions provided by the Data Controller or, on its behalf, by the Data Processor. To prevent illicit access, the screen saver password must always be activated if this setting is not automatically available. As soon as they are available (and in any case at least annually) all software updates necessary for preventing vulnerability and correcting defects must be installed in the PCs. If this does not take place automatically, the Authorised Person must inform his/her Manager. Back-up storage must be carried out at least every week on the assumption that any third party personal data are present only in the PC of the Authorised Person (not filed in corporate IT systems). The storage media used for back-back- up must be managed in accordance with the rules described in “Processing without electronic devices”.

Protection of PC and data. All PCs must have passwords that comply with the instructions given in the next point below. Passwords must be kept and managed with due diligence and in observance of the instructions provided by the Data Controller or, on its behalf, by the Data Processor. To prevent illicit access, the screen saver password must always be activated if this setting is not automatically available. As soon as they are available (and in any case at least annually) all software updates necessary for preventing vulnerability and correcting defects must be installed in the PCs. If this does not take place automatically, the Authorised Person must inform his/her Manager. Back-up storage must be carried out at least every week on the assumption that any third party personal data are present only in the PC of the Authorised Person (not filed in corporate IT systems). The storage media used for back-up must be managed in accordance with the rules described in “Processing without electronic devices”.