Common use of Security and Data Protection Clause in Contracts

Security and Data Protection. a. Contractor shall comply with all his/her obligations under the Personal Data Protection Act (“PDPA”) at his/her own cost. b. Contractor shall only process, use or disclose Customer Personal Data (which refers to data about a customer who can be identified from that data alone, or from that data and other information which Contractor has or is likely to have access to) strictly for the purposes of fulfilling his/her obligations and providing the services under this Agreement. c. Contractor shall protect Customer Personal Data in Contractor’s control or possession by making reasonable security arrangements to prevent unauthorized or accidental access, collection, use, disclosure, or copying of Customer Personal Data. d. Contractor shall not retain Customer Personal Data (or any documents or records containing Customer Personal Data, electronic or otherwise) for any period of time longer than is necessary to perform the services and fulfil the obligations set out in this Agreement. e. Contractor shall indemnify the Client against all actions, claims, demands, losses, damages, statutory penalties, expenses and cost (including legal costs on an indemnity basis) in respect of Contractor’s breach of this clause or any act, omission or negligence of Contract that causes or results in the Client being in breach of the PDPA.