Common use of SECURITY AND TRAINING Clause in Contracts

SECURITY AND TRAINING. 8.1. The Data Discloser shall only provide the Shared Personal Data to the Data Receiver by using secure methods as agreed in writing with the Data Receiver. 8.2. The Parties undertake to have in place throughout the Term appropriate technical and organisational security measures to: 8.2.1. prevent: 8.2.1.1. unauthorised or unlawful processing of the Shared Personal Data; and 8.2.1.2. the accidental loss or destruction of, or damage to, the Shared Personal Data 8.2.2. ensure a level of security appropriate to: 8.2.2.1. the harm that might result from such unauthorised or unlawful processing or accidental loss, destruction or damage; and 8.2.2.2. the nature of the Shared Personal Data to be protected. 8.3. The level of technical and organisational measures agreed by the Parties as appropriate as at the Commencement Date having regard to the state of technological development and the cost of implementing such measures shall be as mutually agreed by the Parties in writing prior to sharing any Personal Data. The Parties shall keep such security measures under review and shall carry out such updates as they agree are appropriate throughout the Term, in accordance with all relevant Privacy Notices for the project. 8.4. It is the responsibility of each Party to ensure that its staff members are appropriately trained to handle and process the Shared Personal Data in accordance with the technical and organisational security measures agreed by the Parties together with the Data Protection Legislation. 8.5. The level, content and regularity of training referred to in Clause 8.4 above, shall be proportionate to the staff members’ role, responsibility and frequency with respect to their handling and processing of the Shared Personal Data.

SECURITY AND TRAINING. 8.1. The Data Discloser shall only provide the Shared Personal Data to the Data Receiver by using secure methods as agreed in writing with the Data Receiver. 8.2. The Parties undertake to have in place throughout the Term appropriate technical and organisational security measures to: 8.2.1. prevent: 8.2.1.1. unauthorised or unlawful processing of the Shared Personal Data; and 8.2.1.2. the accidental loss or destruction of, or damage to, the Shared Personal Data 8.2.2. ensure a level of security appropriate to: 8.2.2.1. the harm that might result from such unauthorised or unlawful processing or accidental loss, destruction or damage; and 8.2.2.2. the nature of the Shared Personal Data to be protected. 8.3. The level of technical and organisational measures agreed by the Parties as appropriate as at the Commencement Date having regard to the state of technological development and the cost of implementing such measures shall be as mutually agreed by the Parties in writing prior to sharing any Personal Data. The Parties shall keep such security measures under review and shall carry out such updates as they agree are appropriate throughout the Term, in accordance with all relevant Privacy Notices for the project. 8.4. It is the responsibility of each Party to ensure that its staff members are appropriately trained to handle and process the Shared Personal Data in accordance with the technical and organisational security measures agreed by the Parties together with the Data Protection Legislation. 8.5. The level, content and regularity of training referred to in Clause 8.4 above, shall be proportionate to the staff members’ role, responsibility and frequency with respect to their handling and processing of the Shared Personal Data.

SECURITY AND TRAINING. 8.1. ‌ 9.1 The Data Discloser shall only provide the Shared Personal Data to the Data Receiver by using secure methods as methods. These may be agreed and set out in writing with the Data ReceiverSchedule 9. 8.2. The Parties undertake 9.2 Having regard to the state of technological development and the cost of implementing such measures as appropriate at the Commencement Date, each party shall have and maintain in place throughout the Term appropriate technical and organisational security measures as set out in Schedule 7 in order to: 8.2.1. 9.2.1 prevent: 8.2.1.1. 9.2.1.1 unauthorised or unlawful processing of the Shared Personal Data; and 8.2.1.2. 9.2.1.2 the accidental loss or destruction of, or damage to, the Shared Personal Data; and 8.2.2. 9.2.2 ensure a level of security appropriate to: 8.2.2.1. 9.2.2.1 the harm that might result from such unauthorised or unlawful processing or accidental loss, destruction or damage; and 8.2.2.2. 9.2.2.2 the nature of the Shared Personal Data to be protected. 8.3. The level of technical and organisational measures agreed by the Parties as appropriate as at the Commencement Date having regard to the state of technological development and the cost of implementing such measures 9.3 Each party shall be as mutually agreed by the Parties in writing prior to sharing any Personal Data. The Parties shall keep such security measures under review and shall carry out such updates as they agree are appropriate throughout the Term, in accordance with all relevant Privacy Notices for the project. 8.4. It is the responsibility of each Party to ensure that its staff members are appropriately trained to handle and process the Shared Personal Data in accordance with the technical and organisational security measures agreed by the Parties together with set out in Schedule 7 and the Data Protection Legislation. 8.5. 9.4 The level, content and regularity of training referred to in Clause 8.4 above, clause 9.3 shall be proportionate to the staff members’ role, responsibility and frequency with respect to their handling and processing of the Shared Personal DataData and to the nature of the Shared Personal Data handled by the relevant staff members. 9.5 Each party shall ensure that only Permitted Recipients have access to the Shared Personal Data and shall ensure the reliability of all such Permitted Recipients.

SECURITY AND TRAINING. 8.110.1. The Data Discloser Parties shall only provide the Shared Personal Data to the Data Receiver each other by using secure methods as agreed and set out in writing with the Data ReceiverSchedule 1 of this Agreement. 8.210.2. The Parties for the purposes of this Agreement undertake to have in place throughout the Term appropriate technical and organisational security measures to: 8.2.110.2.1. prevent: 8.2.1.110.2.1.1. unauthorised or unlawful processing of the Shared Personal Data; and 8.2.1.210.2.1.2. the accidental loss or destruction of, or damage to, the Shared Personal Data 8.2.210.2.2. ensure a level of security appropriate to: 8.2.2.110.2.2.1. the harm that might result from such unauthorised or unlawful processing or accidental loss, destruction or damage; and 8.2.2.210.2.2.2. the nature of the Shared Personal Data to be protected. 8.310.3. The level of technical and organisational measures agreed by the Parties as appropriate as at the Commencement Effective Date having regard to the state of technological development and the cost of implementing such measures shall be as mutually agreed by the Parties is set out in writing prior to sharing any Personal DataSchedule 1. The Parties shall keep such security measures under review and shall carry out such updates as they agree are appropriate throughout the Term, in accordance with all relevant Privacy Notices for the project. 8.410.4. It is the responsibility of each Party to ensure that its staff members members/officers are appropriately trained to handle and process the Shared Personal Data in accordance with the technical and organisational security measures agreed by the Parties terms of this Agreement together with the any other applicable Data Protection LegislationLegislation and guidance and are subject to obligations of confidentiality relating to the processing of Personal Data. 8.510.5. The level, content and regularity of training referred to in Clause 8.4 above, 10.4 shall be proportionate to the staff members’ officers’ role, responsibility and frequency with respect to their handling and processing of the Shared Personal Data.