Security Breach Reporting. Responsible Party shall notify Insurer within forty-eight (48) hours upon learning of an actual or potential Security Breach involving Personal Information. Responsible Party must provide notice to Insurer’s Security Office by emailing ▇▇▇▇▇▇▇▇@▇▇▇▇▇▇▇▇▇▇▇▇.▇▇▇ and must include, at a minimum, and to the extent known the following information: (a) the nature of the Security Breach; (b) the estimated impact on the Insurer; (c) the name of a senior level person responsible for communicating with the Insurer regarding the Security Breach; and (e) the investigative action taken or planned. Responsible Party must cooperate fully with all Insurer requests for information regarding the Security Breach and Responsible Party must provide regular updates on each Security Breach and the investigative and corrective action taken. Any action taken with respect to such Security Breach, including but not limited to the investigation and any communication to internal or external parties regarding the Security Breach, will be at the sole discretion of the Insurer unless otherwise required by applicable law.
Appears in 2 contracts
Sources: Sales Agreement (Separate Account Va-2l), Broker/Dealer Sales Agreement (Separate Account Va M)