Common use of STATUTORY DUTIES Clause in Contracts

STATUTORY DUTIES. The Grant Recipient agrees to adhere to its obligations under the Law including but not limited to the Information Acts and the HRA. Where requested by the Authority, the Grant Recipient must provide reasonable assistance and cooperation to enable the Authority to comply with its information disclosure obligations under the Information Acts. On request from the Authority, the Grant Recipient must provide the Authority with all such relevant documents and information relating to the Grant Recipient’s data protection policies and procedures as the Authority may reasonably require. The Grant Recipient acknowledges that the Authority, acting in accordance with the codes of practice issued and revised from time to time under the Information Acts, may disclose information concerning the Grant Recipient and the Grant Funding Agreement without consulting the Grant Recipient. The Authority will take reasonable steps to notify the Grant Recipient of a request for information to the extent that it is permissible and reasonably practical for it to do so. Notwithstanding any other provision in the Grant Funding Agreement, the Authority will be responsible for determining in its absolute discretion whether any information is exempt from disclosure in accordance with the Information Acts. Data Protection, and Public Procurement Data Protection The Grant Recipient and the Authority will comply at all times with their respective obligations under Data Protection Legislation. The Grant Recipient agrees that it is the Controller of any Personal Data processed by it pursuant to the Funded Activities and must comply with the provisions set out in this condition 15 and Schedule 8. To the extent that the Grant Recipient and the Authority share any Personal Data for the purposes of this Grant Funding Agreement, the Parties accept that they are each a separate, independent Controller in respect of such Personal Data. Each Party: must comply with the applicable Data Protection Legislation in respect of their processing of such Personal Data; must be individually and separately responsible for its own compliance; and do not and must not Process any Personal Data as Joint Controllers. at their own cost enters into such specific agreements as may be reasonably required to enable each other to comply with their respective duties under the Data Protection Legislation as a result of the arrangements contemplated by this Grant Funding Agreement and give each other all reasonable assistance (including review by each party’s legal advisors) in so complying. The Parties acknowledge and agree that this Grant Funding Agreement does not require either Party to act as a Processor of the other. In the event that there is any change which requires either Party to act as a Processor the Parties agree, at their own cost, to enter into the standard data protection clauses set out in the Crown Commercial Services Procurement Policy Note 02/18 (as amended or replaced from time to time). In the event that the Parties believe that there is a Joint Controller relationship, the Parties must seek to agree and enter into a Data Processing Joint Controller Agreement, all Parties acting reasonably. With respect to compliance with the Data Protection Legislation only and in the event of a conflict between the conditions of this agreement and any Data Processing Joint Controller Agreement, the terms of the Data Processing Joint Controller Agreement must take precedence. Each Party must, with respect to its processing of Personal Data as a separate, independent Controller, implement and maintain appropriate technical and organisational measures to ensure a level of security appropriate to that risk, including, as appropriate, the measures referred to in Article 32(1) (a), (b), (c) and (d) of the UK GDPR. Public Procurement The Grant Recipient must ensure that any of its Representatives involved in the Funded Activities will, adopt such policies and procedures that are required in order to ensure that value for money has been obtained in the procurement of goods or services funded by the Grant. Where the Grant Recipient is a Contracting Authority within the meaning of the Procurement Regulations the Grant Recipient must comply, as necessary, with the Procurement Regulations when procuring goods and services in connection with the Grant Funding Agreement and the Authority must not be liable for the Grant Recipient’s failure to comply with its obligations under the Procurement Regulations.

STATUTORY DUTIES. The Grant Recipient agrees to adhere to its obligations under the Law Law, including but not limited to the Information Acts and the HRA. The Grant Recipient hereby acknowledges that the Grant Manager and the AUTHORITY are subject to requirements under the Information Acts. Where requested by theGrant Manager and/or the AuthorityAUTHORITY, the Grant Recipient must will provide reasonable assistance and cooperation to enable the Authority Grant Manager and/or the AUTHORITY to comply assist the Grant Manager’s and/or the AUTHORITY’s compliance with its information disclosure obligations under the Information Actsobligations. On request from the AuthorityGrant Manager and/or the AUTHORITY, the Grant Recipient must will provide the Authority Grant Manager and/or the AUTHORITY with all such relevant documents and information relating to the Grant Recipient’s data protection policies and procedures as the Authority Grant Manager and/or the AUTHORITY may reasonably require. The Grant Recipient acknowledges that the AuthorityGrant Manager and/or the AUTHORITY, acting in accordance with the codes of practice issued and revised from time to time under the Information Acts, may disclose information concerning the Grant Recipient and the Grant Funding Agreement without consulting the Grant Recipient. The Authority Grant Manager and/or the AUTHORITY will take reasonable steps to notify the Grant Recipient of a request for information to the extent that it is permissible and reasonably practical for it to do so. Notwithstanding any other provision in the Grant Funding Agreement, the Authority Grant Manager and/or the AUTHORITY will be responsible for determining in its absolute discretion whether any information is exempt from disclosure in accordance with the Information Acts. Data Protection, and Public Procurement Data Protection The Grant Recipient and the Authority will comply at all times with their respective obligations under Data Protection Legislation. The Grant Recipient agrees that it is the Controller of any Personal Data processed by it pursuant to the Funded Activities and must comply with the provisions set out in this condition 15 and Schedule 8. To the extent that the Grant Recipient and the Authority share any Personal Data for the purposes of this Grant Funding Agreement, the Parties accept that they are each a separate, independent Controller in respect of such Personal Data. Each Party: must comply with the applicable Data Protection Legislation in respect of their processing of such Personal Data; must be individually and separately responsible for its own compliance; and do not and must not Process any Personal Data as Joint Controllers. at their own cost enters into such specific agreements as may be reasonably required to enable each other to comply with their respective duties under the Data Protection Legislation as a result of the arrangements contemplated by this Grant Funding Agreement and give each other all reasonable assistance (including review by each party’s legal advisors) in so complying. The Parties acknowledge and agree that this Grant Funding Agreement does not require either Party to act as a Processor of the other. In the event that there is any change which requires either Party to act as a Processor the Parties agree, at their own cost, to enter into the standard data protection clauses set out in the Crown Commercial Services Procurement Policy Note 02/18 (as amended or replaced from time to time). In the event that the Parties believe that there is a Joint Controller relationship, the Parties must seek to agree and enter into a Data Processing Joint Controller Agreement, all Parties acting reasonably. With respect to compliance with the Data Protection Legislation only and in the event of a conflict between the conditions of this agreement and any Data Processing Joint Controller Agreement, the terms of the Data Processing Joint Controller Agreement must take precedence. Each Party must, with respect to its processing of Personal Data as a separate, independent Controller, implement and maintain appropriate technical and organisational measures to ensure a level of security appropriate to that risk, including, as appropriate, the measures referred to in Article 32(1) (a), (b), (c) and (d) of the UK GDPR. Public Procurement The Grant Recipient must ensure that any of its Representatives involved in the Funded Activities will, adopt such policies and procedures that are required in order to ensure that value for money has been obtained in the procurement of goods or services funded by the Grant. Where the Grant Recipient is a Contracting Authority within the meaning of the Procurement Regulations the Grant Recipient must comply, as necessary, with the Procurement Regulations when procuring goods and services in connection with the Grant Funding Agreement and the Authority must not be liable for the Grant Recipient’s failure to comply with its obligations under the Procurement Regulations.

STATUTORY DUTIES. The Grant Recipient agrees to adhere to its obligations under the Law including but not limited to the Information Acts and the HRA. Where requested by the Authority, the Grant Recipient must provide reasonable assistance and cooperation to enable the Authority to comply with its information disclosure obligations under the Information Acts. On request from the Authority, the Grant Recipient must provide the Authority with all such relevant documents and information relating to the Grant Recipient’s data protection policies and procedures as the Authority may reasonably require. The Grant Recipient acknowledges that the Authority, acting in accordance with the codes of practice issued and revised from time to time under the Information Acts, may disclose information concerning the Grant Recipient and the Grant Funding Agreement without consulting the Grant Recipient. The Authority will take reasonable steps to notify the Grant Recipient of a request for information to the extent that it is permissible and reasonably practical for it to do so. Notwithstanding any other provision in the Grant Funding Agreement, the Authority will be responsible for determining in its absolute discretion whether any information is exempt from disclosure in accordance with the Information Acts. Data Protection, and Public Procurement Data Protection The Grant Recipient and the Authority will comply at all times with their respective obligations under Data Protection LegislationLegislation and in Schedule 8. The Grant Recipient agrees that it is the Controller of any Personal Data processed by it pursuant to the Funded Activities and must comply with the provisions set out in this condition 15 14 and Schedule 8. To the extent that the Grant Recipient and the Authority share any Personal Data for the purposes of this Grant Funding Agreement, the Parties accept that they are each a separate, independent Controller in respect of such Personal Data. Each Party: must comply with the applicable Data Protection Legislation in respect of their processing of such Personal Data; must be individually and separately responsible for its own compliance; and do not and must not Process any Personal Data as Joint Controllers. at their own cost enters into such specific agreements as may be reasonably required to enable each other to comply with their respective duties under the Data Protection Legislation as a result of the arrangements contemplated by this Grant Funding Agreement and give each other all reasonable assistance (including review by each party’s legal advisors) in so complying. The Parties acknowledge and agree that this Grant Funding Agreement does not require either Party to act as a Processor of the other. In the event that there is any change which requires either Party to act as a Processor the Parties agree, at their own cost, to enter into the standard data protection clauses set out in the Crown Commercial Services Procurement Policy Note 02/18 (as amended or replaced from time to time). In the event that the Parties believe that there is a Joint Controller relationship, the Parties must seek will acting reasonably work together to agree and enter into a Data Processing Joint Controller Agreement, all Parties acting reasonably. With respect to compliance with the Data Protection Legislation only and in In the event of a conflict between the conditions of this agreement Conditions and any Data Processing Joint Controller Agreement, the terms of the Data Processing Joint Controller Agreement must shall take precedenceprecedence in so far as the conflict relates to compliance with Data Protection Legislation. Each Party mustshall, with respect to its processing of Personal Data as a separate, independent Controller, implement and maintain appropriate technical and organisational measures to ensure a level of security appropriate to that risk, including, as appropriate, the measures referred to in Article 32(1) (a), (b), (c) and (d) of the UK GDPR. Public Procurement The Grant Recipient must ensure that any of its Representatives involved in the Funded Activities will, adopt such policies and procedures that are required in order to ensure that value for money has been obtained in the procurement of goods or services funded by the Grant. Where the Grant Recipient is a Contracting Authority within the meaning of the Procurement Regulations the Grant Recipient must comply, as necessary, with the Procurement Regulations when procuring goods and services in connection with the Grant Funding Agreement and the Authority must not be liable for the Grant Recipient’s failure to comply with its obligations under the Procurement Regulations.

STATUTORY DUTIES. The Grant Recipient agrees to adhere to its obligations under the Law including but not limited to the Information Acts and the HRA. Where requested by the Authority, the Grant Recipient must will provide reasonable assistance and cooperation to enable the Authority to comply with its information disclosure obligations under the Information Acts. On request from the Authority, the Grant Recipient must will provide the Authority with all such relevant documents and information relating to the Grant Recipient’s data protection policies and procedures as the Authority may reasonably require. The Grant Recipient acknowledges that the Authority, acting in accordance with the codes of practice issued and revised from time to time under the Information Acts, may disclose information concerning the Grant Recipient and the Grant Funding Agreement without consulting the Grant Recipient. The Authority will take reasonable steps to notify the Grant Recipient of a request for information to the extent that it is permissible and reasonably practical for it to do so. Notwithstanding any other provision in the Grant Funding Agreement, the Authority will be responsible for determining in its absolute discretion whether any information is exempt from disclosure in accordance with the Information Acts. Data Protection, and Public Procurement Data Protection The Grant Recipient and the Authority will comply at all times with their its respective obligations under Data Protection Legislation. The Grant Recipient agrees that it is the Controller of any Personal Data processed by it pursuant to the Funded Activities and must comply with the provisions set out in this condition 15 and Schedule 8. To the extent that the Grant Recipient and the Authority share any Personal Data for the purposes of this Grant Funding Agreement, the Parties accept that they are each a separate, independent Controller in respect of such Personal Data. Each Party: must comply with the applicable Data Protection Legislation in respect of their processing of such Personal Data; must be individually and separately responsible for its own compliance; and do not and must not Process any Personal Data as Joint Controllers. at their own cost enters into such specific agreements as may be reasonably required to enable each other to comply with their respective duties under the Data Protection Legislation as a result of the arrangements contemplated by this Grant Funding Agreement and give each other all reasonable assistance (including review by each party’s legal advisors) in so complying. The Parties acknowledge and agree that this Grant Funding Agreement does not require either Party to act as a Processor of the other. In the event that there is any change which requires either Party to act as a Processor the Parties agree, at their own cost, to enter into the standard data protection clauses set out in the Crown Commercial Services Procurement Policy Note 02/18 (as amended or replaced from time to time). In the event that the Parties believe that there is a Joint Controller relationship, the Parties must seek to agree and enter into a Data Processing Joint Controller Agreement, all Parties acting reasonably. With respect to compliance with the Data Protection Legislation only and in the event of a conflict between the conditions of this agreement and any Data Processing Joint Controller Agreement, the terms of the Data Processing Joint Controller Agreement must take precedence. Each Party must, with respect to its processing of Personal Data as a separate, independent Controller, implement and maintain appropriate technical and organisational measures to ensure a level of security appropriate to that risk, including, as appropriate, the measures referred to in Article 32(1) (a), (b), (c) and (d) of the UK GDPR. Public Procurement The Grant Recipient must ensure Recipients acknowledges that any the Authority is subject to the requirements of its Representatives involved in the Funded Activities will, adopt such policies Freedom of Information Act 2000 (FOIA) and procedures that are required in order the Environmental Information Regulations 2004 (EIRs). The Grant Recipients agrees to ensure that value for money has been obtained in the procurement of goods or services funded provide all necessary assistance and cooperation which is reasonably requested by the Grant. Where the Grant Recipient is a Contracting Authority within the meaning of the Procurement Regulations the Grant Recipient must comply, as necessary, with the Procurement Regulations when procuring goods and services in connection with the Grant Funding Agreement and the Authority must not be liable for the Grant Recipient’s failure to comply purposes of complying with its obligations under the Procurement RegulationsFOIA and EIRs. If the Grant Recipient is required to supply information pursuant to a FOIA/EIR request, it shall supply all such information which is within its possession or control within 5 Working Days (or such other period as the Authority shall reasonably require). If the Grant Recipient receives a FOIA/EIR request from a member of the public, it shall not respond to the request but shall forward the request to the Authority within two (2) Working Days of receipt. The Authority shall determine in its absolute discretion whether any information is exempt from disclosure in accordance with the provisions of FOIA and/or the EIRs.

STATUTORY DUTIES. The Grant Recipient agrees to adhere to its obligations under the Law Law, including but not limited to the Information Acts and the HRAHRA.‌ The Grant Recipient hereby acknowledges that the Authority is subject to requirements under the Information Acts. Where requested by the Authority, the Grant Recipient must will provide reasonable assistance and cooperation to enable the Authority to comply assist the Authority’s compliance with its information disclosure obligations under the Information Actsobligations. On request from the Authority, the Grant Recipient must will provide the Authority with all such relevant documents and information relating to the Grant Recipient’s data protection policies and procedures as the Authority may reasonably require. The Grant Recipient acknowledges that the Authority, acting in accordance with the codes of practice issued and revised from time to time under the Information Acts, may disclose information concerning the Grant Recipient and the Grant Funding Agreement without consulting the Grant Recipient. The Authority will take reasonable steps to notify the Grant Recipient of a request for information to the extent that it is permissible and reasonably practical for it to do so. Notwithstanding any other provision in the Grant Funding Agreement, the Authority will be responsible for determining in its absolute discretion whether any information is exempt from disclosure in accordance with the Information Acts. Data Protection, and Public Procurement Data Protection DATA PROTECTION‌ The Grant Recipient and the Authority will comply at all times with their its respective obligations under the Data Protection Legislation. The Parties agree that for the purposes of the Data Protection Legislation the Grant Recipient is a Data Controller in their own right as is the Authority unless otherwise specified in Annex 8 of these Conditions. The only processing that the Processor is authorised to do under this Grant Funding Agreement will be determined by the Controller and is set out in Annex 9 of these Conditions. The Grant Recipient agrees that it is the Controller of any Personal Data processed by it pursuant to the Funded Activities and must shall comply with the provisions set out in this condition 15 paragraph 14 and Schedule 8Annex 5. To the extent that the Grant Recipient and the Authority share any Personal Data for the purposes of this Grant Funding Agreement, the Parties accept that they are each a separate, separate independent Controller in respect of such Personal Data. Each Party: must comply with the applicable Data Protection Legislation in respect of their processing of such Personal Data; must be individually and separately responsible for its own compliance; and do not and must not Process any Personal Data as Joint Controllers. at their own cost enters into such specific agreements as may be reasonably required to enable each other to comply with their respective duties under the Data Protection Legislation as a result of the arrangements contemplated by this Grant Funding Agreement and give each other all reasonable assistance (including review by each party’s legal advisors) in so complying. The Parties acknowledge and agree that this Grant Funding Agreement does not require either Party to act as a Processor of the other. In the event that there is any change which requires either Party to act as a Processor the Parties agree, at their own cost, to enter into the standard data protection clauses set out in the Crown Commercial Services Procurement Policy Note 02/18 (as amended or replaced from time to time). In the event that the Parties believe that there is a Joint Controller relationship, the Parties must seek to agree and enter into a Data Processing Joint Controller Agreement, all Parties acting reasonably. With respect to compliance with the Data Protection Legislation only and in the event of a conflict between the conditions of this agreement and any Data Processing Joint Controller Agreement, the terms of the Data Processing Joint Controller Agreement must take precedence. Each Party must, with respect to its processing of Personal Data as a separate, independent Controller, implement and maintain appropriate technical and organisational measures to ensure a level of security appropriate to that risk, including, as appropriate, the measures referred to in Article 32(1) (a), (b), (c) and (d) of the UK GDPR. Public Procurement The Grant Recipient must ensure that any of its Representatives involved in the Funded Activities will, adopt such policies and procedures that are required in order to ensure that value for money has been obtained in the procurement of goods or services funded by the Grant. Where the Grant Recipient is a Contracting Authority within the meaning of the Procurement Regulations the Grant Recipient must comply, as necessary, with the Procurement Regulations when procuring goods and services in connection with the Grant Funding Agreement and the Authority must not be liable for the Grant Recipient’s failure to comply with its obligations under the Procurement Regulations.:

STATUTORY DUTIES. The Grant Recipient agrees to adhere to its obligations under the Law including but not limited to the Information Acts and the HRA. Where requested by the Authority, the Grant Recipient must provide reasonable assistance and cooperation to enable the Authority to comply with its information disclosure obligations under the Information Acts. On request from the Authority, the Grant Recipient must provide the Authority with all such relevant documents and information relating to the Grant Recipient’s data protection policies and procedures as the Authority may reasonably require. The Grant Recipient acknowledges that the Authority, acting in accordance with the codes of practice issued and revised from time to time under the Information Acts, may disclose information concerning the Grant Recipient and the Grant Funding Agreement without consulting the Grant Recipient. The Authority will take reasonable steps to notify the Grant Recipient of a request for information to the extent that it is permissible and reasonably practical for it to do so. Notwithstanding any other provision in the Grant Funding Agreement, the Authority will be responsible for determining in its absolute discretion whether any information is exempt from disclosure in accordance with the Information Acts. Data Protection, and Public Procurement Data Protection The Grant Recipient and the Authority will comply at all times with their respective obligations under Data Protection LegislationLegislation and in Schedule 8. The Grant Recipient agrees that it is the Controller of any Personal Data processed by it pursuant to the Funded Activities and must comply with the provisions set out in this condition 15 14 and Schedule 8. To the extent that the Grant Recipient and the Authority share any Personal Data for the purposes of this Grant Funding Agreement, the Parties accept that they are each a separate, independent Controller in respect of such Personal Data. Each Party: must comply with the applicable Data Protection Legislation in respect of their processing of such Personal Data; must be individually and separately responsible for its own compliance; and do not and must not Process any Personal Data as Joint Controllers. at their own cost enters into such specific agreements as may be reasonably required to enable each other to comply with their respective duties under the Data Protection Legislation as a result of the arrangements contemplated by this Grant Funding Agreement and give each other all reasonable assistance (including review by each party’s legal advisors) in so complying. The Parties acknowledge and agree that this Grant Funding Agreement does not require either Party to act as a Processor of the other. In the event that If there is any change which requires either Party to act as a Processor the Parties agree, at their own cost, to enter into the standard data protection clauses set out in the Crown Commercial Services Procurement Policy Note 02/18 (as amended or replaced from time to time). In the event that the Parties believe that there is a Joint Controller relationship, the Parties must seek will acting reasonably work together to agree and enter into a Data Processing Joint Controller Agreement, all Parties acting reasonably. With respect to compliance with the Data Protection Legislation only and in In the event of a conflict between the conditions of this agreement Conditions and any Data Processing Joint Controller Agreement, the terms of the Data Processing Joint Controller Agreement must shall take precedenceprecedence in so far as the conflict relates to compliance with Data Protection Legislation. Each Party mustshall, with respect to its processing of Personal Data as a separate, independent Controller, implement and maintain appropriate technical and organisational measures to ensure a level of security appropriate to that risk, including, as appropriate, the measures referred to in Article 32(1) (a), (b), (c) and (d) of the UK GDPR. Public Procurement The Grant Recipient must ensure that any of its Representatives involved in the Funded Activities will, adopt such policies and procedures that are required in order to ensure that value for money has been obtained in the procurement of goods or services funded by the Grant. Where the Grant Recipient is a Contracting Authority within the meaning of the Procurement Regulations the Grant Recipient must comply, as necessary, with the Procurement Regulations when procuring goods and services in connection with the Grant Funding Agreement and the Authority must not be liable for the Grant Recipient’s failure to comply with its obligations under the Procurement Regulations.