Common use of The Supplier Clause in Contracts

The Supplier. a. may be provided with access to Unilever personal data during the term of the Agreement, but does not process personal data originating in the European Economic Area (EEA) as defined in article 4(8) of the GDPR. Where the Supplier processes personal data originating from the EEA, the Supplier shall enter into the GDPR-compliant data processing terms supplied by Unilever. b. shall use the personal data provided only as strictly necessary to perform the Services required this Agreement. c. shall not disclose or transfer Unilever personal data outside the European Economic Area (EEA) without the prior written consent of Unilever and subject to the entity receiving the Unilever personal data being located in a territory which is subject to a current finding by the European Commission that it provides adequate protection for personal data under applicable Data Protection Legislation; or where Supplier and/ or the entity receiving the Unilever personal data has entered into the Model Clauses or is subject to an alternative mechanism approved by relevant authorities pursuant to Data Protection Legislation. d. shall not retain any Unilever personal data for longer than is necessary to fulfil any obligations to Unilever in accordance with the Agreement. e. shall ensure that any Unilever personal data are returned to the Unilever or destroyed on termination or expiry of the of the Agreement in accordance with Unilever’s reasonable instructions; f. shall ensure that it has in place appropriate measures to ensure the security of Unilever personal data (and to guard against unauthorised or unlawful use of the persona data and against accidental loss or destruction of, or damage to, the personal data) g. shall promptly notify Unilever of any breach of the security measures required to be put in place pursuant to (g); and h. shall ensure it does not knowingly or negligently do or omit to do anything which places Unilever in breach of its obligations under the Data Protection Legislation. i. shall treat Unilever personal data as Confidential Information 9.4.

The Supplier. a. may be provided with access to Unilever personal data during the term of the Agreement, but does not process personal data originating in the European Economic Area (EEA) as defined in article 4(8) of the GDPR. Where the Supplier processes personal data originating from the EEA, the Supplier shall enter into the GDPR-compliant data processing terms supplied by Unilever. b. shall use the personal data provided only as strictly necessary to perform the Services required this Agreement. c. shall not disclose or transfer Unilever personal data outside the European Economic Area (EEA) without the prior written consent of Unilever and subject to the entity receiving the Unilever personal data being located in a territory which is subject to a current finding by the European Commission that it provides adequate protection for personal data under applicable Data Protection Legislation; or where Supplier and/ or the entity receiving the Unilever personal data has entered into the Model Clauses or is subject to an alternative mechanism approved by relevant authorities pursuant to Data Protection Legislation. d. shall not retain any Unilever personal data for longer than is necessary to fulfil any obligations to Unilever in accordance with the Agreement. e. shall ensure that any Unilever personal data are returned to the Unilever or destroyed on termination or expiry of the of the Agreement in accordance with Unilever’s reasonable instructions; f. shall ensure that it has in place appropriate measures to ensure the security of Unilever personal data (and to guard against unauthorised or unlawful use of the persona data and against accidental loss or destruction of, or damage to, the personal data) g. shall promptly notify Unilever of any breach of the security measures required to be put in place pursuant to (g); and h. shall ensure it does not knowingly or negligently do or omit to do anything which places Unilever in breach of its obligations under the Data Protection Legislation. i. shall treat Unilever personal data as Confidential Information 9.4.9.4 Le Fournisseur : a) pourra avoir accès aux données personnelles d’Unilever pour toute la durée du contrat, mais ne pourra pas traiter de données personnelles provenant de l’Espace Economique Européen (EEE) tel que défini à l’article 4(8) du Règlement Général sur la protection des données personnelles (ci- après « RGPD »). Lorsque le Fournisseur traite des données personnelles provenant de l’EEE, il xxxxx se conformer à un traitement conforme au RGPD tel que fourni par Unilever. b) doit utiliser les données personnelles fournies dans le cadre strictement nécessaire à l’accomplissement des Prestations exigées dans le présent Contrat. c) ne xxxxx pas communiquer ou transférer les données personnelles d’Unilever en dehors de l’Espace Economique Européen (EEE) sans le consentement préalable écrit de la part d’Unilever et sous réserve que l’entité recevant les données personnelles d’Unilever soit située dans un territoire qui selon la Commission Européenne prévoit un niveau de protection approprié des données personnelles conformément à la règlementation en vigueur; ou lorsque le Fournisseur et/ou l’entité recevant les données personnelles d’Unilever a adhéré à la Clause Type ou à un procédé alternatif approuvé par les autorités compétentes en matière de règlementation sur la protection des données personnelles. d) ne conserve aucunes données personnelles d’Unilever plus longtemps que nécessaire pour remplir ses obligations envers Unilever conformément au présent Contrat. e) xxxxx s’assurer que toute donnée personnelle d’Unilever sera restituée à Unilever ou détruite au terme du présent Contrat conformément aux instructions d’Unilever. f) xxxxx s’assurer qu’il a mis en place toutes les mesures appropriées afin de garantir la sécurité des données personnelles d’Unilever (et de les protéger contre les utilisations non autorisées ou illégales ou contre tout perte ou destruction accidentelle, ou éventuel dommage causé par une violation de la protection des données personnelles). g) xxxxx immédiatement alerter Unilever de toute violation des mesures de sécurité qui ont été mise en place ; et h) xxxxx s’assurer qu’il ne commettra aucun acte, sciemment, par négligence ou par omission, qui placerait Unilever dans une situation de manquement à ses obligations résultant de la règlementation en matière de protection des données personnelles. i) s’engage à traiter les données personnelles d’Unilever comme des Informations Confidentielles

The Supplier. a. may be provided with access to Unilever personal data during the term of the Agreement, but does not process personal data originating in the European Economic Area (EEA) as defined in article 4(8) of the GDPR. Where the Supplier processes personal data originating from the EEA, the Supplier shall enter into the GDPR-compliant data processing terms supplied by Unilever. b. shall use the personal data provided only as strictly necessary to perform the Services required this Agreement. c. shall not disclose or transfer Unilever personal data outside the European Economic Area (EEA) without the prior written consent of Unilever and subject to the entity receiving the Unilever personal data being located in a territory which is subject to a current finding by the European Commission that it provides adequate protection for personal data under applicable Data Protection Legislation; or where Supplier and/ or the entity receiving the Unilever personal data has entered into the Model Clauses or is subject to an alternative mechanism approved by relevant authorities pursuant to Data Protection Legislation. d. shall not retain any Unilever personal data for longer than is necessary to fulfil any obligations to Unilever in accordance with the Agreement. e. shall ensure that any Unilever personal data are returned to the Unilever or destroyed on termination or expiry of the of the Agreement in accordance with Unilever’s reasonable instructions; f. shall ensure that it has in place appropriate measures to ensure the security of Unilever personal data (and to guard against unauthorised or unlawful use of the persona data and against accidental loss or destruction of, or damage to, the personal data) g. shall promptly notify Unilever of any breach of the security measures required to be put in place pursuant to (g); and h. shall ensure it does not knowingly or negligently do or omit to do anything which places Unilever in breach of its obligations under the Data Protection Legislation. i. shall treat Unilever personal data as Confidential Information 9.4.. 供給業者は以下を全て遵守すること。 a) 本契約期間中にユニリーバの個人データへのアクセス権が付与されたとしても、GDPR 第 4(8)条の定義に従い、欧州経済領域（EEA）内で収集された個人データは処理しないこと。供給業者が EEA 内で収集された個人データを処理する場合、供給業者はユニリーバから提示された、GDPR に準拠したデータ処理に関する条件を締結する必要がある。 b) 本契約で定められたサービスを実施するうえで厳密な必要性がある場合に限り、提供された個人データを使用すること。 c) ユニリーバの書面による事前承諾なく、欧州経済領域（EEA）外にユニリーバの個人データを開示または転送しないものとする。なお、ユニリーバの個人データを受領する法人が、適用されるデータ保護法に基づき個人データの適切な保護を定めた、欧州委員会による最近の決定の対象となる地域内に所在すること、供給業者、ユニリーバの個人データを受領する法人、もしくはその両者が、模範条項を既に締結していること、またはデータ保護法に従い、所管当局の認可を受けた代替メカニズムが適用されることを条件とする。 d) 本契約に従いユニリーバに対する義務を履行するうえで、必要以上に長期間に渡り、ユニリーバの個人データを一切保管しないこと。 e) 本契約の解除または満了時に、ユニリーバの合理的な指示に従い、ユニリーバの個人データを全てユニリーバに確実に返却する、または破棄すること。 f) ユニリーバの個人データのセキュリティ確保のための所要の対策（個人データの不正使用もしくは非合法的な使用、または事故による個人データの減失、破壊、もしくは毀損を防止する対策を含む）を確実に講じること。 g) (g)に従い策定が義務付けられたセキュリティ対策に違反した場合、ユニリーバに速やかに申し出ること。 h) 故意であるか、自己の過失によるかを問わず、また自己の作為/不作為によるかにかかわらず、ユニリーバによるデータ保護法に基づく同社の義務の違反とならないよう注意すること。 i) ユニリーバの個人データを機密情報として扱うこと。

The Supplier. a. may be provided with access to Unilever personal data during the term of the Agreement, but does not process personal data originating in the European Economic Area (EEA) as defined in article 4(8) of the GDPR. Where the Supplier processes personal data originating from the EEA, the Supplier shall enter into the GDPR-GDPR- compliant data processing terms supplied by Unilever. b. shall use the personal data provided only as strictly necessary to perform the Services required this Agreement. c. shall not disclose or transfer Unilever personal data outside the European Economic Area (EEA) without the prior written consent of Unilever and subject to the entity receiving the Unilever personal data being located in a territory which is subject to a current finding by the European Commission that it provides adequate protection for personal data under applicable Data Protection Legislation; or where Supplier and/ or the entity receiving the Unilever personal data has entered into the Model Clauses or is subject to an alternative mechanism approved by relevant authorities pursuant to Data Protection Legislation. d. shall not retain any Unilever personal data for longer than is necessary to fulfil any obligations to Unilever in accordance with the Agreement. e. shall ensure that any Unilever personal data are returned to the Unilever or destroyed on termination or expiry of the of the Agreement in accordance with Unilever’s reasonable instructions; f. shall ensure that it has in place appropriate measures to ensure the security of Unilever personal data (and to guard against unauthorised or unlawful use of the persona data and against accidental loss or destruction of, or damage to, the personal data) g. shall promptly notify Unilever of any breach of the security measures required to be put in place pursuant to (g); and h. shall ensure it does not knowingly or negligently do or omit to do anything which places Unilever in breach of its obligations under the Data Protection Legislation. i. shall treat Unilever personal data as Confidential Information 9.4.

The Supplier. a. may be provided with access to Unilever personal data during the term of the Agreement, but does not process personal data originating in the European Economic Area (EEA) as defined in article 4(8) of the GDPR. Where the Supplier processes personal data originating from the EEA, the Supplier shall enter into the GDPR-compliant data processing terms supplied by Unilever. b. shall use the personal data provided only as strictly necessary to perform the Services required this Agreement. c. shall not disclose or transfer Unilever personal data outside the European Economic Area (EEA) without the prior written consent of Unilever and subject to the entity receiving the Unilever personal data being located in a territory which is subject to a current finding by the European Commission that it provides adequate protection for personal data under applicable Data Protection Legislation; or where Supplier and/ or the entity receiving the Unilever personal data has entered into the Model Clauses or is subject to an alternative mechanism approved by relevant authorities pursuant to Data Protection Legislation. d. shall not retain any Unilever personal data for longer than is necessary to fulfil any obligations to Unilever in accordance with the Agreement. e. shall ensure that any Unilever personal data are returned to the Unilever or destroyed on termination or expiry of the of the Agreement in accordance with Unilever’s reasonable instructions; f. shall ensure that it has in place appropriate measures to ensure the security of Unilever personal data (and to guard against unauthorised or unlawful use of the persona data and against accidental loss or destruction of, or damage to, the personal data) g. shall promptly notify Unilever of any breach of the security measures required to be put in place pursuant to (g); and h. shall ensure it does not knowingly or negligently do or omit to do anything which places Unilever in breach of its obligations under the Data Protection Legislation. i. shall treat Unilever personal data as Confidential Information 9.4. A Szállító a) hozzáférhet az Unilever személyes adatokhoz a Megállapodás időtartama alatt, azonban az Európai Gazdasági Térségből (EGT) származó személyes adatokat nem dolgozhat fel a GDPR 4(8) cikkelyének megfelelően. Amennyiben a Szállító az EGT- ből származó személyes adatokat dolgoz fel, a Szállítónak a GDPR-nak megfelelő adatfeldolgozási szerződést xxxx kötnie az Unilever által meghatározott feltételek szerint. b) a személyes adatokat csak a szigorúan a Megállapodás szerinti Szolgáltatások elvégzéséhez szükséges mértékben használhatja. c) nem hozhat nyilvánosságra, vagy nem adhat át Unilever személyes adatokat az Európai Gazdasági Térségen (EGT-n) kívülre az Unilever előzetes írásbeli hozzájárulása nélkül, és az Unilever személyes adatok csak olyan területre kerülhetnek, amelyről az Európai Bizottság jelenleg megállapította, hogy megfelelő védelmet nyújt az adatvédelmi jogszabályokat illetően; vagy ahol Szállító és / vagy az Unilever személyes adatokat feldolgozó személy Modell Klauzulát kötött vagy az adatvédelmi jogszabályok szerinti illetékes hatóságok által jóváhagyott alternatív mechanizmus vonatkozik rá. d) nem tarthatja meg az Unilever személyes adatakot hosszabb ideig, mint az bármely az Unilever felé fennálló, Megállapodás szerint kötelezettség teljesítéséhez szükséges. e) xxxxxxx biztosítani, hogy az Unilever személyes adatokat visszaadja az Unilevernek vagy azokat megsemmisítse a Megállapodás felmondása vagy megszűnése esetében az Unilever ésszerű utasításainak megfelelően; f) xxxxxxx biztosítani, hogy megtegye a megfelelő intézkedéseket az Unilever személyes adatainak biztonságának biztosítása érdekében (hogy védekezzen a személyes adatok jogosulatlan vagy jogellenes felhasználása és a személyes adatok véletlen elvesztés vagy megsemmisülése vagy károsodása xxxxx) g) xxxxxxx azonnal értesíteni az Unilevert, a (g) pont szerint alkalmazandó biztonsági intézkedések megsértéséről; és h) xxxxxxx biztosítani, hogy tudatosan vagy gondatlanságból nem tesz vagy mulaszt el semmi olyat, amely azt eredményezi, hogy az Unilever megsértse az adatvédelmi jogszabályokat. i) xxxxxxx az Unilever személyes adatokat Bizalmas Információként kezelni.

The Supplier. a. a) may be provided with access to Unilever personal data during the term of the Agreement, but does not process personal data originating in the European Economic Area (EEA) as defined in article 4(8) of the GDPR. Where the Supplier processes personal data originating from the EEA, the Supplier shall enter into the GDPR-compliant data processing terms supplied by Unilever. b. b) shall use the personal data provided only as strictly necessary to perform the Services required this Agreement. c. c) shall not disclose or transfer Unilever personal data outside the European Economic Area (EEA) without the prior written consent of Unilever and subject to the entity receiving the Unilever personal data being located in a territory which is subject to a current finding by the European Commission that it provides adequate protection for personal data under applicable Data Protection Legislation; or where Supplier and/ or the entity receiving the Unilever personal data has entered into the Model Clauses or is subject to an alternative mechanism approved by relevant authorities pursuant to Data Protection Legislation. d. d) shall not retain any Unilever personal data for longer than is necessary to fulfil any obligations to Unilever in accordance with the Agreement. e. e) shall ensure that any Unilever personal data are returned to the Unilever or destroyed on termination or expiry of the of the Agreement in accordance with Unilever’s reasonable instructions; f. f) shall ensure that it has in place appropriate measures to ensure the security of Unilever personal data (and to guard against unauthorised or unlawful use of the persona data and against accidental loss or destruction of, or damage to, the personal data) g. g) shall promptly notify Unilever of any breach of the security measures required to be put in place pursuant to (gf); and h. h) shall ensure it does not knowingly or negligently do or omit to do anything which places Unilever in breach of its obligations under the Data Protection Legislation. i. i) shall treat Unilever personal data as Confidential Information 9.4.9.4 Dodávateľ: a) môže po dobu trvania Dohody získať prístup k osobným údajom Unileveru, ale nebude spracúvať osobné údaje vzniknuté v Európskom hospodárskom priestore (EHP), ako je uvedené v článku 4 ods. 8

The Supplier. a. may be provided with access to Unilever personal data during the term of the Agreement, but does not process personal data originating in the European Economic Area (EEA) as defined in article 4(8) of the GDPR. Where the Supplier processes personal data originating from the EEA, the Supplier shall enter into the GDPR-GDPR- compliant data processing terms supplied by Unilever. b. shall use the personal data provided only as strictly necessary to perform the Services required this Agreement. c. shall not disclose or transfer Unilever personal data outside the European Economic Area (EEA) without the prior written consent of Unilever and subject to the entity receiving the Unilever personal data being located in a territory which is subject to a current finding by the European Commission that it provides adequate protection for personal data under applicable Data Protection Legislation; or where Supplier and/ or the entity receiving the Unilever personal data has entered into the Model Clauses or is subject to an alternative mechanism approved by relevant authorities pursuant to Data Protection Legislation. d. shall not retain any Unilever personal data for longer than is necessary to fulfil any obligations to Unilever in accordance with the Agreement. e. shall ensure that any Unilever personal data are returned to the Unilever or destroyed on termination or expiry of the of the Agreement in accordance with Unilever’s reasonable instructions; f. shall ensure that it has in place appropriate measures to ensure the security of Unilever personal data (and to guard against unauthorised or unlawful use of the persona data and against accidental loss or destruction of, or damage to, the personal data) g. shall promptly notify Unilever of any breach of the security measures required to be put in place pursuant to (g); and h. shall ensure it does not knowingly or negligently do or omit to do anything which places Unilever in breach of its obligations under the Data Protection Legislation. i. shall treat Unilever personal data as Confidential Information 9.4.. 供 應 商 : a) 在本合約有效期內可能被授權處理聯合利華所提供的個人資料，但不得處理歐盟一般資料保護規定(GDPR)第4(8)條定義下來自歐洲經濟區(EEA)的個人資料。如果供應商處理來自歐洲經濟區的個人資料，供應商應簽署由聯合利華提供符合GDPR 標準的個人資料處理條款。 b) 應僅得在執行本合約的服務範圍內使用所提供的必要個人資料。 c) 不得在未經聯合利華事前書面同意的情況下，將聯合利華所提供的個人資料揭露或傳送到歐洲經濟區(EEA)以外的地區，且接收聯合利華所提供個人資料的公司實體，其所在地區須是歐盟執行委員會目前認定根據適用的資料保護法規可對個人資料提供適當保護，或供應商和/或接收聯合利華所提供個人資料的公司實體已簽訂歐盟示範條款或已具備相關部門根據資料保護法規同意的替代機制。 d) 保留聯合利華所提供的個人資料的時間，不得超過根據本合約所應對聯合利華履行義務的必要時 間。 e) 應確保所有聯合利華所提供的個人資料均已按照聯合利華的合理指示返還予聯合利華或在合約終止或屆期時銷毀; f) 應採取適當措施以確保聯合利華所提供的個人資料的安全（並防止未經授權或非法使用個人資料以及防止意外遺失或損壞個人資料） g) 應根據本條(g)款的規定立即通知聯合利華任何違反安全措施的情況；以及 h) 應確保不會因故意或過失的作為或不作為使聯合利華違反資料保護規定下的義務。 i) 應將聯合利華所提供的個人資料視為機密資訊。

The Supplier. a. may be provided with access to Unilever personal data during the term of the Agreement, but does not process personal data originating in the European Economic Area (EEA) as defined in article 4(8) of the GDPR. Where the Supplier processes personal data originating from the EEA, the Supplier shall enter into the GDPR-GDPR- compliant data processing terms supplied by Unilever. b. shall use the personal data provided only as strictly necessary to perform the Services required this Agreement. c. shall not disclose or transfer Unilever personal data outside the European Economic Area (EEA) without the prior written consent of Unilever and subject to the entity receiving the Unilever personal data being located in a territory which is subject to a current finding by the European Commission that it provides adequate protection for personal data under applicable Data Protection Legislation; or where Supplier and/ or the entity receiving the Unilever personal data has entered into the Model Clauses or is subject to an alternative mechanism approved by relevant authorities pursuant to Data Protection Legislation. d. shall not retain any Unilever personal data for longer than is necessary to fulfil any obligations to Unilever in accordance with the Agreement. e. shall ensure that any Unilever personal data are returned to the Unilever or destroyed on termination or expiry of the of the Agreement in accordance with Unilever’s reasonable instructions; f. shall ensure that it has in place appropriate measures to ensure the security of Unilever personal data (and to guard against unauthorised or unlawful use of the persona data and against accidental loss or destruction of, or damage to, the personal data) g. shall promptly notify Unilever of any breach of the security measures required to be put in place pursuant to (g); and h. shall ensure it does not knowingly or negligently do or omit to do anything which places Unilever in breach of its obligations under the Data Protection Legislation. i. shall treat Unilever personal data as Confidential Information 9.4.. 供應商: a) 在本合約有效期內可能被授權處理聯合利華所提供的個人資料，但不得處理歐盟一般資料保護規定(GDPR)第4(8)條定義下來自歐洲經濟區(EEA)的個人資料。如果供應商處理來自歐洲經濟區的個人資料，供應商應簽署由聯合利華提供符合GDPR 標準的個人資料處理條款。 b) 應僅得在執行本合約的服務範圍內使用所提供的必要個人資料。 c) 不得在未經聯合利華事前書面同意的情況下，將聯合利華所提供的個人資料揭露或傳送到歐洲經濟區(EEA) 以外的地區，且接收聯合利華所提供個人資料的公司實體，其所在地區須是歐盟執行委員會目前認定根據適用的資料保護法規可對個人資料提供適當保護，或供應商和/或接收聯合利華所提供個人資料的公司實體已簽訂歐盟示範條款或已具備相關部門根據資料保護法規同意的替代機制。 d) 保留聯合利華所提供的個人資料的時間，不得超過根據本合約所應對聯合利華履行義務的必要時 間。 e) 應確保所有聯合利華所提供的個人資料均已按照聯合利華的合理指示返還予聯合利華或在合約終止或屆期時銷毀; f) 應採取適當措施以確保聯合利華所提供的個人資料的安全（並防止未經授權或非法使用個人資料以及防止意外遺失或損壞個人資料） g) 應根據本條(g)款的規定立即通知聯合利華任何違反安全措施的情況；以及 h) 應確保不會因故意或過失的作為或不作為使聯合利華違反資料保護規定下的義務。 i) 應將聯合利華所提供的個人資料視為機密資訊。