{"component": "clause", "props": {"groups": [{"snippet_links": [{"key": "provide-the", "type": "clause", "offset": [0, 11]}, {"key": "other-party", "type": "definition", "offset": [12, 23]}, {"key": "in-relation-to", "type": "clause", "offset": [61, 75]}], "snippet": "provide the other Party with full cooperation and assistance in relation to any request, complaint or communication made as referred to in paragraphs 2.1.1.3", "samples": [{"hash": "21QpjZfzQZG", "uri": "/contracts/21QpjZfzQZG#to-2", "label": "Framework Agreement", "score": 32.4292426303, "published": true}, {"hash": "eAtdlqISdeU", "uri": "/contracts/eAtdlqISdeU#to-2", "label": "Framework Agreement", "score": 32.4259147644, "published": true}, {"hash": "1sthMkPAM10", "uri": "/contracts/1sthMkPAM10#to-2", "label": "Framework Agreement", "score": 32.4259147644, "published": true}], "size": 5, "hash": "c1ccddc50f070bee4c29bf5d40e52fd1", "id": 1}, {"snippet_links": [{"key": "other-party", "type": "definition", "offset": [14, 25]}, {"key": "the-relevant", "type": "clause", "offset": [41, 53]}, {"key": "set-out", "type": "definition", "offset": [65, 72]}, {"key": "the-data-protection-legislation", "type": "definition", "offset": [76, 107]}, {"key": "third-party", "type": "clause", "offset": [159, 170]}, {"key": "necessary-for", "type": "definition", "offset": [178, 191]}, {"key": "services-and", "type": "clause", "offset": [213, 225]}, {"key": "transfer-of-personal-data", "type": "clause", "offset": [249, 274]}, {"key": "agreement-or", "type": "definition", "offset": [382, 394]}, {"key": "required-by-law", "type": "clause", "offset": [398, 413]}, {"key": "for-the-avoidance-of-doubt", "type": "clause", "offset": [416, 442]}, {"key": "subject-to", "type": "clause", "offset": [489, 499]}, {"key": "equivalent-obligations", "type": "definition", "offset": [500, 522]}, {"key": "this-annex", "type": "clause", "offset": [571, 581]}, {"key": "subject-only", "type": "definition", "offset": [605, 617]}, {"key": "minimum-information", "type": "clause", "offset": [622, 641]}, {"key": "provide-the", "type": "clause", "offset": [655, 666]}, {"key": "confidential-information", "type": "definition", "offset": [716, 740]}, {"key": "at-all-times", "type": "definition", "offset": [754, 766]}, {"key": "in-place", "type": "definition", "offset": [774, 782]}, {"key": "measures-to", "type": "clause", "offset": [806, 817]}, {"key": "processing-of-the-personal-data", "type": "clause", "offset": [857, 888]}, {"key": "accidental-loss", "type": "clause", "offset": [896, 911]}, {"key": "damage-to-the", "type": "clause", "offset": [928, 941]}, {"key": "disclosure-of", "type": "clause", "offset": [985, 998]}, {"key": "access-to-the", "type": "clause", "offset": [1002, 1015]}, {"key": "reasonable-steps", "type": "clause", "offset": [1040, 1056]}, {"key": "to-ensure", "type": "clause", "offset": [1057, 1066]}, {"key": "integrity-of", "type": "clause", "offset": [1087, 1099]}, {"key": "annex-1", "type": "definition", "offset": [1242, 1249]}, {"key": "joint-controller-agreement", "type": "clause", "offset": [1251, 1277]}, {"key": "in-respect-of", "type": "clause", "offset": [1289, 1302]}, {"key": "confidential-nature", "type": "clause", "offset": [1349, 1368]}, {"key": "to-appropriate", "type": "clause", "offset": [1403, 1417]}, {"key": "obligations-of-confidentiality", "type": "clause", "offset": [1418, 1448]}, {"key": "handling-of-personal-data", "type": "clause", "offset": [1653, 1678]}, {"key": "as-required-by", "type": "clause", "offset": [1679, 1693]}, {"key": "applicable-data-protection-legislation", "type": "definition", "offset": [1698, 1736]}, {"key": "data-loss-event", "type": "definition", "offset": [1822, 1837]}, {"key": "nature-of-the-data", "type": "clause", "offset": [1867, 1885]}, {"key": "be-protected", "type": "clause", "offset": [1889, 1901]}, {"key": "state-of", "type": "definition", "offset": [1950, 1958]}, {"key": "cost-of", "type": "definition", "offset": [1990, 1997]}, {"key": "to-the-extent", "type": "clause", "offset": [2097, 2110]}, {"key": "the-request", "type": "clause", "offset": [2187, 2198]}, {"key": "relating-to", "type": "definition", "offset": [2239, 2250]}, {"key": "reasonable-endeavours", "type": "clause", "offset": [2426, 2447]}, {"key": "assist-the", "type": "clause", "offset": [2451, 2461]}, {"key": "other-controller", "type": "definition", "offset": [2462, 2478]}, {"key": "breach-of", "type": "definition", "offset": [2834, 2843]}, {"key": "data-protection-breach", "type": "clause", "offset": [2861, 2883]}, {"key": "without-prejudice-to-paragraph", "type": "clause", "offset": [2884, 2914]}, {"key": "each-party", "type": "clause", "offset": [2920, 2930]}, {"key": "notify-the", "type": "clause", "offset": [2937, 2947]}, {"key": "without-undue-delay", "type": "definition", "offset": [2973, 2992]}, {"key": "personal-data-breach", "type": "definition", "offset": [3055, 3075]}, {"key": "a-personal", "type": "clause", "offset": [3125, 3135]}, {"key": "providing-the", "type": "clause", "offset": [3149, 3162]}, {"key": "sufficient-information", "type": "definition", "offset": [3198, 3220]}, {"key": "reasonable-assistance", "type": "definition", "offset": [3369, 3390]}, {"key": "information-commissioner", "type": "clause", "offset": [3445, 3469]}, {"key": "compliance-with-the", "type": "clause", "offset": [3584, 3603]}, {"key": "applicable-guidance", "type": "definition", "offset": [3604, 3623]}, {"key": "the-investigation", "type": "clause", "offset": [3734, 3751]}, {"key": "management-of", "type": "clause", "offset": [3856, 3869]}, {"key": "public-relations", "type": "definition", "offset": [3870, 3886]}, {"key": "public-statements", "type": "definition", "offset": [3891, 3908]}, {"key": "complete-information", "type": "clause", "offset": [4112, 4132]}, {"key": "without-limitation", "type": "clause", "offset": [4182, 4200]}, {"key": "own-cost", "type": "clause", "offset": [4479, 4487]}, {"key": "assistance-in", "type": "definition", "offset": [4566, 4579]}, {"key": "as-soon-as-possible", "type": "definition", "offset": [4659, 4678]}, {"key": "hours-of", "type": "clause", "offset": [4693, 4701]}, {"key": "in-particular", "type": "clause", "offset": [4765, 4778]}, {"key": "the-nature", "type": "clause", "offset": [4780, 4790]}, {"key": "nature-of-personal-data", "type": "clause", "offset": [4824, 4847]}, {"key": "number-of", "type": "definition", "offset": [4877, 4886]}, {"key": "data-subjects", "type": "clause", "offset": [4887, 4900]}, {"key": "of-the-contractor", "type": "clause", "offset": [4941, 4958]}, {"key": "data-protection-officer", "type": "definition", "offset": [4961, 4984]}, {"key": "more-information", "type": "definition", "offset": [5021, 5037]}, {"key": "consequences-of", "type": "definition", "offset": [5155, 5170]}, {"key": "the-contractor-shall", "type": "clause", "offset": [6156, 6176]}, {"key": "security-audits", "type": "definition", "offset": [6289, 6304]}, {"key": "concerning-the", "type": "clause", "offset": [6334, 6348]}, {"key": "privacy-procedures", "type": "clause", "offset": [6380, 6398]}, {"key": "access-to-premises", "type": "definition", "offset": [6556, 6574]}, {"key": "relevant-records", "type": "clause", "offset": [6654, 6670]}, {"key": "record-maintained", "type": "clause", "offset": [6686, 6703]}, {"key": "under-article", "type": "definition", "offset": [6704, 6717]}, {"key": "by-the-contractor", "type": "clause", "offset": [6726, 6743]}, {"key": "the-framework-agreement", "type": "definition", "offset": [6766, 6789]}, {"key": "and-procedures", "type": "clause", "offset": [6791, 6805]}, {"key": "control-of", "type": "definition", "offset": [6836, 6846]}, {"key": "contractor-to-assist", "type": "clause", "offset": [6880, 6900]}, {"key": "sole-discretion", "type": "clause", "offset": [6951, 6966]}, {"key": "require-the", "type": "clause", "offset": [6968, 6979]}, {"key": "contractor-to-provide", "type": "clause", "offset": [6980, 7001]}, {"key": "evidence-of", "type": "clause", "offset": [7002, 7013]}, {"key": "in-lieu-of", "type": "clause", "offset": [7061, 7071]}, {"key": "impact-assessments", "type": "clause", "offset": [7124, 7142]}, {"key": "the-parties-shall", "type": "clause", "offset": [7143, 7160]}, {"key": "assistance-to", "type": "clause", "offset": [7185, 7198]}, {"key": "data-protection-impact-assessment", "type": "definition", "offset": [7225, 7258]}, {"key": "detailed-information", "type": "definition", "offset": [7302, 7322]}, {"key": "in-relation-to", "type": "clause", "offset": [7339, 7353]}, {"key": "processing-operations", "type": "clause", "offset": [7354, 7375]}, {"key": "complete-records", "type": "definition", "offset": [7416, 7432]}, {"key": "in-connection-with", "type": "clause", "offset": [7495, 7513]}, {"key": "in-accordance-with", "type": "definition", "offset": [7540, 7558]}, {"key": "terms-of", "type": "definition", "offset": [7563, 7571]}], "snippet": "to enable the other Party to comply with the relevant timescales set out in the Data Protection Legislation. not disclose or transfer the Personal Data to any third party unless necessary for the provision of the Services and, for any disclosure or transfer of Personal Data to any third party, save where such disclosure or transfer is specifically authorised under this Framework Agreement or is required by Law). For the avoidance of doubt to which Personal Data is transferred must be subject to equivalent obligations which are no less onerous than those set out in this Annex. request from the Data Subject only the minimum information necessary to provide the Services and treat such extracted information as Confidential Information; ensure that at all times it has in place appropriate Protective Measures to guard against unauthorised or unlawful processing of the Personal Data and/or accidental loss, destruction or damage to the Personal Data and unauthorised or unlawful disclosure of or access to the Personal Data. take all reasonable steps to ensure the reliability and integrity of any of its Personnel who have access to the Personal Data and ensure that its Personnel: are aware of and comply with their duties under this Annex 1 (Joint Controller Agreement) and those in respect of Confidential Information; are informed of the confidential nature of the Personal Data, are subject to appropriate obligations of confidentiality and do not publish, disclose or divulge any of the Personal Data to any third party where the that Party would not be permitted to do so; have undergone adequate training in the use, care, protection and handling of personal data as required by the applicable Data Protection Legislation; ensure that it has in place Protective Measures as appropriate to protect against a Data Loss Event having taken account of the: nature of the data to be protected; harm that might result from a Data Loss Event; state of technological development; and cost of implementing any measures; ensure that it has the capability (whether technological or otherwise), to the extent required by Data Protection Legislation, to provide or correct or delete at the request of a Data Subject all the Personal Data relating to that Data Subject that the Contractor holds; and ensure that it notifies the other Party as soon as it becomes aware of a Data Loss Event. Each Joint Controller shall use its reasonable endeavours to assist the other Controller to comply with any obligations under applicable Data Protection Legislation and shall not perform its obligations under this Annex in such a way as to cause the other Joint Controller to breach any of its\u2019 obligations under applicable Data Protection Legislation to the extent it is aware, or ought reasonably to have been aware, that the same would be a breach of such obligations Data Protection Breach Without prejudice to paragraph 3.2, each Party shall notify the other Party promptly and without undue delay, and in any event within 48 hours, upon becoming aware of any Personal Data Breach or circumstances that are likely to give rise to a Personal Data Breach, providing the other Party and its advisors with: sufficient information and in a timescale which allows the other Party to meet any obligations to report a Personal Data Breach under the Data Protection Legislation; all reasonable assistance, including: co-operation with the other Party and the Information Commissioner investigating the Personal Data Breach and its cause, containing and recovering the compromised Personal Data and compliance with the applicable guidance; co-operation with the other Party including taking such reasonable steps as are directed by \u2587\u2587\u2587 to assist in the investigation, mitigation and remediation of a Personal Data Breach; co-ordination with the other Party regarding the management of public relations and public statements relating to the Personal Data Breach; providing the other Party and to the extent instructed by the other Party to do so, and/or the Information Commissioner investigating the Personal Data Breach, with complete information relating to the Personal Data Breach, including, without limitation, the information set out in paragraph 3.2. Each Party shall take all steps to restore, re-constitute and/or reconstruct any Personal Data where it has lost, damaged, destroyed, altered or corrupted as a result of a Personal Data Breach as if it was that Party\u2019s own data at its own cost with all possible speed and shall provide the other Party with all reasonable assistance in respect of any such Personal Data Breach, including providing the other Party, as soon as possible and within 48 hours of the Personal Data Breach relating to the Personal Data Breach, in particular: the nature of the Personal Data Breach; the nature of Personal Data affected; the categories and number of Data Subjects concerned; the name and contact details of the Contractor\u2019s Data Protection Officer or other relevant contact from whom more information may be obtained; measures taken or proposed to be taken to address the Personal Data Breach; and describe the likely consequences of the Personal Data Breach. Each Party shall take all steps to restore, re-constitute and/or reconstruct any Personal Data where it has lost, damaged, destroyed, altered or corrupted as a result of a Personal Data Breach as if it was that Party\u2019s own data at its own cost with all possible speed and shall provide the other Party with all reasonable assistance in respect of any such Personal Data Breach, including providing the other Party, as soon as possible and within 48 hours of the Personal Data Breach relating to the Personal Data Breach, in particular: the nature of the Personal Data Breach; the nature of Personal Data affected; the categories and number of Data Subjects concerned; the name and contact details of the Contractor\u2019s Data Protection Officer or other relevant contact from whom more information may be obtained; measures taken or proposed to be taken to address the Personal Data Breach; and describe the likely consequences of the Personal Data Breach. Audit The Contractor shall permit: DfE, or a third-party auditor acting under DfE\u2019s direction, to conduct, at DfE\u2019s cost, data privacy and security audits, assessments and inspections concerning the Contractor\u2019s data security and privacy procedures relating to Personal Data, its compliance with this Annex 1 and the Data Protection Legislation. DfE, or a third-party auditor acting under DfE\u2019s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 GDPR by the Contractor so far as relevant to the Framework Agreement, and procedures, including premises under the control of any third party appointed by the Contractor to assist in the provision of the Services. DfE may, in its sole discretion, require the Contractor to provide evidence of the Contractor\u2019s compliance with paragraph 4.1 in lieu of conducting such an audit, assessment or inspection. Impact Assessments The Parties shall: provide all reasonable assistance to each other to prepare any Data Protection Impact Assessment as may be required (including provision of detailed information and assessments in relation to processing operations, risks and measures); maintain full and complete records of all processing carried out in respect of the Personal Data in connection with this Framework Agreement, in accordance with the terms of Article 30 GDPR.", "samples": [{"hash": "21QpjZfzQZG", "uri": "/contracts/21QpjZfzQZG#to-2", "label": "Framework Agreement", "score": 32.4292426303, "published": true}, {"hash": "eAtdlqISdeU", "uri": "/contracts/eAtdlqISdeU#to-2", "label": "Framework Agreement", "score": 32.4259147644, "published": true}, {"hash": "1sthMkPAM10", "uri": "/contracts/1sthMkPAM10#to-2", "label": "Framework Agreement", "score": 32.4259147644, "published": true}], "size": 5, "hash": "757824de640418a1200483f041f0b1bd", "id": 2}, {"snippet_links": [], "snippet": "to read:", "samples": [{"hash": "8jPpAuoILQh", "uri": "/contracts/8jPpAuoILQh#to-2", "label": "Agreement Concerning the Adoption of Harmonized Technical United Nations Regulations for Wheeled Vehicles", "score": 25.1013011932, "published": true}, {"hash": "3m7cmM3SP4g", "uri": "/contracts/3m7cmM3SP4g#to-2", "label": "Agreement Concerning the Adoption of Harmonized Technical United Nations Regulations for Wheeled Vehicles", "score": 25.069814682, "published": true}, {"hash": "OxNhtWSgl8", "uri": "/contracts/OxNhtWSgl8#to-2", "label": "Agreement Concerning the Adoption of Harmonized Technical United Nations Regulations for Wheeled Vehicles", "score": 25.0629711151, "published": true}], "size": 3, "hash": "0dcbf61e45a1ae48588183116a3e60ea", "id": 3}, {"snippet_links": [{"key": "transfers-to", "type": "clause", "offset": [29, 41]}, {"key": "mortgage-of-shares", "type": "definition", "offset": [83, 101]}], "snippet": "58.1.3, both inclusive, such transfers to include those mentioned in the Equitable Mortgage of Shares;", "samples": [{"hash": "k3NGPMBUfKK", "uri": "/contracts/k3NGPMBUfKK#to-2", "label": "Common Terms Agreement", "score": 20.3408622742, "published": false}, {"hash": "5DQzkcMdqGj", "uri": "/contracts/5DQzkcMdqGj#to-2", "label": "Common Terms Agreement (Drdgold LTD)", "score": 18.0, "published": true}, {"hash": "2spzcGzorNZ", "uri": "/contracts/2spzcGzorNZ#to-2", "label": "Common Terms Agreement (Durban Roodepoort Deep LTD)", "score": 18.0, "published": true}], "size": 3, "hash": "b41da0d5f001910439bc1898faa0eafc", "id": 4}, {"snippet_links": [], "snippet": "3.3., amend to read (the drawing remains unchanged): \u201c", "samples": [{"hash": "am0xxSt3q2U", "uri": "/contracts/am0xxSt3q2U#to-2", "label": "Agreement Concerning the Adoption of Uniform Technical Prescriptions for Wheeled Vehicles, Equipment and Parts", "score": 19.7402439117, "published": true}, {"hash": "1EgBjNu2puK", "uri": "/contracts/1EgBjNu2puK#to-2", "label": "Agreement Concerning the Adoption of Uniform Technical Prescriptions for Wheeled Vehicles, Equipment and Parts", "score": 19.5420951843, "published": true}], "size": 2, "hash": "32b2de46ffbf56574886ffcb5908d888", "id": 5}, {"snippet_links": [], "snippet": "34.2., shall be deleted. Footnote 4 and its reference in paragraph 4.3, shall be deleted. Subsequent footnotes, shall be renumbered", "samples": [{"hash": "fUyFZ7vk7Hj", "uri": "/contracts/fUyFZ7vk7Hj#to-2", "label": "Agreement Concerning the Adoption of Uniform Technical Prescriptions for Wheeled Vehicles", "score": 22.6865158081, "published": true}, {"hash": "iYdtUCCwe5d", "uri": "/contracts/iYdtUCCwe5d#to-2", "label": "Agreement Concerning the Adoption of Uniform Technical Prescriptions for Wheeled Vehicles", "score": 22.5715255737, "published": true}], "size": 2, "hash": "b4dec995f2f56fc95a87d5098e337eea", "id": 6}, {"snippet_links": [], "snippet": "2.3., renumber as paragraphs 2.5. to 2.5.3. and in these renumbered paragraphs, replace \"pneumatic tyre\" by \"tyre\". Paragraph 2.2.4., amend to read:", "samples": [{"hash": "8Qr9xsBtpm3", "uri": "/contracts/8Qr9xsBtpm3#to-2", "label": "Agreement Concerning the Adoption of Harmonized Technical United Nations Regulations for Wheeled Vehicles", "score": 24.9644088745, "published": true}, {"hash": "5vGdm9DXGC3", "uri": "/contracts/5vGdm9DXGC3#to-2", "label": "Agreement Concerning the Adoption of Harmonized Technical United Nations Regulations for Wheeled Vehicles", "score": 19.9616699219, "published": true}], "size": 2, "hash": "319537680c51d65814d52cd6a22038fb", "id": 7}, {"snippet_links": [{"key": "toxic-substances", "type": "clause", "offset": [14, 30]}, {"key": "having-a", "type": "definition", "offset": [31, 39]}, {"key": "highly-toxic", "type": "definition", "offset": [132, 144]}, {"key": "special-provision", "type": "definition", "offset": [248, 265]}, {"key": "table-a", "type": "clause", "offset": [287, 294]}], "snippet": "2.61.1.9, and toxic substances having a flash-point of 23 \u00b0C or above are substances of Class 6.1 (see 2.2.61.1). Liquids which are highly toxic by inhalation are indicated as \"toxic by inhalation\" in their proper shipping name in Column (2) or by special provision 354 in Column (6) of Table A of Chapter 3.2.", "samples": [{"hash": "2nb9zF0F7G1", "uri": "/contracts/2nb9zF0F7G1#to-2", "label": "European Agreement Concerning the International Carriage of Dangerous Goods by Inland Waterways (Adn)", "score": 23.8473644257, "published": true}], "size": 1, "hash": "6b4cea626900ddd700ce467f03e602ed", "id": 8}, {"snippet_links": [{"key": "part-b", "type": "definition", "offset": [14, 20]}, {"key": "joint-controller-agreement", "type": "clause", "offset": [21, 47]}, {"key": "annex-1", "type": "definition", "offset": [62, 69]}, {"key": "processing-personal-data", "type": "clause", "offset": [72, 96]}, {"key": "other-party", "type": "definition", "offset": [112, 123]}, {"key": "comply-with-the", "type": "clause", "offset": [127, 142]}, {"key": "set-out", "type": "definition", "offset": [163, 170]}, {"key": "the-data-protection-legislation", "type": "definition", "offset": [174, 205]}, {"key": "necessary-for", "type": "definition", "offset": [282, 295]}, {"key": "the-deliverables", "type": "clause", "offset": [313, 329]}, {"key": "transfer-of-personal-data", "type": "clause", "offset": [357, 382]}, {"key": "the-contract", "type": "clause", "offset": [476, 488]}, {"key": "required-by-law", "type": "clause", "offset": [495, 510]}, {"key": "lawful-processing", "type": "definition", "offset": [587, 604]}, {"key": "in-accordance-with", "type": "definition", "offset": [627, 645]}, {"key": "article-6", "type": "definition", "offset": [646, 655]}, {"key": "the-uk-gdpr", "type": "definition", "offset": [659, 670]}, {"key": "eu-gdpr", "type": "definition", "offset": [674, 681]}, {"key": "the-context", "type": "clause", "offset": [686, 697]}, {"key": "for-the-avoidance-of-doubt", "type": "clause", "offset": [709, 735]}, {"key": "the-third-party", "type": "definition", "offset": [737, 752]}, {"key": "equivalent-obligations", "type": "definition", "offset": [810, 832]}, {"key": "subject-only", "type": "definition", "offset": [1014, 1026]}, {"key": "minimum-information", "type": "clause", "offset": [1031, 1050]}, {"key": "provide-the", "type": "clause", "offset": [1064, 1075]}, {"key": "confidential-information", "type": "definition", "offset": [1129, 1153]}, {"key": "at-all-times", "type": "definition", "offset": [1173, 1185]}, {"key": "in-place", "type": "definition", "offset": [1193, 1201]}, {"key": "measures-to", "type": "clause", "offset": [1225, 1236]}, {"key": "processing-of-the-personal-data", "type": "clause", "offset": [1276, 1307]}, {"key": "accidental-loss", "type": "clause", "offset": [1315, 1330]}, {"key": "damage-to-the", "type": "clause", "offset": [1347, 1360]}, {"key": "disclosure-of", "type": "clause", "offset": [1404, 1417]}, {"key": "access-to-the", "type": "clause", "offset": [1421, 1434]}, {"key": "best-endeavours", "type": "definition", "offset": [1460, 1475]}, {"key": "to-ensure", "type": "clause", "offset": [1476, 1485]}, {"key": "integrity-of", "type": "clause", "offset": [1506, 1518]}, {"key": "processor-personnel", "type": "definition", "offset": [1523, 1542]}, {"key": "in-respect-of", "type": "clause", "offset": [1780, 1793]}, {"key": "nature-of-the", "type": "clause", "offset": [1860, 1873]}, {"key": "to-appropriate", "type": "clause", "offset": [1901, 1915]}, {"key": "obligations-of-confidentiality", "type": "clause", "offset": [1916, 1946]}, {"key": "handling-of-personal-data", "type": "clause", "offset": [2155, 2180]}, {"key": "as-required-by", "type": "clause", "offset": [2181, 2195]}, {"key": "applicable-data-protection-legislation", "type": "definition", "offset": [2200, 2238]}, {"key": "to-the-extent", "type": "clause", "offset": [2318, 2331]}, {"key": "the-request", "type": "clause", "offset": [2408, 2419]}, {"key": "relating-to", "type": "definition", "offset": [2460, 2471]}, {"key": "the-supplier", "type": "definition", "offset": [2495, 2507]}, {"key": "data-loss-event", "type": "definition", "offset": [2598, 2613]}, {"key": "the-non", "type": "clause", "offset": [2723, 2730]}, {"key": "transferring-party", "type": "definition", "offset": [2731, 2749]}, {"key": "the-transfer", "type": "clause", "offset": [2821, 2833]}, {"key": "dpa-2018", "type": "definition", "offset": [2885, 2893]}, {"key": "where-applicable", "type": "clause", "offset": [2975, 2991]}, {"key": "appropriate-safeguards", "type": "definition", "offset": [3042, 3064]}, {"key": "in-relation-to", "type": "clause", "offset": [3065, 3079]}, {"key": "as-agreed", "type": "clause", "offset": [3258, 3267]}, {"key": "the-relevant-parties", "type": "clause", "offset": [3320, 3340]}, {"key": "entering-into", "type": "clause", "offset": [3341, 3354]}, {"key": "subject-to-the", "type": "clause", "offset": [3382, 3396]}, {"key": "uk-international-data-transfer-agreement", "type": "clause", "offset": [3414, 3454]}, {"key": "information-commissioner", "type": "clause", "offset": [3489, 3513]}, {"key": "from-time-to-time", "type": "clause", "offset": [3561, 3578]}, {"key": "the-european-commission", "type": "clause", "offset": [3588, 3611]}, {"key": "standard-contractual-clauses", "type": "definition", "offset": [3614, 3642]}, {"key": "updated-version", "type": "definition", "offset": [3676, 3691]}, {"key": "eu-sccs", "type": "definition", "offset": [3793, 3800]}, {"key": "addendum-to", "type": "clause", "offset": [3863, 3874]}, {"key": "additional-measures", "type": "clause", "offset": [4062, 4081]}, {"key": "importing-party", "type": "definition", "offset": [4149, 4164]}, {"key": "legal-remedies", "type": "clause", "offset": [4229, 4243]}, {"key": "obligations-under-the", "type": "clause", "offset": [4295, 4316]}, {"key": "level-of-protection", "type": "definition", "offset": [4370, 4389]}, {"key": "assist-the", "type": "clause", "offset": [4487, 4497]}, {"key": "in-advance", "type": "clause", "offset": [4643, 4653]}, {"key": "with-respect-to", "type": "clause", "offset": [4684, 4699]}, {"key": "the-processing", "type": "clause", "offset": [4700, 4714]}, {"key": "other-controller", "type": "definition", "offset": [4810, 4826]}, {"key": "this-annex", "type": "clause", "offset": [4947, 4957]}, {"key": "breach-of", "type": "definition", "offset": [5181, 5190]}], "snippet": "1.1.5 of this Part B Joint Controller Agreement (Optional) of Annex 1 \u2013 Processing Personal Data; to enable the other Party to comply with the relevant timescales set out in the Data Protection Legislation;\n2.1.4 not disclose or transfer the Personal Data to any third party unless necessary for the provision of the Deliverables and, for any disclosure or transfer of Personal Data to any third party, (save where such disclosure or transfer is specifically authorised under the Contract or is required by Law) that disclosure or transfer of Personal Data is otherwise considered to be lawful processing of that Personal Data in accordance with Article 6 of the UK GDPR or EU GDPR (as the context requires). For the avoidance of doubt, the third party to which Personal Data is transferred must be subject to equivalent obligations which are no less onerous than those set out in this of this of this Part B Joint Controller Agreement (Optional) of Annex 1 \u2013 Processing Personal Data;\n2.1.5 request from the Data Subject only the minimum information necessary to provide the Deliverables and treat such extracted information as Confidential Information;\n2.1.6 ensure that at all times it has in place appropriate Protective Measures to guard against unauthorised or unlawful processing of the Personal Data and/or accidental loss, destruction or damage to the Personal Data and unauthorised or unlawful disclosure of or access to the Personal Data;\n2.1.7 use best endeavours to ensure the reliability and integrity of any Processor Personnel who have access to the Personal Data and ensure that Processor Personnel:\n2.1.7.1 are aware of and comply with their duties under this of this Part B Joint Controller Agreement (Optional) of Annex 1 \u2013 Processing Personal Data; and those in respect of Confidential Information\n2.1.7.2 are informed of the confidential nature of the Personal Data, are subject to appropriate obligations of confidentiality and do not publish, disclose or divulge any of the Personal Data to any third party where that Party would not be permitted to do so;\n2.1.7.3 have undergone adequate training in the use, care, protection and handling of personal data as required by the applicable Data Protection Legislation;\n2.1.8 ensure that it has the capability (whether technological or otherwise), to the extent required by Data Protection Legislation, to provide or correct or delete at the request of a Data Subject all the Personal Data relating to that Data Subject that the Supplier holds; and\n2.1.9 ensure that it notifies the other Party as soon as it becomes aware of a Data Loss Event;\n2.1.10 not transfer such Personal Data outside of the UK and/or the EEA unless the prior written consent of the non-transferring Party has been obtained and the following conditions are fulfilled:\n2.1.10.1 the transfer is in accordance with Article 45 of the UK GDPR or DPA 2018 Section 74A and/or the transfer is in accordance with Article 45 of the EU GDPR (where applicable); or\n2.1.10.2 the transferring Party has provided appropriate safeguards in relation to the transfer (whether in accordance with Article 46 of the UK GDPR or DPA 2018 Section 75 and/or the transfer is in accordance with Article 46 of the EU GDPR (where applicable)) as agreed with the non-transferring Party which could include the relevant parties entering into:\n(a) Where the transfer is subject to the UK GDPR:\n(i) The UK International Data Transfer Agreement (the \u201cIDTA\u201d), as published by the Information Commissioner\u2019s office under section 119A(1) of the DPA 2018 from time to time; or\n(ii) the European Commission's Standard Contractual Clauses per decision 2021/914/EU or such updated version of such Standard Contractual Clauses as are published by the European Commission from time to time (\u201cEU SCCs\u201d), together with the UK International Data Transfer Agreement Addendum to the EU SCCs (the \u201cAddendum\u201d) as published by the Information Commissioner's Office from time to time and/or;\n(b) Where the transfer is subject to the EU GDPR, the EU SCCs, as well as any additional measures determined by the non- transferring Party being implemented by the importing Party;\n2.1.10.3 the Data Subject has enforceable rights and effective legal remedies;\n2.1.10.4 the transferring Party complies with its obligations under the Data Protection Legislation by providing an adequate level of protection to any Personal Data that is transferred (or, if it is not so bound, uses its best endeavours to assist the non-transferring Party in meeting its obligations); and\n2.1.10.5 the transferring Party complies with any reasonable instructions notified to it in advance by the non-transferring Party with respect to the processing of the Personal Data;\n2.1.11 Each Joint Controller shall use its best endeavours to assist the other Controller to comply with any obligations under applicable Data Protection Legislation and shall not perform its obligations under this Annex in such a way as to cause the other Joint Controller to breach any of its obligations under applicable Data Protection Legislation to the extent it is aware, or ought reasonably to have been aware, that the same would be a breach of such obligations.", "samples": [{"hash": "5w5bLkMev2c", "uri": "/contracts/5w5bLkMev2c#to-2", "label": "Supply of Goods and/or Services", "score": 32.3038101196, "published": true}], "size": 1, "hash": "2255c5d8841391844b2810b12ee7a933", "id": 9}, {"snippet_links": [{"key": "the-buyer-shall", "type": "clause", "offset": [0, 15]}, {"key": "supplier-will", "type": "clause", "offset": [40, 53]}, {"key": "the-supplier", "type": "definition", "offset": [64, 76]}, {"key": "relevant-subcontractor", "type": "definition", "offset": [88, 110]}, {"key": "employee-liabilities", "type": "clause", "offset": [123, 143]}, {"key": "arising-out-of", "type": "definition", "offset": [144, 158]}, {"key": "employment-of", "type": "clause", "offset": [182, 195]}, {"key": "provided-that", "type": "definition", "offset": [264, 277]}, {"key": "the-subcontractor", "type": "clause", "offset": [320, 337]}, {"key": "reasonable-steps", "type": "clause", "offset": [349, 365]}], "snippet": "the Buyer shall procure that the Former Supplier will indemnify the Supplier and/or the relevant Subcontractor against all Employee Liabilities arising out of the termination of the employment of any of the Former Supplier's employees referred to in Paragraph 2.3 provided that the Supplier takes, or shall procure that the Subcontractor takes, all reasonable steps to minimise any such Employee Liabilities.", "samples": [{"hash": "ekvqZtNmEaT", "uri": "/contracts/ekvqZtNmEaT#to-2", "label": "Contract for Services", "score": 34.6234016418, "published": true}], "size": 1, "hash": "36e756db726d6ede90ae4bfa1755ebb6", "id": 10}], "next_curs": "Ck0SR2oVc35sYXdpbnNpZGVyY29udHJhY3RzcikLEhZDbGF1c2VTbmlwcGV0R3JvdXBfdjU2Ig10by0yIzAwMDAwMDBhDKIBAmVuGAAgAA==", "clause": {"parents": [["object-of-the-agreement", "OBJECT OF THE AGREEMENT"], ["definitions-and-introduction", "DEFINITIONS AND INTRODUCTION"], ["amendments-not-effective-unless-in-writing", "AMENDMENTS NOT EFFECTIVE UNLESS IN WRITING"], ["provision-of-information", "Provision of Information"], ["other-documents", "OTHER DOCUMENTS"]], "children": [["", ""], ["etc", "Etc"], ["breach-of-obligations", "Breach of obligations"], ["bankruptcy-liquidation-cessation-of-activities", "Bankruptcy, liquidation, cessation of activities"], ["breach", "Breach"]], "title": "to 2", "size": 36, "id": "to-2", "related": [["to-us", "to us", "to us"], ["print-name", "Print Name", "Print Name"], ["to-you", "To You", "To You"], ["loop", "Loop", "Loop"], ["ladies-and-gentlemen", "Ladies and Gentlemen", "Ladies and Gentlemen"]], "related_snippets": [], "updated": "2025-07-26T06:21:18+00:00", "also_ask": [], "drafting_tip": null, "explanation": ""}, "json": true, "cursor": ""}}