DATA PROTECTION AND FREEDOM OF INFORMATION. 7.1. Each party will:-
DATA PROTECTION AND FREEDOM OF INFORMATION. 7.1 DWP/Councils are Data Controllers under the Data Protection Xxx 0000 and are joint Data Controllers for the purposes of Universal Support
DATA PROTECTION AND FREEDOM OF INFORMATION. 17.1 The Employer acknowledges that the Training Provider is subject to the requirements of the Data Protection Xxx 0000, the Freedom of Information Xxx 0000, the Environmental Information Regulations 2004 and, from 25 May 2018, the General Data Protection Regulation (Regulation (EU) 2016/679), all as amended from time to time. The Training Provider acknowledges that the Employer is subject to the requirements of the Data Protection Xxx 0000 and, from 25 May 2018, the General Data Protection Regulation (Regulation (EU) 2016/679), as amended from time to time.
DATA PROTECTION AND FREEDOM OF INFORMATION. 14.1 Each of the Five Councils agrees that in relation to any personal data (as defined in the DPA and GDPR) it holds in relation to this Agreement it will comply as a data controller if necessary with the DPA and GDPR including:
DATA PROTECTION AND FREEDOM OF INFORMATION. 18.1. THE GRANT RECIPIENT shall comply with its obligations under the Data Protection Act 1998 and all amendments and all new statutory provisions, regulations, orders, directives and requirements that may come into force or being and ensure the protection of all data and archive material from unauthorised access, tampering and system failures.
DATA PROTECTION AND FREEDOM OF INFORMATION. 21.1 The Service Provider warrants that it will lawfully process in accordance with the provisions of the Data Protection Xxx 0000 (DPA) any Personal Data that it has or shall obtain under this Contract.
DATA PROTECTION AND FREEDOM OF INFORMATION. 20.1 Each Party shall comply with its obligations under the provisions of the Data Protection Xxx 0000.
DATA PROTECTION AND FREEDOM OF INFORMATION. If and to the extent that the Supplier (for the purpose of this Clause 8, the ‘Data Processor’) processes any Personal Data on behalf of LSE under this Agreement (for the purpose of this clause 8, the Data Controller’) the Data Processor undertakes to the Data Controller that the Data Processor: Will comply with all Data Protection legislation comply with the obligations imposed on the Data Controller by the Security Data Protection Principle, namely: to only Process Personal Data for and on behalf of the Data Controller for the purpose of performing this Agreement and in accordance with this Agreement (and where necessary only on instructions from the Data Controller to ensure compliance with Data Protection Legislation); where applicable, to provide all reasonable assistance to the Data Controller in the preparation of any Data Protection Impact Assessment prior to commencing any processing. Such assistance may, at the discretion of the Data Controller, include: a systematic description of the envisaged processing operations and the purpose of the processing; an assessment of the necessity and proportionality of the processing operations in relation to the Services; an assessment of the risks to the rights and freedoms of Data Subjects; and the measures envisaged to address the risks, including safeguards, security measures and mechanisms to ensure the protection of Personal Data. to maintain Protective Measures which have been reviewed and approved by the Data Controller sufficient to comply at least with the obligations imposed on the Data Controller by the Security Data Protection Principle These measures will protect against a data loss event having taken into account: the nature of the data to be protected; the harm that might result from a Data Loss Event; the state of technological development; and the cost of implementing any measures; to allow representatives of the Data Controller to audit the Data Processor's compliance with the requirements of this Clause 8.1.2 on reasonable notice and/or, at the option of the Data Controller, on request to provide the Data Controller with evidence of its compliance with such requirements; to not engage another processor without prior specific or general written authorisation of the Data Controller; where applicable, shall not transfer any Personal Data outside the European Economic Area without the prior written consent of the Data Controller and that the following conditions are fulfilled: the Data Controll...
DATA PROTECTION AND FREEDOM OF INFORMATION. 38.1 Any personal data submitted in the framework of the procurement procedure and/or subsequently included in the contract shall be processed pursuant to the Data Protection Act (2001). It shall be processed solely for the purposes of the performance, management and follow-up of the procurement procedure and/or subsequent contract by the Central Government Authority/Contracting Authority without prejudice to possible transmission to the bodies charged with a monitoring or inspection task in conformity with National and/or Community law.
DATA PROTECTION AND FREEDOM OF INFORMATION. 27.1 The Parties acknowledge their respective duties under the DPA and the FOIA and shall give all reasonable assistance to each other where appropriate or necessary to comply with such duties.
