Demonstrating Compliance. Secureworks shall, upon reasonable prior written request from Customer (such request not to be made more frequently than once in any twelve month period), provide to Customer such information as may be reasonably necessary to demonstrate Secureworks’ compliance with its obligations under this DPA.
Demonstrating Compliance. Each Party shall before the beginning of each Contract Year, produce a certificate from its insurers to the other Party demonstrating compliance with its obligations under GC 11.3.
Demonstrating Compliance. Dell agrees to supply, upon Customer request for an audit, the Standardized Information Gathering (“SIG”) questionnaire (“Security Questionnaire”) related to the security practices and posture of Dell’s organization. The Security Questionnaire is reviewed annually, mapped to Dell policies and standards, and updated with relevant and current US and international regulatory and privacy standards, such as, NIST 800-53r4, NIST CSF 1.1, CIS Top 20, or ISO 27001, where applicable. To the extent Customer’s audit requirements under the Standard Contractual Clauses or applicable Privacy Laws cannot reasonably be satisfied through the Security Questionnaire, documentation or compliance information Dell makes generally available to its customers, Dell will promptly respond to Customer’s additional audit instructions. Before the commencement of an audit, Customer and Dell will mutually agree upon the scope, timing, duration, control and evidence requirements, and fees for the audit, provided that this requirement to agree will not permit Dell to unreasonably delay performance of the audit. To the extent needed to perform the audit, Dell will make the processing systems, facilities and supporting documentation relevant to the processing of Personal Data by Dell available. Such an audit will be conducted by an independent, accredited third-party audit firm, during regular business hours, with reasonable advance notice to Dell, and subject to reasonable confidentiality procedures. Neither Customer nor the auditor shall have access to any data from Dell’s other customers or to Dell systems or facilities not involved in the Service Offering. Customer is responsible for all costs and fees related to such audit, including all reasonable costs and fees for any and all time Dell expends for any such audit, in addition to the rates for services performed by Dell. If the audit report generated as a result of Customer’s audit includes any finding of material non-compliance, Customer shall share such audit report with Dell and Dell shall promptly cure any material non-compliance.
Demonstrating Compliance. Critical Start shall, upon reasonable, prior written request from Customer (such request not to be made more frequently than once in any twelve (12) month period), provide to Customer such information as may be reasonably necessary to demonstrate Critical Start’s compliance with its obligations under this DPA.
Demonstrating Compliance. 4.8.1 The Processor shall make available to the Controller upon request all information necessary to demonstrate compliance with this Agreement and the Governing law.
Demonstrating Compliance. 2.3.1 The Data Originator shall ensure that the Data is originated and processed in accordance with international best practices and guidelines, namely: ● ICAO Doc 8168 Procedures for Air Navigation Services - Aircraft Operations ● ICAO Doc 9674 World Geodetic System – 1984 (WGS-84) Manual ● Aeronautical Information Services Manual (ICAO Doc 8126) ● Aeronautical Chart Manual (ICAO Doc 8697) ● Regional Supplementary Procedures (ICAO Doc 7030) ● [update list to reflect all applicable standards, specifications, guidance material … ]
Demonstrating Compliance. 2.3.1 The Data Provider confirms that the Data is originated and derived in accordance with industry best practices and guidelines, including: • [Examples: list other specifications, standards, guidance material … ] • ICAO Doc 9674 WGS-84 Manual - World Geodetic System for surveyors • ICAO Doc 8126 PANS-OPS - Aircraft Operations for procedures designer • EUROCAE ED-99D / RTCA DO-272D User Requirements for Aerodrome Mapping Information for aerodrome mapping database
Demonstrating Compliance. 6.1 The RECEIVING ORGANISATION makes available to the SENDING ORGANISATION information necessary to demonstrate compliance with the obligations laid down in this Agreement. WMDA Standards (chapter 5 of WMDA 2020 Standards) will constitute a RECEIVING ORGANISATIONS’ reasonable documentation to demonstrate compliance. Expenses necessary for demonstrating compliance to this Agreement, and achieving the requirements of the WMDA Standards, are costs that the RECEIVING ORGANISATION must bear. RECEIVING ORGANISATION will allow SENDING ORGANISATIONS to contribute to audits, including inspections, conducted by the SENDING ORGANISATION or another auditor mandated by the SENDING ORGANISATION. Any costs of additional audits that extend beyond the requirements in this agreement, those audit costs will be borne by SENDING ORGANISATION, unless it appears that RECEIVING ORGANISATION has infringed laws or regulations (including those concerning personal data protection) or if RECEIVING ORGANISATION has failed to comply with the obligations of this Agreement, and/or errors are found in the findings which must be attributed to RECEIVING ORGANISATION. In such cases, the cost of the audits will be borne by RECEIVING ORGANISATION. The SENDING ORGANISATION shall give RECEIVING ORGANISATION a thirty (30) days prior written notice of the audits, as well as of the outside auditor mandated by SENDING ORGANISATION. RECEIVING ORGANISATION may, within seven (7) days after the notice, object on reasonable grounds to the auditor engaged. An audit may take place once a year as well as in the event of a concrete suspicion of misuse of Data. The RECEIVING ORGANISATION shall cooperate with such audits and shall not impose any conditions on its cooperation other than the SENDING ORGANISATION’s auditors signing a commonly used and not unnecessarily onerous confidentiality statement (unless they are already held to confidentiality under their employment relationship with the SENDING ORGANISATION).
Demonstrating Compliance. The Supplier shall make available to the Customer all information necessary to demonstrate compliance with the obligations set out in Article 28 of the GDPR and allow for and contribute to audits, including inspections, conducted by the Customer or another auditor mandated by the Customer.
Demonstrating Compliance. The Processor shall make available to the Controller all information necessary to demonstrate compliance with the obligations set out in Article 28 of the GDPR and allow for and contribute to audits, including inspections, conducted by the Controller or another auditor authorized by the Controller.
