Common use of Audit and Assessment Clause in Contracts

Audit and Assessment. 7.1. The Supplier will allow its implementation and compliance with its obligations under this Data Processing Agreement to be audited by the Customer or an external auditor approved by the Customer at least annually. If and insofar as the audit indicates that the Supplier’s compliance falls short on one or more aspects, the Supplier will make concrete proposals for improvements in this respect, if possible in the context of its continuous improvement program. 7.2. If the audit/assessment referred to in paragraph 7.1 identifies any gaps in the Suppliers processing activities which are not compliant with this Data Processing Agreement or the relevant Privacy Laws the Customer has the right to ask the Supplier to update the technical and organizational security measures taken so that they are in line with the relevant requirements. The Supplier will provide all reasonable cooperation and as soon as reasonably practicable implement the necessary modifications indicated by the Customer. Processing carried out by Supplier: Basic user information will be processed in order to setup access rights and individual user accounts within the platform and provide the services to the users. This information can further be used for basic reporting and progress tracking.

Audit and Assessment. 7.1. The Supplier will allow its implementation and compliance with its obligations under this Data Processing Agreement to be audited by the Customer or an external auditor approved by the Customer at least annually. If and insofar as the audit indicates that the Supplier’s compliance falls short on one or more aspects, the Supplier will make concrete proposals for improvements in this respect, if possible in the context of its continuous improvement program. 7.2. If the audit/assessment referred to in paragraph 7.1 identifies any gaps in the Suppliers processing activities which are not compliant with this Data Processing Agreement or the relevant Privacy Laws the Customer has the right to ask the Supplier to update the technical and organizational security measures taken so that they are in line with the relevant requirements. The Supplier will provide all reasonable cooperation and as soon as reasonably practicable implement the necessary modifications indicated by the Customer. Processing carried out by Supplier: Basic user information will be processed in order to setup set up access rights and individual user accounts within the platform and provide the services to the users. This information can further be used for basic reporting and progress tracking.