Common use of Audit Clause in Contracts

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 GDPR by the Supplier so far as relevant to the contract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractContract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the The Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the The Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractFramework Agreement, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 1.1.4.1 The Supplier shall permit: (a) the The Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the The Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractFramework Agreement, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 1.1.4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractContract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services.. of the 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures 67 relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 GDPR by the Supplier so far as relevant to the contract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 3.1 The Supplier shall permit: (a) the The Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the The Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractFramework Agreement, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 3.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s 's direction, to conduct, at the Buyer’s 's cost, data privacy and security audits, assessments and inspections concerning the Supplier’s 's data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s 's direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractContract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s 's compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 1.1.3.1 The Supplier shall permit: (a) the The Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the The Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractFramework Agreement, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 1.1.3.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractContract, and procedures, including includin g premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractContract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment assessment, or inspection.

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractContract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.,

Audit. 4.1 The Supplier shall permit: (a) the The Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the The Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractFramework Agreement, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 GDPR by the Supplier so far as relevant to the contract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.. 77

Audit. 4.1 The Supplier shall permit: (a) the BuyerCCS, or a third-party auditor acting under the BuyerCCS’s direction, to conduct, at the BuyerCCS’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the BuyerCCS, or a third-party auditor acting under the BuyerCCS’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 GDPR by the Supplier so far as relevant to the contractContract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer CCS may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the BuyerAuthority, or a third-party auditor acting under the BuyerAuthority’s direction, to conduct, at the BuyerAuthority’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 1 (Joint Controller Agreement) and the Data Protection Legislation; and/or. (b) the BuyerAuthority, or a third-party auditor acting under the BuyerAuthority’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 GDPR by the Supplier so far as relevant to the contractAgreement, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer Authority may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause Paragraph 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractContract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services.. the 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect 92 any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractContract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.

Audit. 4.1 The Supplier shall permit: (a) the Buyer, or a third-party auditor acting under the Buyer’s direction, to conduct, at the Buyer’s cost, data privacy and security audits, assessments and inspections concerning the Supplier’s data security and privacy procedures relating to Personal Data, its compliance with this Annex 2 and the Data Protection Legislation; and/or (b) the Buyer, or a third-party auditor acting under the Buyer’s direction, access to premises at which the Personal Data is accessible or at which it is able to inspect any relevant records, including the record maintained under Article 30 UK GDPR by the Supplier so far as relevant to the contractContract, and procedures, including premises under the control of any third party appointed by the Supplier to assist in the provision of the Services. 4.2 The Buyer may, in its sole discretion, require the Supplier to provide evidence of the Supplier’s compliance with Clause 4.1 in lieu of conducting such an audit, assessment or inspection.