AVAILABILITY AND RESILIENCE Sample Clauses

AVAILABILITY AND RESILIENCE. Data on ▇▇▇▇▇▇▇▇▇▇.▇▇▇ server systems is backed up incrementally at least daily and "fully" weekly. The backup media are encrypted and moved to a physically separate location. The import of backups is tested regularly. The IT systems have an uninterruptible power supply. The server room has a fire alarm system and a CO2 extinguishing system. All server systems are subject to monitoring, which immediately triggers messages to an administrator in the event of malfunctions. There is a contingency plan in place at ▇▇▇▇▇▇▇▇▇▇.▇▇▇, which includes a restart plan.

AVAILABILITY AND RESILIENCE. 1. Availability control

AVAILABILITY AND RESILIENCE. Capacity to be restored

AVAILABILITY AND RESILIENCE. Data on the Contractor’s server systems is backed up incrementally at least daily and "fully" weekly. The backup media are encrypted. The import of backups is tested regularly. The IT systems have an uninterruptible power supply. A fire alarm system and a CO2 extinguishing system are located in the server room. All server systems are subject to monitoring, which immediately triggers reports to an administrator in case of malfunctions. The Contrator implemented and maintains a detailed emergency plan, which also includes a business continuity and restart plan.

AVAILABILITY AND RESILIENCE. To ensure availability, protection programs (virus scanners, firewalls, encryption programs, SPAM filters) are used. • In addition, contractual restrictions apply to employees of subcontractors and other service providers who are involved in the performance of the contract concerning the handling of Customer’s personal data. • Availability levels are specified in Netigates Terms of Service. • If the Customer’s account is hosted on ▇▇▇.▇▇▇▇.▇▇, the processing takes place exclusively in the Federal Repub- lic of Germany (see Sub-processors, Section 7). Access for Netigate AB from Sweden is possible as part of the development and maintenance of the applications and systems.

AVAILABILITY AND RESILIENCE. 6.1 The Booking Service must be sufficiently robust and resilient to meet the required hours of operation, with no single points of failure and designed to minimise data loss in line with Schedule 21. 6.2 It must be possible to restore the Booking Service to a known point (for example in the event of a failure or for other business reason). In support of this the Supplier must provide a backup and storage approach that will ensure that data loss is minimised and that data can be restored within a reasonable period, to be approved by the Authority. 6.3 Backups must be verified to ensure that they are capable of being restored and the restore procedures should be successfully tested on a regular basis but at least annually. 6.4 Backup data must be transported and stored securely in line with Authority Information Assurance Guidelines.

AVAILABILITY AND RESILIENCE. The processing of personal data must occur on data processing systems that undergo regular, documented patch management. No systems may be connected in the network that are outside the maintenance cycles of the manufacturers (esp. no Windows XP, Windows Server 2003, etc.). Security- related patches must be installed within 72 hours after being announced. The continuous availability of personal data must be ensured by means of redundant storage media and data backups in accordance with the state of the art. Data centers and server rooms must correspond to the state of the art (temperature regulation, protection against fire, water penetration, etc.). The servers must have an uninterruptible power supply (UPS) that ensures a controlled shutdown without data loss. The company has implemented the requirements in the following manner: Regular documented patch management for the server Installation of security-critical patches within 72 hours Data storage on storage systems Spatially separated redundant data storage Uninterruptable power source Redundant air conditioning of the servers Early fire detection

AVAILABILITY AND RESILIENCE. Availability control: The availability and reliability of the systems is ensured through technical and organisational measures: • Backup strategy (online/offline; on-site/off-site) • Disaster recovery • Uninterrupted power supply (UPS, diesel generator set) • Firewall systems according to the state of the art • Distributed Denial of Service (DDoS) protection (WebUntis) • Standard processes in case of replacement / retirement of employees • Storage of access data in a bank vault • Regular restore tests Mirrored hard drives in the respective server, database replication to a second server and daily backups protect the data from accidental destruction or loss (see also Item 4.1.). In addition, the Customer may create a backup of the Customer’s data at any time. • Rapid restoration: Restoration in a timely manner is ensured through appropriate segmentation of the data so that in the event of an incident only the data sets concerned need to be restored. • Deadlines for data erasure: Upon termination of the cooperation, the data can be erased immediately and in a targeted manner by one simple command. The data will then also be erased from the backups in a timely manner, following a regulated process. During the cooperation, data are erased in accordance with the Customer’s instructions.

AVAILABILITY AND RESILIENCE. Data on doo's server systems are regularly backed up comprehensively according to a detailed backup policy. The import of backups is tested regularly. The IT systems have an uninterruptible power supply. The server room is equipped with a fire alarm system and a CO2 extinguishing system. All server systems are subject to monitoring, which immediately triggers messages to an administrator in case of malfunctions. There is also an emergency plan at doo, which includes a restart plan. In addition, the measures implemented with regard to the servers at the technical service provider AWS are documented in detail here: ▇▇▇▇▇://▇▇▇.▇▇▇▇▇▇.▇▇▇/de/security/