Client Audits. To the extent Clarivate or a Sub-processor holds a System and Organization Controls (SOC) 2 report, System and Organization Controls (SOC) 3 report or ISO 27001 certification that covers the Services, Client agrees to exercise any right Client may have to conduct an audit or inspection under Section 5(a) of this DPA or under the SCCs if they apply, by instructing Clarivate in writing to provide a copy of its most current report or certification, which will be considered Clarivate’s Confidential Information. If the SCCs apply, nothing in this Section modifies or affects any supervisory authority’s or data subject’s rights under the SCCs.
Appears in 2 contracts