Common use of CUSTOMER DATA INCIDENT MANAGEMENT AND NOTIFICATION Clause in Contracts

CUSTOMER DATA INCIDENT MANAGEMENT AND NOTIFICATION. Inkit maintains the security incident management policies and procedures specified in the Security, Privacy, and Architecture Datasheet and shall notify the Customer without undue delay after becoming aware of a Personal Data Breach in connection with the Services. In such event, Inkit shall provide information to the Customer necessary to enable the Customer to comply with its obligations under Data Protection Laws and Regulations. The content of such communication to the Customer will: (1) include the nature of Processing and the information available to Inkit; and (2) take into account that, under applicable Data Protection Laws and Regulations, the Customer may need to notify regulators or individuals of the following: (i) a description of the nature of the Personal Data Breach including, where possible, the categories and approximate number of individuals concerned, and the categories and approximate number of Personal Data records concerned; (ii) a description of the likely consequences of the Personal Data Breach; and (iii) a description of the measures taken or proposed to be taken to address the Personal Data Breach, including, where appropriate, measures to mitigate its possible adverse effects. Inkit shall make commercially reasonable efforts to identify the cause of such Personal Data Breach and take those steps as ▇▇▇▇▇ ▇▇▇▇▇ necessary and reasonable in order to remediate the cause of such Personal Data Breach to the extent the remediation is within Inkit’s reasonable control. The obligation to remediate the cause of a Personal Data Breach does not apply to Personal Data Breaches that are caused by the Customer, users of the Customer’s account, or third-party Vendors.

CUSTOMER DATA INCIDENT MANAGEMENT AND NOTIFICATION. Inkit Braze maintains the security incident management policies and procedures specified in the Security, Privacy, Privacy and Architecture Datasheet and shall notify the Customer without undue delay after becoming aware of a Personal Data Breach in connection with the ServicesBreach. In such event, Inkit Braze shall provide information to the Customer necessary to enable the Customer to comply with its obligations under Data Protection Laws and RegulationsRegulations in relation to such Personal Data Breach. The content of such communication to the Customer will: will (1i) include the nature of Processing and the information available to Inkit; Braze, and (2ii) take into account that, that under applicable Data Protection Laws and Regulations, the Customer may need to notify regulators or individuals of the following: (ia) a description of the nature of the Personal Data Breach including, where possible, the categories and approximate number of individuals concerned, concerned and the categories and approximate number of Personal Data records concerned; (iib) a description of the likely consequences of the Personal Data Breach; and (iiic) a description of the measures taken or proposed to be taken to address the Personal Data Breach, including, where appropriate, measures to mitigate its possible adverse effects. Inkit Braze shall make commercially reasonable efforts to identify the cause of such Personal Data Breach and take those steps as ▇▇▇▇▇ ▇▇▇▇▇ Braze deems necessary and reasonable in order to remediate the cause of such Personal Data Breach to the extent the remediation is within InkitBraze’s reasonable control. The obligation to remediate the cause of a Personal Data Breach does shall not apply to Personal Data Breaches that are caused by the Customer, users of the Customer or Customer’s account, or third-party VendorsUsers.

CUSTOMER DATA INCIDENT MANAGEMENT AND NOTIFICATION. Inkit Insider maintains the security incident management policies and procedures specified in the Security, Privacy, Privacy and Architecture Datasheet and shall notify the Customer without undue delay after becoming aware of a Personal Data Breach in connection with the ServicesBreach. In such event, Inkit Insider shall provide information to the Customer necessary to enable the Customer to comply with its obligations under Data Protection Laws and RegulationsRegulations in relation to such Personal Data Breach. The content of such communication to the Customer will: will (1i) include the nature of Processing and the information available to Inkit; Insider, and (2ii) take into account that, that under applicable Data Protection Laws and Regulations, the Customer may need to notify regulators or individuals of the following: : (ia) a description of the nature of the Personal Data Breach including, where possible, the categories and approximate number of individuals concerned, concerned and the categories and approximate number of Personal Data records concerned; (iib) a description of the likely consequences of the Personal Data Breach; and (iiic) a description of the measures taken or proposed to be taken to address the Personal Data Breach, including, where appropriate, measures to mitigate its possible adverse effects. Inkit Insider shall make commercially reasonable efforts to identify the cause of such Personal Data Breach and take those steps as ▇▇▇▇▇ ▇▇▇▇▇ Insider deems necessary and reasonable in order to remediate the cause of such Personal Data Breach to the extent the remediation is within InkitInsider’s reasonable control. The obligation to remediate the cause of a Personal Data Breach does shall not apply to Personal Data Breaches that are caused by the Customer, users of the Customer or Customer’s account, or third-party VendorsUsers.

CUSTOMER DATA INCIDENT MANAGEMENT AND NOTIFICATION. Inkit Braze maintains the security incident management policies and procedures specified in the Security, Privacy, Privacy and Architecture Datasheet and shall notify the Customer without undue delay after becoming aware of a Personal Data Breach in connection with the ServicesBreach. In such event, Inkit Braze shall provide information to the Customer necessary to enable the Customer to comply with its obligations under Data Protection Laws and Regulations. The content of such communication to the Customer will: will (1i) include the nature of Processing and the information available to Inkit; Braze, and (2ii) take into account that, that under applicable Data Protection Laws and Regulations, the Customer may need to notify regulators or individuals of the following: (ia) a description of the nature of the Personal Data Breach including, where possible, the categories and approximate number of individuals concerned, concerned and the categories and approximate number of Personal Data records concerned; (iib) a description of the likely consequences of the Personal Data Breach; and (iiic) a description of the measures taken or proposed to be taken to address the Personal Data Breach, including, where appropriate, measures to mitigate its possible adverse effectseffect. Inkit Braze shall make commercially reasonable efforts to identify the cause of such Personal Data Breach and take those steps as ▇▇▇▇▇ ▇▇▇▇▇ Braze deems necessary and reasonable in order to remediate the cause of such Personal Data Breach to the extent the remediation is within InkitBraze’s reasonable control. The obligation to remediate the cause of a Personal Data Breach does shall not apply to Personal Data Breaches that are caused by the Customer, users of the Customer or Customer’s account, or third-party VendorsUsers.

CUSTOMER DATA INCIDENT MANAGEMENT AND NOTIFICATION. Inkit Braze maintains the security incident management policies and procedures specified in the Security, Privacy, Privacy and Architecture Datasheet and shall notify the Customer without undue delay after becoming aware of a Personal Data Breach in connection with the ServicesBreach. In such event, Inkit Braze shall provide information to the Customer necessary to enable the Customer to comply with its obligations under Data Protection Laws and Regulations. The content of such communication to the Customer will: will (1i) include the nature of Processing and the information available to Inkit; Braze, and (2ii) take into account that, that under applicable Data Protection Laws and Regulations, the Customer may need to notify regulators or individuals of the following: (ia) a description of the nature of the Personal Data Breach including, where possible, the categories and approximate number of individuals concerned, concerned and the categories and approximate number of Personal Data records concerned; (iib) a description of the likely consequences of the Personal Data Breach; and (iiic) a description of the measures taken or proposed to be taken to address the Personal Data Breach, including, where appropriate, measures to mitigate its possible adverse effects. Inkit Braze shall make commercially reasonable efforts to identify the cause of such Personal Data Breach and take those steps as ▇▇▇▇▇ ▇▇▇▇▇ Braze deems necessary and reasonable in order to remediate the cause of such Personal Data Breach to the extent the remediation is within InkitBraze’s reasonable control. The obligation to remediate the cause of a Personal Data Breach does shall not apply to Personal Data Breaches that are caused by the Customer, users of the Customer or Customer’s account, or third-party VendorsUsers.