Data Breach Notification Sample Clauses

Data Breach Notification. PowerDMS will notify Customer of unauthorized access to, or unauthorized use, loss or disclosure of Customer Data within custody and control (a “Security Breach”) within 72 hours of PowerDMS’s confirmation of the nature and extent of the same or when required by applicable law, whichever is earlier. Each party will reasonably cooperate with the other with respect to the investigation and resolution of any Security Breach. Except to the extent required otherwise by applicable law, Customer will have approval rights on notifying any third-party regulatory authority of the Security Breach. If applicable law or Customer’s policies require notification of its Users or others of the Security Breach, Customer shall be responsible for such notification.

Data Breach Notification. Webflow shall notify Customer without undue delay in the event of a confirmed Data Breach.

Data Breach Notification a. The Breach or potential compromise of Data must be reported to the HCA Privacy Officer at ▇▇▇▇▇▇▇▇▇▇▇▇▇▇@▇▇▇.▇▇.▇▇▇ and the County Program Manager within 2 business days of discovery. If the Contractor does not have full details, it will report what information it has, and provide full details within 15 business days of discovery. To the extent possible, these reports must include the following: i. The identification of each individual whose PHI has been or may have been improperly accessed, acquired, used, or disclosed; ii. The nature of the unauthorized use or disclosure, including a brief description of what happened, the date of the event(s), and the date of discovery; iii. A description of the types of PHI involved; iv. The investigative and remedial actions the Contractor took or will take to prevent and mitigate harmful effects, and protect against recurrence; v. Any details necessary for a determination of the potential harm to individuals whose PHI is believed to have been used or disclosed and the steps those individuals should take to protect themselves; and vi. Any other information HCA or the County reasonably requests. b. The Contractor must take actions to mitigate the risk of loss and comply with any notification or other requirements imposed by law or HCA including but not limited to 45 C.F.R. Part 164, Subpart D, RCW 42.56.590; RCW 19.255.010; or WAC ▇▇▇-▇▇-▇▇▇. c. If notification of the Breach or possible Breach must, in judgement of HCA or the County, be made under the HIPAA Breach Notification Rule, or RCW 42.56.590 or RCW 19.255.010; or other law or rule, then: i. HCA or the County may choose to make any required notifications to the individuals, to the U.S. Department of Health and Human Services (DSHS) Secretary, and to the media, or direct Contractor to make them or any of them. ii. In any case, Contractor will pay reasonable costs of notification to individuals, media, and governmental agencies and of other actions HCA or the County reasonably considers appropriate to protect HCA clients, such as paying for their regular credit watches in some cases. iii. Contractor will compensate HCA clients for ▇▇▇▇▇ caused to them by any Breach or possible Breach. d. Contractor is responsible for all costs incurred in connection with a security incident, privacy Breach, or potential compromise of Data, including: i. Computer forensics assistance to assess the impact of a Data Breach, determine root cause, and help determine whether and the ...

Data Breach Notification. Processor shall notify Controller in writing without undue delay after becoming aware of a suspected Data Breach. In no event shall such notification be made more than 72 hours after Processor’s discovery of the Data Breach.

Data Breach Notification. If Service Provider becomes aware of any potential breach, or experiences a security breach, relating to any of the foregoing Confidential or Sensitive Information, in addition to Service Provider's responsibilities under state and federal law, Service Provider shall immediately, but no later than thee (3) business days, notify Drexel and shall fully cooperate with Drexel. “Data Breach” shall be defined to include, but is not limited to, unauthorized access, use, loss or disclosure of Individually Identifiable Information protected under federal and state laws identified in this Section, including, without limitation, HIPAA/HITECH and the Federal Trade Commission Act (and their respective regulations and guidelines) and state data breach notification acts. Service Provider shall indemnify Drexel for any breach of confidentiality or failure of its responsibilities to protect confidential information, specifically with regard to, but not limited to, the cost of notification of affected persons as a result of its accidental or negligent release of data provided to Service Provider pursuant to this Agreement.

Data Breach Notification. In the event Seller reasonably believes that unauthorized access to, disclosure of, or breach in the security of Buyer’s data may have occurred, Seller, at its own cost and expense must: A. In the most expeditious manner possible, without unreasonable delay, and in any event no later than 72 hours, notify Buyer of any potential data security breach involving Buyer’s data; B. Promptly provide Buyer full details of the potential breach of the data security of Buyer’s data; C. Assist Buyer and any third parties authorized by ▇▇▇▇▇, including law enforcement authorities, in investigating and remediating any potential breach of the data security of Buyer’s data D. Promptly use best efforts to prevent a recurrence of any potential breach of the data security of Buyer’s data; and ▇. ▇▇▇▇▇▇▇▇▇ with ▇▇▇▇▇ in notifying individuals injured or potentially injured by the potential breach of the data security of ▇▇▇▇▇’s data.

Data Breach Notification a. Save where the Supplier is legally prohibited from notifying the Company, the Supplier shall notify the Company without undue delay and in any case within twenty-four (24) hours after becoming aware of any actual or suspected Personal Data Breach. Such notification shall: i. Describe as far as is known to the Processor, the nature of the Personal Data Breach including where possible, the categories and approximate number of Data Subjects affected and the categories and approximate number of Personal Data records concerned; ii. Communicate the name and contact details of the data protection officer or other point of contact where further information, if any, can be obtained; iii. Describe the likely consequences of the Personal Data Breach; iv. Describe the measures taken or proposed to be taken by the Processor to address the Personal Data Breach, including, where appropriate, measures to mitigate its possible adverse effects. b. The Supplier acknowledges and understands that the Controller may be obligated to notify the relevant Regulators (within seventy-two (72) hours of having become aware of the Personal Data Breach) and may also be obligated to notify affected Data Subjects. The Processor shall provide all necessary assistance and relevant information reasonably requested by the other Party, in order to allow the Company to properly assess, investigate, mitigate and remedy the Personal Data Breach and to meet its respective obligations under Applicable Laws. Once the Supplier has notified the Company of any Personal Data Breach, the Supplier shall use its reasonable endeavours to not notify the relevant Regulators or the affected Data Subjects without obtaining the Company's prior approval. On request for approval, the Company shall not unreasonably delay or withhold approval where the Supplier is required under Applicable Law to notify a relevant Regulator of the Personal Data Breach.

Data Breach Notification. Luware shall, without undue delay provide Customer, with all information in Luware’s possession concerning a Data Breach in connection with the Terms of Use or this DPA. Following such notification and, within such timescale to be agreed between the Parties (acting reasonably and in good faith), both Parties shall support each other to (i) implement any measures necessary to restore the integrity of compromised Customer Personal Data, and (ii) make any necessary notifications to the relevant authorities, affected Data Subjects and other relevant third parties.

Data Breach Notification. 7.1 The Processor will notify the Controller without undue delay upon becoming aware of a Personal Data breach (Article 33(2) GDPR). 7.2 Such notification will include, to the extent possible, information to assist the Controller in meeting any obligations to report or inform data subjects of the Personal Data breach (Article 33(3) GDPR).