Data Privacy Framework Clause Samples

Data Privacy Framework. For the transfers of Personal Data from the EU, UK, Gibraltar, and Switzerland to the U.S., Contentsquare has certified to the U.S. Department of Commerce that it adheres to the requirements of (i) the EU-U.S. Data Privacy Framework with respect to the processing of Personal Data received from the EU, (ii) the UK Extension to the EU-U.S. Data Privacy Framework with respect to the processing of Personal Data received from the UK and Gibraltar, and (iii) the Swiss-U.S. Data Privacy Framework with respect to the processing of Personal Data received from Switzerland. Contentsquareʼs official certification can be found at the following link: ▇▇▇▇▇://▇▇▇.▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇.▇▇▇/list. In the event of invalidation of any of the above transfer mechanisms by the respective data protection authority or government, or in the event Contentsquare ceases to be certified under the applicable Data Privacy Framework, the Parties mutually agree to rely on the Standard Contractual Clauses attached in Schedule 2 to carry out transfers as part of the provisions of services.

Data Privacy Framework. 11.3.1 Laserfiche is self-certified under the Privacy Shield Framework, now superseded by the Data Privacy Framework, as administered by the U.S. Department of Commerce, in order to implement appropriate safeguards for transfers of Personal Data to the United States pursuant to Article 46 of the GDPR. To the extent the Data Privacy Framework can be used to lawfully transfer Personal Data to the United States, and for as long as Laserfiche is self-certified to the Data Privacy Framework, Laserfiche will adhere to the Data Privacy Framework Principles, including by: (a) processing such Personal Data only for the limited and specified purposes set out in the Agreement, including this DPA; (b) providing at least the same level of privacy protection to the Personal Data as is required by the Data Privacy Framework Principles; (c) promptly notifying you if it makes a determination that it can no longer meet its obligation under (b) above, and in such event, promptly taking reasonable and appropriate steps to stop and remediate any processing until such time as the processing meets the level of protection as is required by the Data Privacy Framework Principles; and (d) at your sole election, ceasing the processing of the Personal Data if, in your reasonable discretion, Laserfiche is not providing the same level of protection to the Personal Data as is required by the Data Privacy Framework Principles. Laserfiche intends to remain self-certified under the Data Privacy Framework as long as the Data Privacy Framework is recognized as a valid transfer mechanism under Applicable Data Protection Law. Details about Laserfiche's self-certification to the Data Privacy Framework are available at: ▇▇▇▇▇://▇▇▇.▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇.▇▇▇/s/participant- search/participant-detail?id=a2zt00000008RnHAAU&status=Active 11.3.2 You acknowledge that Laserfiche may disclose this DPA and any relevant privacy provisions in the Agreement to the US Department of Commerce, the Federal Trade Commission, a relevant European supervisory authority or other public or regulatory authority, court or tribunal, upon their request. 11.3.3 If Laserfiche is unable to comply with this Clause 13.3, Clause 11.4 shall apply.

Data Privacy Framework. BigID is a member of the EU-US Data Privacy Framework (“DPF”), whereby BigID commits to complying with DPF Principles with respect to international transfers of Personal Data between Europe and the US.

Data Privacy Framework. Lookout complies with the Data Privacy Framework in relation to transfers from Europe to the U.S. The parties acknowledge and agree that Lookout shall use the Data Privacy Framework to lawfully receive Personal Data in the U.S. and Lookout shall ensure that it provides at least the same level of protection to such data as is required by the Data Privacy Framework Principles. Lookout shall notify Customer if it makes a determination that it can no longer comply with its obligations under the Data Privacy Framework.

Data Privacy Framework. Panopto represents that it has certified to the US Department of Commerce that it adheres to the principles set forth in the EU-US Data Privacy Framework, the UK Extension to the EU-US Data Privacy Framework, and the Swiss-US Data Privacy Framework (collectively, the “DPF”) with regard to the processing of Personal Data received from the EEA Area (collectively, the “DPF Principles”). If Customer is located in the EEA Area, Panopto agrees to provide at least the same level of protection to any Personal Data as required by the DPF Principles and to promptly notify Customer if its self-certification to the DPF is withdrawn, terminated, revoked, or otherwise invalidated (in which case an alternative transfer mechanism will apply in accordance with the order of precedence in Section 7.2. 1. More information about Panopto’s compliance with the DPF Principles can be found at ▇▇▇▇▇://▇▇▇.▇▇▇▇▇▇▇.▇▇▇/dpf/. To learn more about the DPF and to view Panopto’s DPF certification, please visit ▇▇▇▇▇://▇▇▇.▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇.▇▇▇/.

Data Privacy Framework. Notwithstanding Clause 3, Customer acknowledges that Rapid7 complies with the DPF and that transfers of Personal Data to Rapid7 made under the DPF shall not be a Restricted Transfer. Rapid7 will promptly notify Customer if it fails to comply with its DPF certification or its DPF certification lapses or is otherwise invalidated, in which instance any transfers of Personal Data from Customer to Rapid7 shall immediately be deemed a Restricted Transfer and the provisions of Clause 3 shall apply.

Data Privacy Framework. KnowBe4 participates in and certifies compliance with the Data Privacy Framework. As required by the Data Privacy Framework, KnowBe4 (i) provides at least the same level of privacy protection as is required by the Data Privacy Framework Principles; (ii) will notify Customer if KnowBe4 makes a determination it can no longer meet its obligation to provide the same level of protection as is required by the Data Privacy Framework Principles, and (iii) will, upon written notice, take reasonable and appropriate steps to remediate any unauthorized Processing of Personal Data.

Data Privacy Framework. Everlaw complies with the Data Privacy Framework in relation to transfers from the EEA, UK, and Switzerland to the U.S. The parties agree that Everlaw shall use the Data Privacy Framework to lawfully receive Customer Data and Controller Data in the U.S. and Everlaw shall ensure that it provides at least the same level of protection to such data as is required by the Data Privacy Framework Principles. Everlaw shall notify Customer if it makes a determination that it can no longer comply with its obligations under the Data Privacy Framework.

Data Privacy Framework. Processor confirms that it participates in the EU-US Data Privacy Framework and the UK Extension to this Framework (together, the "DPF"). The Supplier undertakes to maintain its self-certification to the DPF; to notify Company without undue delay if Processor determines that it will cease to self-certify to the DPF; and to notify Company immediately if Processor's participation in the DPF is otherwise terminated. [In respect of UK Personal Data, Company hereby notifies Processor that Company identifies and treats genetic data, data relating to sexual orientation, biometric data processed for the purpose of uniquely identifying data subjects and data relating to criminal convictions and offenses as sensitive].