Data Protection Laws those laws applicable to the processing of personal data in the relevant jurisdictions, including but not limited to the General Data Protection Regulation 2016/679.
Anti-Corruption Laws, Anti-Money Laundering Laws and Sanctions (i) None of (i) the Borrower, any other Loan Party, any Subsidiary, any of their respective directors, officers, employees or, to the knowledge of the Borrower, any Affiliates, or (ii) to the knowledge of the Borrower, any agent or representative of the Borrower or any Subsidiary that will act in any capacity in connection with or benefit from this Agreement, (A) is a Sanctioned Person or currently the subject or target of any Sanctions, (B) is controlled by or is acting on behalf of a Sanctioned Person, (C) has its assets located in a Sanctioned Country, (D) is under administrative, civil or criminal investigation for an alleged violation of, or received notice from or made a voluntary disclosure to any governmental entity regarding a possible violation of, Anti-Corruption Laws, Anti-Money Laundering Laws or Sanctions by a governmental authority that enforces Sanctions or any Anti-Corruption Laws or Anti-Money Laundering Laws, or (E) directly or indirectly derives revenues from investments in, or transactions with, Sanctioned Persons.
(ii) Each of the Borrower and its Subsidiaries has implemented and maintains in effect policies and procedures designed to ensure compliance by the Borrower and its Subsidiaries and their respective directors, officers, employees, agents and, to the knowledge of the Borrower, any Affiliates with all Anti-Corruption Laws, Anti-Money Laundering Laws and applicable Sanctions.
(iii) Each of the Borrower and its Subsidiaries, each director, officer, employee, agent and, to the knowledge of the Borrower, any Affiliate of Borrower and each such Subsidiary, is in compliance with all Anti-Corruption Laws, Anti-Money Laundering Laws in all respects and applicable Sanctions.
(iv) No proceeds of any Loans have been used, directly or indirectly, by the Borrower, any of its Subsidiaries or any of its or their respective directors, officers, employees and agents in violation of Section 9.11(b).
PERSONAL DATA PROTECTION ACT 7.1. PAH is committed to protecting the privacy, confidentiality and security of all personal data to which it is entrusted. It has been our policy to ensure your personal information are protected. With the introduction of the Malaysian Personal Data Protection Act 2010 ("PDPA"), we are even committed to ensure the privacy and confidentiality and security of all personal data are protected in line with the PDPA. We process personal data which you have provided to us voluntarily through our website upon your registration and this includes personal data such as your name, address, NRIC and contact details. In this regards, you have expressly consent to our processing of your personal data. If you give us personal data or information about another person, you must first confirm that he/she has appointed you to act for him/her, to consent to the processing of his/her personal data and to receive on his/her behalf any data protection notices. We may request your assistance to procure the consent of such persons whose personal data is provided by you to us and you agree to do so. You shall indemnify us in the event we suffer loss and damage as a result of your failure to comply with the same. We will only retain your personal data for as long as necessary for the fulfilment of the specified purposes or as legislated
7.2. E-Bidders shall be responsible for the confidentiality and use of password and not to reveal the password to anyone at any time and under any circumstances whether intentionally or unintentionally.
7.3. E-Bidders agree to comply with all the security measures related to safety of the password or generally in respect of the use of the service. In the event that the password is compromised, the E-Bidders shall immediately notify PAH.
Data Protection Act 7.1 With respect to the parties' rights and obligations under this Contract, the parties agree that the Department is the Data Controller and that the Contractor is the Data Processor.
7.2 The Contractor shall:
7.2.1 Process the Personal Data only in accordance with instructions from the Department (which may be specific instructions or instructions of a general nature as set out in this Contract or as otherwise notified by the Department to the Contractor during the Term);
7.2.2 Process the Personal Data only to the extent, and in such manner, as is necessary for the provision of the Services or as is required by Law or any Regulatory Body;
7.2.3 The Contractor shall employ appropriate organisational, operational and technological processes and procedures to keep the Personal Data safe from unauthorised use or access, loss, destruction, theft or disclosure. The organisational, operational and technological processes and procedures adopted are required to comply with the requirements of ISO/IEC 27001 as appropriate to the services being provided to the Department;
7.2.4 Take reasonable steps to ensure the reliability of any Contractor Personnel who have access to the Personal Data;
7.2.5 Obtain prior written consent from the Department in order to transfer the Personal Data to any Sub-contractors or Affiliates for the provision of the Services;
7.2.6 Ensure that all Contractor Personnel required to access the Personal Data are informed of the confidential nature of the Personal Data and comply with the obligations set out in this clause 7;
7.2.7 Ensure that none of Contractor Personnel publish, disclose or divulge any of the Personal Data to any third party unless directed in writing to do so by the Department;
7.2.8 Notify the Department within five Working Days if it receives: a request from a Data Subject to have access to that person's Personal Data; or a complaint or request relating to the Department's obligations under the Data Protection Legislation;
7.2.9 Provide the Department with full cooperation and assistance in relation to any complaint or request made, including by: - providing the Department with full details of the complaint or request; - complying with a data access request within the relevant timescales set out in the Data Protection Legislation and in accordance with the Department's instructions; - providing the Department with any Personal Data it holds in relation to a Data Subject (within the timescales required by the Department); and - providing the Department with any information requested by the Department;
7.2.10 Permit the Department or the Department’s Representative (subject to reasonable and appropriate confidentiality undertakings), to inspect and audit the Contractor's data Processing activities (and/or those of its agents, subsidiaries and Sub-contractors) and comply with all reasonable requests or directions by the Department to enable the Department to verify and/or procure that the Contractor is in full compliance with its obligations under this Contract;
7.2.11 Provide a written description of the technical and organisational methods employed by the Contractor for processing Personal Data (within the timescales required by the Department) to be used solely for the purposes of this contract and provided that to do so would not be in breach of the Intellectual Property Rights (including Copyright) of a third party; and
7.2.12 Not process Personal Data outside the European Economic Area without the prior written consent of the Department and, where the Department consents to a transfer, to comply with: - the obligations of a Data Controller under the Eighth Data Protection Principle set out in Schedule 1 of the Data Protection Act 1998 by providing -an adequate level of protection to any Personal Data that is transferred; and - any reasonable instructions notified to it by the Department.
7.3 The Contractor shall comply at all times with the Data Protection Legislation and shall not perform its obligations under this Contract in such a way as to cause the Department to breach any of its applicable obligations under the Data Protection Legislation.
Corrupt Practices Legislation Neither the Company nor its Subsidiaries or affiliates nor any of their respective officers, directors, employees, consultants, representatives or agents acting on behalf of the Company or any of its Subsidiaries or affiliates, has (i) violated any anti-bribery or anti-corruption laws applicable to the Company or any Subsidiary, including Canada’s Corruption of Foreign Public Officials Act and the U.S. Foreign Corrupt Practices Act, or (ii) offered, paid, promised to pay, or authorized the payment of any money, or offered, given, promised to give, or authorized the giving of anything of value, that goes beyond what is reasonable and customary and/or of modest value: (X) to any Government Official, whether directly or through any other Person, for the purpose of influencing any act or decision of a Government Official in his or her official capacity; inducing a Government Official to do or omit to do any act in violation of his or her lawful duties; securing any improper advantage; inducing a Government Official to influence or affect any act or decision of any Governmental Entity; or assisting any representative of the Company or any Subsidiary or affiliate in obtaining or retaining business for or with, or directing business to, any Person; or (Y) to any Person in a manner which would constitute or have the purpose or effect of public or commercial bribery, or the acceptance of or acquiescence in extortion, kickbacks, or other unlawful or improper means of obtaining business or any improper advantage. Neither the Company nor its Subsidiaries or affiliates nor any of their respective officers, directors, employees, consultants, representatives or agents, has (i) conducted or initiated any review, audit, or internal investigation that concluded the Company or its Subsidiaries or affiliates, or their respective officers, directors, employees, consultants, representatives or agents violated such laws or committed any material wrongdoing, or (ii) made a voluntary, directed, or involuntary disclosure to any Governmental Entity responsible for enforcing anti-bribery or anti-corruption laws, in each case with respect to any alleged act or omission arising under or relating to noncompliance with any such laws, or received any notice, request, or citation from any Person alleging non-compliance with any such laws.