Incident Management/Notification of Breach Sample Clauses
Incident Management/Notification of Breach. DST shall develop, implement and maintain an incident response plan that specifies actions to be taken when DST or one of its subcontractors if in DST’s discretion it is applicable to such subcontractor, suspects or detects that a party has gained material confirmed unauthorized access to Client Data or systems or applications containing any Client Data (the “Response Plan”). Such Response Plan shall include the following:
i. Escalation Procedures - An escalation procedure that includes notification to senior managers and appropriate reporting to regulatory and law enforcement agencies, as applicable. This procedure shall provide for reporting of incidents that compromise the confidentiality of Client Data (including backed up data) to Client via telephone or email (and provide a confirmatory notice in writing as soon as practicable); provided that the foregoing notice obligation is excused for such period of time as DST is prohibited by law, rule, regulation or other governmental authority from notifying Client.
ii. Incident Reporting - DST will use commercially reasonable efforts to promptly furnish to Client information that DST has regarding the general circumstances and extent of such unauthorized access to the Client Data.
Incident Management/Notification of Breach. Custodian will maintain an incident response plan that specifies actions to be taken when Custodian or one of its subcontractors suspects or detects that a party has gained unauthorized access to Fund Confidential Information or systems or applications containing any Fund Confidential Information (the “Response Plan”). Such Response Plan will include an escalation procedure that includes notification to senior managers and reporting to regulatory and law enforcement agencies, when and if applicable. Custodian will use commercially reasonable efforts to investigate, remediate and mitigate such unauthorized access.