Information Security and Confidentiality. 6.1. To maintain an adequate level of security for the protection of Personal Data, and without prejudice to the information security and confidentiality obligations which otherwise follows from the Agreement, ▇▇▇▇ commits to the following appropriate technical and organisational measures: (a) Data Encryption: Implement strong encryption for data at rest and in transit. (b) Access Control: Enforce strict access controls, including multi-factor authentication and role-based access, to ensure only authorised personnel access personal data. (c) Data Minimisation: Process and store only necessary personal data.
Appears in 2 contracts
Sources: Data Processing Agreement, Data Processing Agreement