Measures for allowing data portability and ensuring erasure. Encryption of Subscriber Data in transit across external untrusted networks when using Domo APIs and services utilizing industry standard cryptography and key management practices; • Where technically enforced, encryption of Subscriber Data and back-ups of Subscriber Data at rest utilizing industry standard cryptography and key management practices; • Encryption of authentication credentials at rest utilizing industry standard cryptography and key management practices. For transfers to Sub-processors, Domo, as processor, requires that its Sub-processors take appropriate technical and organizational measures to assist the controller and data exporter in protecting the security, confidentiality and integrity of Personal Data uploaded to the Services as follows: 1. Relevant agreements with sub-processors include requirements for appropriate technical and organizational measures relevant to the sub-processor services provided to Domo. 2. Technical and organizational measures used to mitigate any risks associated with sub-processor access to Subscriber Data in its provision of relevant sub-processor services to Domo are agreed upon with the sub-processor and documented. 3. All relevant technical and organizational measures are established and agreed upon with each sub-processor that may access, process, or store Subscriber Data. 4. A Domo security and risk review is performed for each Sub-processor that may access, process or store Subscriber Data. 1. the information required for Table 1 is contained in Annex I of Schedule 1 of this DPA and the start date shall be deemed dated the same date as the EU Standard Contractual Clauses; 2. in relation to Table 2, the version of the EU Standard Contractual Clauses to which the UK Approved Addendum applies is Module Two for Controller to Processor; 3. the terms of clause 8.2.1 of this DPA shall also apply to the version of the EU Standard Contractual Clauses to which the UK Approved Addendum applies; 4. in relation to Table 3, the list of parties and description of the transfer are as set out in Annex 1 of Schedule 1 of this DPA, Domo's technical and organisational measures are set in Annex II of Schedule 1 of this DPA, and the list of Domo's current sub-processors are provided at ▇▇▇▇://▇▇▇.▇▇▇▇.▇▇▇/company/subprocessors ; and 5. in relation to Table 4, neither party will be entitled to terminate the UK Approved Addendum in accordance with clause 19 of the UK Mandatory Clauses.
Appears in 2 contracts