Reporting of Data Protection Security Breaches. 1.8.1 The Processor must report any data protection security breaches (unintentional or unauthorized destruction, loss, amendment, disclosure or access involving personal data processed under the present agreement) or violation of bank/client confidentiality to the Controller without delay in order to give the Controller the opportunity to report the incident to the relevant authorities within 72 hours. The report is to be addressed to the contact address for data protection security breaches as specified on page 2. 1.8.2 In consultation with the Controller, the Processor shall initiate all steps necessary to clarify the matter and remedy the security incident without delay, and provide the Controller all information necessary to document the event and potentially submit a report to the relevant supervisory authority.
Appears in 3 contracts
Sources: Data Processing Agreement, Agreement on Processing on Behalf, Data Processing Agreement