Security risk. If a party becomes aware of or suspects a security risk, it needs to take the steps specified in this clause. If either party becomes aware or suspects that: (a) there is a material vulnerability in the Enterprise Software or Associated Services; (b) any unauthorised person has obtained access to the technology systems or any Confidential Information of the other party or the Purchasing Agency Data; (c) it (the first party) is responsible for a Privacy Breach involving Personal Information of the other party’s staff, customers, clients or users that the other party has provided to the first party or that the first party has otherwise obtained through provision or receipt of the Enterprise Software or Associated Services; (d) any person has used any Confidential Information or Purchasing Agency Data for purposes not authorised or permitted by the Subscription Agreement; or (e) any other unauthorised access or other incident (including compromise or unauthorised exfiltration of Purchasing Agency Data) has occurred that threatens the security or integrity of the Enterprise Software or Associated Services or any Confidential Information or Purchasing Agency Data, the following steps shall be taken, as applicable: (f) it will notify the other party as soon as possible and cooperate with the other party as reasonably required; (g) where the incident concerns unauthorised access, promptly take such steps as are reasonably available to it to identify the person or persons who have gained access and, in your case, provide the Purchasing Agency with such information to assist with investigation of the incident as the Purchasing Agency reasonably requests; and (h) take all reasonable steps to stop such unauthorised access or incident and prevent its reoccurrence.
Appears in 3 contracts
Sources: Collaborative Marketplace Agreement, Collaborative Marketplace Agreement, Collaborative Marketplace Agreement