(iv) describe the actions taken or proposed by the data processor to remedy the breach of personal data, including, if necessary, measures to mitigate its potential negative effects. 1. Before the start of the processing, the supplier documents the implementation of the necessary technical and organizational measures that were taken prior to the award of the contract, including the detailed execution of the contract, and submits these documented measures to the client for consultation. After acceptance by the customer, the documented measures become the basis of the contract. To the extent that the audits/verifications carried out by the client show the need for changes, these changes must be implemented by mutual agreement. (B) The company wishes to provide the data processor with certain services that involve the processing of personal data. Six of them. The processing of personal data by the data processor is carried out at the location (s) (s), including the (s) processing country (s): this data processing agreement (“DPA”) defines data protection obligations arising from the processing of personal data by the data processor on behalf of the processor in connection with the offer, service agreement or other agreement between the parties (“agreement”). 13.2. At the request of the data company, the data processor must confirm in writing the destruction of personal data.
5.2. The data processor ensures that it and its subprocessers involved in the processing of personal data meet the minimum data security requirements set out in Schedule 2 at all times. 1. The supplier assists the customer in compliance with personal data security obligations, reporting obligations in the event of a data breach, data protection impact assessments and pre-consultation in accordance with Articles 32 to 36 of the RGPD. These include: z.B.: (i) description of the nature of the breach of personal data, including, where possible. B, loss, theft, reproduction, categories and approximate number of persons involved, as well as categories and approximate number of personal data involved, 13.1. When the contract expires or expires, the data processor (at the data manager`s choice) must destroy or return to the data manager all data in its possession or control.