Oracle Cloud Data Processing Agreement

Staff are required to execute a confidentiality agreement and must confirm receipt and compliance with Google`s privacy and privacy policies. Staff members receive security training. Staff management Partner data is needed to meet additional requirements that meet their role (for example. B, certifications). Google employees do not process partner data without permission. Oracle America, Inc., with branches in 500 Oracle Parkway, Redwood Shores, CA, 94403 („Oracle“) and the entity that signed this Bronto Data Processing Addendum, which is currently also a party to Oracle Subscription Services/Licensing Agreement with Oracle (such an agreement, the „commercial agreement“) and the related companies of that entity, whose right to use the applicable services (as defined below) is granted and is subject to the commercial agreement (together „customer“), accept this Bronto Data Processing Addendum from the date on which the fully signed version of Oracle is received by email at privacyaddendum@netsuite.com (the effective date), citing the facts and conditions agreed in Section A to Mr. If the customer is not a party to the commercial contract or is not subject to other conditions , this Bronto Data Processing Addendum and all seizures are not valid and are not legally binding. Unless there is an explicit definition, all the major terms used in this Bronto Data Processing Addendum have the meaning defined in the commercial contract. This appendix is part of the clauses and must be completed and signed by the parties.

Description of technical and organizational security measures implemented by the data importer under points 4(d) and 5(c) (or related documents/legislation): the data importer implements appropriate technical, organizational and administrative security measures to protect personal data transmitted by the data exporter from accidental or unlawful loss, abuse, unauthorized access, disclosure, modification and destruction. The security measures put in place by the data importer are constantly being improved in line with technological developments. The data importer has access controls in place to ensure that access and processing of personal data is strictly limited to people who know or need access to it to perform their specific tasks or tasks. The data importer was certified by independent auditors and certified as iso 27001, ISO 27017 and ISO 27018. The data importer implements the following measures to prevent unauthorized persons from accessing computer equipment in which personal data is processed or used: (a) data storage, isolation and logging. Google stores data in a multi-agent environment on its own servers. Subject to instructions from the opposite partner (for example. B in the form of a selection of data sites), Google replicates partner data between several data centers geographically distributed.