Browse
Search
2020-887-E Economic Dev - Submittable Holdings Inc grant management software
OrangeCountyNC
>
Board of County Commissioners
>
Contracts and Agreements
>
General Contracts and Agreements
>
2020's
>
2020
>
2020-887-E Economic Dev - Submittable Holdings Inc grant management software
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
3/1/2021 4:33:23 PM
Creation date
3/1/2021 4:09:58 PM
Metadata
Fields
Template:
Contract
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
60
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
DocuSign Envelope ID:90A54439-23B9-40AF-8246-BFCAAEAA529D <br /> have the ability to address a Data Subject Request, Submittable shall, upon Customer's request, <br /> provide commercially reasonable efforts to assist Customer in responding to such Data Subject <br /> Request, to the extent Submittable is legally permitted to do so and the response to such Data <br /> Subject Request is required under Privacy and Data Protection Requirements. If Submittable will <br /> incur costs beyond those associated with routine business or technical processes, and provided <br /> Submittable is not already required to pay for such costs, Submittable shall notify Customer of such <br /> costs and receive written approval from Customer to perform support of Customer in satisfying Data <br /> Subject request. In such case, Customer shall be responsible for agreed-upon costs arising from <br /> Submittable's provision of such assistance. <br /> 11.3 Submittable must not disclose the Personal Information to any Data Subject or to a <br /> third-party unless the disclosure is either at Customer's request or instruction, permitted by this <br /> DPA or is otherwise required by Law. <br /> 11.4 If a Law requires Submittable to Process or disclose Personal Information, Submittable <br /> must first inform Customer of the legal requirement and give Customer an opportunity to object or <br /> challenge the requirement, unless the Law prohibits such notice. <br /> 12. Records. <br /> 12.1 Submittable will keep detailed, accurate, and up-to-date records regarding any <br /> Processing of Personal Information it carries out for Customer, including but not limited to, the <br /> access, control, and security of the Personal Information, approved Sub-processors and affiliates, the <br /> Processing purposes, and any other records required by the applicable Privacy and Data Protection <br /> Requirements (the "Records"). <br /> 12.2 Submittable will ensure that the Records are sufficient to enable Customer to verify <br /> Submittable's compliance with its obligations under this DPA. <br /> 13. Audits. <br /> 13.1 If a Security Breach occurs or is occurring, or Submittable becomes aware of a breach of <br /> any of its obligations under this DPA or any Privacy and Data Protection Requirements, Submittable <br /> will: <br /> (a) promptly conduct its own audit to determine the cause; <br /> (b) produce a written report that includes detailed plans to remedy any deficiencies <br /> identified by the audit, on a confidential need-to-know basis, and a redacted version of the audit <br /> report itself so that Customer can reasonably verify Submittable's compliance with its security <br /> obligations under this DPA; <br /> (c) provide Customer with a copy of the written audit report; and <br /> (d) promptly remedy any deficiencies identified by the audit within. <br /> 13.2 Additionally, Submittable shall annually (a) cause a reputable independent third-party <br /> audit firm to conduct SOC II audits of Submittable, its Sub-processors, and their data centers that <br /> are used under the TOS; and (b) provide to Customer the audit reports resulting from the cost audits <br /> as set forth below ("Submittable Audit Report"). The Submittable Audit Report will address the <br /> control procedures used by Submittable at the Service locations, including specifically an assessment <br /> of whether (a) the control procedures were suitably designed to provide reasonable assurance that the <br /> stated internal control objectives would be achieved if the procedures operated as designed; and (b) <br /> the control procedures operated effectively at all times during the reporting period. Upon Customer's <br /> advance written request, no more frequently than once per 12-month period, Submittable will provide <br /> access to Customer, on a confidential need-to-know basis, a redacted version of the Submittable Audit <br /> Report so that Customer can reasonably verify Submittable's compliance with its security obligations <br /> under the TOS or this DPA. Submittable may remove any information from the Submittable Audit <br /> Submittable Customer Terms of Service v1.1—Exhibit B Page 9 of 12 <br />
The URL can be used to link to this page
Your browser does not support the video tag.