Expanding on their prior article, Norton Rose Fulbright and the global risk advisory company Willis Towers Watson have created an interactive guide to the legal and insurance-based tools that can be used to manage data privacy risks in vendor contracts.
This unique guide allows users to navigate between subjects, and explore the details of five overarching data privacy issues in vendor contracts:
- Required security standards and data handling limitations to be imposed on the vendor;
- Security assessment rights;
- Incident response;
- Risk transfer (including indemnity, consequential damages exclusions, and damage caps); and