8.1 Security Measures. Taking into account the state of the art, the costs of implementation and the nature, scale, context and purposes of the processing, as well as the risk of different probability and severity for the rights and freedoms of natural persons, the undertaking shall take appropriate technical and organisational measures with regard to personal data in order to ensure a level of security appropriate to that risk. including, where applicable, the measures referred to in Article 32(1) of the GDPR. Detection: We have designed our infrastructure to record complete information about system behavior, traffic received, system authentication, and other application requirements. Internal systems have warned appropriate personnel against malicious, unintentional or abnormal activities. Our staff, including security, operations and support personnel, respond to known incidents. „authorised related companies“ means all associated companies that are authorised (i) to use the subscription services under the Agreement, but which have not signed a separate agreement with us and are not „customers“ within the meaning of the Agreement, (ii) are considered responsible for the personal data we process and (iii) are subject to European data protection law. b. The Parties also acknowledge that confidentiality restrictions imposed by the Processor may prevent data importers from transmitting subcontracting agreements to data exporters. Nevertheless, the data importer shall make reasonable efforts to require any subcontractor it has appointed to disclose the subcontracting agreement to the data exporter.

2. . .