Laserfiche WebLink
or lawfully -issued subpoena requiring the disclosure of Customer Data in Motorola's possession <br />as may be required under applicable law. <br />12.3. CJIS. Motorola agrees to support the Customer's obligation to comply with the Federal <br />Bureau of Investigation Criminal Justice Information Services (CJIS) Security Policy and must <br />comply with the terms of the CJIS Security Addendum for the Term of this Agreement and such <br />CJIS Security Addendum is incorporated herein by reference. Customer hereby consents to allow <br />Motorola "screened" personnel as defined by the CJIS Security Policy to serve as an authorized <br />"escort" within the meaning of CJIS Security Policy for escorting unscreened Motorola personnel <br />that require access to unencrypted Criminal Justice Information for purposes of Tier 3 support <br />(e.g. troubleshooting or development resources). In the event Customer requires access to <br />Service Use Data for its compliance with the CJIS Security Policy, Motorola must make such <br />access available following Customer's request. Notwithstanding the foregoing, in the event the <br />MCA or applicable Ordering Document terminates, Motorola must carry out deletion of Customer <br />Data in compliance with Section 10 herein and may likewise delete Service Use Data within the <br />time frame specified therein. To the extent Customer objects to deletion of its Customer Data or <br />Service Use Data and seeks retention for a longer period, it must provide written notice to <br />Motorola prior to expiration of the 30 day period for data retention to arrange return of the <br />Customer Data and retention of the Service Use Data for a specified longer period of time. <br />12.4. CCPA / CPRA. If Motorola is Processing Personal Data within the scope of the California <br />Consumer Protection Act ("CCPA") and/or the California Privacy Rights Act ("CPRA") (collectively <br />referred to as the "California Privacy Acts"), Customer acknowledges that Motorola is a "Service <br />Provider" within the meaning of California Privacy Acts. Motorola must process Customer Data <br />and Personal Data on behalf of Customer and, not retain, use, or disclose that data for any <br />purpose other than for the purposes set out in this DPA and as permitted under the California <br />Privacy Acts, including under any "sale" exemption. If a California Privacy Act applies, Personal <br />Data must also include any data identified with the California Privacy Act or Act's definition of <br />personal data. Motorola shall provide Customer with notice should it determine that it can no <br />longer meet its obligations under the California Privacy Acts, and the parties agree that, if <br />appropriate and reasonable, Customer may take steps necessary to stop and remediate <br />unauthorized use of the impacted Personal Data. <br />12.5 CPA, CTDPA, VCDPA. If Motorola is Processing Personal Data within the scope of the <br />Colorado Privacy Rights Act ("CPA"), the Connecticut Data Privacy Act ("CTDPA"), or the Virginia <br />Consumer Data Protection Act ("VCDPA") Motorola will comply with its obligations under the <br />applicable legislation, and shall make available to Customer all information in its possession <br />necessary to demonstrate compliance with obligations in accordance with such legislation. <br />Motorola Contact. If Customer believes that Motorola is not adhering to its privacy or security <br />obligations hereunder, Customer must contact the Motorola Data Protection Officer at Motorola <br />Solutions, Inc., 500 W. Monroe, Chicago, IL USA 90661-3618 or at <br />privacy1 @motorolasolutions.com. <br />Data Processing Addendum V.2022.12 <br />