CUSTOMER DATA & PRIVACY.
1.1. Use of Customer Data. Provider shall not: (a) access, process, or otherwise use Customer Data other than as necessary to facilitate the SaaS; or (b) give Customer Data access to any third party, except Provider’s subcontractors that have a need for such access to facilitate the SaaS and are subject to a reasonable written agreement governing the use and security of Customer Data. Further, Provider: (c) shall exercise reasonable efforts to prevent unauthorized disclosure or exposure of Customer Data; and (d) shall comply with all Privacy/Security Laws that are applicable both specifically to Provider and generally to data processors in the jurisdictions in which Provider does business and operates physical facilities.
...