“Applicable Data Protection Laws” means i) the General Data Protection Regulation 2016/679 (the “GDPR”), the UK Data Protection Act 2018 (“UK DPA”) and the applied GDPR, and other any law, statute, declaration, decree, directive, legislative enactment, order, ordinance, regulation, rule or other binding instrument implementing the GDPR, the UK DPA and the applied GPDR (in each case as amended, consolidated, re-enacted or replaced from time to time) or ii) any other applicable data protection laws (e.g. Brazil’s General Data Protection Law, Lei Geral de Proteção de Dados); and
“Personal Data” has the meaning given to it in the GDPR.
1. To the extent that the information disclosed by Customer to BitSight contains Personal Data, the following provisions shall apply: