(1) Each client shall take care to protect the private key that corresponds to the public key listed in the certificate received by him and shall take all necessary measures to prevent any person not authorized to create the client's digital signature from being informed of such key.
(2) If the customer's private key is disclosed for any reason, or if the key is tampered with, the customer must inform the certifying body as soon as possible, and if such information is received, the certifying body must immediately suspend the certificate.
(3) If the certificate is suspended according to this Act, it shall be the duty of the customer to keep the private key safe during the period of such suspension.