Access Controls The system providing access to PHI COUNTY discloses to 20 CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY 21 must use role based access controls for all user authentications, enforcing the principle of least privilege.
Access to Review Materials The Servicer will give the Asset Representations Reviewer access to the Review Materials for all of the Subject Receivables within sixty (60) calendar days after receipt of the review notice in one or more of the following ways in the Servicer’s reasonable discretion: (i) by electronic posting of Review Materials to a password-protected website to which the Asset Representations Reviewer has access, (ii) by providing originals or photocopies of documents relating to the Subject Receivables at one of the properties of the Servicer or (iii) in another manner agreed by the Servicer and the Asset Representations Reviewer. The Servicer may redact or remove PII from the Review Materials so long as all information in the Review Materials necessary for the Asset Representations Reviewer to complete the Asset Review remains intact and unchanged.
System Access Control Data processing systems used to provide the Cloud Service must be prevented from being used without authorization.
Access Control Supplier will maintain an appropriate access control policy that is designed to restrict access to Accenture Data and Supplier assets to authorized Personnel. Supplier will require that all accounts have complex passwords that contain letters, numbers, and special characters, be changed at least every 90 days, and have a minimum length of 8 characters.
Review Protocol A narrative description of how the Claims Review was conducted and what was evaluated.
AUDIT REVIEW PROCEDURES Any dispute concerning a question of fact arising under an interim or post audit of this AGREEMENT that is not disposed of by agreement, shall be reviewed by ALAMEDA CTC’s Deputy Executive Director of Finance and Administration. Not later than thirty (30) calendar days after issuance of the final audit report, CONSULTANT may request a review by ALAMEDA CTC’s Deputy Executive Director of Finance and Administration of unresolved audit issues. The request for review will be submitted in writing. Neither the pendency of a dispute nor its consideration by ALAMEDA CTC will excuse CONSULTANT from full and timely performance, in accordance with the terms of this AGREEMENT. CONSULTANT and subconsultants’ contracts, including cost proposals and ICRs, may be subject to audits or reviews such as, but not limited to, an AGREEMENT Audit, an Incurred Cost Audit, an ICR Audit, or a certified public accountant (“CPA”) ICR Audit Workpaper Review. If selected for audit or review, the AGREEMENT, cost proposal and ICR and related workpapers, if applicable, will be reviewed to verify compliance with 48 CFR, Chapter 1, Part 31 and other related laws and regulations. In the instances of a CPA ICR Audit Workpaper Review it is CONSULTANT’s responsibility to ensure federal, state, or local government officials are allowed full access to the CPA’s workpapers including making copies as necessary. The AGREEMENT, cost proposal, and ICR shall be adjusted by CONSULTANT and approved by ALAMEDA CTC to conform to the audit or review recommendations. CONSULTANT agrees that individual terms of costs identified in the audit report shall be incorporated into the contract by this reference if directed by ALAMEDA CTC at its sole discretion. Refusal by CONSULTANT to incorporate audit or review recommendations, or to ensure that the federal, state, or local governments have access to CPA workpapers, will be considered a breach of contract terms and cause for termination of the AGREEMENT and disallowance of prior reimbursed costs.
Maintenance of Review Materials It will maintain copies of any Review Materials, Review Reports and other documents relating to a Review, including internal correspondence and work papers, for a period of at least two years after any termination of this Agreement.
Physical Access Control Unauthorized persons are prevented from gaining physical access to premises, buildings or rooms where data processing systems that process and/or use Personal Data are located.
Data Access Control Persons entitled to use data processing systems gain access only to the Personal Data that they have a right to access, and Personal Data must not be read, copied, modified or removed without authorization in the course of processing, use and storage.
Reasonable Suspicion Testing All Employees Performing Safety-Sensitive Functions A. Reasonable suspicion testing for alcohol or controlled substances may be directed by the Employer for any employee performing safety-sensitive functions when there is reason to suspect that alcohol or controlled substance use may be adversely affecting the employee’s job performance or that the employee may present a danger to the physical safety of the employee or another. B. Specific objective grounds must be stated in writing that support the reasonable suspicion. Examples of specific objective grounds include but are not limited to: 1. Physical symptoms consistent with alcohol and/or controlled substance use; 2. Evidence or observation of alcohol or controlled substance use, possession, sale, or delivery; or 3. The occurrence of an accident(s) where a trained manager, supervisor or lead worker suspects alcohol or other controlled substance use may have been a factor.
