Addressing Security in Third Party Agreements. Supplier shall ensure that agreements with third parties involving accessing, processing, communicating or managing its information or information assets, or adding products or services to information assets cover all relevant security requirements. Supplier shall identify and mandate information security controls to specifically address third party access to its information assets. Supplier shall maintain written agreements with its third parties that include an acknowledgement that such third parties are responsible for the security of the information.
