Security of Information Unless otherwise specifically authorized by the DOH Chief Information Security Officer, Contractor receiving confidential information under this contract assures that: • Encryption is selected and applied using industry standard algorithms validated by the National Institute of Standards and Technology (NIST) Cryptographic Algorithm Validation Program against all information stored locally and off-site. Information must be encrypted both in-transit and at rest and applied in such a way that it renders data unusable to anyone but authorized personnel, and the confidential process, encryption key or other means to decipher the information is protected from unauthorized access. • It is compliant with the applicable provisions of the Washington State Office of the Chief Information Officer (OCIO) policy 141, Securing Information Technology Assets, available at: xxxxx://xxxx.xx.xxx/policy/securing-information-technology-assets. • It will provide DOH copies of its IT security policies, practices and procedures upon the request of the DOH Chief Information Security Officer. • DOH may at any time conduct an audit of the Contractor’s security practices and/or infrastructure to assure compliance with the security requirements of this contract. • It has implemented physical, electronic and administrative safeguards that are consistent with OCIO security standard 141.10 and ISB IT guidelines to prevent unauthorized access, use, modification or disclosure of DOH Confidential Information in any form. This includes, but is not limited to, restricting access to specifically authorized individuals and services through the use of: o Documented access authorization and change control procedures; o Card key systems that restrict, monitor and log access; o Locked racks for the storage of servers that contain Confidential Information or use AES encryption (key lengths of 256 bits or greater) to protect confidential data at rest, standard algorithms validated by the National Institute of Standards and Technology (NIST) Cryptographic Algorithm Validation Program (CMVP); o Documented patch management practices that assure all network systems are running critical security updates within 6 days of release when the exploit is in the wild, and within 30 days of release for all others; o Documented anti-virus strategies that assure all systems are running the most current anti-virus signatures within 1 day of release; o Complex passwords that are systematically enforced and password expiration not to exceed 120 days, dependent user authentication types as defined in OCIO security standards; o Strong multi-factor authentication mechanisms that assure the identity of individuals who access Confidential Information; o Account lock-out after 5 failed authentication attempts for a minimum of 15 minutes, or for Confidential Information, until administrator reset; o AES encryption (using key lengths 128 bits or greater) session for all data transmissions, standard algorithms validated by NIST CMVP; o Firewall rules and network address translation that isolate database servers from web servers and public networks; o Regular review of firewall rules and configurations to assure compliance with authorization and change control procedures; o Log management and intrusion detection/prevention systems; o A documented and tested incident response plan Any breach of this clause may result in termination of the contract and the demand for return of all personal information.
Furnishing of Information and Inspection of Receivables The Seller will furnish to the Administrator and each Purchaser Agent from time to time such information with respect to the Pool Receivables as the Administrator or such Purchaser Agent may reasonably request. The Seller will, at the Seller’s expense, at any time during regular business hours with prior written notice (i) permit the Administrator or any Purchaser Agent, or their respective agents or representatives, (A) to examine and make copies of and abstracts from all books and records relating to the Pool Receivables or other Pool Assets and (B) to visit the offices and properties of the Seller for the purpose of examining such books and records, and to discuss matters relating to the Pool Receivables, other Pool Assets or the Seller’s performance hereunder or under the other Transaction Documents to which it is a party with any of the officers, directors, employees or independent public accountants of the Seller (provided that representatives of the Seller are present during such discussions) having knowledge of such matters; provided, that so long as no Termination Event has occurred and is continuing such examinations and visits shall not exceed one (1) per year and (ii) without limiting the provisions of clause (i) above, from time to time during regular business hours, at the Seller’s expense, upon reasonable prior written notice from the Administrator and the Purchaser Agents, permit certified public accountants or other auditors acceptable to the Administrator to conduct a review of its books and records with respect to the Pool Receivables; provided, that so long as no Termination Event has occurred and is continuing, the Seller shall be required to reimburse the Administrator and Purchaser Agents for only one (1) such audit per year. For the avoidance of doubt, the Administrator may require examinations and audits in addition to the examinations and audits specified in clause (i) and clause (ii) above, but the expense of any such additional examination or audit shall be borne by the Administrator and not the Seller.
Termination of Information and Inspection Covenants The covenants set forth in Sections 2.1 and 2.2 shall terminate as to Investors and be of no further force or effect when the sale of securities pursuant to a registration statement filed by the Company under the Act in connection with the firm commitment underwritten offering of its securities to the general public is consummated or when the Company first becomes subject to the periodic reporting requirements of Sections 12(g) or 15(d) of the 1934 Act, whichever event shall first occur.
Treatment of Information (a) Certain of the Lenders may enter into this Agreement and take or not take action hereunder or under the other Loan Documents on the basis of information that does not contain material non-public information with respect to any of the Loan Parties or their securities (“Restricting Information”). Other Lenders may enter into this Agreement and take or not take action hereunder or under the other Loan Documents on the basis of information that may contain Restricting Information. Each Lender acknowledges that United States federal and state securities laws prohibit any person from purchasing or selling securities on the basis of material, non-public information concerning the issuer of such securities or, subject to certain limited exceptions, from communicating such information to any other Person. Neither the Administrative Agent nor any of its Affiliates shall, by making any Communications (including Restricting Information) available to a Lender, by participating in any conversations or other interactions with a Lender or otherwise, make or be deemed to make any statement with regard to or otherwise warrant that any such information or Communication does or does not contain Restricting Information nor shall the Administrative Agent or any of its Affiliates be responsible or liable in any way for any decision a Lender may make to limit or to not limit its access to Restricting Information. In particular, none of the Administrative Agent nor any of its Affiliates (i) shall have, and the Administrative Agent, on behalf of itself and each of its Affiliates, hereby disclaims, any duty to ascertain or inquire as to whether or not a Lender has or has not limited its access to Restricting Information, such Lender’s policies or procedures regarding the safeguarding of material, nonpublic information or such Lender’s compliance with applicable laws related thereto or (ii) shall have, or incur, any liability to any Loan Party or Lender or any of their respective Affiliates arising out of or relating to the Administrative Agent or any of its Affiliates providing or not providing Restricting Information to any Lender. (b) Each Lender acknowledges that circumstances may arise that require it to refer to Communications that might contain Restricting Information. Accordingly, each Lender agrees that it will nominate at least one designee to receive Communications (including Restricting Information) on its behalf and identify such designee (including such designee’s contact information) on such Lender’s Administrative Questionnaire. Each Lender agrees to notify the Administrative Agent from time to time of such Lender’s designee’s e-mail address to which notice of the availability of Restricting Information may be sent by electronic transmission. (c) Each Lender acknowledges that Communications delivered hereunder and under the other Loan Documents may contain Restricting Information and that such Communications are available to all Lenders generally. Each Lender that elects not to take access to Restricting Information does so voluntarily and, by such election, acknowledges and agrees that the Administrative Agent and other Lenders may have access to Restricting Information that is not available to such electing Lender. None of the Administrative Agent nor any Lender with access to Restricting Information shall have any duty to disclose such Restricting Information to such electing Lender or to use such Restricting Information on behalf of such electing Lender, and shall not be liable for the failure to so disclose or use, such Restricting Information. (d) The provisions of the foregoing clauses of this Section 10.09 are designed to assist the Administrative Agent, the Lenders and the Loan Parties, in complying with their respective contractual obligations and applicable law in circumstances where certain Lenders express a desire not to receive Restricting Information notwithstanding that certain Communications hereunder or under the other Loan Documents or other information provided to the Lenders hereunder or thereunder may contain Restricting Information. Neither the Administrative Agent nor any of its Affiliates warrants or makes any other statement with respect to the adequacy of such provisions to achieve such purpose nor does the Administrative Agent or any of its Affiliates warrant or make any other statement to the effect that an Loan Party’s or Lender’s adherence to such provisions will be sufficient to ensure compliance by such Loan Party or Lender with its contractual obligations or its duties under applicable law in respect of Restricting Information and each of the Lenders and each Loan Party assumes the risks associated therewith.
Availability of Information To make DHCS PI and PII available to the DHCS and/or 15 COUNTY for purposes of oversight, inspection, amendment, and response to requests for records, 16 injunctions, judgments, and orders for production of DHCS PI and PII. If CONTRACTOR receives 17 DHCS PII, upon request by COUNTY and/or DHCS, CONTRACTOR shall provide COUNTY and/or 18 DHCS with a list of all employees, contractors and agents who have access to DHCS PII, including 19 employees, contractors and agents of its subcontractors and agents.
Accessibility of Information Technology Contractor represents and warrants that any software/ hardware/ communications system/ equipment (collectively “technology”), if any, provided under this Agreement adheres to the standards and/or specifications as may be set forth in the Section 508 of the Rehabilitation Act of 1973 standards guide and is fully compliant with WCAG 2.0 AA standards for accessibility and compliant with any applicable FCC regulations. Technology that will be used on a mobile device must also be navigable with Voiceover on iOS devices in addition to meeting WCAG 2.0 level AA. If portions of the technology or user experience are alleged to be non-compliant or non- accessible at any point, District will provide Contractor with notice of such allegation and Contractor shall use its best efforts to make the technology compliant and accessible. If a state or federal department, office or regulatory agency, or if any other third party administrative agency or organization (“Claimants”), make a claim, allegation, initiates legal or regulatory process, or if a court finds or otherwise determines that technology is non-compliant or non-accessible, Contractor shall indemnify, defend and hold harmless the District from and against any and all such claims, allegations, liabilities, damages, penalties, fees, costs (including but not limited to reasonable attorneys’ fees), arising out of or related to Xxxxxxxxx’ claims. Contractor shall also fully indemnify District for the full cost of any user accommodation that is found to be necessary due to an identifiable lack of accessibility in the Contractor’s technology. If necessary, an independent 3rd party accessibility firm using POUR standards (Perceivable, Operable, Understandable and Robust) may be used to validate the accessibility of the technology.
Personal Information security breach Supplier/Service Provider’s Obligations a) The Supplier/Service Provider shall notify the Information Officer of Transnet, in writing as soon as possible after it becomes aware of or suspects any loss, unauthorised access or unlawful use of any personal data and shall, at its own cost, take all necessary remedial steps to mitigate the extent of the loss or compromise of personal data and to restore the integrity of the affected Goods/Services as quickly as is possible. The Supplier/Service Provider shall also be required to provide Transnet with details of the persons affected by the compromise and the nature and extent of the compromise, including details of the identity of the unauthorised person who may have accessed or acquired the personal data. b) The Supplier/Service Provider shall provide on-going updates on its progress in resolving the compromise at reasonable intervals until such time as the compromise is resolved. c) Where required, the Supplier/Service Provider may be required to notify the South African Police Service; and/or the State Security Agency and where applicable, the relevant regulator and/or the affected persons of the security breach. Any such notification shall always include sufficient information to allow the persons to take protective measures against the potential consequences of the compromise. d) The Supplier/Service Provider undertakes to co‑operate in any investigation relating to security which is carried out by or on behalf of Transnet including providing any information or material in its possession or control and implementing new security measures.
Furnishing of Information and Inspection of Records The Borrower will furnish to the Deal Agent, each Lender, the Backup Servicer and the Collateral Agent, from time to time, such information with respect to the Loans and Contracts as may be reasonably requested, including, without limitation, a computer file or other list identifying each Loan and Contract by pool number, account number and dealer number and by the Outstanding Balance and identifying the Obligor on such Loan or Contract. The Borrower will, at any time and from time to time during regular business hours, upon reasonable notice, permit the Deal Agent, each Lender, the Backup Servicer and the Collateral Agent, or its agents or representatives, to examine and make copies of and abstracts from all Records, to visit the offices and properties of the Borrower for the purpose of examining such Records, and to discuss matters relating to the Loans or Contracts or the Borrower’s performance hereunder and under the other Transaction Documents with any of the officers, directors, employees or independent public accountants of the Borrower having knowledge of such matters; provided, however, that the Deal Agent, each Lender and the Collateral Agent each acknowledges that in exercising the rights and privileges conferred in this Section 5.1(m) it or its agents and representatives may, from time to time, obtain knowledge of information, practices, books, correspondence and records of a confidential nature and in which the Borrower has a proprietary interest. The Deal Agent, each Lender and the Collateral Agent each agrees that all such information, practices, books, correspondence and records are to be regarded as confidential information and agrees that it shall retain in strict confidence and shall use its reasonable efforts to ensure that its agents and representatives retain in strict confidence, and will not disclose without the prior written consent of the Borrower, any such information, practices, books, correspondence and records furnished to them except that it may disclose such information: (i) to its officers, directors, employees, agents, counsel, accountants, auditors, affiliates, advisors or representatives (provided that such Persons are informed of the confidential nature of such information); (ii) to the extent such information has become available to the public other than as a result of a disclosure by or through the Deal Agent, any Lender, the Collateral Agent or its officers, directors, employees, agents, counsel, accountants, auditors, affiliates, advisors or representatives; (iii) to the extent such information was available to the Deal Agent, any Lender or the Collateral Agent on a non-confidential basis prior to its disclosure hereunder; (iv) to the extent the Deal Agent, any Lender or the Collateral Agent should be (A) required under the Transaction Documents or in connection with any legal or regulatory proceeding or (B) requested by any bank regulatory authority to disclose such information; or (v) to any Lender or prospective assignee or Lender; provided, that the relevant Lender shall notify such prospective assignee or Lender of the confidentiality provisions of this Section 5.1(m).
Accuracy and Completeness of Information No written information, report or other papers or data (excluding financial projections and other forward looking statements) furnished to the Agent or any Lender by, on behalf of, or at the direction of, the Borrower, any other Obligor or any of their respective Subsidiaries in connection with or relating in any way to this Agreement, contained any untrue statement of a fact material to the creditworthiness of the Borrower, any other Obligor or any of their respective Subsidiaries or omitted to state a material fact necessary in order to make such statements contained therein, in light of the circumstances under which they were made, not misleading. The written information, reports and other papers and data with respect to the Borrower, any other Obligor or any of their respective Subsidiaries or the Unencumbered Assets (other than projections and other forward-looking statements) furnished to the Agent or the Lenders in connection with or relating in any way to this Agreement was, at the time so furnished, complete and correct in all material respects, or has been subsequently supplemented by other written information, reports or other papers or data, to the extent necessary to give in all material respects a true and accurate knowledge of the subject matter. All financial statements furnished to the Agent or any Lender by, on behalf of, or at the direction of, the Borrower, any other Obligor or any of their respective Subsidiaries in connection with or relating in any way to this Agreement, present fairly, in accordance with GAAP consistently applied throughout the periods involved, the financial position of the Persons involved as at the date thereof and the results of operations for such periods. All financial projections and other forward looking statements prepared by, or on behalf of the Borrower, any other Obligor or any of their respective Subsidiaries that have been or may hereafter be made available to the Agent or any Lender were or will be prepared in good faith based on reasonable assumptions. No fact or circumstance is known to the Borrower which has had, or may in the future have (so far as the Borrower can reasonably foresee), a Material Adverse Effect which has not been set forth in the financial statements referred to in Section 6.1(k) or in such information, reports or other papers or data or otherwise disclosed in writing to the Agent and the Lenders prior to the Effective Date.
Preservation of Information; Communications to Holders The Trustee shall preserve, in as current a form as is reasonably practicable, the names and addresses of Holders contained in the most recent list furnished to the Trustee as provided in Section 701 and the names and addresses of Holders received by the Trustee in its capacity as Security Registrar. The Trustee may destroy any list furnished to it as provided in Section 701 upon receipt of a new list so furnished. The rights of Holders to communicate with other Holders with respect to their rights under this Indenture or under the Securities, and the corresponding rights and privileges of the Trustee, shall be as provided by the Trust Indenture Act. Every Holder of Securities, by receiving and holding the same, agrees with the Company and the Trustee that neither the Company nor the Trustee nor any agent of either of them shall be held accountable by reason of any disclosure of information as to names and addresses of Holders made pursuant to the Trust Indenture Act.
