BREACH REPORTING AND NOTIFICATIONRESPONSIBILITY Sample Clauses

BREACH REPORTING AND NOTIFICATIONRESPONSIBILITY. Upon disclosure of NDNH information from OCSE to HUD, HUD is the responsible party in the event of a confirmed or suspected breach of the information, including responsibility for any costs associated with breach mitigation and remediation. Immediately upon discovery, but in no case later than one hour after discovery of the incident, HUD shall report confirmed and suspected incidents, in either electronic or physical form, to OCSE as designated in this security addendum. HUD is responsible for all reporting and notification activities, including but not limited to: investigating the incident; communicating with US-CERT; notifying individuals whose information is breached; notifying any third parties, including the media; notifying any other public and private sector agencies involved; responding to inquiries about the breach; responding to Congressional inquiries; resolving all issues surrounding the information breach; performing any follow-up activities; correcting the vulnerability that allowed the breach; and any other activity as required by OMB M-17-12, Preparing for and Responding to a Breach of Personally Identifiable Information, and other federal law and guidance. Policy/Requirements Traceability: US-CERT Federal Incident Notification Guidelines (April 1, 2017); OMB Circular A130 – Appendix I; OMB M-17-12; NIST SP 800-53 Rev 5, IR-6
Sample 1
AutoNDA by SimpleDocs

Related to BREACH REPORTING AND NOTIFICATIONRESPONSIBILITY

  • COMPLIANCE WITH BREACH NOTIFICATION AND DATA SECURITY LAWS Contractor shall comply with the provisions of the New York State Information Security Breach and Notification Act (General Business Law § 899-aa and State Technology Law § 208) and commencing March 21, 2020 shall also comply with General Business Law § 899-bb.

  • BREACH DISCOVERY AND NOTIFICATION 23 1. Following the discovery of a Breach of Unsecured PHI, CONTRACTOR shall notify 24 COUNTY of such Breach, however both parties agree to a delay in the notification if so advised by a 25 law enforcement official pursuant to 45 CFR § 164.412.

  • Reporting Responsibility a) Vendor shall be responsible for reporting all services purchased under the Contract. Vendor shall file the monthly reports, subcontract reports, and pay the administrative fees in accordance with the due dates specified in this section.

  • COMPLIANCE WITH NEW YORK STATE INFORMATION SECURITY BREACH AND NOTIFICATION ACT Contractor shall comply with the provisions of the New York State Information Security Breach and Notification Act (General Business Law Section 899-aa; State Technology Law Section 208).

  • Documenting and Reporting Breaches 6.1 Business Associate shall report to Covered Entity any Breach of Unsecured PHI, including Breaches reported to it by a Subcontractor, as soon as it (or any of its employees or agents) becomes aware of any such Breach, and in no case later than two (2) business days after it (or any of its employees or agents) becomes aware of the Breach, except when a law enforcement official determines that a notification would impede a criminal investigation or cause damage to national security.

  • NOTIFICATIONS AND SUBMISSION OF REPORTS Unless otherwise stated in writing after the Effective Date, all notifications and reports required under this IA shall be submitted to the following entities: OIG: Administrative and Civil Remedies Branch Office of Counsel to the Inspector General Office of Inspector General U.S. Department of Health and Human Services Xxxxx Building, Room 5527 000 Xxxxxxxxxxxx Xxxxxx, XX Xxxxxxxxxx, XX 00000 Telephone: (000) 000-0000 Facsimile: (000) 000-0000 LFAC: Xxxxxxx X. Xxxxx, DPM 0000 Xxxxxxxxxxx Xx. X-000 Xxxxxxxxx, XX 00000 Telephone: (000) 000-0000 Email: xx.xxxxx@xxxxx.xxx Unless otherwise specified, all notifications and reports required by this IA may be made by electronic mail, overnight mail, hand delivery, or other means, provided that there is proof that such notification was received. Upon request by OIG, LFAC may be required to provide OIG with an additional copy of each notification or report required by this IA in OIG’s requested format (electronic or paper).

  • Certification Regarding Responsibility Matters This provision applies to solicitations where the contract value is expected to exceed the simplified acquisition threshold.

  • Statutory and Regulatory Compliance Contractor shall comply with all laws and regulations applicable to the Community Development Block Grant-Disaster Recovery funds appropriated by the Disaster Relief Appropriations Act, 2013 (Pub. L. 113-2), including but not limited to the applicable Office of Management and Budget Circulars, which may impact the administration of funds and/or set forth certain cost principles, including the allowability of certain expenses.

  • Reporting and Monitoring Please provide a brief description of the mechanisms proposed for this project for reporting to the UNDP and partners, including a reporting schedule.

  • REGULATORY FILINGS AND CAISO TARIFF COMPLIANCE 3.1 Filing

Time is Money Join Law Insider Premium to draft better contracts faster.