Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 28 contracts
Samples: Agreement Between University and Contractor, Agreement Between University and Contractor, Agreement Between University and Contractor
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) USC §1232g (FERPA) are addressed in Section 12.41.] and its implementing regulations. [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) CFR Part 160 and subparts A and E of Part 164 (collectively, collectively HIPAA) are addressed in Section 12.26.] Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 UTS 165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.]
Appears in 28 contracts
Samples: Agreement Between University and Contractor, Agreement Between University and Contractor, Agreement Between University and Contractor
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, “University Records”). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (“FERPA”) are addressed in Section 12.41.] and its implementing regulations. [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Title 45, Part 160 and subparts A and E of Part 164 (collectively, collectively “HIPAA”) are addressed in Section 12.26.] Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 UTS 165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/bor/procedures/policy/policies/uts165.html. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.]
Appears in 13 contracts
Samples: Appendix Two Sample Agreement, Sample Agreement, Sample Agreement
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, “University Records”). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (“FERPA”) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Title 45, Part 160 and subparts A and E of Part 164 (collectively, collectively “HIPAA”) are addressed in Section 12.26.] Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 UTS 165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/bor/procedures/policy/policies/uts165.html. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records. [Alternate (Use if University has confirmed that University will not provide Contractor any University Records that contain personally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act.):
Appears in 10 contracts
Samples: Sample Agreement, Sample Agreement, Agreement Between University and Contractor
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) USC §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): its implementing regulations. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) CFR Part 160 and subparts A and E of Part 164 (collectively, collectively HIPAA) are addressed in Section 12.26.] . Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 UTS 165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.]
Appears in 9 contracts
Samples: Uthealth Contract # ________________, Appendix Two, Appendix Two
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] . Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 5 contracts
Samples: Agreement Between University and Contractor, – Sample Agreement, Agreement Between University and Contractor
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): 12.42. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] . Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information- resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 4 contracts
Samples: Agreement Between University and Contractor, Agreement Between University and Contractor, Agreement Between University and Contractor
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): . Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] . Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 4 contracts
Samples: Uthealth Contract # ________________, Appendix Two, Appendix Two
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1a) create, (2b) receive from or on behalf of University, or (3c) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option , including the Xxxxx-Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (a) University designates Contractor as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (b) Contractor acknowledges that its improper disclosure or redisclosure of personally identifiable information from University Records subject will result in Contractor’s exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] years. Contractor represents, warrants, and agrees that it will: (1a) hold University Records in strict confidence and will not use or disclose University Records except as (ai) permitted or required by this Agreement, (bii) required by Applicable Laws, or (ciii) otherwise authorized by University in writing; (2b) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3c) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws Laws, including FERPA and the Xxxxx-Xxxxx Xxxxxx Act, and the terms of this Agreement; and (4d) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 4 contracts
Samples: Vending Machine Services Contract, Vending Machine Services Contract, Vending Machine Services Contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, “University Records”). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option , including the Xxxxx-Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (“FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ”). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (1) University designates Contractor as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (2) Contractor acknowledges that its improper disclosure or redisclosure of personally identifiable information from University Records subject will result in Contractor’s exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] years. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws Laws, including FERPA and the Xxxxx-Xxxxx Bliley Act, and the terms of this Agreement; and (4) comply with University Rules University’s rules, policies, and procedures regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 3 contracts
Samples: Provide Custodial Services, Provide Custodial Services, Agreement to Provide Custodial Services
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under Completing the contracted work under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, "University Records"). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option , including the Xxxxx-Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g ("FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ''). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (1) University designates Contractor as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (2) Contractor acknowledges that its improper disclosure or re-disclosure of personally identifiable information from University Records subject will result in Contractor's exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] years. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure assume that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws Laws, including FERPA and the Xxxxx-Xxxxx Bliley Act, and the terms of this Agreement; and (4) comply with University Rules University's rules, policies, and procedures regarding access to and use of University’s 's computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 2 contracts
Samples: Agreement Between Texas State University, Agreement Between Texas State University
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. 6.1 Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, “University Records”). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option applicable federal, state and local, laws, regulations, and ordinances, including the Xxxxx-Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (“FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ”). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (1) University designates Contractor as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (2) Contractor acknowledges that its improper disclosure or redisclosure of personally identifiable information from University Records subject will result in Contractor’s exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] years. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Lawslaw, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to commercially reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, the Xxxxx-Xxxxx-Xxxxxx Act, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than best practices in the standards by which Contractor protects its own confidential informationdata security industry; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws applicable federal, state and local, laws, regulations, and ordinances, including FERPA and the Xxxxx-Xxxxx Xxxxxx Act, and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.and
Appears in 2 contracts
Samples: Services Agreement, Services Agreement
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, “University Records”). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option applicable federal, state and local, laws, regulations, and ordinances, including the Xxxxx- Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (“FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ”). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (1) University designates Contractor as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (2) Contractor acknowledges that its improper disclosure or redisclosure of personally identifiable information from University Records subject will result in Contractor’s exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] years. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted a)permitted or required by this Agreement, (b) required by Applicable Lawslaw, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to commercially reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, the Xxxxx-Xxxxx-Xxxxxx Act, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than best practices in the standards by which Contractor protects its own confidential informationdata security industry; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws applicable federal, state and local, laws, regulations, and ordinances, including FERPA and the Xxxxx-Xxxxx Xxxxxx Act, and the terms of this Agreement; and (4) comply with University Rules the University’s rules, policies, and procedures regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 2 contracts
Samples: Provide Psychiatric Services, Provide Psychiatric Services
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) USC §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): its implementing regulations. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) CFR Part 160 and subparts A and E of Part 164 (collectively, collectively HIPAA) are addressed in Section 12.26.] 24. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and- security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 2 contracts
Samples: Appendix Two Terms, resources.uta.edu
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) USC §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): its implementing regulations. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) CFR Part 160 and subparts A and E of Part 164 (collectively, collectively HIPAA) are addressed in Section 12.26.] 24. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information- resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 2 contracts
Samples: Attachment a Terms and Conditions, Attachment a Terms and Conditions
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive SAMPLE by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information- resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 2 contracts
Samples: Agreement Between University and Contractor, Agreement Between University and Contractor
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, “University Records”). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (“FERPA”) are addressed in Section 12.4112.40.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Title 45, Part 160 and subparts A and E of Part 164 (collectively, collectively “HIPAA”) are addressed in Section 12.26.] Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 12.38 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 UTS 165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/bor/procedures/policy/policies/uts165.html. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records. [Alternate (Use if University) has confirmed that University will not provide Contractor any University Records that contain personally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act.):
Appears in 2 contracts
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) USC §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] its implementing regulations. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 UTS 165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, “University Records”). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (“FERPA”) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] its implementing regulations. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 UTS 165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/bor/procedures/policy/policies/uts165.html. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: Product and Sponsorship Agreement
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.and
Appears in 1 contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1a) create, (2b) receive from or on behalf of University, or (3c) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option , including the Xxxxx-Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (a) University designates Contractor as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (b) Contractor acknowledges that its improper disclosure or redisclosure of personally identifiable information from University Records subject will result in Contractor’s exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] years. Contractor represents, warrants, and agrees that it will: (1a) hold University Records in strict confidence and will not use or disclose University Records except as (ai) permitted or required by this Agreement, (bii) required by Applicable Laws, or (ciii) otherwise authorized by University in writing; (2b) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3c) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws Laws, including FERPA and the Xxxxx-Xxxxx Bliley Act, and the terms of this Agreement; and (4d) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: Vending Machine Services Contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under Completing the Work under this Agreement, Contractor Provider may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, “University Records”). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option applicable laws, including the Xxxxx-Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (“FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ”). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (1) University designates Provider as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (2) Provider acknowledges that its improper disclosure or re- disclosure of personally identifiable information from University Records subject will result in Provider’s exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] Contractor years. Provider represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Lawsapplicable laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor Provider protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure assume that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws applicable laws, including FERPA and the Xxxxx-Xxxxx Xxxxxx Act, and the terms of this Agreement; and (4) comply with University Rules University’s rules, policies, and procedures regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor Provider agrees to provide University with a written summary of the procedures Contractor Provider uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) USC §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] its implementing regulations. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 UTS 165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information- resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under Completing the contracted work under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, "University Records"). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option , including the Xxxxx-Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g ("FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ''). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (1) University designates Contractor as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (2) Contractor acknowledges that its improper disclosure or re-disclosure of personally identifiable information from University Records subject will result in Contractor's exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] years. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure assume that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws Laws, including FERPA and the Xxxxx-Xxxxx Xxxxxx Act, and the terms of this Agreement; and (4) comply with University Rules University's rules, policies, and procedures regarding access to and use of University’s 's computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] 12.25. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165- information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: Sample Agreement
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under Completing the contracted work under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, "University Records"). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option , including the Xxxxx-Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g ("FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ''). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (1) University designates Contractor as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (2) Contractor acknowledges that its improper disclosure or re- disclosure of personally identifiable information from University Records subject will result in Contractor's exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] years. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure assume that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws Laws, including FERPA and the Xxxxx-Xxxxx Bliley Act, and the terms of this Agreement; and (4) comply with University Rules University's rules, policies, and procedures regarding access to and use of University’s 's computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) USC §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): its implementing regulations. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) CFR Part 160 and subparts A and E of Part 164 (collectively, collectively HIPAA) are addressed in Section 12.26.] 24. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]Security) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and- security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: Appendix Two Terms and Conditions
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) USC §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] its implementing regulations. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 UTS 165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information- resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under Completing the Work under this Agreement, Contractor Provider may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, “University Records”). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option applicable laws, including the Xxxxx-Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (“FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ”). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (1) University designates Provider as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (2) Provider acknowledges that its improper disclosure or re-disclosure of personally identifiable information from University Records subject will result in Provider’s exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] Contractor years. Provider represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Lawsapplicable laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor Provider protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure assume that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws applicable laws, including FERPA and the Xxxxx-Xxxxx Xxxxxx Act, and the terms of this Agreement; and (4) comply with University Rules University’s rules, policies, and procedures regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor Provider agrees to provide University with a written summary of the procedures Contractor Provider uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: Texas State
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) USC §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] its implementing regulations. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) Standards that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 UTS 165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information- resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under Completing the contracted work under this Agreement, Contractor Provider may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, "University Records"). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option , including the Xxxxx-Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g ("FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ''). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (1) University designates Provider as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (2) Provider acknowledges that its improper disclosure or re-disclosure of personally identifiable information from University Records subject will result in Provider's exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] Contractor years. Provider represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor Provider protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure assume that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws Laws, including FERPA and the Xxxxx-Xxxxx Bliley Act, and the terms of this Agreement; and (4) comply with University Rules University's rules, policies, and procedures regarding access to and use of University’s 's computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor Provider agrees to provide University with a written summary of the procedures Contractor Provider uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: Agreement Between Texas
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, “University Records”). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option , including the Xxxxx-Xxxxx-Xxxxxx Act (Include if University Records are subject to FERPA.): Additional mandatory confidentiality Public Law No: 106-102) and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) U.S.C. §1232g (“FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and ”). If University Records are subject to HIPAA.): Additional mandatory confidentiality FERPA, (1) University designates Contractor as a University official with a legitimate educational interest in University Records, and security compliance requirements with respect to (2) Contractor acknowledges that its improper disclosure or redisclosure of personally identifiable information from University Records subject will result in Contractor’s exclusion from eligibility to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] years. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):Security, as well as the Payment Card Industry Data Security Standards]) that are that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws Laws, including FERPA and the Xxxxx- Xxxxx Xxxxxx Act, and the terms of this Agreement; and (4) comply with University Rules University’s rules, policies, and procedures regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: (Sample Agreement
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): 12.39. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] 12.25. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of- regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: Business Associate Agreement
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other thingsHowever, it is expressly agreed that University will not provide to Contractor, and Contractor will never seek to access, any University Records may that contain social security numberspersonally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act, credit card numbersChapter 552, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject Texas Government Code, including “directory information” of any student who has opted to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to prohibit the release of their “directory information” as that term is defined under the Family Educational Rights and Privacy Act, 20 United States Code (USC) USC §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] its implementing regulations. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 UTS 165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and- security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
