Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.24. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security as well as the Payment Card Industry Data Security Standards) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of- regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: Final Agreement
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) §1232g (FERPA), are addressed in Section 46. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.2424. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security Security, as well as the Payment Card Industry Data Security Standards) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of- regents/policy-library/policies/uts165-information-resources-xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources- use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: Terms and Conditions
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability Family Educational Rights and Accountability Act and 45 Privacy Act, 20 United States Code of Federal Regulations (CFRUSC) Part 160 and subparts A and E of Part 164 §1232g (collectively, HIPAAFERPA) are addressed in Section 12.24. Contractor represents, warrants, and agrees that it will: 12.42.] [Option (1) hold University Records Include if Section 12.40 related to Payment Card Industry Data Security Standards is not included in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement.):, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security as well as the Payment Card Industry Data Security Standards]) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of- regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: www.uttyler.edu
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. Laws.[Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability Family Educational Rights and Accountability Act and 45 Privacy Act, 20 United States Code of Federal Regulations (CFRUSC) Part 160 and subparts A and E of Part 164 §1232g (collectively, HIPAAFERPA) are addressed in Section 12.24. Contractor represents, warrants, and agrees that it will: 12.42.] [Option (1) hold University Records Include if Section 12.40 related to Payment Card Industry Data Security Standards is not included in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement.):, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security as well as the Payment Card Industry Data Security Standards]) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of- regents/policy-library/policies/uts165-information-resources-use-and-security-policyxxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: www.uttyler.edu
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.2412.23. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security Security, as well as the Payment Card Industry Data Security Standards) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of- regents/policy-library/policies/uts165-information-xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information- resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability Family Educational Rights and Accountability Act and 45 Privacy Act, 20 United States Code of Federal Regulations (CFRUSC) Part 160 and subparts A and E of Part 164 §1232g (collectively, HIPAAFERPA) are addressed in Section 12.2412.35. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security Security, as well as the Payment Card Industry Data Security Standards) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of- regents/policy-xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy- library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Samples: Appendix Two
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) §1232g (FERPA), are addressed in Section 12.30. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.24. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security Security, as well as the Payment Card Industry Data Security Standards) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of- regents/policy-library/policies/uts165-information-resources-use-and-security-policyUTS165. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, “University Records”). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws, including the Xxxxx-Xxxxx-Xxxxxx Act (Public Law No: 106-102) and the Family Educational Rights and Privacy Act, 20 U.S.C. §1232g (“FERPA”). Additional mandatory confidentiality and security compliance requirements with respect to If University Records are subject to the Health Insurance Portability FERPA, (1) University designates Contractor as a University official with a legitimate educational interest in University Records, and Accountability Act and 45 Code (2) Contractor acknowledges that its improper disclosure or redisclosure of Federal Regulations personally identifiable information from University Records will result in Contractor’s exclusion from eligibility to contract with University for at least five (CFR5) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.24years. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by (i) the National Institute of Standards and Technology and (ii) the Center for Internet Security Security, as well as the Payment Card Industry Data Security Standards) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws Laws, including FERPA and the Xxxxx-Xxxxx Xxxxxx Act, and the terms of this Agreement; and (4) comply with University Rules the University’s rules, policies, and procedures regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of- regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records. [Alternate: Use if University will not provide Contractor any University Records that contain personally identifiable information regarding any individual that is not available to any requestor under the Texas Public Information Act.:
Appears in 1 contract
Confidentiality and Safeguarding of University Records; Press Releases; Public Information. Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.2412.23. Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to the security controls, including reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security as well as the Payment Card Industry Data Security Standards) that are proportionate to the University’s risk under the Agreement based on the sensitivity of University’s Records, and no less rigorous than the standards by which Contractor protects its own confidential information, and periodically provide to University evidence that Contractor meets the security controls required under the Agreement; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of- regents/policy-library/policies/uts165-information-xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information- resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Appears in 1 contract