CONFIDENTIALITY AND NON-DISCLOSURE; SECURITY BREACH REPORTING 2.1 For purposes of this Contract, confidential information will not include information or material which (a) enters the public domain (other than as a result of a breach of this Contract); (b) was in the receiving party’s possession prior to its receipt from the disclosing party; (c) is independently developed by the receiving party without the use of confidential information; (d) is obtained by the receiving party from a third party under no obligation of confidentiality to the disclosing party; or (e) is not exempt from disclosure under applicable State law.
Security of Information Unless otherwise specifically authorized by the DOH Chief Information Security Officer, Contractor receiving confidential information under this contract assures that: • Encryption is selected and applied using industry standard algorithms validated by the National Institute of Standards and Technology (NIST) Cryptographic Algorithm Validation Program against all information stored locally and off-site. Information must be encrypted both in-transit and at rest and applied in such a way that it renders data unusable to anyone but authorized personnel, and the confidential process, encryption key or other means to decipher the information is protected from unauthorized access. • It is compliant with the applicable provisions of the Washington State Office of the Chief Information Officer (OCIO) policy 141, Securing Information Technology Assets, available at: xxxxx://xxxx.xx.xxx/policy/securing-information-technology-assets. • It will provide DOH copies of its IT security policies, practices and procedures upon the request of the DOH Chief Information Security Officer. • DOH may at any time conduct an audit of the Contractor’s security practices and/or infrastructure to assure compliance with the security requirements of this contract. • It has implemented physical, electronic and administrative safeguards that are consistent with OCIO security standard 141.10 and ISB IT guidelines to prevent unauthorized access, use, modification or disclosure of DOH Confidential Information in any form. This includes, but is not limited to, restricting access to specifically authorized individuals and services through the use of: o Documented access authorization and change control procedures; o Card key systems that restrict, monitor and log access; o Locked racks for the storage of servers that contain Confidential Information or use AES encryption (key lengths of 256 bits or greater) to protect confidential data at rest, standard algorithms validated by the National Institute of Standards and Technology (NIST) Cryptographic Algorithm Validation Program (CMVP); o Documented patch management practices that assure all network systems are running critical security updates within 6 days of release when the exploit is in the wild, and within 30 days of release for all others; o Documented anti-virus strategies that assure all systems are running the most current anti-virus signatures within 1 day of release; o Complex passwords that are systematically enforced and password expiration not to exceed 120 days, dependent user authentication types as defined in OCIO security standards; o Strong multi-factor authentication mechanisms that assure the identity of individuals who access Confidential Information; o Account lock-out after 5 failed authentication attempts for a minimum of 15 minutes, or for Confidential Information, until administrator reset; o AES encryption (using key lengths 128 bits or greater) session for all data transmissions, standard algorithms validated by NIST CMVP; o Firewall rules and network address translation that isolate database servers from web servers and public networks; o Regular review of firewall rules and configurations to assure compliance with authorization and change control procedures; o Log management and intrusion detection/prevention systems; o A documented and tested incident response plan Any breach of this clause may result in termination of the contract and the demand for return of all personal information.
Protection of Information E1 Data Protection Xxx X0 Official Secrets Acts 1911, 1989, Section 182 of the Finance Xxx 0000 E3 Confidentiality E4 Freedom of Information E5 Security of Confidential Information E6 Publicity, Media and Official Enquiries E7 Security E8 Intellectual Property Rights and Assigned Deliverables E9 Audit and the National Audit Office
Use and Protection of Information Recipient agrees to protect such Information of the Discloser provided to Recipient from whatever source from distribution, disclosure or dissemination to anyone except employees of Recipient with a need to know such Information solely in conjunction with Recipient’s analysis of the Information and for no other purpose except as authorized herein or as otherwise authorized in writing by the Discloser. Recipient will not make any copies of the Information inspected by it.
Accessibility of Information Technology Contractor represents and warrants that any software/ hardware/ communications system/ equipment (collectively “technology”), if any, provided under this Agreement adheres to the standards and/or specifications as may be set forth in the Section 508 of the Rehabilitation Act of 1973 standards guide and is fully compliant with WCAG 2.0 AA standards for accessibility and compliant with any applicable FCC regulations. Technology that will be used on a mobile device must also be navigable with Voiceover on iOS devices in addition to meeting WCAG 2.0 level AA. If portions of the technology or user experience are alleged to be non-compliant or non- accessible at any point, District will provide Contractor with notice of such allegation and Contractor shall use its best efforts to make the technology compliant and accessible. If a state or federal department, office or regulatory agency, or if any other third party administrative agency or organization (“Claimants”), make a claim, allegation, initiates legal or regulatory process, or if a court finds or otherwise determines that technology is non-compliant or non-accessible, Contractor shall indemnify, defend and hold harmless the District from and against any and all such claims, allegations, liabilities, damages, penalties, fees, costs (including but not limited to reasonable attorneys’ fees), arising out of or related to Xxxxxxxxx’ claims. Contractor shall also fully indemnify District for the full cost of any user accommodation that is found to be necessary due to an identifiable lack of accessibility in the Contractor’s technology. If necessary, an independent 3rd party accessibility firm using POUR standards (Perceivable, Operable, Understandable and Robust) may be used to validate the accessibility of the technology.
Dissemination of Information The Borrower authorizes each Lender to disclose to any Participant or Purchaser or any other Person acquiring an interest in the Loan Documents by operation of law (each a "Transferee") and any prospective Transferee any and all information in such Lender's possession concerning the creditworthiness of the Borrower and its Subsidiaries, including without limitation any information contained in any Reports; provided that each Transferee and prospective Transferee agrees to be bound by Section 9.11 of this Agreement.
Verification of Information The Seller authorizes the Listing Brokerage to obtain any information affecting the Property from any regulatory authorities, governments, mortgagees or others and the Seller agrees to execute and deliver such further authorizations in this regard as may be reasonably required. The Seller hereby appoints the Listing Brokerage or the Listing Brokerage’s authorized representative as the Seller’s attorney to execute such documentation as may be necessary to effect obtaining any information as aforesaid. The Seller hereby authorizes, instructs and directs the above noted regulatory authorities, governments, mortgagees or others to release any and all information to the Listing Brokerage.
Notification and Provision of Information To the maximum extent possible, each Party shall notify the other Party of any proposed or actual measure that the Party considers might materially affect the operation of this Agreement or otherwise substantially affect the other Party's interests under this Agreement.
Submission of Information 1. The market participant shall submit the following information with its completed and signed Participation Agreement:
(a) name and registered address of the market participant including general email, facsimile and telephone number of the market participant for notifications in accordance with Article 74.
(b) if the market participant is a legal person, business registration number, name of legal representative and an extract of the registration of the market participant in the commercial register of the competent authority;
(c) contact details and names of persons authorised to represent the market participant and their function;
(d) VAT and TAX registration number where applicable;
(e) Taxes and levies to be considered for invoices and collateral calculations;
(f) Energy Identification Code (EIC);
(g) bank account information for payment to the applicant to be used by the Allocation Platform for the purposes of Article 65 paragraphs 8 and 9.
(h) financial contact person for collaterals, invoicing and payment issues, and their contact details (email, facsimile and telephone number) for notifications where required in these Allocation Rules in accordance with Article 74;
(i) commercial contact person and their contact details (email, facsimile and telephone number) for notifications where required in these Allocation Rules in accordance with Article 74; and
(j) operational contact person and their contact details (email, facsimile and telephone number) for notifications where required in these Allocation Rules in accordance with Article 74.
2. A Registered Participant shall ensure that all data and other information that it provides to the Allocation Platform pursuant to these Allocation Rules (including information in its Participation Agreement) is and remains accurate and complete in all material respects and must promptly notify the Allocation Platform of any change.
3. A Registered Participant shall notify the Allocation Platform if there is any change to the information, submitted in accordance with paragraph 1 of this Article, at least seven (7) Working Days before the change comes into effect and, where that is not possible, without delay after the Registered Participant becomes aware of the change.
4. The Allocation Platform will confirm the registration of the change or send a refusal note of registration of the change to the Registered Participant, at the latest, five (5) Working Days after the receipt of the relevant notification of change. The confirmation or refusal note will be sent via email to the commercial and operational contact person specified by the Registered Participant in accordance with paragraph 1 of this Article. If the Allocation Platform refuses to register the change, the reason shall be provided in the refusal note.
5. The change becomes valid on the day of the delivery of the confirmation to the Registered Participant.
6. If additional information is required from a Registered Participant as a consequence of an amendment to these Allocation Rules, then the Registered Participant shall submit the additional information to the Allocation Platform within ten (10) Working Days after the request for such submission by the Allocation Platform.
Studies and Reports All copies in the Seller’s possession of studies and/or reports which have previously been performed in connection with or for the Property, including without limitation, environmental reports, soils studies, seismic studies, physical inspection reports, site plans and surveys, and identification of such studies of which the Seller is aware but that are not in their possession;
