Data Access Control Persons entitled to use data processing systems gain access only to the Personal Data that they have a right to access, and Personal Data must not be read, copied, modified or removed without authorization in the course of processing, use and storage.
Network Access Control The VISION Web Site and the Distribution Support Services Web Site (the “DST Web Sites”) are protected through multiple levels of network controls. The first defense is a border router which exists at the boundary between the DST Web Sites and the Internet Service Provider. The border router provides basic protections including anti-spoofing controls. Next is a highly available pair of stateful firewalls that allow only HTTPS traffic destined to the DST Web Sites. The third network control is a highly available pair of load balancers that terminate the HTTPS connections and then forward the traffic on to one of several available web servers. In addition, a second highly available pair of stateful firewalls enforce network controls between the web servers and any back-end application servers. No Internet traffic is allowed directly to the back-end application servers. The DST Web Sites equipment is located and administered at DST’s Winchester data center. Changes to the systems residing on this computer are submitted through the DST change control process. All services and functions within the DST Web Sites are deactivated with the exception of services and functions which support the transfer of files. All ports on the DST Web Sites are disabled, except those ports required to transfer files. All “listeners,” other than listeners required for inbound connections from the load balancers, are deactivated. Directory structures are “hidden” from the user. Services which provide directory information are also deactivated.
Control of the Contract F1 Transfer and Sub-Contracting F1.1 Except where F1.4 and F1.5 applies, the Contractor shall not assign, sub-contract or in any other way dispose of the Contract or any part of it without prior Approval. Sub-contracting any part of the Contract shall not relieve the Contractor of any of its obligations or duties under the Contract. F1.2 The Contractor shall be responsible for the acts and omissions of its Sub-contractors as though they are its own. F1.3 Where the Authority has consented to the placing of sub-contracts, copies of each sub-contract shall, at the request of the Authority, be sent by the Contractor to the Authority as soon as reasonably practicable. F1.4 Notwithstanding clause F1.1, the Contractor may assign to a third party (“the Assignee”) the right to receive payment of the Contract Price or any part thereof due to the Contractor under this Contract (including any interest which the Authority incurs under clause C2.
Access Control Supplier will maintain an appropriate access control policy that is designed to restrict access to Accenture Data and Supplier assets to authorized Personnel. Supplier will require that all accounts have complex passwords that contain letters, numbers, and special characters, be changed at least every 90 days, and have a minimum length of 8 characters.
System Access Control Data processing systems used to provide the Cloud Service must be prevented from being used without authorization.
Data Input Control It will be possible to retrospectively examine and establish whether and by whom Personal Data have been entered, modified or removed from SAP data processing systems.
Control of Defense At its option, the indemnifying Party may assume the defense of any Third Party Claim by giving written notice to the Indemnified Party within thirty (30) days after the indemnifying Party's receipt of an Indemnification Claim Notice. The assumption of the defense of a Third Party Claim by the indemnifying Party shall not be construed as an acknowledgment that the indemnifying Party is liable to indemnify any indemnified Party in respect of the Third Party Claim, nor shall it constitute a waiver by the indemnifying Party of any defenses it may assert against any indemnified Party's claim for indemnification. Upon assuming the defense of a Third Party Claim, the indemnifying Party may appoint as lead counsel in the defense of the Third Party Claim any legal counsel selected by the indemnifying Party. In the event the indemnifying Party assumes the defense of a Third Party Claim, the Indemnified Party shall immediately deliver to the indemnifying Party all original notices and documents (including court papers) received by any indemnified Party in connection with the Third Party Claim. Should the indemnifying Party assume the defense of a Third Party Claim, the indemnifying Party shall not be liable to the Indemnified Party or any other indemnified Party for any legal expenses subsequently incurred by such indemnified Party in connection with the analysis, defense or settlement of the Third Party Claim. In the event that it is ultimately determined that the indemnifying Party is not obligated to indemnify, defend or hold harmless an Indemnified Party from and against the Third Party Claim, the Indemnified Party shall reimburse the indemnifying Party for any and all costs and expenses (including attorneys' fees and costs of suit) and any Losses incurred by the indemnifying Party in its defense of the Third Party Claim with respect to such Indemnified Party.
Management and Control of the Company The Manager shall direct, manage and control the business of the Company to the best of such Manager’s ability and shall have full and complete authority, power and discretion to make any and all decisions and to do any and all things which the Manager shall deem to be reasonably required in light of the Company’s business and objectives. (1) No Member except one who shall also be a Manager may participate in or have any control over the Company business or have any authority or right to act for or bind the Company. The Member hereby consents to the exercise by the Manager of the powers respectively conferred on it by this Agreement. (2) The Manager may, if appropriate, establish, if Company funds are available, reserves for working capital and for payment of taxes, insurance, debt service, repairs, replacements or renewals, or other costs and expenses incident to the operation of the Company and the property of the Company and for such other purposes as the Manager may determine and thereafter shall maintain such reserves in such amounts as the Manager deems appropriate under the circumstances to the extent that any such reserves are not in conflict with any other provisions of this Agreement regarding any required disbursements.
Access Controls The system providing access to PHI COUNTY discloses to 20 CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY 21 must use role based access controls for all user authentications, enforcing the principle of least privilege.
Physical Access Control Unauthorized persons are prevented from gaining physical access to premises, buildings or rooms where data processing systems that process and/or use Personal Data are located.