Security Safeguards Contractor shall store and process District Data in accordance with commercial best practices, including implementing appropriate administrative, physical, and technical safeguards that are no less rigorous than those outlined in SANS Top 20 Security Controls, as amended, to secure such data from unauthorized access, disclosure, alteration, and use. Contractor shall ensure that all such safeguards, including the manner in which District Data is collected, accessed, used, stored, processed, disposed of and disclosed, comply with all applicable federal and state data protection and privacy laws, regulations and directives, including without limitation C.R.S. § 00-00-000 et seq., as well as the terms and conditions of this Addendum. Without limiting the foregoing, and unless expressly agreed to the contrary in writing, Contractor warrants that all electronic District Data will be encrypted in transmission and at rest in accordance with NIST Special Publication 800-57, as amended.
Safety Precautions Resident acknowledges that neither Owner nor any of its agents, employees or representatives has made any representations or warranties, either written or oral, concerning the safety of the Property, the bedroom space or any apartment, or the effectiveness or operability of any security devices or safety, health or security measures at the Property, the bedroom space or any apartment. Resident acknowledges that Owner neither warrants nor guarantees the safety or security of residents or their Guests against any criminal or wrongful acts of third parties. Resident and his or her Guests are responsible for protecting their own respective person and property and hereby release Owner and its agents, employees and representatives for any and all damage to person and property. Owner’s safety measures are neither a warranty of safety nor a guaranty against crime or of a reduced risk of crime. Resident acknowledges that security devices or measures may be changed or removed by Owner without notice or compensation, and/or may fail or be thwarted by criminals or by electrical or mechanical malfunctions. Therefore, Resident acknowledges that he or she should not rely on such devices or measures and should take steps to protect himself or herself and his or her existing property notwithstanding these devices. Resident agrees to immediately notify Owner’s representative of any malfunctions involving locks and life-safety building components. Should Resident become seriously injured or imperiled at the Property, Resident authorizes Owner and its agents to call 911 Emergency at Resident’s expense, without legal obligation to do so.
Fire Precautions Specific fire precautionary measures listed in C7.2 shall be applicable during Pur- chaser’s Operations in “Fire Precautionary Period” de- scribed in A12. Contracting Officer may change the dates of Fire Precautionary Period by advance written notice, if justified by unusual weather or other conditions. Required tools and equipment shall be kept in serviceable condition and immediately available for fire fighting at all times dur- ing Purchaser’s Operations in Fire Precautionary Period.
Information Security Program (1) DTI shall implement and maintain a comprehensive written information security program applicable to the Personal Information ("Information Security Program") which shall include commercially reasonable measures, including, as appropriate, policies and procedures and technical, physical, and administrative safeguards that are consistent with industry standards, providing for (i) the security and confidentiality of the Personal Information, (ii) protection of the Personal Information against reasonably foreseeable threats or hazards to the security or integrity of the Personal Information, (iii) protection against unauthorized access to or use of or loss or theft of the Personal Information, and (iv) appropriate disposal of the Personal Information. Without limiting the generality of the foregoing, the Information Security Program shall provide for (i) continual assessment and re-assessment of the risks to the security of Personal Information acquired or maintained by DTI and its agents, contractors and subcontractors in connection with the Services, including but not limited to (A) identification of internal and external threats that could result in unauthorized disclosure, alteration or destruction of Personal Information and systems used by DTI and its agents, contractors and subcontractors, (B) assessment of the likelihood and potential damage of such threats, taking into account the sensitivity of such Personal Information, and (C) assessment of the sufficiency of policies, procedures, information systems of DTI and its agents, contractors and subcontractors, and other arrangements in place, to control risks; and (ii) appropriate protection against such risks.
(2) The Information Security Program shall require encryption of any Personal Information in electronic format while in transit or in storage, and enhanced controls and standards for transport and disposal of physical media containing Personal Information. DTI shall, and shall require its agents, contractors and subcontractors who access or use Personal Information or Confidential Information to, regularly test key controls, systems and procedures relating to the Information Security Program ("ISP Tests"). DTI shall advise the Funds of any material issues identified in the ISP Tests potentially affecting the Information Security Program.
(3) DTI shall comply with its Information Security Program.
Contractor and Employee Security Precautions The security aspects of working at the Correctional Facility are critical. The following security precautions are part of the site conditions and are a part of this Contract. All persons coming on the site in any way connected with this Work shall be made aware of them, and it is the (General) Contractor’s responsibility to check and enforce them.
Security Protocols Both parties agree to maintain security protocols that meet industry standards in the transfer or transmission of any data, including ensuring that data may only be viewed or accessed by parties legally allowed to do so. Provider shall maintain all data obtained or generated pursuant to the Service Agreement in a secure digital environment and not copy, reproduce, or transmit data obtained pursuant to the Service Agreement, except as necessary to fulfill the purpose of data requests by LEA.
Safeguards Business Associate, its Agent(s) and Subcontractor(s) shall implement and use appropriate safeguards to prevent the use or disclosure of PHI other than as provided for by this Agreement. With respect to any PHI that is maintained in or transmitted by electronic media, Business Associate or its Subcontractor(s) shall comply with 45 CFR sections 164.308 (administrative safeguards), 164.310 (physical safeguards), 164.312 (technical safeguards) and 164.316 (policies and procedures and documentation requirements). Business Associate or its Agent(s) and Subcontractor(s) shall identify in writing upon request from Covered Entity all of the safeguards that it uses to prevent impermissible uses or disclosures of PHI.
Emergency Precautions Forest Service may require the necessary shutting down of equipment on portions of Purchaser’s Operations, as specified by the emergency fire precautions schedule of C7.22. Under such conditions, after Purchaser ceases active opera- tions, Purchaser shall release for hire by Forest Service, if needed, Purchaser’s shutdown equipment for fire standby on Sale Area or other areas of Purchaser’s Operations and personnel for fire standby or fire patrol, when such personnel and equipment are not needed by Purchaser for other fire fighting or protection from fire. Equipment shall be paid for at fire fighting equipment rates common
Substitute Precautions Forest Service may authorize substitute measures or equipment, or waive specific requirements by written notice, if substitute measures or equipment will afford equal protection or some of the required measures and equipment are un- necessary.
Security Practices Dell has implemented corporate information security practices and standards that are designed to safeguard the Dell’s corporate environment and to address: (1) information security; (2) system and asset management; (3) development; and (4) governance. These practices and standards are approved by the Dell CIO and undergo a formal review on an annual basis.
