Data Breach; Loss of City Data Sample Clauses

Data Breach; Loss of City Data. In the event of any Data Breach, act, SaaS Software Error, omission, negligence, misconduct, or breach that compromises or is suspected to compromise the security, confidentiality, or integrity of City Data or the physical, technical, administrative, or organizational safeguards put in place by Contractor that relate to the protection of the security, confidentiality, or integrity of City Data, Contractor shall, as applicable: (a) Notify City immediately following discovery, but no later than twenty-four (24) hours, of becoming aware of such occurrence or suspected occurrence. Contractor’s report shall identify: (i) the nature of the unauthorized access, use or disclosure; (ii) the Confidential Information accessed, used or disclosed; (iii) the person(s) who accessed, used, disclosed and/or received protected information (if known); (iv) what Contractor has done or will do to mitigate any deleterious effect of the unauthorized access, use or disclosure, and (v) what corrective action Contractor has taken or will take to prevent future unauthorized access, use or disclosure. (b) In the event of a suspected Breach, Contractor shall keep the City informed regularly of the progress of its investigation until the uncertainty is resolved; (c) Contractor shall coordinate with the City in its breach response activities including without limitation: (i) Immediately preserve any potential forensic evidence relating to the breach, and remedy the breach as quickly as circumstances permit; (ii) Promptly (within 2 business days) designate a contact person to whom the City will direct inquiries, and who will communicate Contractor responses to City inquiries; (iii) As rapidly as circumstances permit, apply appropriate resources to remedy the breach condition, investigate, document, restore City service(s) as directed by the City, and undertake appropriate response activities; (iv) Provide status reports to the City on Data Breach response activities, either on a daily basis or a frequency approved by the City; (v) Make all reasonable efforts to assist and cooperate with the City in its Breach response efforts; (vi) Ensure that knowledgeable Contractor staff are available on short notice, if needed, to participate in City-initiated meetings and/or conference calls regarding the Breach; and (vii) Cooperate with City in investigating the occurrence, including making available all relevant records, logs, files, data reporting, and other materials required to comply with appl...
Sample 1Sample 2Sample 3See All (22)
AutoNDA by SimpleDocs
Data Breach; Loss of City Data. The Agency shall notify City immediately by telephone call plus email upon the discovery of a breach (as herein). For purposes of this Section, breaches and security incidents shall be treated as discovered by Agency as of the first day on which such breach or security incident is known to the Agency, or, by exercising reasonable diligence would have been known to the Agency. Agency shall be deemed to have knowledge of a breach if such breach is known, or by exercising reasonable diligence would have been known, to any person, other than the person committing the breach, who is an employee or agent of the Agency. Agency shall take: i. prompt corrective action to mitigate any risks or damages involved with the breach or security incident and to protect the operating environment; and ii. any action pertaining to a breach required by applicable federal and state laws.
Sample 1Sample 2Sample 3See All (5)
Data Breach; Loss of City Data. In the event of any Data Breach, act, error, omission, negligence, misconduct, or breach that compromises or is suspected to compromise the security, confidentiality, or integrity of City Data or the physical, technical, administrative, or organizational safeguards put in place by FIRST PARTY that relate to the protection of the security, confidentiality, or integrity of City Data, FIRST PARTY shall, as applicable: i. Notify City immediately following discovery, but no later than twenty- four (24) hours, of becoming aware of such occurrence or suspected occurrence. FIRST PARTY’S report shall identify: 1. the nature of the unauthorized access, use or disclosure; 2. the Confidential Information accessed, used or disclosed; 3. the person(s) who accessed, used and disclosed and/or received protected information (if known); 4. what FIRST PARTY has done or will do to mitigate any deleterious effect of the unauthorized access, use or disclosure; and 5. what corrective action FIRST PARTY has taken or will take to prevent future unauthorized access, use or disclosure.
Sample 1Sample 2Sample 3See All (5)

Related to Data Breach; Loss of City Data

  • Data Breach In the event of an unauthorized release, disclosure or acquisition of Student Data that compromises the security, confidentiality or integrity of the Student Data maintained by the Provider the Provider shall provide notification to LEA within seventy-two (72) hours of confirmation of the incident, unless notification within this time limit would disrupt investigation of the incident by law enforcement. In such an event, notification shall be made within a reasonable time after the incident. Provider shall follow the following process: (1) The security breach notification described above shall include, at a minimum, the following information to the extent known by the Provider and as it becomes available: i. The name and contact information of the reporting LEA subject to this section. ii. A list of the types of personal information that were or are reasonably believed to have been the subject of a breach. iii. If the information is possible to determine at the time the notice is provided, then either (1) the date of the breach, (2) the estimated date of the breach, or (3) the date range within which the breach occurred. The notification shall also include the date of the notice. iv. Whether the notification was delayed as a result of a law enforcement investigation, if that information is possible to determine at the time the notice is provided; and v. A general description of the breach incident, if that information is possible to determine at the time the notice is provided. (2) Provider agrees to adhere to all federal and state requirements with respect to a data breach related to the Student Data, including, when appropriate or required, the required responsibilities and procedures for notification and mitigation of any such data breach. (3) Provider further acknowledges and agrees to have a written incident response plan that reflects best practices and is consistent with industry standards and federal and state law for responding to a data breach, breach of security, privacy incident or unauthorized acquisition or use of Student Data or any portion thereof, including personally identifiable information and agrees to provide XXX, upon request, with a summary of said written incident response plan. (4) LEA shall provide notice and facts surrounding the breach to the affected students, parents or guardians. (5) In the event of a breach originating from XXX’s use of the Service, Provider shall cooperate with XXX to the extent necessary to expeditiously secure Student Data.

  • Data Breaches 4.1 The Data Processor does not guarantee that its security measures will be effective under all conditions. If the Data Processor discovers a data breach within the meaning of Article

  • Return or Destruction of Confidential Information If an Interconnection Party provides any Confidential Information to another Interconnection Party in the course of an audit or inspection, the providing Interconnection Party may request the other party to return or destroy such Confidential Information after the termination of the audit period and the resolution of all matters relating to that audit. Each Interconnection Party shall make Reasonable Efforts to comply with any such requests for return or destruction within ten days of receiving the request and shall certify in writing to the other Interconnection Party that it has complied with such request.

  • Independence from Material Breach Determination Except as set forth in Section X.D.1.c, these provisions for payment of Stipulated Penalties shall not affect or otherwise set a standard for OIG’s decision that Xxxxx has materially breached this IA, which decision shall be made at OIG’s discretion and shall be governed by the provisions in Section X.D, below.

  • Handling Sensitive Personal Information and Breach Notification A. As part of its contract with HHSC Contractor may receive or create sensitive personal information, as section 521.002 of the Business and Commerce Code defines that phrase. Contractor must use appropriate safeguards to protect this sensitive personal information. These safeguards must include maintaining the sensitive personal information in a form that is unusable, unreadable, or indecipherable to unauthorized persons. Contractor may consult the “Guidance to Render Unsecured Protected Health Information Unusable, Unreadable, or Indecipherable to Unauthorized Individuals” issued by the U.S. Department of Health and Human Services to determine ways to meet this standard. B. Contractor must notify HHSC of any confirmed or suspected unauthorized acquisition, access, use or disclosure of sensitive personal information related to this Contract, including any breach of system security, as section 521.053 of the Business and Commerce Code defines that phrase. Contractor must submit a written report to HHSC as soon as possible but no later than 10 business days after discovering the unauthorized acquisition, access, use or disclosure. The written report must identify everyone whose sensitive personal information has been or is reasonably believed to have been compromised. C. Contractor must either disclose the unauthorized acquisition, access, use or disclosure to everyone whose sensitive personal information has been or is reasonably believed to have been compromised or pay the expenses associated with HHSC doing the disclosure if: 1. Contractor experiences a breach of system security involving information owned by HHSC for which disclosure or notification is required under section 521.053 of the Business and Commerce Code; or 2. Contractor experiences a breach of unsecured protected health information, as 45 C.F.R. §164.402 defines that phrase, and HHSC becomes responsible for doing the notification required by 45 C.F.R. §164.404. HHSC may, at its discretion, waive Contractor's payment of expenses associated with HHSC doing the disclosure.

  • Destruction of Confidential Information Upon the written request of the disclosing Party, the receiving Party shall cease using and arrange for the destruction of all copies of any Confidential Information then in the receiving Party’s possession or under such Party’s control. The receiving Party agrees to dispose of the Confidential Information in such a manner that the information cannot be read or reconstructed after destruction. Upon the written request of the disclosing Party, the receiving Party shall certify in writing that it has complied with the obligations set forth in this paragraph.

  • Personal Data Breach 7.1 Processor shall notify Company without undue delay upon Processor becoming aware of a Personal Data Breach affecting Company Personal Data, providing Company with sufficient information to allow the Company to meet any obligations to report or inform Data Subjects of the Personal Data Breach under the Data Protection Laws. 7.2 Processor shall co-operate with the Company and take reasonable commercial steps as are directed by Company to assist in the investigation, mitigation and remediation of each such Personal Data Breach.

  • Personal Data Breaches 5.7.1 The Data Processor shall give immediate notice to the Data Controller if a breach occurs, that can lead to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of or access to, personal data transmitted, stored or otherwise processed re the Personal Data processed on behalf of the Data Controller (a “Personal Data Breach”). 5.7.2 The Data Processor shall make reasonable efforts to identify the cause of such a breach and take those steps as they deem necessary to establish the cause, and to prevent such a breach from reoccurring.

  • BREACH; TERMINATION Customer/Project Sponsor may terminate this Agreement at any time in its sole discretion by providing notice to the Company not less than one hundred and eighty (180) days before such termination. In the event of breach of any material terms or conditions of this Agreement, if the breach has not been remedied within 30 days following receipt of written notice thereof from the other Party (provided that, if the breaching Party has commenced and is diligently pursuing efforts to cure such breach, then such 30-day period shall be extended until the earlier of (i) 30 additional days or (ii) end of diligent efforts to cure the breach), then the non-breaching party may terminate this Agreement by written notice at any time until cure of such breach occurs. In the event of any proceedings by or against either Party in bankruptcy, insolvency or for appointment of any receiver or trustee or any general assignment for the benefit of creditors (excluding, for the avoidance of doubt, an assignment in accordance with Article XI or other collateral assignment to obtain project financing), the other Party may terminate this Agreement. If the Customer/Project Sponsor increases the capability or the capacity of the Facility to exceed 4.999 MW, this Agreement shall immediately terminate. The Company shall not be liable to the Customer/Project Sponsor for damages resulting from a termination pursuant to this paragraph. If the Customer/Project Sponsor's generating equipment produces zero (0) kilowatt- hours during any period of twelve (12) consecutive Billing Periods after the Commercial Operation Date [Effective Date for existing resources] for a reason other than a force majeure event, the Company may terminate this Agreement.

  • OUR LIABILITY FOR FAILURE TO STOP PAYMENT If You order Us to place a stop payment on one of Your pre-authorized payments 3 business days or more before the transfer is scheduled, and We do not do so, We will be liable for losses or damages, to the extent provided by law. TRANSACTION SLIPS. Except for mail-in transactions and certain small-value transactions, You can get a receipt at the time You make any transaction to or from Your Account through the use of Your Card. When an electronic fund transfer has been made during any given month, You will receive a monthly statement to reflect all electronic fund transfers to or from Your Account during that statement period. In any case, You will receive a statement at least quarterly. FEES. We may assess reasonable charges against Your Account for transactions performed at electronic terminals. If so, We will specify any charges for these or other types of electronic transactions, including automatic transfers, on an accompanying pricing document. We will explain the charges to You when You open Your Account. You will be provided with a fee schedule, and other specified information after Your Account is established. Additional fee schedules are available at any of Our office locations. When You use an ATM not owned by Us, You may be charged a fee by the ATM operator, or any network used, and You may be charged a fee for a balance inquiry even if You do not complete a fund transfer.

Draft better contracts in just 5 minutes Get the weekly Law Insider newsletter packed with expert videos, webinars, ebooks, and more!