General security obligations. 4.3.1 Each Party ensures that it will:
(a) Maintain the appropriate level of information systems security skills for the services to be provided and be able to prove it upon request. It must also certify that it has sufficient understanding of the technologies required to ensure performance requirements.
(b) Protect data from disclosure, modification, destruction, loss, leak, alteration, access, processing, whether accidental, illegal or unauthorised.
(c) Manage, secure and/or process any data for the services supplied
(d) Ensure the traceability of network access initiated from a Party and likely to impact the security of the data.
(e) Annually conduct penetration test and test all contingency, continuity, and recovery plans as well as to perform a vulnerability scan(s) at least once a quarter.
(f) Shall bear its own costs for aforementioned obligations and resulting of such tests and address any identified deficiencies that have emerged during such tests.
4.3.2 Each Party ensures that only certified persons can access physically to the service information system by adequate policies.
4.3.3 Each Party ensures that the access to the respective Party’s data and information system is restricted to only required employees.
4.3.4 Each Party undertakes to ensure that its level of risk control is constantly monitored and that the security policies and rules applicable to the Services are complied with, including by its own employee, sub-contractors and supplier service.
General security obligations. The Obligations are to be secured by Liens granted under this Loan Agreement and pursuant to the Security Documents. At the Closing or at any other time within 60 days of Lender’s request, Borrowers shall establish deposit account control agreements, in form and substance reasonably satisfactory to Lender, over any and all Accounts of Borrowers, including any Accounts established after the Closing Date.
General security obligations. You shall use proper security measures in connection with the Services (including any Products and Software). This shall include (but not be limited to) the following:
(a) setting strong passwords and access control mechanisms;
(b) safeguarding access to all hardware, systems, Customer Management Platforms and Products from unauthorised use and/or tampering;
(c) safeguarding access to all logins and passwords (preferably with an industry-grade two-factor or hardware authentication system);
(d) verifying the trustworthiness of persons with access to the Services, Products and Customer Management Platform;
(e) performing regular checks on user accounts;
(f) implementing appropriate policies and procedures to safeguard access to the Services, Products and Software within your organisation;
(g) undertaking adequate security training with all of your employees, contractors and agents; and
(h) implementing any relevant procedures recommended by relevant cyber security centre organizations from time to time.
General security obligations.
21.1.1. To the extent applicable to the Seller’s performance of this Panel Agreement, the Seller must comply, and ensure its Personnel comply, with the Protective Security Policy Framework.
21.1.2. The Seller must notify DTA immediately in the event of any requests from a foreign government or foreign agency requesting access to any Buyer Data (unless such notification is prohibited by law), and the Seller must redirect any such request to DTA.
General security obligations.
8.1.1. The Seller must provide the Products and Services in a way that complies with and ensures the Buyer can comply with the Protective Security Policy Framework, including those parts of the Protective Security Policy Framework stated in Item 43 of Part E - Contract Details.
8.1.2. The Seller must notify the Buyer immediately in the event of any requests from a foreign government or foreign agency requesting access to any Buyer Data (unless such notification is prohibited by law), and the Seller must redirect any such request to the Buyer.
General security obligations. 24.1.1. The Seller must comply, and ensure its Personnel comply, with the Protective Security Policy Framework (PSPF). This obligation applies to the extent applicable to the Seller’s performance of this Panel Agreement.
