Personnel Controls The County Department/Agency agrees to advise County Workers who have access to Pll, of the confidentiality of the information, the safeguards required to protect the information, and the civil and criminal sanctions for non- compliance contained in applicable federal and state laws. For that purpose, the County Department/Agency shall implement the following personnel controls:
Audit Controls P. Contractor agrees to an annual system security review by the County to assure that systems processing and/or storing Medi-Cal PII are secure. This includes audits and keeping records for a period of at least three (3) years. A routine procedure for system review to catch unauthorized access to Medi-Cal PII shall be established by the Contractor.
Export Controls Both Parties will adhere to all applicable laws, regulations and rules relating to the export of technical data and will not export or re-export any technical data, any products received from the other Party or the direct product of such technical data to any proscribed country listed in such applicable laws, regulations and rules unless properly authorized.
Personal Controls a. Employee Training. All workforce members who assist in the performance of functions or activities on behalf of COUNTY in connection with Agreement, or access or disclose PHI COUNTY discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY, must complete information privacy and security training, at least annually, at CONTRACTOR’s expense. Each workforce member who receives information privacy and security training must sign a certification, indicating the member’s name and the date on which the training was completed. These certifications must be retained for a period of six (6) years following the termination of Agreement.
Agreement Controls In the event that any term of any of the Loan Documents other than this Agreement conflicts with any express term of this Agreement, the terms and provisions of this Agreement shall control to the extent of such conflict.
Access Controls The system providing access to PHI COUNTY discloses to 20 CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY 21 must use role based access controls for all user authentications, enforcing the principle of least privilege.
Trade Controls DXC and Supplier will comply with all applicable export, import and trade-related laws and regulations of the United States and other nations. To this effect, Supplier warrants that: (i) if necessary and upon DXC’s request, it will provide DXC with technical specifications concerning commodities, software, technology or services covered by this agreement sufficient for DXC to determine the appropriate export and import classification of such items under applicable regulations; (ii) to the best of the Supplier’s knowledge, the Supplier is not listed on any U.S. Government international trade sanctions lists and that Supplier will give immediate notice to DXC in the event that it is so listed; and
WORKPLACE HEALTH AND SAFETY The parties to this Agreement are committed to providing a safe and healthy workplace and work practices. The parties recognise that illness or injury at the workplace is costly to the employer and the employees and also disruptive to the respective parties. To facilitate healthy and safe work practices, the parties to the Agreement are committed to discussing health and safety issues as they apply to the operations of the employer as part of the consultative measures under this Agreement. The employer and employees under this agreement may refer to their respective industrial representatives for appropriate advice or expertise in enhancing performance with due regard to health and safety initiatives. The parties also recognise the importance of conducting regular audits of the employer's operations, policies and procedures including the employees' skills, knowledge, qualifications and application of healthy and safe work practices.
