Information Security Program (1) DTI shall implement and maintain a comprehensive written information security program applicable to the Personal Information ("Information Security Program") which shall include commercially reasonable measures, including, as appropriate, policies and procedures and technical, physical, and administrative safeguards that are consistent with industry standards, providing for (i) the security and confidentiality of the Personal Information, (ii) protection of the Personal Information against reasonably foreseeable threats or hazards to the security or integrity of the Personal Information, (iii) protection against unauthorized access to or use of or loss or theft of the Personal Information, and (iv) appropriate disposal of the Personal Information. Without limiting the generality of the foregoing, the Information Security Program shall provide for (i) continual assessment and re-assessment of the risks to the security of Personal Information acquired or maintained by DTI and its agents, contractors and subcontractors in connection with the Services, including but not limited to (A) identification of internal and external threats that could result in unauthorized disclosure, alteration or destruction of Personal Information and systems used by DTI and its agents, contractors and subcontractors, (B) assessment of the likelihood and potential damage of such threats, taking into account the sensitivity of such Personal Information, and (C) assessment of the sufficiency of policies, procedures, information systems of DTI and its agents, contractors and subcontractors, and other arrangements in place, to control risks; and (ii) appropriate protection against such risks.
Information Security IET information security management practices, policies and regulatory compliance requirements are aimed at assuring the confidentiality, integrity and availability of Customer information. The UC Xxxxx Cyber-safety Policy, UC Xxxxx Security Standards Policy (PPM Section 310-22), is adopted by the campus and IET to define the responsibilities and key practices for assuring the security of UC Xxxxx computing systems and electronic data.
Personal Information security breach Supplier/Service Provider’s Obligations
Information Security Requirements In cases where the State is not permitted to manage/modify the automation equipment (server/computer/other) that controls testing or monitoring devices, the Contractor agrees to update and provide patches for the automation equipment and any installed operating systems or applications on a quarterly basis (at minimum). The Contractor will submit a report to the State of updates installed within 30 days of the installation as well as a Plan of Actions and Milestones (POA&M) to remediate any vulnerabilities ranging from Critical to Low. The contractor will provide an upgrade path or compensatory security controls for any operating systems and applications listed as beyond “end-of-life” or EOL, within 90 days of the EOL and complete the EOL system’s upgrade within 90 days of the approved plan.
Contractor and Employee Security Precautions A. The security aspects of working at the Correctional Facility are critical. The following security precautions are part of the site conditions and are a part of this Contract. All persons coming on the site in any way connected with this Work shall be made aware of them, and it is the (General) Contractor’s responsibility to check and enforce them.
OPERATIONAL INFORMATION (i) ISIN Code: [ ]
Information Safeguards Business Associate will develop, document, implement, maintain and use appropriate administrative, technical and physical safeguards to preserve the integrity and confidentiality of and to prevent non-permitted use or disclosure of PHI created for or received from Recipient or its Subsidiaries. These safeguards must be appropriate to the size and complexity of Business Associate’s operations and the nature and scope of its activities. Business Associate agrees that these safeguards will meet any applicable requirements set forth by the U.S. Department of Health and Human Services, including (as of the effective date or as of the compliance date, whichever is applicable) any requirements set forth in the final HIPAA security regulations. Business Associate agrees to mitigate, to the extent practicable, any harmful effect that is known to Business Associate resulting from a use or disclosure of PHI by Business Associate in violation of the requirements of this Addendum.
Information Sharing (a) HHSC will provide the MA Dual SNP with resources regarding the LTSS covered by Medicaid in accordance with this section.
INFORMATION OF THE GROUP The Group is principally engaged in the provision of high quality and comprehensive range of liquid petrochemical terminal and storage services in the PRC. Ningbo Ningxiang is an indirect jointly controlled entity of the Company.
Information Supplementation Prior to the Trial Operation date, the Parties shall supplement their information submissions described above in this Article 24 with any and all “as-built” Electric Generating Unit information or “as-tested” performance information that differs from the initial submissions or, alternatively, written confirmation that no such differences exist. The Interconnection Customer shall conduct tests on the Electric Generating Unit as required by Good Utility Practice such as an open circuit “step voltage” test on the Electric Generating Unit to verify proper operation of the Electric Generating Unit's automatic voltage regulator. Unless otherwise agreed, the test conditions shall include: (1) Electric Generating Unit at synchronous speed; (2) automatic voltage regulator on and in voltage control mode; and (3) a five percent (5 percent) change in Electric Generating Unit terminal voltage initiated by a change in the voltage regulators reference voltage. The Interconnection Customer shall provide validated test recordings showing the responses of Electric Generating Unit terminal and field voltages. In the event that direct recordings of these voltages is impractical, recordings of other voltages or currents that mirror the response of the Electric Generating Unit’s terminal or field voltage are acceptable if information necessary to translate these alternate quantities to actual Electric Generating Unit terminal or field voltages is provided. Electric Generating Unit testing shall be conducted and results provided to the Participating TO and the CAISO for each individual Electric Generating Unit in a station. Subsequent to the Commercial Operation Date, the Interconnection Customer shall provide the Participating TO and the CAISO any information changes due to equipment replacement, repair, or adjustment. The Participating TO shall provide the Interconnection Customer any information changes due to equipment replacement, repair or adjustment in the directly connected substation or any adjacent Participating TO-owned substation that may affect the Interconnection Customer’s Interconnection Facilities equipment ratings, protection or operating requirements. The Parties shall provide such information pursuant to Article 5.19.
