Information Security Policies. With respect to any information systems you use to store or process PII, you are responsible for ensuring that the owner(s) and operator(s) of such information systems implement and maintain policies and procedures that address the following areas: 1. Information security; 2. Data governance and classification; 3. Access controls and identity management; 4. Asset management; 5. Business continuity and disaster recovery planning and resources; 6. Capacity and performance planning; 7. Systems operations and availability concerns; 8. Systems and network security; 9. Systems and application development, quality assurance and change management; 10. Physical security and environmental controls; 11. Customer data privacy; 12. Encryption at rest and in transit; 13. Cryptographic controls;
Appears in 4 contracts
Samples: Producer Agreement, Producer Agreement, Life General Agent Agreement
