Internal Access Control Sample Clauses

Internal Access Control. Measures that ensure that persons entitled to use a data processing system have access only to the data to which they have a right of access, and that personal data cannot be read, copied, modified or removed without authorization in the course of processing or use and after storage. • Automatic and manual locking • Access right management • Access right management including authorization concept, implementation of access restrictions, implementation of the "need-to-know" principle, managing of individual access rights.
Sample 1Sample 2Sample 3See All (6)
AutoNDA by SimpleDocs
Internal Access Control. All systems shall have internal Access Controls to prevent unauthorised users from accessing or modifying the data.
Sample 1Sample 2Sample 3See All (5)
Internal Access Control. Measures that ensure that persons entitled to use a data processing system have access only to the data to which they have a right of access, and that personal data cannot be read, copied, modified or removed without authorization in the course of processing or use and after storage.  This process is managed by the ESAB IT Director. Credentials are distributed only to authorized users at time of account start-up. Unique two-step verification is required per application. Password change requests administered every 90 days. ESAB maintains a policy to reset unique credentials in the event of a stolen computer or lost/compromised password.
Sample 1
Internal Access Control. No unauthorised Reading, Copying, Changes or Deletions of Data within the system, ensured by rights authorisation con- cept, need-based rights of access, logging of system access events.
Sample 1
Internal Access Control. 3.1 Only authorized system administrators can access the KoboToolbox Server. They may only do so for the express purpose of updating installed software or maintaining the server infrastructure.
Sample 1
Internal Access Control. Measures that ensure that persons entitled to use a data processing system have access only to the data to which they have a right of access, and that personal data cannot be read, copied, modified or removed without authorisation in the course of processing or use and after storage. ● Access to infrastructure and internal resources is managed on the basis of the Principle of Least Privilege: individuals are granted only the privileges they require to execute their business duties, and said privilege is revoked when it is no longer needed. ● Access management is centralized to identity providers, and wherever feasible, internal service delegate both authentication and authorization to these providers. This ensures that off-boarding and privilege revocation can be handled in a timely fashion.
Sample 1

Related to Internal Access Control

  • Access Controls The system providing access to PHI COUNTY discloses to 20 CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY 21 must use role based access controls for all user authentications, enforcing the principle of least privilege.

  • User IDs and Password Controls All users must be issued a unique user name for accessing DHCS PHI or PI. Username must be promptly disabled, deleted, or the password changed upon the transfer or termination of an employee with knowledge of the password, at maximum within 24 hours. Passwords are not to be shared. Passwords must be at least eight characters and must be a non-dictionary word. Passwords must not be stored in readable format on the computer. Passwords must be changed every 90 days, preferably every 60 days. Passwords must be changed if revealed or compromised. Passwords must be composed of characters from at least three of the following four groups from the standard keyboard: • Upper case letters (A-Z) • Lower case letters (a-z) • Arabic numerals (0-9) • Non-alphanumeric characters (punctuation symbols)

Time is Money Join Law Insider Premium to draft better contracts faster.