Maintain an Information Security Policy Sample Clauses

Maintain an Information Security Policy. 4.1 Develop and follow a security plan to protect the confidentiality and integrity of personal consumer information as required under the GLB Safeguards Rule.
Sample 1Sample 2Sample 3See All (26)
AutoNDA by SimpleDocs
Maintain an Information Security Policy. MUIS has a written program instructing its employees on how to protect Trust Data and otherwise meet the specifications set forth herein. ● XXXX has identified its Chief Information Security Officer to be in charge of its program, and shall ensure that this individual is available to the Trusts to respond to any questions and to work with the Trusts in the event of a breach of the security or confidentiality of Trust Data. MUIS regularly monitors this written program to ensure that it is operating in a manner reasonably calculated to prevent unauthorized access to or unauthorized use of Trust Data. Where necessary, MUIS will update its security policies as necessary to limit risks and will provide summaries to the Trusts upon request. Specifically, XXXX agrees to: o Establish processes and procedures for identifying internal and external risks, responding to security violations, unusual or suspicious events, and similar incidents, to limit damage or unauthorized access to Trust Data, and to permit identification and prosecution of violators, and, as necessary, improve the effectiveness of safeguards to limit such risks, including employee training, ensuring ongoing employee compliance with its written program, and the development of measures for detecting and preventing security system failures. o Implement appropriate measures to dispose of any Trust Data that will protect against unauthorized access or use of that information, including but not limited to securely wiping electronic media and physical destruction of information stored on paper.
Sample 1Sample 2Sample 3See All (9)
Maintain an Information Security Policy. Partner's ISMS is based on its security policies that are regularly reviewed (at least yearly) and maintained and disseminated to all relevant parties, including all personnel. Security policies and derived procedures clearly define information security responsibilities including responsibilities for: ● Maintaining security policies and procedures, ● Secure development, operation and maintenance of software and systems, ● Security alert handling, ● Security incident response and escalation procedures, ● User account administration, ● Monitoring and control of all systems as well as access to Personal Data. Personnel is screened prior to hire and trained (and tested) through a formal security awareness program upon hire and annually. For service providers with whom Personal Data is shared or that could affect the security of Personal Data a process has been set up that includes initial due diligence prior to engagement and regular (typically yearly) monitoring. Personal Data has implemented a risk-assessment process that is based on ISO 27005.
Sample 1Sample 2Sample 3See All (6)
Maintain an Information Security Policy. 1. Maintain a policy that addresses information security for all personnel • Certification: Consultant agrees to promptly provide, from time to time at the request of the CITY, current evidence, in form and substance reasonably satisfactory to CITY, of compliance with PCI-DSS and PA-DSS, which has been properly certified by an authority recognized by the payment card industry for that purpose. If during the term of this Agreement, Consultant undergoes, or has reason to believe that it will undergo, and adverse change in its certification or compliance status with the PCI-DSS or PA-DSS or other material payment. card industry standards, it will promptly notify the CITY of such circumstances. Ill. Audit: Consultant agrees to, at Consultants own expense, perform an independent audit of any System used to store, process, or transmit payment cardholder data by an independent third party on a quarterly basis to ensure the System is and continues to satisfy PCI-DSS. At a minimum, the audit shall scan for all known methods used by hackers to access private information, vulnerabilities that would allow malicious software (i.e. viruses and worms) to gain access to or disrupt the network devices.
Sample 1
Maintain an Information Security Policy. CLIENT understands and agrees that they must implement and follow a security policy. These measures include: ● Develop and follow a security plan to protect the confidentiality and integrity of personal consumer information as required under the GLB Safeguard Rule. ● Establish processes and procedures for responding to security violations, unusual or suspicious events and similar incidents to limit damage or unauthorized access to information assets and to permit identification and prosecution of violators. ● The FACTA Disposal Rules requires that you implement appropriate measures to dispose of any sensitive information related to consumer credit reports and records that will protect against unauthorized access or use of that information.
Sample 1
Maintain an Information Security Policy. Develop and follow a security plan to protect the Confidentiality and integrity of personal consumer information as required under the GLB Safeguard Rule. Establish processes and procedures for responding to security violations, unusual or suspicious events and similar incidents to limit damage or unauthorized access to information assets and to permit identification and prosecution of violators. The FACTA Disposal Rules requires that you implement appropriate measures to dispose of any sensitive information related to consumer credit reports and records that will protect against unauthorized access or use of that information. Implement and maintain ongoing mandatory security training and awareness sessions for all staff to underscore the importance of security within your organization.
Sample 1
Maintain an Information Security Policy. The Parties ISMS is based on its security policies that are regularly reviewed (at least yearly) and maintained and disseminated to all relevant Parties, including all personnel. Security policies and derived procedures clearly define information security responsibilities including responsibilities for: • Maintaining security policies and procedures; • Secure development, operation and maintenance of software and systems; • Security alert handling; • Security incident response and escalation procedures; • User account administration; • Monitoring and control of all systems as well as access to Personal Data. Personnel is screened prior to hire and trained (and tested) through a formal security awareness program upon hire and annually. For service providers with whom Personal Data is shared or that could affect the security of Personal Data a process has been set up that includes initial due diligence prior to engagement and regular (typically yearly) monitoring. Personal Data has implemented a risk-assessment process that is based on ISO 27005. Secure Networks and Systems The Parties have installed and maintain firewall configurations to protect Personal Data that controls all traffic allowed between Recipient's (internal) network and untrusted (external) networks, as well as traffic into and out of more sensitive areas within its internal network. This includes current documentation, change control and regular reviews. Recipient does not use vendor-supplied defaults for system passwords and other security parameters on any systems and has developed configuration standards for all system components consistent with industry-accepted system hardening standards.
Sample 1
AutoNDA by SimpleDocs
Maintain an Information Security Policy a. Maintaining a security policy that includes information security.
Sample 1

Related to Maintain an Information Security Policy

  • Information Security Program (1) DTI shall implement and maintain a comprehensive written information security program applicable to the Personal Information ("Information Security Program") which shall include commercially reasonable measures, including, as appropriate, policies and procedures and technical, physical, and administrative safeguards that are consistent with industry standards, providing for (i) the security and confidentiality of the Personal Information, (ii) protection of the Personal Information against reasonably foreseeable threats or hazards to the security or integrity of the Personal Information, (iii) protection against unauthorized access to or use of or loss or theft of the Personal Information, and (iv) appropriate disposal of the Personal Information. Without limiting the generality of the foregoing, the Information Security Program shall provide for (i) continual assessment and re-assessment of the risks to the security of Personal Information acquired or maintained by DTI and its agents, contractors and subcontractors in connection with the Services, including but not limited to (A) identification of internal and external threats that could result in unauthorized disclosure, alteration or destruction of Personal Information and systems used by DTI and its agents, contractors and subcontractors, (B) assessment of the likelihood and potential damage of such threats, taking into account the sensitivity of such Personal Information, and (C) assessment of the sufficiency of policies, procedures, information systems of DTI and its agents, contractors and subcontractors, and other arrangements in place, to control risks; and (ii) appropriate protection against such risks.

  • Security and Safeguarding Information (a) Confidential Information that contains Non-Public Personal Information about customers is subject to the protections created by the Xxxxx-Xxxxx-Xxxxxx Act of 1999 (the “Act”) and under the standards for safeguarding Confidential Information, 16 CFR Part 314 (2002) adopted by Federal Trade Commission (“FTC”) (the “Safeguards Rule”). Additionally, state specific laws may regulate how certain confidential or personal information is safeguarded. The parties agree with respect to the Non-Public Personal Information to take all appropriate measures in accordance with the Act, and any state specific laws, as are necessary to protect the security of the Non-Public Personal Information and to specifically assure there is no disclosure of the Non-Public Personal Information other than as authorized under the Act, and any state specific laws, and this Agreement. With respect to Confidential Information, including Non-Public Personal Information and Personally Identifiable Financial Information as applicable, each of the parties agrees that:

  • Maintenance of Insurance Policies and Errors and Omissions and Fidelity Coverage (a) The Master Servicer on behalf of the Trustee, as mortgagee of record, shall use efforts consistent with the Servicing Standard to cause the related Mortgagor to maintain, to the extent required by each Mortgage Loan (other than an Outside Serviced Mortgage Loan) and each Serviced Companion Loan (except to the extent that the failure to maintain such insurance coverage is an Acceptable Insurance Default), and if the Mortgagor does not so maintain, shall itself maintain (subject to the provisions of this Agreement concerning Nonrecoverable Advances and to the extent the Trustee as mortgagee of record has an insurable interest and to the extent available at commercially reasonable rates), (i) fire and hazard insurance (and windstorm insurance, if applicable) with extended coverage on the related Mortgaged Property in an amount which is at least equal to the lesser of (a) one hundred percent (100%) of the then “full replacement cost” of the improvements and equipment (excluding foundations, footings and excavation costs), without deduction for physical depreciation, and (b) the outstanding principal balance of the related Mortgage Loan and the related Serviced Companion Loan or such greater amount as is necessary to prevent any reduction in such policy by reason of the application of co-insurance provisions and to prevent the Trustee thereunder from being deemed to be a co-insurer and provided such policy shall include a “replacement cost” rider, (ii) insurance providing coverage against 18 months (or such longer period or with such extended period endorsement as provided in the related Mortgage or other Loan Document) of rent interruptions and (iii) such other insurance as is required in the related Mortgage Loan and the related Serviced Companion Loan. Subject to Section 3.16 of this Agreement, the Special Servicer in accordance with the Servicing Standard and to the extent available at commercially reasonable rates (as determined by the Special Servicer in accordance with the Servicing Standard), shall cause to be maintained for each REO Property (other than an REO Property related to an Outside Serviced Mortgage Loan) no less insurance coverage than was previously required of the Mortgagor under the related Loan Documents (except to the extent that the failure to maintain such insurance coverage is an Acceptable Insurance Default); provided that to the extent the Loan Documents require the related Mortgagor to maintain insurance with an insurer rated better than as indicated in the definition of “Qualified Insurer”, the Master Servicer may, without a Rating Agency Confirmation or the approval of the Special Servicer, to the extent consistent with the Servicing Standard, permit the related Mortgagor to maintain insurance with an insurer that does not meet the requirements of the Loan Documents so long as the related Mortgagor maintains insurance with an insurer rated at least as indicated in the definition of “Qualified Insurer”. All insurance for an REO Property shall be from a Qualified Insurer, if available from a Qualified Insurer, and if not available from a Qualified Insurer, from an insurance provider that is rated the next highest available rating who is offering such insurance at commercially reasonable rates. Any amounts collected by the Master Servicer or the Special Servicer under any such policies (other than amounts required to be applied to the restoration or repair of the related Mortgaged Property or amounts to be released to the Mortgagor in accordance with the terms of the related Loan Documents) shall be deposited into the Collection Account pursuant to Section 3.05 of this Agreement or the Loan Combination Custodial Account pursuant to Section 3.05A of this Agreement, as applicable, subject to withdrawal pursuant to Section 3.05, Section 3.05A, Section 3.06 or Section 3.06A of this Agreement. Any cost incurred by the Master Servicer or the Special Servicer in maintaining any such insurance shall not, for the purpose of calculating distributions to Certificateholders, be added to the unpaid principal balance of the related Mortgage Loan, notwithstanding that the terms of such Mortgage Loan so permit. It is understood and agreed that no other additional insurance other than flood insurance or earthquake insurance subject to the conditions set forth below is to be required of any Mortgagor or to be maintained by the Master Servicer other than pursuant to the terms of the related Loan Documents and pursuant to such applicable laws and regulations as shall at any time be in force and as shall require such additional insurance. If the related Mortgaged Property (other than an REO Property and other than with respect to an Outside Serviced Mortgage Loan) is located in a federally designated special flood hazard area, the Master Servicer will use efforts consistent with the Servicing Standard to cause the related Mortgagor to maintain, to the extent required by each Serviced Loan, and if the related Mortgagor does not so maintain, shall itself obtain (subject to the provisions of this Agreement concerning Nonrecoverable Advances) and maintain flood insurance in respect thereof. Such flood insurance shall be in an amount equal to the lesser of (i) the unpaid principal balance of the related Mortgage Loan and the related Serviced Companion Loan and (ii) the maximum amount of such insurance required by the terms of the related Mortgage Loan or Serviced Loan Combination and as is available for the related property under the national flood insurance program (assuming that the area in which such property is located is participating in such program). If a Mortgaged Property (other than an REO Property) is related to a Serviced Loan pursuant to which earthquake insurance is required to be maintained pursuant to the terms of the Mortgage Loan or Serviced Loan Combination, the Master Servicer shall use efforts consistent with the Servicing Standard to cause the related Mortgagor to maintain, and if the related Mortgagor does not so maintain will itself obtain (subject to the provisions of this Agreement concerning Nonrecoverable Advances and for so long as such insurance continues to be available at commercially reasonable rates) and maintain earthquake insurance in respect thereof, in the amount required by the Mortgage Loan or Serviced Loan Combination or, if not specified, in-place at origination. If an REO Property (other than an REO Property related to the Outside Serviced Mortgage Loan) (i) is located in a federally designated special flood hazard area or (ii) is related to a Serviced Loan with respect to which earthquake insurance would be appropriate in accordance with the Servicing Standard and such insurance is available at commercially reasonable rates, the Special Servicer will obtain (subject to the provisions of this Agreement concerning Nonrecoverable Advances) and maintain flood insurance and/or earthquake insurance in respect thereof providing the same coverage as described in this Section 3.08(a). Out-of-pocket expenses incurred by the Master Servicer or Special Servicer in maintaining insurance policies pursuant to this Section 3.08 shall be advanced by the Master Servicer as a Property Advance and shall be reimbursable to the Master Servicer with interest at the Advance Rate. The Master Servicer (or the Special Servicer, with respect to REO Properties) agrees to prepare and present, on behalf of itself, the Trustee and the Certificateholders and the Serviced Companion Loan Holders, claims under each related insurance policy maintained by it pursuant to this Section 3.08(a) in a timely fashion in accordance with the terms of such policy and to take such reasonable steps as are necessary to receive payment or to permit recovery thereunder. All insurance policies required to be maintained by the Master Servicer or Special Servicer hereunder shall name the Trustee or the Master Servicer or the Special Servicer, on behalf of the Trustee as the mortgagee, as loss payee, and shall be issued by Qualified Insurers, if available from a Qualified Insurer, and if not available from a Qualified Insurer, from an insurance provider that is rated the next highest available rating who is offering such insurance at commercially reasonable rates. Notwithstanding the foregoing: (A) the Master Servicer shall not be required to maintain any earthquake or environmental insurance policy on any Mortgaged Property and the Special Servicer shall not be required to maintain any earthquake or environmental insurance policy on any REO Property, in each case unless such insurance is required to be maintained under the related Loan Documents and is available at commercially reasonable rates; provided, however, that neither the Master Servicer nor the Special Servicer shall have any obligation to maintain such earthquake or environmental insurance policy required under the related Loan Documents if the originator of the Serviced Mortgage Loan or Serviced Loan Combination waived compliance with such insurance requirements (and if the applicable Master Servicer does not cause the Mortgagor to maintain or does not itself maintain such earthquake or environmental insurance policy on any Mortgaged Property, the Special Servicer shall have the right, but not the duty, to obtain, at the Trust’s expense, earthquake or environmental insurance on any Mortgaged Property securing a Specially Serviced Loan or an REO Property so long as such insurance is available at commercially reasonable rates); (B) with respect to the Master Servicer’s obligation to cause the related Mortgagor to maintain such insurance, the Master Servicer shall have no obligation beyond using its efforts consistent with the Servicing Standard to cause any Mortgagor to maintain the insurance required to be maintained or that the lender is entitled to reasonably require, subject to applicable law, under the related Loan Documents; and (C) in making determinations as to the availability of insurance at commercially reasonable rates or otherwise, the Master Servicer or the Special Servicer, as applicable, shall, to the extent consistent with the Servicing Standard, be entitled to rely, at its own expense, on insurance consultants in making such determination and any such determinations by the Master Servicer or the Special Servicer, as applicable, need not be made more frequently than annually but in any event shall be made at the approximate date on which the Master Servicer or the Special Servicer, as applicable, receives notice of the renewal, replacement or cancellation of coverage. Notwithstanding the foregoing, the Master Servicer or Special Servicer, as applicable, will not be required to maintain, and shall not cause a Mortgagor to be in default with respect to the failure of the related Mortgagor to obtain, all risk casualty insurance which does not contain any carve out for terrorist or similar acts, if, and only if, the Special Servicer has determined in accordance with the Servicing Standard that the failure to maintain such insurance is an Acceptable Insurance Default; provided that, during the period that the Special Servicer is evaluating such insurance hereunder, the Master Servicer shall not be liable for any loss related to its failure to require the Mortgagor to maintain terrorism insurance and shall not be in default of its obligations hereunder as a result of such failure. The Special Servicer shall promptly notify the Master Servicer of each determination under this paragraph.

  • INFORMATION UNDERTAKINGS The undertakings in this Clause 20 remain in force from the date of this Agreement for so long as any amount is outstanding under the Finance Documents or any Commitment is in force.

Draft better contracts in just 5 minutes Get the weekly Law Insider newsletter packed with expert videos, webinars, ebooks, and more!