Minimum Security Measures Sample Clauses

Minimum Security Measures. The Contractor must provide the following minimum mandatory security measures: Compliance with the Baseline Personnel Security Standard, see paragraphs A5.3 below that cover pre-employment checks and Contractor’s declaration ; Appropriate risk mitigation actions as may be appropriate for effective contract management activities. Includes the identification of soft copy information as well as hard copy information; Ensure the minimum number of Contractor personnel handle the Client’s data and the identification of roles and responsibilities of staff handling the Client’s data is recorded; Development of appropriate incident management processes and systems that will be used to deal effectively with any incident of data loss; Ensure that all Contractors’ staff involved in handling departmental data within the contract understands their obligations to data security including their legal and contractual responsibilities.
Sample 1Sample 2Sample 3See All (16)
AutoNDA by SimpleDocs
Minimum Security Measures. The Supplier must provide the following minimum mandatory security measures: a. Compliance with the Baseline Personnel Security Standard (BPSS), (as referred to in the HMG Security Policy Framework at paragraph B10.1.a, above); b. Procedures are in place to ensure periods of storage are limited and only at times where this is unavoidable due to consignments not being able to be delivered to offices, e.g. overnight, weekends and unforeseeable circumstances; c. Prior notification to the Client where delivery is not possible on the same day and ensure items are stored in a secure area overnight; d. Identify premises from which the contract will be delivered to assess security protocols that exist, access to premises, controls and measures in place to ensure sufficient security and what safeguards are in place to ensure security to departmental data whilst on the premises.
Sample 1Sample 2Sample 3See All (8)
Minimum Security Measures. The Supplier must provide the following minimum mandatory security measures:
Sample 1
Minimum Security Measures. Measures of pseudonymisation and encryption of personal data Data is encrypted at rest and in transit using AES-256 encryption. Measures for ensuring ongoing confidentiality, integrity, availability and resilience of processing systems and services Our system architecture is subject to regular penetration testing and we have a full information security programme implemented. Measures for ensuring the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident We maintain a full IT disaster recovery process and business continuity process. This is tested annually. We follow a strict backup policy which includes both online and offline backups. Processes for regularly testing, assessing and evaluating the effectiveness of technical and organisational measures in order to ensure the security of the processing We run regular vulnerability scans of our internal and external environment. We conduct regular penetration testing of our production application and hosting infrastructure. Measures for user identification and authorisation We enforce multifactor authentication on all user accounts. We technically enforce a complex password policy. Measures for the protection of data during transmission Data is encrypted at rest and in transit using AES-256 encryption. We enforce a TLS version of 1.2 or greater. Measures for the protection of data during storage Data is encrypted at rest and in transit using AES-256 encryption. Our data is stored within secure data centres with strong physical security controls. Measures for ensuring physical security of locations at which personal data are processed Data is stored within our production environment that has strict physical security policies in place. Physical controls include CCTV, alarmed perimeters, and armed security. Measures for ensuring events logging We utilise a gold standard logging solution that centralises all our events and logs from across our environment. These are monitored with automated alerts triggered if thresholds are met. Measures for ensuring system configuration, including default configuration System configuration is maintained by using a defined CI/CD pipeline (with security and quality testing built in) with infrastructure as code, subject to multiple approvals before deployment. Measures for internal IT and IT security governance and management We maintain a full ISMS which covers a full suite of security policies and proc...
Sample 1
Minimum Security Measures. The Contractor must provide the following minimum mandatory security measures: Compliance with the Baseline Personnel Security Standard, see paragraph A6.4 below that cover pre-employment checks and Contractor’s declaration ; Appropriate risk mitigation actions as may be appropriate for effective contract management activities; this includes the identification of soft copy information as well as hard copy information; Ensure the minimum number of Contractor personnel handle the Client’s data and the identification of roles and responsibilities of staff handling the Client’s data is recorded; Development of appropriate incident management processes and systems that will be used to deal effectively with any incident of data loss; Ensure that all Contractor staff involved in handling departmental data within the contract understands their obligations regarding data security including their legal and contractual responsibilities. The Contractor will be required to deliver training to staff as part of induction and on-going employment activities; Procedures are in place to identify and resolve any security weaknesses and measures identified as a result of security breaches and breaches of the Data Protection Act etc. including, but not exclusive to, disciplinary procedures and procedures in place to identify software and IT system faults; Procedures are in place to ensure periods of storage are limited and only at times where this is unavoidable due to couriered mail not being able to be delivered to offices, e.g. overnight, weekends and unforeseeable circumstances; Prior notification to the Client where delivery is not possible on the same day and ensure items are stored in a secure area overnight; Identify premises from which the contract will be delivered to assess security protocols that exist, access to premises, controls and measures in place to ensure sufficient security and what safeguards are in place to ensure security to departmental data whilst on the premises; Damaged packages should not be accepted into the network. Any packages collected and subsequently damaged in the Contractor’s network should be photographed and held securely at the Contractor’s depot, until further instructions are received from the Client.
Sample 1
Minimum Security Measures. The Assessment Supplier will implement the technical and organisational security measures described below in respect of personal data it processes on behalf of the SRA pursuant to this Agreement:  Information security policy: The Assessment Supplier will implement a written information security policy that specifies the security standards it will apply to protect the personal data it processes in accordance with this Agreement. The information security policy will mandate the use of appropriate technical and organisational security measures throughout the Assessment Supplier's organisation to protect personal data against unauthorised and unlawful processing and against accidental loss, damage or destruction. It will further describe the measures to be taken, and individuals to be notified, in the event of an actual or suspected data or security breach. The Assessment Supplier will provide a copy of its information security policy to the SRA upon request.  Information security officer: The Assessment Supplier will appoint a duly skilled, qualified and experienced employee with responsibility for ensuring the security of personal data processed by the Assessment Supplier throughout its organisation and for reviewing, maintaining and updating the Assessment Supplier's information security policy in accordance with best industry practice.  Physical security: Access to data processing facilities will be restricted to duly authorised employees and contractors who have been issued with security badges. All data processing facilities will be manned by a security front desk on a 24 x 7 x 365 basis.  Firewall and anti-virus: The Assessment Supplier will implement appropriate firewall, anti-virus, anti-spyware and other anti-malware software and technologies on all networks and systems it uses to process personal data. The Assessment Supplier will update its firewall, anti-virus, anti-spyware and other anti-malware software and technologies on a regular basis to ensure that they protect against then-current virus, spyware and other malware threats.
Sample 1
Minimum Security Measures. The minimum security measures for the common lock box system and the rules and regulations and procedures of administration of the common lock box system as adopted by RSC are hereby incorporated in this Agreement and made a part hereof by this reference as the same may be amended from time to time.
Sample 1
AutoNDA by SimpleDocs

Related to Minimum Security Measures

  • Security Measures Lessee hereby acknowledges that the rental payable to Lessor hereunder does not include the cost of guard service or other security measures, and that Lessor shall have no obligation whatsoever to provide same. Lessee assumes all responsibility for the protection of the Premises, Lessee, its agents and invitees and their property from the acts of third parties.

  • Safety Measures Awarded vendor shall take all reasonable precautions for the safety of employees on the worksite, and shall erect and properly maintain all necessary safeguards for protection of workers and the public. Awarded vendor shall post warning signs against all hazards created by the operation and work in progress. Proper precautions shall be taken pursuant to state law and standard practices to protect workers, general public and existing structures from injury or damage.

  • Interim Measures Notwithstanding any requirements for alternative dispute resolution procedures as set forth in Articles 18(B), any party to the Dispute may apply to a court for interim measures (i) prior to the constitution of the arbitral tribunal (and thereafter as necessary to enforce the arbitral tribunal’s rulings); or (ii) in the absence of the jurisdiction of the arbitral tribunal to rule on interim measures in a given jurisdiction. The Parties agree that seeking and obtaining such interim measures shall not waive the right to arbitration. The arbitrators (or in an emergency the presiding arbitrator acting alone in the event one or more of the other arbitrators is unable to be involved in a timely fashion) may grant interim measures including injunctions, attachments and conservation orders in appropriate circumstances, which measures may be immediately enforced by court order. Hearings on requests for interim measures may be held in person, by telephone, by video conference or by other means that permit the parties to the Dispute to present evidence and arguments.

  • Protective Measures We have implemented and will maintain appropriate technical and organisational measures in relation to the Services taking into account the state of the art, the costs of implementation, and the nature, scope, context and purposes of Processing, as well as the likelihood and severity of risk to the rights and freedoms of data subjects. This includes measures relating to the physical security of Our facilities used to deliver them, measures to control access rights to Our assets and relevant networks, and processes for testing these measures. In accordance with Our obligations under applicable law, We may undertake digital forensic investigations in relation to the use of the Services and Subscriptions. You are responsible for using, and ensuring that your Users use, the controls and advice provided by the Services correctly and consistently.

  • Emergency Measures Additional measures and/or other special requirements necessary during periods of critical fire-weather conditions shall be included in the fire prevention and presuppression plan.

  • Safeguard Measures The Parties note the multilateral negotiations pursuant to Article X of GATS on the question of emergency safeguard measures based on the principle of non-discrimination. Upon the conclusion of such multilateral negotiations, the Parties shall conduct a review for the purpose of discussing appropriate amendments to this Agreement so as to incorporate the results of such multilateral negotiations.

  • Non-tariff Measures 1. A Party shall not adopt or maintain any non-tariff measures on the importation of any good of the other Party or on the exportation of any good destined for the territory of the other Party except in accordance with its WTO rights and obligations or in accordance with other provisions of this Agreement. 2. Each Party shall ensure its non-tariff measures permitted in paragraph 1 are not prepared, adopted or applied with a view to, or with the effect of, creating unnecessary obstacles to trade between the Parties.

  • Bilateral Safeguard Measures 1. Where, as a result of the reduction or elimination of a customs duty under this Agreement, any product originating in a Party is being imported into the territory of another Party in such increased quantities, in absolute terms or relative to domestic production, and under such conditions as to constitute a substantial cause of serious injury or threat thereof to the domestic industry of like or directly competitive products in the territory of the importing Party, the importing Party may take bilateral safeguard measures to the minimum extent necessary to remedy or prevent the injury, subject to the provisions of paragraphs 2 to 10. 2. Bilateral safeguard measures shall only be taken upon clear evidence that increased imports have caused or are threatening to cause serious injury pursuant to an investigation in accordance with the procedures laid down in the WTO Agreement on Safeguards. 3. The Party intending to take a bilateral safeguard measure under this Article shall immediately, and in any case before taking a measure, make notification to the other Parties and the Joint Committee. The notification shall contain all pertinent information, which shall include evidence of serious injury or threat thereof caused by increased imports, a precise description of the product involved and the proposed measure, as well as the proposed date of introduction, expected duration and timetable for the progressive removal of the measure. A Party that may be affected by the measure shall be offered compensation in the form of substantially equivalent trade liberalisation in relation to the imports from any such Party. 4. If the conditions set out in paragraph 1 are met, the importing Party may take measures consisting in increasing the rate of customs duty for the product to a level not to exceed the lesser of: (a) the MFN rate of duty applied at the time the action is taken; or (b) the MFN rate of duty applied on the day immediately preceding the date of the entry into force of this Agreement. 5. Bilateral safeguard measures shall be taken for a period not exceeding one year. In very exceptional circumstances, after review by the Joint Committee, measures may be taken up to a total maximum period of three years. No measure shall be applied to the import of a product which has previously been subject to such a measure. 6. The Joint Committee shall within 30 days from the date of notification examine the information provided under paragraph 3 in order to facilitate a mutually acceptable resolution of the matter. In the absence of such resolution, the importing Party may adopt a measure pursuant to paragraph 4 to remedy the problem, and, in the absence of mutually agreed compensation, the Party against whose product the measure is taken may take compensatory action. The bilateral safeguard measure and the compensatory action shall be immediately notified to the other Parties and the Joint Committee. In the selection of the bilateral safeguard measure and the compensatory action, priority must be given to the measure which least disturbs the functioning of this Agreement. The compensatory action shall normally consist of suspension of concessions having substantially equivalent trade effects or concessions substantially equivalent to the value of the additional duties expected to result from the bilateral safeguard measure. The Party taking compensatory action shall apply the action only for the minimum period necessary to achieve the substantially equivalent trade effects and in any event, only while the measure under paragraph 4 is being applied. 7. Upon the termination of the measure, the rate of customs duty shall be the rate which would have been in effect but for the measure. 8. In critical circumstances, where delay would cause damage which would be difficult to repair, a Party may take a provisional emergency measure pursuant to a preliminary determination that there is clear evidence that increased imports constitute a substantial cause of serious injury, or threat thereof, to the domestic industry. The Party intending to take such a measure shall immediately notify the other Parties and the Joint Committee thereof. Within 30 days of the date of the notification, the procedures set out in paragraphs 2 to 6, including for compensatory action, shall be initiated. Any compensation shall be based on the total period of application of the provisional emergency measure and of the emergency measure. 9. Any provisional measure shall be terminated within 200 days at the latest. The period of application of any such provisional measure shall be counted as part of the duration of the measure set out in paragraph 5 and any extension thereof. Any tariff increases shall be promptly refunded if the investigation described in paragraph 2 does not result in a finding that the conditions of paragraph 1 are met. 10. Five years after the date of entry into force of this Agreement, the Parties shall review in the Joint Committee whether there is need to maintain the possibility to take safeguard measures between them. If the Parties decide, after the first review, to maintain such possibility, they shall thereafter conduct biennial reviews of this matter in the Joint Committee.

  • Corrective Measures If the Participating Generator fails to meet or maintain the requirements set forth in this Agreement and/or the CAISO Tariff, the CAISO shall be permitted to take any of the measures, contained or referenced in the CAISO Tariff, which the CAISO deems to be necessary to correct the situation.

  • Disciplinary Measures ‌ 21.01 Any disciplinary measure must be the subject of a written notice addressed to the employee concerned and stating the reasons for the measure. Such notice must be sent simultaneously to the Union. Only those disciplinary measures of which the employee and the Union have been informed in writing can be used as evidence in arbitration and can appear in the employee's personal file. 21.02 The Union may, in the case of any employee who is dismissed, suspended, demoted or given a written warning, file a grievance and, if necessary, submit the case to arbitration, except however in the case of an employee who is dismissed during his/her probation period. 21.03 In all cases of disciplinary measures, the University has the burden of proving that the disciplinary measure was imposed for just and sufficient cause. The arbitrator may confirm or reject the disciplinary measure, or render any other decision that he/she judges equitable under the circumstances. 21.04 In the event that a university representative finds it necessary to summon an employee for disciplinary reasons (written warning, demotion, suspension, or dismissal), the employee has the right to be accompanied by a union representative. The University will inform the employee of his/her right. 21.05 A suspension does not interrupt the continuous service of an employee. 21.06 No disciplinary measure may be imposed later than twenty (20) working days after the date of the incident which gave rise to it or of the date the immediate supervisor became aware of said incident. 21.07 No confession signed by an employee can be used as evidence against her/him in an arbitration, unless it is:

Draft better contracts in just 5 minutes Get the weekly Law Insider newsletter packed with expert videos, webinars, ebooks, and more!