Sensitive data Where the transfer involves personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, or biometric data for the purpose of uniquely identifying a natural person, data concerning health or a person’s sex life or sexual orientation, or data relating to criminal convictions and offences (hereinafter ‘sensitive data’), the data importer shall apply the specific restrictions and/or additional safeguards described in Annex I.B.
Handling Sensitive Personal Information and Breach Notification A. As part of its contract with HHSC Contractor may receive or create sensitive personal information, as section 521.002 of the Business and Commerce Code defines that phrase. Contractor must use appropriate safeguards to protect this sensitive personal information. These safeguards must include maintaining the sensitive personal information in a form that is unusable, unreadable, or indecipherable to unauthorized persons. Contractor may consult the “Guidance to Render Unsecured Protected Health Information Unusable, Unreadable, or Indecipherable to Unauthorized Individuals” issued by the U.S. Department of Health and Human Services to determine ways to meet this standard.
B. Contractor must notify HHSC of any confirmed or suspected unauthorized acquisition, access, use or disclosure of sensitive personal information related to this Contract, including any breach of system security, as section 521.053 of the Business and Commerce Code defines that phrase. Contractor must submit a written report to HHSC as soon as possible but no later than 10 business days after discovering the unauthorized acquisition, access, use or disclosure. The written report must identify everyone whose sensitive personal information has been or is reasonably believed to have been compromised.
C. Contractor must either disclose the unauthorized acquisition, access, use or disclosure to everyone whose sensitive personal information has been or is reasonably believed to have been compromised or pay the expenses associated with HHSC doing the disclosure if:
1. Contractor experiences a breach of system security involving information owned by HHSC for which disclosure or notification is required under section 521.053 of the Business and Commerce Code; or
2. Contractor experiences a breach of unsecured protected health information, as 45 C.F.R. §164.402 defines that phrase, and HHSC becomes responsible for doing the notification required by 45 C.F.R. §164.404. HHSC may, at its discretion, waive Contractor's payment of expenses associated with HHSC doing the disclosure.
Sensitive Information Information that requires special precautions to protect from unauthorized use, access, disclosure, modification, loss, or deletion. Sensitive Information may be either Public Information or Confidential Information. It is information that requires a higher than normal assurance of accuracy and completeness. Thus, the key factor for Sensitive Information is that of integrity. Typically, Sensitive Information includes records of agency financial transactions and regulatory actions.
Certain Information The Company agrees to provide Holder at any time and from time to time with such information as Holder may reasonably request for purposes of Holder’s compliance with regulatory, accounting and reporting requirements applicable to Holder.
Treatment of Proprietary and Confidential Information A. Both parties agree that it may be necessary to provide each other during the term of this Agreement with certain confidential information, including trade secret information, including but not limited to, technical and business plans, technical information, proposals, specifications, drawings, procedures, customer account data and like information (hereinafter collectively referred to as “Information”). Both parties agree that all Information shall either be in writing or other tangible format and clearly marked with a confidential, private or proprietary legend, or, when the Information is communicated orally, it shall also be communicated that the Information is confidential, private or proprietary. The Information will be returned to the owner within a reasonable time. Both parties agree that the Information shall not be copied or reproduced in any form. Both parties agree to receive such Information and not disclose such Information. Both parties agree to protect the Information received from distribution, disclosure or dissemination to anyone except employees of the parties with a need to know such Information and which employees agree to be bound by the terms of this Section. Both parties will use the same standard of care to protect Information received as they would use to protect their own confidential and proprietary Information.
B. Notwithstanding the foregoing, both parties agree that there will be no obligation to protect any portion of the Information that is either: 1) made publicly available by the owner of the Information or lawfully disclosed by a nonparty to this Agreement; 2) lawfully obtained from any source other than the owner of the Information; or 3) previously known to the receiving party without an obligation to keep it confidential.
Substance Abuse Treatment Information Substance abuse treatment information shall be maintained in compliance with 42 C.F.R. Part 2 if the Party or subcontractor(s) are Part 2 covered programs, or if substance abuse treatment information is received from a Part 2 covered program by the Party or subcontractor(s).
Treatment of Certain Information; Confidentiality Each of the Administrative Agent and the Lenders agrees to maintain the confidentiality of the Information (as defined below), except that Information may be disclosed (a) to its Affiliates and to its Related Parties (it being understood that the Persons to whom such disclosure is made will be informed of the confidential nature of such Information and instructed to keep such Information confidential), (b) to the extent required or requested by any regulatory authority purporting to have jurisdiction over such Person or its Related Parties (including any self-regulatory authority, such as the National Association of Insurance Commissioners), (c) to the extent required by applicable Laws or regulations or by any subpoena or similar legal process, (d) to any other party hereto, (e) in connection with the exercise of any remedies hereunder or under any other Loan Document or any action or proceeding relating to this Agreement or any other Loan Document or the enforcement of rights hereunder or thereunder, (f) subject to an agreement containing provisions substantially the same as those of this Section, to (i) any assignee of or Participant in, or any prospective assignee of or Participant in, any of its rights or obligations under this Agreement or (ii) any actual or prospective party (or its Related Parties) to any swap, derivative or other transaction under which payments are to be made by reference to the Borrower and its obligations, this Agreement or payments hereunder, (g) on a confidential basis to (i) any rating agency in connection with rating the Borrower or its Subsidiaries or the credit facilities provided hereunder or (ii) the CUSIP Service Bureau or any similar agency in connection with the issuance and monitoring of CUSIP numbers or other market identifiers with respect to the credit facilities provided hereunder, (h) with the consent of the Borrower or (i) to the extent such Information (x) becomes publicly available other than as a result of a breach of this Section 10.07 or (y) becomes available to the Administrative Agent, any Lender or any of their respective Affiliates on a nonconfidential basis from a source other than the Borrower. In addition, the Administrative Agent and the Lenders may disclose the existence of this Agreement and customary information about this Agreement to market data collectors, similar service providers to the lending industry and service providers to the Administrative Agent and the Lenders in connection with the administration of this Agreement, the other Loan Documents, and the Commitments.
Treatment of Confidential Information (A) Each party agrees that at all times during and after the terms of this Agreement, it shall use, handle, collect, maintain, and safeguard Confidential Information in accordance with (1) the confidentiality and non-disclosure requirements of this Agreement; (2) the GLB Act, as applicable and as it may be amended; and (3) such other Applicable Law, whether in effect now or in the future.
(B) Without limiting the foregoing, the Receiving Party shall apply to any Confidential Information at least the same degree of reasonable care used for its own confidential and proprietary information to avoid unauthorized disclosure or use of Confidential Information under this Agreement.
(C) Each party further agrees that:
(1) The Receiving Party will hold all Confidential Information it obtains in strictest confidence and will use and permit use of Confidential Information solely for the purposes of this Agreement or as otherwise provided for in this Agreement, and consistent therewith, may disclose or provide access to its responsible employees or agents who have a need to know and are under adequate confidentiality agreements or arrangements and make copies of Confidential Information to the extent reasonably necessary to carry out its obligations under this Agreement;
(2) Notwithstanding the foregoing, the Receiving Party may release Confidential Information as permitted or required by law or approved in writing by the Disclosing party, which approval shall not be unreasonably withheld and may not be withheld where the Receiving Party may be exposed to civil or criminal liability or proceedings for failure to release such information;
(3) Additionally, Ultimus may provide Confidential Information typically supplied in the investment company industry to companies that track or report price, performance or other information regarding investment companies; and
(4) The Receiving Party will immediately notify the Disclosing Party of any unauthorized disclosure or use, and will cooperate with the Disclosing Party to protect all proprietary rights in any Confidential Information.
Return of Proprietary Information 20.6.1 All Proprietary Information, other than Derivative Information, shall remain the property of the Disclosing Party, and all documents or other tangible media delivered to the Receiving Party that embody such Proprietary Information shall be, at the option of the Disclosing Party, either promptly returned to Disclosing Party or destroyed, except as otherwise may be required from time to time by Applicable Law (in which case the use and disclosure of such Proprietary Information will continue to be subject to this Agreement), upon the earlier of (i) the date on which the Receiving Party’s need for it has expired and (ii) the expiration or termination of this Agreement.
20.6.2 At the request of the Disclosing Party, any Derivative Information shall be, at the option of the Receiving Party, either promptly returned to the Disclosing Party or destroyed, except as otherwise may be required from time to time by Applicable Law (in which case the use and disclosure of such Derivative Information will continue to be subject to this Agreement), upon the earlier of (i) the date on which the Receiving Party’s need for it has expired and (ii) the expiration or termination of this Agreement.
20.6.3 The Receiving Party may at any time either return the Proprietary Information to the Disclosing Party or destroy such Proprietary Information. If the Receiving Party elects to destroy Proprietary Information, all copies of such information shall be destroyed and upon the written request of the Disclosing Party, the Receiving Party shall provide to the Disclosing Party written certification of such destruction. The destruction or return of Proprietary information shall not relieve any Receiving Party of its obligation to continue to treat such Proprietary Information in the manner required by this Agreement.
Definition of Proprietary Information The Executive acknowledges that he may be furnished or may otherwise receive or have access to confidential information which relates to the Company’s past, present or future business activities, strategies, services or products, research and development; financial analysis and data; improvements, inventions, processes, techniques, designs or other technical data; profit margins and other financial information; fee arrangements; compilations for marketing or development; confidential personnel and payroll information; or other information regarding administrative, management, or financial activities of the Company, or of a third party which provided proprietary information to the Company on a confidential basis. All such information, including in any electronic form, and including any materials or documents containing such information, shall be considered by the Company and the Executive as proprietary and confidential (the “Proprietary Information”).
