Subprocessors Provider shall enter into written agreements with all Subprocessors performing functions for the Provider in order for the Provider to provide the Services pursuant to the Service Agreement, whereby the Subprocessors agree to protect Student Data in a manner no less stringent than the terms of this DPA.
Response/Compliance with Audit or Inspection Findings A. Grantee must act to ensure its and its Subcontractors’ compliance with all corrections necessary to address any finding of noncompliance with any law, regulation, audit requirement, or generally accepted accounting principle, or any other deficiency identified in any audit, review, inspection or investigation of the Grant Agreement and the services and Deliverables provided. Any such correction will be at Grantee’s or its Subcontractor's sole expense. Whether Xxxxxxx's action corrects the noncompliance shall be solely the decision of the System Agency.
B. As part of the services, Grantee must provide to HHS upon request a copy of those portions of Grantee's and its Subcontractors' internal audit reports relating to the services and Deliverables provided to the State under the Grant Agreement.
C. Grantee shall include the requirement to provide to System Agency (and any of its duly authorized federal, state, or local authorities) internal audit reports related to this Grant Agreement in any Subcontract it awards. Upon request by System Agency, Grantee shall enforce this requirement against its Subcontractor. Further, Grantee shall include in any Subcontract it awards a requirement that all Subcontractor Subcontracts must also include these provisions.
Information About Your Right to Dispute Errors In case of errors or questions about your electronic transactions, call (000) 000-0000, contact Oxygen Support via the in-app messaging feature or send an email message to: xxxxxx@xxxxxxxxx.xxx as soon as you can, if you think your statement or receipt is wrong or if you need more information about a transaction listed on the statement or receipt. We must hear from you no later than 60 days after we sent the FIRST statement on which the problem or error appeared. You will need to tell us:
1. Your name, the Account number and/or 16-digit Card number;
2. Describe the error or the transfer you are unsure about, and explain why you believe there is an error or why you need more information: and
3. The dollar amount of the suspected error. If you provide this information orally, we may require that you send your complaint or question in writing within ten (10) business days. We will determine whether an error occurred within ten (10) business days after we hear from you and will correct any error promptly. If we need more time, however, we may take up to forty-five (45) days to investigate your complaint or question. If we decide to do this, we will credit your Account within ten (10) business days for the amount you think is in error, so that you will have use of the money during the time it takes to complete the investigation. If we ask you to put your complaint or question in writing and you do not provide it within ten (10) business days, we may not credit your Account. For errors involving a new Account, POS transactions, or foreign-initiated transactions, we may take up to ninety (90) days to investigate your complaint or question. For a new Account, we may take up to twenty
Standard of Care; Uncontrollable Events; Limitation of Liability SMC shall use reasonable professional diligence to ensure the accuracy of all services performed under this Agreement, but shall not be liable to the Company for any action taken or omitted by SMC in the absence of bad faith, willful misfeasance, negligence or reckless disregard by it of its obligations and duties. The duties of SMC shall be confined to those expressly set forth herein, and no implied duties are assumed by or may be asserted against SMC hereunder. SMC shall maintain adequate and reliable computer and other equipment necessary or appropriate to carry out its obligations under this Agreement. Upon the Company's reasonable request, SMC shall provide supplemental information concerning the aspects of its disaster recovery and business continuity plan that are relevant to the services provided hereunder. Notwithstanding the foregoing or any other provision of this Agreement, SMC assumes no responsibility hereunder, and shall not be liable for, any damage, loss of data, delay or any other loss whatsoever caused by events beyond its reasonable control. Events beyond SMC's reasonable control include, without limitation, force majeure events. Force majeure events include natural disasters, actions or decrees of governmental bodies, and communication lines failures that are not the fault of either party. In the event of force majeure, computer or other equipment failures or other events beyond its reasonable control, SMC shall follow applicable procedures in its disaster recovery and business continuity plan and use all commercially reasonable efforts to minimize any service interruption. SMC shall provide the Company, at such times as the Company may reasonably require, copies of reports rendered by independent public accountants on the internal controls and procedures of SMC relating to the services provided by SMC under this Agreement. Notwithstanding anything in this Agreement to the contrary, in no event shall SMC, its affiliates or any of its or their directors, officers, employees, agents or subcontractors be liable for exemplary, punitive, special, incidental, indirect or consequential damages, or lost profits, each of which is hereby excluded by agreement of the parties regardless of whether such damages were foreseeable or whether either party or any entity has been advised of the possibility of such damages.
Ability to Abandon CVR A Holder may at any time, at such Holder’s option, abandon all of such Holder’s remaining rights in a CVR by transferring such CVR to Parent without consideration therefor. Nothing in this Agreement is intended to prohibit Parent from offering to acquire CVRs for consideration in its sole discretion.
APPLICABILITY TO SUBCONTRACTORS Respondent agrees that all contracts it awards pursuant to the contract awarded as a result of this Agreement will be bound by the foregoing terms and conditions.
Certification of Meeting or Exceeding Tobacco-Free Workplace Policy Minimum Standards A. Grantee certifies that it has adopted and enforces a Tobacco-Free Workplace Policy that meets or exceeds all of the following minimum standards of:
i. Prohibiting the use of all forms of tobacco products, including but not limited to cigarettes, cigars, pipes, water pipes (hookah), bidis, kreteks, electronic cigarettes, smokeless tobacco, snuff and chewing tobacco;
ii. Designating the property to which this Policy applies as a "designated area,” which must at least comprise all buildings and structures where activities funded under this Grant Agreement are taking place, as well as Grantee owned, leased, or controlled sidewalks, parking lots, walkways, and attached parking structures immediately adjacent to this designated area;
iii. Applying to all employees and visitors in this designated area; and
iv. Providing for or referring its employees to tobacco use cessation services.
B. If Grantee cannot meet these minimum standards, it must obtain a waiver from the System Agency.
Subprocessor For the purposes of this DPA, the term “Subprocessor” (sometimes referred to as the “Subcontractor”) means a party other than LEA or Provider, who Provider uses for data collection, analytics, storage, or other service to operate and/or improve its service, and who has access to Student Data.
New Subprocessors SAP’s use of Subprocessors is at its discretion, provided that:
(a) SAP will inform Customer in advance (by email or by posting on the support portal available through SAP Support) of any intended additions or replacements to the list of Subprocessors including name, address and role of the new Subprocessor; and
(b) Customer may object to such changes as set out in Section 6.3.
Handling Sensitive Personal Information and Breach Notification A. As part of its contract with HHSC Contractor may receive or create sensitive personal information, as section 521.002 of the Business and Commerce Code defines that phrase. Contractor must use appropriate safeguards to protect this sensitive personal information. These safeguards must include maintaining the sensitive personal information in a form that is unusable, unreadable, or indecipherable to unauthorized persons. Contractor may consult the “Guidance to Render Unsecured Protected Health Information Unusable, Unreadable, or Indecipherable to Unauthorized Individuals” issued by the U.S. Department of Health and Human Services to determine ways to meet this standard.
B. Contractor must notify HHSC of any confirmed or suspected unauthorized acquisition, access, use or disclosure of sensitive personal information related to this Contract, including any breach of system security, as section 521.053 of the Business and Commerce Code defines that phrase. Contractor must submit a written report to HHSC as soon as possible but no later than 10 business days after discovering the unauthorized acquisition, access, use or disclosure. The written report must identify everyone whose sensitive personal information has been or is reasonably believed to have been compromised.
C. Contractor must either disclose the unauthorized acquisition, access, use or disclosure to everyone whose sensitive personal information has been or is reasonably believed to have been compromised or pay the expenses associated with HHSC doing the disclosure if:
1. Contractor experiences a breach of system security involving information owned by HHSC for which disclosure or notification is required under section 521.053 of the Business and Commerce Code; or
2. Contractor experiences a breach of unsecured protected health information, as 45 C.F.R. §164.402 defines that phrase, and HHSC becomes responsible for doing the notification required by 45 C.F.R. §164.404. HHSC may, at its discretion, waive Contractor's payment of expenses associated with HHSC doing the disclosure.
