Protection and Transmission of NYS Confidential Information Sample Clauses

Protection and Transmission of NYS Confidential Information. Contractor shall use appropriate means to preserve and protect NYS Confidential Information. This includes, but is not limited to, use of stable storage media, regular data backups and archiving, password protection of volumes, and data encryption. Consistent with the NYS Encryption Standard at: xxxxx://xxx.xx.xxx/tables/technologypolicyindex, to the extent doing so is applicable based on the specific services provided by Contractor to ITS under the Contract, the Contractor must encrypt NYS Confidential Information at rest, on file storage, on database storage, or on back-up media, and in transit in accordance with Local, State, and Federal laws, rules, regulations, ordinances, policies, standards, and guidelines. The Contractor must provide the ability to encrypt data in motion and at rest in compliance with state or federal law. Contractor must use secure means (HTTPS) for all electronic transmission or exchange of system, user, and application data with the State, with encryption at rest specifically using, at minimum, the latest FIPS approved cryptographic modules, and the secure means used for electronic transmission or exchange of system, user and application data with the State shall be HTTPS, TLS version 1.2 or higher. Contractor agrees that to the extent it has been authorized in writing to use such storage, any and all NYS Confidential Information will only be stored, processed, and maintained solely on designated target devices, and that no NYS Confidential Information at any time will be processed on or transferred to any portable computing device or any portable storage medium. Contractor shall also comply fully with all requirements of the Contract pertaining to security requirements specific to the services Contractor is providing to the State under the Contract. In addition to the specific security provisions required herein, Contractor shall also use, to the extent the following meets or exceeds NYS Information Security polices and standards, commercially reasonable best efforts to address and remediate any vulnerabilities associated with the types of application development or configuration services it is providing under the Contract which appear on the CWE/SANS list of the "TOP 25 Most Dangerous Programming Errors" (xxxx://xxx.xxxx.xxx/top25errors/). When a vulnerability scan is being conducted as required by applicable NYS Information Security policies and standards, and reveals software application vulnerabilities or any other security...
Sample 1Sample 2Sample 3See All (7)
AutoNDA by SimpleDocs
Protection and Transmission of NYS Confidential Information. Contractor shall use appropriate means to preserve and protect NYS Confidential Information. This includes, but is not limited to, use of stable storage media, regular data backups and archiving, password protection of volumes, and data encryption. Consistent with the NYS Encryption Standard at: xxxxx://xxx.xx.xxx/tables/technologypolicyindex, to the extent doing so is applicable based on the specific services provided by Contractor to ITS under the Contract, the Contractor must encrypt NYS Confidential Information at rest, on file storage, on database storage, or on back-up media, and in transit in accordance with Local, State, and Federal laws, rules, regulations, ordinances, policies, standards, and guidelines. The Contractor must provide the ability to encrypt data in motion and at rest in compliance with state or federal law. Contractor must use secure means (HTTPS) for all electronic transmission or exchange of system, user, and application data with the State, with encryption at rest specifically using, at minimum, the latest FIPS approved cryptographic modules, and the secure means used for electronic transmission or exchange of system, user and application data with the State shall be HTTPS, TLS version 1.2 or higher. Contractor agrees that to the extent it has been authorized in writing to use such storage, any and all NYS Confidential Information will only be stored, processed, and maintained solely on designated target devices, and that no NYS Confidential Information at any time will be processed on or transferred to any portable computing device or any portable storage medium.
Sample 1

Related to Protection and Transmission of NYS Confidential Information

  • Protection of Confidential Information The Servicer shall keep confidential and shall not divulge to any party, without the Seller’s prior written consent, any nonpublic information pertaining to the Mortgage Loans or any borrower thereunder, except to the extent that it is appropriate for the Servicer to do so in working with legal counsel, auditors, taxing authorities or other governmental agencies or it is otherwise in accordance with Accepted Servicing Practices.

  • HANDLING OF CONFIDENTIAL INFORMATION The Company agrees to undertake the following in relation to IHiS’ Confidential Information: to maintain the same in confidence and to use it only for the Purpose and for no other purpose; not to make any commercial use thereof; not to use the same for the benefit of itself or of any third party other than pursuant to a further agreement with IHiS; not to use the same for the purpose of guiding or conducting a search of any information, materials or sources, whether or not available to the public, for any purpose whatsoever, including without limitation, for the purpose of demonstrating that any information falls within one of the exceptions in Clause 1.1(b); not to copy, reproduce, reverse engineer or reduce to writing any part thereof except as may be reasonably necessary for the Purpose and that any copies, reproductions or reductions to writing so made shall be the property of IHiS; not to disclose the Confidential Information whether to its employees or to third parties except in confidence to such of its Representatives who have been informed of the confidential nature thereof and who need to know the same for the Purpose and that: such Representatives are contractually obliged (whether by their contracts of employment or service, or otherwise) not to disclose the same or to use the same otherwise than for the Purpose; and the Company shall enforce such obligations at its expense, and to such extent as may be required by IHiS, in the event of a breach thereof that relates to IHiS' Confidential Information; to ensure the compliance to this NDA (including sub-clauses (a) to (f) above) on the part of its Representatives to whom Confidential Information is disclosed; and to apply to the Confidential Information no lesser security measures and degree of care than those which the Company applies to its own confidential or proprietary information of similar nature, but in no event less than reasonable care, and which the Company warrants as being adequate protection of such information from unauthorised disclosure, copying or use. The Company, as the principal party, shall be responsible and held liable for any breach of this NDA by any of its Representatives. If the Company is uncertain as to whether any information is Confidential Information, the Company shall treat the information as if it was Confidential Information, unless otherwise agreed by IHiS in writing. The Company shall immediately notify IHiS of any unauthorised disclosure or use of the Confidential Information of which the Company becomes aware and will take all steps which IHiS may require in relation to such unauthorised disclosure or use, or to prevent further unauthorised disclosure or use. Notwithstanding the foregoing, the Company shall be entitled to make any disclosure of the Confidential Information as required by law, but shall give IHiS not less than TWO (2) business days' notice of such disclosure and shall consult with IHiS prior to such disclosure with a view to avoiding such disclosure, if legally possible.

Time is Money Join Law Insider Premium to draft better contracts faster.