Protection of Confidential Data. Vendor shall provide its Services in a manner which protects Student Data (as defined by 8 NYCRR § 121.1(q)) and Teacher or Principal Data (as defined by 8 NYCRR § 121.1(r)) (hereinafter “Confidential Data”) in accordance with the requirements articulated under Federal, State and local laws and regulations, including but not limited to the foregoing: (a) Vendor will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework. (b) Vendor will comply with the School District Data Security and Privacy Policy, Education Law § 2-d, and 8 NYCRR § 121. (c) Vendor will limit internal access to personally identifiable information to only those employees or subcontractors that need access to provide the contracted services. (d) Vendor will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement. (e) Vendor will not disclose any personally identifiable information to any other party without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law. (f) Vendor will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody. (g) Vendor will use encryption to protect personally identifiable information in its custody while in motion or at rest. (h) Vendor will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit another party to do so. (i) In the event Vendor engages a subcontractor to perform its contractual obligations, the data protection obligations imposed on the Vendor shall apply to the subcontractor.
Appears in 5 contracts
Samples: Software Vendor Agreement, Software Vendor Agreement, Software Vendor Agreement
Protection of Confidential Data. Vendor The Town shall provide its their Services in a manner which protects Student Data (as defined by 8 NYCRR § 121.1(q121.l(q)) and Teacher or Principal Data (as defined by 8 NYCRR § 121.1(r)) (hereinafter “"Confidential Data”") in accordance with the requirements articulated under Federal, New York State and local laws and regulations, including but not limited to the foregoing:
(a) Vendor The Town will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework.
(b) Vendor The Town will comply with the School District Data Security and Privacy Policy, Education Law § Law§ 2-d, and 8 NYCRR § §121.
(c) Vendor The Town will limit internal access to personally identifiable information to only those employees or subcontractors sub-contractors that need access to provide the contracted services.
(d) Vendor The Town will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement.
(e) Vendor The Town will not disclose any personally identifiable information to any other party without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law.
(f) Vendor The Town will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody.
(g) Vendor The Town will use encryption to protect personally identifiable information in its custody while in motion or at rest.
(h) Vendor The Town will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit another party to do so.
(i) In the event Vendor the Town engages a subcontractor to perform its their contractual obligations, the data protection obligations imposed on the Vendor Town shall apply to the subcontractor.
Appears in 3 contracts
Samples: School Information Resource Officer Agreement, School Information Resource Officer Agreement, School Information Resource Officer Agreement
Protection of Confidential Data. Vendor shall provide its Services in a manner which protects Student Data (as defined by 8 NYCRR § 121.1(q)) and Teacher or Principal Data (as defined by 8 NYCRR § 121.1(r)) (hereinafter “Confidential Data”) in accordance with the requirements articulated under Federal, State and local laws and regulations, including but not limited to the foregoing:the
(a) Vendor will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework.
(b) Vendor will comply with the School District Data Security and Privacy Policy, Education Law § 2-d, and 8 NYCRR § 121.
(c) Vendor will limit internal access to personally identifiable information to only those employees or subcontractors that need access to provide the contracted services.
(d) Vendor will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement.
(e) Vendor will not disclose any personally identifiable information to any other party without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law.
(f) Vendor will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody.
(g) Vendor will use encryption to protect personally identifiable information in its custody while in motion or at rest.
(h) Vendor will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit another party to do so.
(i) In the event Vendor engages a subcontractor to perform its contractual obligations, the data protection obligations imposed on the Vendor shall apply to the subcontractor.
Appears in 2 contracts
Samples: Data Privacy Agreement, Data Privacy Agreement
Protection of Confidential Data. Vendor shall provide its Services in a manner which protects Student Data (as defined by 8 NYCRR § 121.1(q)) and Teacher or Principal Data (as defined by 8 NYCRR § 121.1(r)) (hereinafter “Confidential Data”) in accordance with the requirements articulated under Federal, State and local laws and regulations, including but not limited to the foregoing:
(a) Vendor will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework.
(b) Vendor will comply with the School District Data Security and Privacy Policy, Education Law § 2-d, and 8 NYCRR § §121.
(c) Vendor will limit internal access to personally identifiable information to only those employees or subcontractors sub-contractors that need access to provide the contracted services.
(d) Vendor will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement.
(e) Vendor will not disclose any personally identifiable information to any other party without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law.
(f) Vendor will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody.
(g) Vendor will use encryption to protect personally identifiable information in its custody while in motion or at rest.
(h) Vendor will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit another party to do so.
(i) In the event Vendor engages a subcontractor to perform its contractual obligations, the data protection obligations imposed on the Vendor shall apply to the subcontractor.
Appears in 2 contracts
Samples: Services Agreement, Licensing Agreement
Protection of Confidential Data. Vendor shall provide its Services in a manner which protects Student Data (as defined by 8 NYCRR § §121.1(q)) and Teacher or Principal Data (as defined by 8 NYCRR § §121.1(r)) (hereinafter “Confidential Data”) in accordance with the requirements articulated under Federal, State and local laws and regulations, including but not limited to the foregoing:laws
(a) Vendor will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework.
(b) Vendor will comply with the School District Data Security and Privacy Policy, Education Law § §2-d, and 8 NYCRR § §121.
(c) Vendor will limit internal access to personally identifiable information to only those employees or subcontractors that need access to provide the contracted services.
(d) Vendor will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement.
(e) Vendor will not disclose any personally identifiable information to any other party without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law.
(f) Vendor will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody.
(g) Vendor will use encryption to protect personally identifiable information in its custody while in motion or at rest.
(h) Vendor will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit another party to do so.
(i) In the event Vendor engages a subcontractor to perform its contractual obligations, the data protection obligations imposed on the Vendor shall apply to the subcontractor.
Appears in 1 contract
Samples: Software Agreement
Protection of Confidential Data. Vendor shall provide its Services in a manner which protects Student Data (as defined by 8 NYCRR § §121.1(q)) and Teacher or Principal Data (as defined by 8 NYCRR § 121.1(r)) (hereinafter “Confidential Data”) in accordance with the requirements articulated under Federal, State and local laws and regulations, including but not limited to the foregoing:NYCRR
(a) Vendor will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework.
(b) Vendor will comply with the School District Data Security and Privacy Policy, Education Law § §2-d, and 8 NYCRR § §121.
(c) Vendor will limit internal access to personally identifiable information to only those employees or subcontractors that need access to provide the contracted services.
(d) Vendor will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement.
(e) Vendor will not disclose any personally identifiable information to any other party without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law.
(f) Vendor will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody.to
(g) Vendor will use encryption to protect personally identifiable information in its custody while in motion or at rest.
(h) Vendor will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit another party to do so.
(i) In the event Vendor engages a subcontractor to perform its contractual obligations, the data protection obligations imposed on the Vendor shall apply to the subcontractor.
Appears in 1 contract
Samples: Software Agreement
Protection of Confidential Data. Vendor shall provide its Services in a manner which protects Student Data (as defined by 8 NYCRR § §121.1(q)) and Teacher or Principal Data (as defined by 8 NYCRR § 121.1(r)) (hereinafter “Confidential Data”) in accordance with the requirements articulated under Federal, State and local laws and regulations, including but not limited to the foregoing:NYCRR
(a) Vendor will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework.
(b) Vendor will comply with the School District Data Security and Privacy Policy, Education Law § §2-d, and 8 NYCRR § §121.
(c) Vendor will limit internal access to personally identifiable information to only those employees or subcontractors that need access to provide the contracted services.
(d) Vendor will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement.
(e) Vendor will not disclose any personally identifiable information to any other party without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law.
(f) Vendor will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody.
(g) Vendor will use encryption to protect personally identifiable information in its custody while in motion or at rest.
(h) Vendor will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit another party to do so.
(i) In the event Vendor engages a subcontractor to perform its contractual obligations, the data protection obligations imposed on the Vendor shall apply to the subcontractor.
Appears in 1 contract
Samples: Software Agreement
Protection of Confidential Data. Vendor The Town shall provide its Services in a manner which protects Student Data (as defined by 8 NYCRR § 121.1(q)) and Teacher or Principal Data (as defined by 8 NYCRR § 121.1(r)) (hereinafter “Confidential Data”) in accordance with the requirements articulated under Federal, New York State and local laws and regulations, including but not limited to the foregoing:
(a) Vendor 24.1 The Town will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework.
(b) Vendor 24.2 The Town will comply with the School District Data Security and Privacy Policy, Education Law § 2-d, and 8 NYCRR § 121XXXXX §000.
(c) Vendor 24.3 The Town will limit internal access to personally identifiable information to only those employees or subcontractors sub-contractors that need access to provide the contracted services.
(d) Vendor 24.4 The Town will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement.
(e) Vendor 24.5 The Town will not disclose any personally identifiable information to any other party without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law.
(f) Vendor 24.6 The Town will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody.
(g) Vendor 24.7 The Town will use encryption to protect personally identifiable information in its custody while in motion or at rest.
(h) Vendor 24.8 The Town will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit another party to do so.
(i) 24.9 In the event Vendor The Town engages a subcontractor to perform its contractual obligations, the data protection obligations imposed on the Vendor Town shall apply to the subcontractor.
Appears in 1 contract
Samples: Special Patrol Officer Agreement
Protection of Confidential Data. Vendor shall provide its Services in a manner which protects Student Data (as defined by 8 NYCRR § §121.1(q)) and Teacher or Principal Data (as defined by 8 NYCRR § 121.1(r)) (hereinafter “Confidential Data”) in accordance with the requirements articulated under Federal, State and local laws and regulations, including but not limited to the foregoing:NYCRR
(a) Vendor will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework.
(b) Vendor will comply with the School District Data Security and Privacy Policy, Education Law § §2-d, and 8 NYCRR § 121XXXXX §000.
(c) Vendor will limit internal access to personally identifiable information to only those employees or subcontractors that need access to provide the contracted services.
(d) Vendor will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement.
(e) Vendor will not disclose any personally identifiable information to any other party without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law.
(f) Vendor will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody.
(g) Vendor will use encryption to protect personally identifiable information in its custody while in motion or at rest.
(h) Vendor will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit another party to do so.
(i) In the event Vendor engages a subcontractor to perform its contractual obligations, the data protection obligations imposed on the Vendor shall apply to the subcontractor.
Appears in 1 contract
Samples: Software Agreement
Protection of Confidential Data. Vendor shall provide its Services in a manner which protects Student Data (as defined by 8 NYCRR § §121.1(q)) and Teacher or Principal Data (as defined by 8 NYCRR § §121.1(r)) (hereinafter “Confidential Data”) in accordance with the requirements articulated under Federal, State and local laws and regulations, including but not limited to the foregoing:
(a) Vendor will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework.
(b) Vendor will comply with the School District Data Security and Privacy Policy, Education Law § §2-d, and 8 NYCRR § 121XXXXX §000.
(c) Vendor will limit internal access to personally identifiable information to only those employees or subcontractors that need access to provide the contracted services.
(d) Vendor will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement.
(e) Vendor will not disclose any personally identifiable information to any other party without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law.
(f) Vendor will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody.
(g) Vendor will use encryption to protect personally identifiable information in its custody while in motion or at rest.
(h) Vendor will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit another party to do so.
(i) In the event Vendor engages a subcontractor to perform its contractual obligations, the data protection obligations imposed on the Vendor shall apply to the subcontractor.
Appears in 1 contract
Samples: Software Agreement
Protection of Confidential Data. Vendor The Town shall provide its their Services in a manner which protects Student Data (as defined by 8 NYCRR § 121.1(q)) and Teacher or Principal Data (as defined by 8 NYCRR § 121.1(r)) (hereinafter “Confidential Data”) in accordance with the requirements articulated under Federal, New York State and local laws and regulations, including but not limited to the foregoing:
(a) Vendor The Town will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework.
(b) Vendor The Town will comply with the School District Data Security and Privacy Policy, Education Law § 2-d, and 8 NYCRR § §121.
(c) Vendor The Town will limit internal access to personally identifiable information to only those employees or subcontractors sub-contractors that need access to provide the contracted services.
(d) Vendor The Town will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement.
(e) Vendor The Town will not disclose any personally identifiable information to any other party without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law.
(f) Vendor The Town will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody.
(g) Vendor The Town will use encryption to protect personally identifiable information in its custody while in motion or at rest.
(h) Vendor The Town will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit another party to do so.
(i) In the event Vendor the Town engages a subcontractor to perform its their contractual obligations, the data protection obligations imposed on the Vendor Town shall apply to the subcontractor.
Appears in 1 contract
Protection of Confidential Data. Vendor shall provide its Services in a manner which protects Student Data (as defined by 8 NYCRR § §121.1(q)) and Teacher or Principal Data (as defined by 8 NYCRR § 121.1(r)) (hereinafter “Confidential Data”) in accordance with the requirements articulated under Federal, State and local laws and regulations, including but not limited to the foregoing:NYCRR
(a) Vendor will adopt technologies, safeguards and practices that align with the NIST Cybersecurity Framework.
(b) Vendor will comply with the School District Data Security and Privacy Policy, Education Law § §2-d, and 8 NYCRR § §121.
(c) Vendor will limit internal access to personally identifiable information to only those employees or subcontractors that need access to provide the contracted services.
(d) Vendor will not use the personally identifiable information for any purpose not explicitly authorized in this Agreement, provided Vendor may aggregate and anonymize Personal Data, in accordance with applicable Data Protection Laws and use such resulting data set for its purposes.
(e) Vendor will not disclose any personally identifiable information to any other party party. except for subcontractors and/or subprocessors permitted under (i) below, without the prior written consent of the parent or eligible student, unless otherwise authorized pursuant to applicable law.
(f) Vendor will maintain reasonable administrative, technical and physical safeguards to protect the security, confidentiality and integrity of personally identifiable information in its custody.
(g) Vendor will use encryption to protect personally identifiable information in its custody while in motion or at rest.
(h) Vendor will not sell personally identifiable information nor use or disclose it for any marketing or commercial purpose or facilitate its use or disclosure by any other party for any marketing or commercial purpose or permit authorize another party to do so.
(i) In the event Vendor engages a subcontractor or subprocessor to perform its contractual obligations, the data protection obligations imposed on the Vendor shall apply to ensure that the subcontractorapplicable subcontractor and/or subprocessor is bound by an appropriate confidentiality agreement.
Appears in 1 contract
Samples: Software Agreement