Provider Information Security Policy. Provider shall establish and maintain a formal, documented, mandated, Provider-wide information security program, including security policies, standards and procedures (collectively “Provider’s Information Security Policy”). Provider must communicate Provider’s Information Security Policy to all applicable Provider Personnel in a relevant, accessible, and understandable form, and regularly review and evaluate it to ensure its operational effectiveness, compliance with all applicable laws and regulations, and to address new threats and risks.
Appears in 3 contracts
Samples: Participating Addendum, Participating Addendum, Participating Addendum
Provider Information Security Policy. Provider shall establish and maintain a formal, documented, mandated, Provider-wide information security program, including security policies, standards and procedures (collectively “Provider’s Information Security Policy”). Provider must communicate Provider’s Information Security Policy to all applicable Provider Personnel in a relevant, accessible, and understandable form, and regularly review and evaluate it to ensure its operational effectiveness, compliance with all applicable laws and regulations, and to address new threats and risks.
Appears in 2 contracts
Samples: Participating Addendum, Participating Addendum
Provider Information Security Policy. Provider shall establish and maintain a formal, documented, mandated, Provider-wide information security program, including security policies, standards and procedures (collectively “Provider’s Information Security Policy”). Provider must communicate Provider’s Information Security Policy to all applicable Provider Personnel in a relevant, accessible, and understandable form, and regularly review and evaluate it to ensure its operational effectiveness, compliance with all applicable laws and regulations, and to address new threats and risksandrisks.
Appears in 1 contract
Samples: Participating Addendum
