Right of Review and Audit. Upon request by JCSD, Contractor shall provide JCSD with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required to undergo an audit of its privacy and security safeguards, measures and controls as it pertains to alignment with the requirements of New York State laws and regulations, JCSD’s policies applicable to Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at Contractor’s expense, and provide the audit report to JCSD. Contractor may provide JCSD with a recent industry standard independent audit report on Contractor’s privacy and security practices as an alternative to undergoing an audit.
Appears in 4 contracts
Samples: Data Privacy Agreement, Data Privacy Agreement, Data Privacy Agreement
