Common use of Security Acknowledgement Clause in Contracts

Security Acknowledgement. The prospective Contract will include security provisions addressing the following: A. Designating a primary point of contact that the Contractor will coordinate with relative to information security issues that may arise in any resulting Contract; B. Prohibiting the exposure of any Customer data without prior approval from the Customer’s primary contact; C. Prohibiting the access of any Customer data without the prior approval from the Customer’s primary contact; D. Granting the Customer the ability to conduct or use a third party to conduct security assessments to verify compliance with security requirements; E. Stating that ownership of Customer data will remain with the Customer; F. Stating that the Respondent will not use or redistribute any Customer information processed, stored, or transmitted by the Contractor except as specified in the Contract; G. Stating that at no time will Customer data be processed on or transferred to any portable or laptop computing device or any portable storage medium by the Contractor unless that device or storage medium is in use as part of the Contractor’s designated backup and recovery processes; H. Stating that at Contract termination, all Customer data will be returned to the Customer in a usable format to be agreed upon by the Customer and the Contractor; and I. Stating that at Contract termination, after all termination requirements have been met, the Contractor shall erase, destroy, and render unrecoverable all Customer data and certify in writing that these actions have been completed within specified Contract timeframes and that destruction will be performed according to National Institute of Standards and Technology, Special Publication 800-88, “Guidelines for Media Sanitization” (2006). See xxxx://xxxx.xxxx.xxx/. J. Section 7 (Security Acknowledgement) survives the termination of this contract.

Security Acknowledgement. The prospective Contract will include security provisions addressing the following: A. : Designating a primary point of contact that the Contractor will coordinate with relative to information security issues that may arise in any resulting Contract; B. ; Prohibiting the exposure of any Customer data without prior approval from the Customer’s primary contact; C. ; Prohibiting the access of any Customer data without the prior approval from the Customer’s primary contact; D. ; Granting the Customer the ability to conduct or use a third party to conduct security assessments to verify compliance with security requirements; E. ; Stating that ownership of Customer data will remain with the Customer; F. ; Stating that the Respondent will not use or redistribute any Customer information processed, stored, or transmitted by the Contractor except as specified in the Contract; G. ; Stating that at no time will Customer data be processed on or transferred to any portable or laptop computing device or any portable storage medium by the Contractor unless that device or storage medium is in use as part of the Contractor’s designated backup and recovery processes; H. ; Stating that at Contract termination, all Customer data will be returned to the Customer in a usable format to be agreed upon by the Customer and the Contractor; and I. and Stating that at Contract termination, after all termination requirements have been met, the Contractor shall erase, destroy, and render unrecoverable all Customer data and certify in writing that these actions have been completed within specified Contract timeframes and that destruction will be performed according to National Institute of Standards and Technology, Special Publication 800-88, “Guidelines for Media Sanitization” (2006). See xxxx://xxxx.xxxx.xxx/. J. xxxx://xxxx.xxxx.xxx/. Section 7 (Security Acknowledgement) survives the termination of this contract.