Common use of Security and Privacy Compliance Clause in Contracts

Security and Privacy Compliance. 2.1. Provider shall keep all GLO Data received under the Contract and any documents related thereto strictly confidential. 2.2. Provider shall comply with all applicable federal and state privacy and data protection laws, as well as all other applicable regulations and directives. 2.3. Provider shall implement administrative, physical, and technical safeguards to protect GLO Data that are no less rigorous than accepted industry practices including, without limitation, the guidelines in the National Institute of Standards and Technology (“NIST”) Cybersecurity Framework Version 1. 1. All such safeguards shall comply with applicable data protection and privacy laws. 2.4. Provider will legally bind any subcontractors to the same requirements stated herein and obligations stipulated in the Contract and documents related thereto. Provider shall ensure that the requirements stated herein are imposed on any subcontractor of Provider’s subcontractor(s). 2.5. Provider will not share GLO Data with any third parties. 2.6. Provider will ensure that initial privacy and security training, and annual training thereafter, is completed by its employees or subcontractors that have access to GLO Data or who create, collect, use, process, store, maintain, disseminate, disclose, dispose, or otherwise personally handle PII on behalf of the agency. Provider agrees to maintain and, upon request, provide documentation of training completion. 2.7. Any GLO Data maintained or stored by Provider or any subcontractor must be stored on servers or other hardware located within the physical borders of the United States and shall not be accessed outside of the United States.

Security and Privacy Compliance. 2.1. Provider shall keep all GLO Data received under the Contract and any documents related thereto strictly confidential. 2.2. Provider shall comply with all applicable federal and state privacy and data protection laws, as well as all other applicable regulations and directives. 2.3. Provider shall implement administrative, physical, and technical safeguards to protect GLO Data that are no less rigorous than accepted industry practices including, without limitation, the guidelines in the National Institute of Standards and Technology (“NIST”) Cybersecurity Framework Version 1. 1. All such safeguards shall comply with applicable data protection and privacy laws. 2.4. Provider will legally bind any subcontractors Subcontractors to the same requirements stated herein and obligations stipulated in the Contract and documents related thereto. Provider shall ensure that the requirements stated herein are imposed on any subcontractor Subcontractor of Provider’s subcontractor(sSubcontractor(s). 2.5. Provider will not share GLO PII or SPI Data with any third parties, except as necessary for Provider’s performance under the Contract. 2.6. Provider will ensure that initial privacy and security training, and annual training thereafter, is completed by its employees or subcontractors Subcontractors that have access to GLO Data or who create, collect, use, process, store, maintain, disseminate, disclose, dispose, or otherwise personally handle PII and/or SPI on behalf of the agency. Provider agrees to maintain and, upon request, provide documentation of training completion. 2.7. Any GLO Data maintained or stored by Provider or any subcontractor Subcontractor must be stored on servers or other hardware located within the physical borders of the United States and shall not be accessed outside of the United States.

Security and Privacy Compliance. 2.1. Provider shall keep all GLO Data received under the Contract and any documents related thereto strictly confidential. 2.2. Provider shall comply with all applicable federal and state privacy and data protection laws, as well as all other applicable regulations and directivesregulations. 2.3. Provider shall implement administrative, physical, and technical safeguards to protect GLO Data that are no less rigorous than accepted industry practices including, without limitation, the guidelines in the National Institute of Standards and Technology (“NIST”) Cybersecurity Framework Version 1. 1. All such safeguards shall comply with applicable data protection and privacy laws. 2.4. Provider will legally bind any subcontractors contractor(s)/subcontractor(s) to the same requirements stated herein and obligations stipulated in the Contract and documents related thereto. Provider shall ensure that the requirements stated herein are imposed on any contractor/subcontractor of Provider’s subcontractor(s). 2.5. With the exception of contractors and subcontractors as they are addressed in Section 2.4, Provider will not share GLO Data with any third parties, except as necessary for Provider’s performance under the Contract and upon the express written consent of the GLO’s Information Security Officer or his/her authorized designee. 2.6. Provider will ensure that initial privacy and security training, and annual training training, thereafter, is completed by its employees or contractor/subcontractors that have access to GLO Data or who create, collect, use, process, store, maintain, disseminate, disclose, dispose, or otherwise personally handle PII and/or SPI on behalf of the agencyGLO. Provider agrees to shall maintain and, upon request, provide documentation of training completion. 2.7. Any GLO Data maintained or stored by Provider or any subcontractor must be stored on servers or other hardware located within the physical borders of the United States and shall not be accessed outside of the United States.

Security and Privacy Compliance. 2.1. Provider Contractor shall keep all GLO Data received under the Contract and any documents related thereto strictly confidential. 2.2. Provider Contractor shall comply with all applicable federal and state privacy and data protection laws, as well as all other applicable regulations and directives. 2.3. Provider Contractor shall implement administrative, physical, and technical safeguards to protect GLO Data that are no less rigorous than accepted industry practices including, without limitation, the guidelines in the National Institute of Standards and Technology (“NIST”) Cybersecurity Framework Version 1. 1. All such safeguards shall comply with applicable data protection and privacy laws. 2.4. Provider Contractor will legally bind any subcontractors Subcontractors to the same requirements stated herein and obligations stipulated in the Contract and documents related thereto. Provider Contractor shall ensure that the requirements stated herein are imposed on any subcontractor Subcontractor of ProviderContractor’s subcontractor(sSubcontractor(s). 2.5. Provider Contractor will not share GLO PII or SPI Data with any third parties, except as necessary for Contractor’s performance under the Contract. 2.6. Provider Contractor will ensure that initial privacy and security training, and annual training thereafter, is completed by its employees or subcontractors Subcontractors that have access to GLO Data or who create, collect, use, process, store, maintain, disseminate, disclose, dispose, or otherwise personally handle PII and/or SPI on behalf of the agency. Provider Contractor agrees to maintain and, upon request, provide documentation of training completion. 2.7. Any GLO Data maintained or stored by Provider Contractor or any subcontractor Subcontractor must be stored on servers or other hardware located within the physical borders of the United States and shall not be accessed outside of the United States.

Security and Privacy Compliance. 2.1. Provider shall keep all GLO Data received under the Contract and any documents related thereto strictly confidential. 2.2. Provider shall comply with all applicable federal and state privacy and data protection laws, as well as all other applicable regulations and directives. 2.3. Provider shall implement administrative, physical, and technical safeguards to protect GLO Data that are no less rigorous than accepted industry practices including, without limitation, the guidelines in the National Institute of Standards and Technology (“NIST”) Cybersecurity Framework Version 1. 11.1. All such safeguards shall comply with applicable data protection and privacy laws. 2.4. Provider will legally bind any subcontractors Subcontractors to the same requirements stated herein and obligations stipulated in the Contract and documents related thereto. Provider shall ensure that the requirements stated herein are imposed on any subcontractor Subcontractor of Provider’s subcontractor(sSubcontractor(s). 2.5. Provider will not share GLO Data with any third parties. 2.6. Provider will ensure that initial privacy and security training, and annual training thereafter, is completed by its employees or subcontractors Subcontractors that have access to GLO Data or who create, collect, use, process, store, maintain, disseminate, disclose, dispose, or otherwise personally handle PII and/or SPI on behalf of the agency. Provider agrees to maintain and, upon request, provide documentation of training completion. 2.7. Any GLO Data maintained or stored by Provider or any subcontractor Subcontractor must be stored on servers or other hardware located within the physical borders of the United States and shall not be accessed outside of the United States.

Security and Privacy Compliance. 2.1. Provider shall keep all GLO Data received under the Contract and any documents related thereto strictly confidential. 2.2. Provider shall comply with all applicable federal and state privacy and data protection laws, as well as all other applicable regulations and directives. 2.3. Provider shall implement administrative, physical, and technical safeguards to protect GLO Data that are no less rigorous than accepted industry practices including, without limitation, the guidelines in the National Institute of Standards and Technology (“NIST”) Cybersecurity Framework Version 1. 11.1. All such safeguards shall comply with applicable data protection and privacy laws. 2.4. Provider will legally bind any subcontractors Subcontractors to the same requirements stated herein and obligations stipulated in the Contract and documents related thereto. Provider shall ensure that the requirements stated herein are imposed on any subcontractor Subcontractor of Provider’s subcontractor(sSubcontractor(s). 2.5. Provider will not share GLO PII or SPI Data with any third parties, except as necessary for Provider’s performance under the Contract. 2.6. Provider will ensure that initial privacy and security training, and annual training thereafter, is completed by its employees or subcontractors Subcontractors that have access to GLO Data or who create, collect, use, process, store, maintain, disseminate, disclose, dispose, or otherwise personally handle PII and/or SPI on behalf of the agency. Provider agrees to maintain and, upon request, provide documentation of training completion. 2.7. Any GLO Data maintained or stored by Provider or any subcontractor Subcontractor must be stored on servers or other hardware located within the physical borders of the United States and shall not be accessed outside of the United States.

Security and Privacy Compliance. 2.1. Provider shall keep all GLO Data received under the Contract and any documents related thereto strictly confidential. 2.2. Provider shall comply with all applicable federal and state privacy and data protection laws, as well as all other applicable regulations and directives. 2.3. Provider shall implement administrative, physical, and technical safeguards to protect GLO Data that are no less rigorous than accepted industry practices including, without limitation, the guidelines in the National Institute of Standards and Technology (“NIST”) Cybersecurity Framework Version 1. 1. All such safeguards shall comply with applicable data protection and privacy laws. 2.4. Provider will legally bind any subcontractors Subcontractors to the same requirements stated herein and obligations stipulated in the Contract and documents related thereto. Provider shall ensure that the requirements stated herein are imposed on any subcontractor Subcontractor of Provider’s subcontractor(sSubcontractor(s). 2.5. Provider will not share GLO Data with any third parties. 2.6. Provider will ensure that initial privacy and security training, and annual training thereafter, is completed by its employees or subcontractors Subcontractors that have access to GLO Data or who create, collect, use, process, store, maintain, disseminate, disclose, dispose, or otherwise personally handle PII and/or SPI on behalf of the agency. Provider agrees to maintain and, upon request, provide documentation of training completion. 2.7. Any GLO Data maintained or stored by Provider or any subcontractor Subcontractor must be stored on servers or other hardware located within the physical borders of the United States and shall not be accessed outside of the United States.

Security and Privacy Compliance. 2.1. Provider shall keep all and GLO Data received under the Contract and any documents related thereto strictly confidential. 2.2. Provider shall comply with all applicable federal and state privacy and data protection laws, as well as all other applicable regulations and directivesregulations. 2.3. Provider shall implement administrative, physical, and technical safeguards to protect GLO Data that are no less rigorous than accepted industry practices including, without limitation, the guidelines in the National Institute of Standards and Technology (“NIST”) NIST Cybersecurity Framework Version 1. 1Framework. All such safeguards shall comply with applicable data protection and privacy laws. 2.4. Provider will legally bind any subcontractors to the same requirements stated herein and obligations stipulated in Provider's contract with the Contract and documents related theretoGLO. Provider shall ensure that the requirements stated herein are imposed on any subcontractor of Provider’s subcontractor(s). 2.5. Provider will not share GLO Data with any third parties. 2.6. Provider will ensure that initial privacy and security training, and annual training thereafter, is completed by its employees or subcontractors that have access to GLO Data or who create, collect, use, process, store, maintain, disseminate, disclose, dispose, or otherwise handle personally handle PII on behalf of the agency. Provider agrees to maintain and, upon request, provide documentation of training completion. 2.7. Any GLO Data maintained or stored by Provider or any subcontractor subcontract must be stored on servers or other hardware located within the physical borders of the United States and shall not be accessed outside of the United States.

Security and Privacy Compliance. 2.1. Provider shall keep all and GLO Data received under the Contract and any documents related thereto strictly confidential. 2.2. Provider shall comply with all applicable federal and state privacy and data protection laws, as well as all other applicable regulations and directivesregulations. 2.3. Provider shall implement administrative, physical, and technical safeguards to protect GLO Data that are no less rigorous than accepted industry practices including, without limitation, the guidelines in the National Institute of Standards and Technology (“NIST”) NIST Cybersecurity Framework Version 1. 1Framework. All such safeguards shall comply with applicable data protection and privacy laws. 2.4. Provider will legally bind any subcontractors to the same requirements stated herein and obligations stipulated in Provider's contract with the Contract and documents related theretoGLO. Provider shall ensure that the requirements stated herein are imposed on any subcontractor of Provider’s subcontractor(s). 2.5. Provider will not share GLO Data with any third partiesparties except as permitted by the Contract or otherwise required by applicable law or regulation. 2.6. Provider will ensure that initial privacy and security training, and annual training thereafter, is completed by its employees or subcontractors that have access to GLO Data or who create, collect, use, process, store, maintain, disseminate, disclose, dispose, or otherwise handle personally handle PII on behalf of the agency. Provider agrees to maintain and, upon request, provide documentation of training completion. 2.7. Any GLO Data maintained or stored by Provider or any subcontractor subcontract must be stored on servers or other hardware located within the physical borders of the United States and shall not be accessed outside of the United States.

Security and Privacy Compliance. 2.1. 2.1 Provider shall keep all GLO Data received under the Contract and any documents related thereto strictly confidential. 2.2. 2.2 Provider shall comply with all applicable federal and state privacy and data protection laws, as well as all other applicable regulations and directivesregulations. 2.3. 2.3 Provider shall implement administrative, physical, and technical safeguards designed to protect GLO Data that are no less rigorous than accepted industry practices including, without limitation, the guidelines in the National Institute of Standards and Technology (“NIST”) NIST Cybersecurity Framework Version 1. 1Framework. All such safeguards shall comply with applicable data protection and privacy laws. 2.4. 2.4 Provider will legally bind any subcontractors to the same requirements stated herein and obligations stipulated in Provider’s contract with the Contract and documents related theretoGLO. Provider shall ensure that the requirements stated herein are imposed on any subcontractor of Provider’s subcontractor(s). 2.5. 2.5 Provider will not share GLO Data with any third partiesparties (except (a) Provider’s affiliates and contractors to the extent necessary to perform this Contract and (b) as required by applicable law). 2.6. 2.6 Provider will ensure that initial privacy and security training, and annual training thereafter, is completed by its employees or subcontractors that have access to GLO Data or who create, collect, use, process, store, maintain, disseminate, disclose, dispose, or otherwise personally handle PII on behalf of the agency. Provider agrees to maintain and, upon request, provide documentation of training completion. 2.7. 2.7 Any GLO Data maintained or stored by Provider or any subcontractor must be stored on servers or other hardware located within the physical borders of the United States and shall not be accessed outside of the United States.

Security and Privacy Compliance. 2.1. Provider shall keep all and GLO Data received under the Contract and any documents related thereto strictly confidential. 2.2. Provider shall comply with all applicable federal and state privacy and data protection laws, as well as all other applicable regulations and directivesregulations. 2.3. Provider shall implement administrative, physical, and technical safeguards to protect GLO Data that are no less rigorous than accepted industry practices including, without limitation, the guidelines in the National Institute of Standards and Technology (“NIST”) NIST Cybersecurity Framework Version 1. 1Framework. All such safeguards shall comply with applicable data protection and privacy laws. 2.4. Provider will legally bind any subcontractors to the same requirements stated herein and obligations stipulated in Provider's contract with the Contract and documents related theretoGLO. Provider shall ensure that the requirements stated herein are imposed on any subcontractor of Provider’s subcontractor(s). 2.5. Provider will not share GLO Data with any third parties. 2.6. Provider will ensure that initial privacy and security training, and annual training thereafter, is completed by its employees or subcontractors that have access to GLO Data or who create, collect, use, process, store, maintain, disseminate, disclose, dispose, or otherwise handle personally handle PII on behalf of the agency. Provider agrees to maintain and, upon request, provide documentation of training completion. 2.7. Any GLO Data maintained or stored by Provider or any subcontractor subcontract must be stored on servers or other hardware located within the physical borders of the United States and shall not be accessed outside of the United States.