Common use of Security Obligations Clause in Contracts

Security Obligations. The Vendor agrees to comply with the following security obligations as well as any other such obligations specified in the contract, including requirements set forth in any applicable Business Associate Agreement as may be attached to this Contract, or conveyed to him/her during the course of the Agreement. The Vendor agrees to comply with the following security obligations: A. Implement administrative, physical and technical safeguards in accordance with NIST standards that reasonably and appropriately protect the confidentiality, integrity and availability of any Confidential Information that is created, received, maintained, used, possessed, stored, accessed, viewed and/or transmitted on behalf of OIT or through OIT or any agency, instrumentality or political subdivision of the State of Maine Government; B. Unless otherwise authorized by OIT, Confidential Information may NOT be stored on personal (non-State) computing or other electronic or mobile storage devices or taken or removed in any form from OIT or the State; C. Vendor shall comply with all applicable federal and state laws governing confidentiality and/or privacy of information; D. Vendor shall comply with all applicable OIT policies and procedures including but not limited to those that provide for accessing, protecting, and preserving State assets; E. Access to any and all Confidential Information will be limited to only those authorized persons who need the Information to perform the services required under the Contract; F. Obtain fingerprint-based criminal history record checks for all Vendor's employees, agents and subcontractors when requested by OIT pursuant to federal and state statutory and regulatory directives, at the expense of the Vendor; G. Vendor shall instruct all personnel having access to Confidential Information about the confidential nature of the Information, the safeguards required to protect the Information, and the sanctions specified in federal and state law for unauthorized disclosure of said Information; and H. Vendor shall use only those access rights granted by OIT.

Security Obligations. The Vendor agrees to comply with the following security obligations as well as any other such obligations specified in the contract, including requirements set forth in any applicable Business Associate Agreement as may be attached to this Contract, or conveyed to him/her during the course of the Agreement. The Vendor agrees to comply with the following security obligations: A. Implement administrative, physical and technical safeguards in accordance with NIST standards that reasonably and appropriately protect the confidentiality, integrity and availability of any Confidential Information that is created, received, maintained, used, possessed, stored, accessed, viewed and/or transmitted on behalf of OIT or through OIT or any agency, instrumentality or political subdivision of the State of Maine Government; B. Unless otherwise authorized by OIT, Confidential Information may NOT be stored on personal (non-State) computing or other electronic or mobile storage devices or taken or removed in any form from OIT or the State; C. Vendor shall comply with all applicable federal and state laws governing confidentiality and/or privacy of information; D. Vendor shall comply with all applicable OIT policies and procedures including but not limited to those that provide for accessing, protecting, and preserving State assets; E. Access to any and all Confidential Information will be limited to only those authorized persons who need the Information to perform the services required under the Contract; F. Obtain X. Xxxxxx fingerprint-based criminal history record checks for all Vendor's employees, agents and subcontractors when requested by OIT pursuant to federal and state statutory and regulatory directives, at the expense of the Vendor; G. Vendor shall instruct all personnel having access to Confidential Information about the confidential nature of the Information, the safeguards required to protect the Information, and the sanctions specified in federal and state law for unauthorized disclosure of said Information; and H. Vendor shall use only those access rights granted by OIT.