Security of Suncorp Data Sample Clauses

Security of Suncorp Data. (a) The Supplier must take reasonable care (including adhering to security procedures notified by Suncorp) of Suncorp Data and with the preservation, installation or handling of it. (b) The Supplier must establish, maintain and enforce information security controls against the unauthorised access, destruction, loss, alteration, disclosure or misuse of Suncorp Data in the possession or control of the Supplier, and its subcontractors. These information security controls must be designed, implemented and tested appropriately having regard to the risk and potential consequences of unauthorised access, destruction, loss, alteration, disclosure or misuse of Suncorp Data. (c) The Supplier must comply with Suncorp’s security procedures that relate to Suncorp Data (as notified and provided by the Suncorp from time time). (d) The Supplier must regularly (and at least once per calendar year) audit and test its technology and information security controls to ensure the design effectiveness and operating effectiveness of the controls, and promptly take steps reasonably required to implement any recommendations arising out of such audits and testing. (e) The Supplier must provide Suncorp and its auditors and professional advisers with details of the information security controls implemented by the Supplier and the results of audits and testing completed under paragraph 11.3(d). The Supplier must cooperate with Suncorp and its auditors and professional advisers in connection with any evaluations, reviews, assurance testing and audits of the design and operating effectiveness of the information security controls of Suncorp and/or its suppliers.
AutoNDA by SimpleDocs
Security of Suncorp Data. (a) The Supplier must take reasonable care (including adhering to security procedures notified in writing by Suncorp) of Suncorp Data and with the preservation, installation or handling of it. (b) The Supplier must establish, maintain and enforce information security controls against the unauthorised access, destruction, loss, alteration, disclosure or misuse of Suncorp Data in the possession or control of the Supplier, and its Subcontractors. These information security controls must be designed, implemented and tested appropriately having regard to the risk and potential consequences of unauthorised access, destruction, loss, alteration, disclosure or misuse of Suncorp Data. (c) The Supplier must comply with Suncorp’s security procedures that relate to Suncorp Data and that are notified by Suncorp to the Supplier in writing at or before the commencement of this Agreement and as amended from time to time to the extent reasonably necessary for compliance by Suncorp with Applicable Laws or otherwise reasonably necessary to protect the legitimate interests of Suncorp and as reasonably notified and provided by Suncorp from time to time. (d) The Supplier must regularly (and at least once per calendar year) audit and test its technology and information security controls to ensure the design effectiveness and operating effectiveness of the controls, and promptly take steps reasonably required to implement any recommendations arising out of such audits and testing. (e) The Supplier must provide Suncorp and its auditors and professional advisers with details of the information security controls implemented by the Supplier and the results of audits and testing completed under paragraph 11.3(d), on request by Suncorp acting reasonably and in good faith. The Supplier must, on request by Suncorp, acting reasonably and in good faith, cooperate with Suncorp and its auditors and professional advisers in connection with any evaluations, reviews, assurance testing and audits of the design and operating effectiveness of the information security controls of Suncorp and/or its suppliers.

Related to Security of Suncorp Data

  • Security of Data a. Each of the parties shall: i. ensure as far as reasonably practicable, that Data is properly stored, is not accessible to unauthorised persons, is not altered, lost or destroyed and is capable of being retrieved only by properly authorised persons; ii. subject to the provisions of Sub-Clause 8.a. ensure that, in addition to any security, proprietary and other information disclosure provision contained in the Contract, Messages and Associated Data are maintained in confidence, are not disclosed or transmitted to any unauthorised person and are not used for any purpose other than that communicated by the sending party or permitted by the Contract; and iii. protect further transmission to the same degree as the originally transmitted Message and Associated Data when further transmissions of Messages and Associated Data are permitted by the Contract or expressly authorised by the sending party. b. The sending party shall ensure that Messages are marked in accordance with the requirements of the Contract. If a further transmission is made pursuant to Sub-Clause 3. a. iii. the sender shall ensure that such markings are repeated in the further transmission. c. The parties may apply special protection to Messages by encryption or by other agreed means, and may apply designations to the Messages for protective Interchange, handling and storage procedures. Unless the parties otherwise agree, the party receiving a Message so protected or designated shall use at least the same level of protection and protective procedures for any further transmission of the Message and its Associated Data for all responses to the Message and for all other communications by Interchange or otherwise to any other person relating to the Message. d. If either party becomes aware of a security breach or breach of confidence in relation to any Message or in relation to its procedures or systems (including, without limitation, unauthorised access to their systems for generation, authentication, authorisation, processing, transmission, storage, protection and file management of Messages) then it shall immediately inform the other party of such breach. On being informed or becoming aware of a breach the party concerned shall: i. immediately investigate the cause, effect and extent of such breach; ii. report the results of the investigation to the other party; and iii. use all reasonable endeavours to rectify the cause of such breach. e. Each party shall ensure that the contents of Messages that are sent or received are not inconsistent with the law, the application of which could restrict the content of a Message or limit its use, and shall take all necessary measures to inform without delay the other party if such an inconsistency arises.

  • Security of State Information The Contractor represents and warrants that it has implemented and it shall maintain during the term of this Contract the highest industry standard administrative, technical, and physical safeguards and controls consistent with NIST Special Publication 800-53 (version 3 or higher) and Federal Information Processing Standards Publication 200 and designed to (i) ensure the security and confidentiality of State Data; (ii) protect against any anticipated security threats or hazards to the security or integrity of the State Data; and (iii) protect against unauthorized access to or use of State Data. Such measures shall include at a minimum: (1) access controls on information systems, including controls to authenticate and permit access to State Data only to authorized individuals and controls to prevent the Contractor employees from providing State Data to unauthorized individuals who may seek to obtain this information (whether through fraudulent means or otherwise); (2) industry-standard firewall protection; (3) encryption of electronic State Data while in transit from the Contractor networks to external networks; (4) measures to store in a secure fashion all State Data which shall include multiple levels of authentication; (5) dual control procedures, segregation of duties, and pre-employment criminal background checks for employees with responsibilities for or access to State Data; (6) measures to ensure that the State Data shall not be altered or corrupted without the prior written consent of the State; (7) measures to protect against destruction, loss or damage of State Data due to potential environmental hazards, such as fire and water damage; (8) staff training to implement the information security measures; and (9) monitoring of the security of any portions of the Contractor systems that are used in the provision of the services against intrusion on a twenty-four (24) hour a day basis.

  • Security of Access Code You may use one (1) or more access codes with your electronic fund transfers. The access codes issued to you are for your security purposes. Any access codes issued to you are confidential and should not be disclosed to third parties or recorded on or with the card. You are responsible for safekeeping your access codes. You agree not to disclose or otherwise make your access codes available to anyone not authorized to sign on your accounts. If you authorize anyone to use your access codes, that authority shall continue until you specifically revoke such authority by notifying the Credit Union. You understand that any joint owner you authorize to use an access code may withdraw or transfer funds from any of your accounts. If you fail to maintain the security of these access codes and the Credit Union suffers a loss, we may terminate your EFT services immediately.

  • Continuity of Supply A Service Order will continue until terminated in accordance with this Agreement. A change to a Service Order will not initiate a new Service Order, or cause the existing Service Order to terminate, unless expressly agreed in writing. In particular, a change to a Service Order that is implemented by the LFC electronically and does not require a physical visit to a site or Interconnection Point will not cause the Service Order to terminate.

  • Security of processing (a) The data importer and, during transmission, also the data exporter shall implement appropriate technical and organisational measures to ensure the security of the data, including protection against a breach of security leading to accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access to that data (hereinafter ‘personal data breach’). In assessing the appropriate level of security, the Parties shall take due account of the state of the art, the costs of implementation, the nature, scope, context and purpose(s) of processing and the risks involved in the processing for the data subjects. The Parties shall in particular consider having recourse to encryption or pseudonymisation, including during transmission, where the purpose of processing can be fulfilled in that manner. In case of pseudonymisation, the additional information for attributing the personal data to a specific data subject shall, where possible, remain under the exclusive control of the data exporter. In complying with its obligations under this paragraph, the data importer shall at least implement the technical and organisational measures specified in Annex II. The data importer shall carry out regular checks to ensure that these measures continue to provide an appropriate level of security. (b) The data importer shall grant access to the personal data to members of its personnel only to the extent strictly necessary for the implementation, management and monitoring of the contract. It shall ensure that persons authorised to process the personal data have committed themselves to confidentiality or are under an appropriate statutory obligation of confidentiality. (c) In the event of a personal data breach concerning personal data processed by the data importer under these Clauses, the data importer shall take appropriate measures to address the breach, including measures to mitigate its adverse effects. The data importer shall also notify the data exporter without undue delay after having become aware of the breach. Such notification shall contain the details of a contact point where more information can be obtained, a description of the nature of the breach (including, where possible, categories and approximate number of data subjects and personal data records concerned), its likely consequences and the measures taken or proposed to address the breach including, where appropriate, measures to mitigate its possible adverse effects. Where, and in so far as, it is not possible to provide all information at the same time, the initial notification shall contain the information then available and further information shall, as it becomes available, subsequently be provided without undue delay. (d) The data importer shall cooperate with and assist the data exporter to enable the data exporter to comply with its obligations under Regulation (EU) 2016/679, in particular to notify the competent supervisory authority and the affected data subjects, taking into account the nature of processing and the information available to the data importer.

  • Servicer to Maintain Perfection and Priority The Servicer covenants that, in order to evidence the interests of CNHCR and Issuing Entity under this Agreement, Servicer shall take such action, or execute and deliver such instruments as may be necessary or advisable (including, without limitation, such actions as are requested by Issuing Entity) to maintain and perfect, as a first priority interest, Issuing Entity’s security interest in the Receivables. Servicer shall, from time to time and within the time limits established by law, prepare and present to Issuing Entity for Issuing Entity to authorize the Servicer to file all financing statements, amendments, continuations, financing statements in lieu of a continuation statement, terminations, partial terminations, releases or partial releases, or any other filings necessary or advisable to continue, maintain and perfect the Issuing Entity’s security interest in the Receivables as a first-priority interest (each a “Filing”). Issuing Entity shall promptly authorize in writing Servicer to, and Servicer shall, effect such Filing under the Uniform Commercial Code without the signature of CNHCR or Issuing Entity where allowed by applicable law.

  • Creation, Perfection and Priority of Liens The execution and delivery of the Collateral Documents by Loan Parties and Sponsors, together with (i) the actions taken on or prior to the date hereof pursuant to subsections 4.1, 4.2, 6.8 and 6.9 and (ii) the delivery to Administrative Agent of any Pledged Collateral not delivered to Administrative Agent at the time of execution and delivery of the applicable Collateral Document (all of which Pledged Collateral has been so delivered) are effective to create in favor of Administrative Agent for the benefit of Lenders, as security for the respective Secured Obligations (as defined in the applicable Collateral Document in respect of any Collateral), a valid and perfected First Priority Lien on all of the Collateral, and all filings and other actions necessary or desirable to perfect and maintain the perfection and First Priority status of such Liens have been duly made or taken and remain in full force and effect, other than the filing of any UCC financing statements or Mortgages delivered to Administrative Agent for filing or recording, as applicable (but not yet filed or recorded) and the periodic filing of UCC continuation statements in respect of UCC financing statements filed by or on behalf of Administrative Agent.

  • ACCESS TO SECURITY LOGS AND REPORTS Upon request, the Contractor shall provide access to security logs and reports to the State or Authorized User in a format as specified in the Authorized User Agreement.

  • Effect and invariability of the Clauses These Clauses set out appropriate safeguards, including enforceable data subject rights and effective legal remedies, pursuant to Article 46(1) and Article 46(2)(c) of Regulation (EU) 2016/679 and, with respect to data transfers from controllers to processors and/or processors to processors, standard contractual clauses pursuant to Article 28(7) of Regulation (EU) 2016/679, provided they are not modified, except to select the appropriate Module(s) or to add or update information in the Appendix. This does not prevent the Parties from including the standard contractual clauses laid down in these Clauses in a wider contract and/or to add other clauses or additional safeguards, provided that they do not contradict, directly or indirectly, these Clauses or prejudice the fundamental rights or freedoms of data subjects.

  • Creation, Perfection and Priority of Security Interests The representations and warranties regarding creation, perfection and priority of security interests in the Purchased Property, which are attached to this Agreement as Appendix B, are true and correct to the extent that they are applicable.

Draft better contracts in just 5 minutes Get the weekly Law Insider newsletter packed with expert videos, webinars, ebooks, and more!