Security Controls Annually, upon Fund’s reasonable request, DST shall provide Fund’s Chief Information Security Officer or his or her designee with a summary of its corporate information security policy and an opportunity to discuss DST’s information security measures, and a high level and non-confidential summary of any penetration testing related to the provision of in-scope services . DST shall review its Security Policy annually.
Quality control system (i) The Contractor shall establish a quality control mechanism to ensure compliance with the provisions of this Agreement (the “Quality Assurance Plan” or “QAP”).
(ii) The Contractor shall, within 30 (thirty) days of the Appointed Date, submit to the Authority’s Engineer its Quality Assurance Plan which shall include the following:
(a) organisation, duties and responsibilities, procedures, inspections and documentation;
(b) quality control mechanism including sampling and testing of Materials, test frequencies, standards, acceptance criteria, testing facilities, reporting, recording and interpretation of test results, approvals, check list for site activities, and proforma for testing and calibration in accordance with the Specifications for Road and Bridge Works issued by MORTH, relevant IRC specifications and Good Industry Practice; and
(c) internal quality audit system. The Authority’s Engineer shall convey its approval to the Contractor within a period of 21 (twenty-one) days of receipt of the QAP stating the modifications, if any, required, and the Contractor shall incorporate those in the QAP to the extent required for conforming with the provisions of this Clause 11.2.
(iii) The Contractor shall procure all documents, apparatus and instruments, fuel, consumables, water, electricity, labour, Materials, samples, and qualified personnel as are necessary for examining and testing the Project Assets and workmanship in accordance with the Quality Assurance Plan.
(iv) The cost of testing of Construction, Materials and workmanship under this Article 11 shall be borne by the Contractor.
Access Controls The system providing access to PHI COUNTY discloses to 20 CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY 21 must use role based access controls for all user authentications, enforcing the principle of least privilege.
Technical Security Controls 35 a. Workstation/Laptop encryption. All workstations and laptops that store PHI COUNTY 36 discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of 37 COUNTY either directly or temporarily must be encrypted using a FIPS 140-2 certified algorithm which 1 is 128bit or higher, such as AES. The encryption solution must be full disk unless approved by the 2 COUNTY.
CONTROL SYSTEM (a) SELLER shall provide and maintain a quality control system to an industry recognized Quality Standard and in compliance with any other specific quality requirements identified in this Contract.
(b) Records of all quality control inspection work by SELLER shall be kept complete and available to LOCKHEED XXXXXX and its customers.
Data Integrity Control Personal Data will remain intact, complete and current during processing activities.
Trade Controls DXC and Supplier will comply with all applicable export, import and trade-related laws and regulations of the United States and other nations. To this effect, Supplier warrants that: (i) if necessary and upon DXC’s request, it will provide DXC with technical specifications concerning commodities, software, technology or services covered by this agreement sufficient for DXC to determine the appropriate export and import classification of such items under applicable regulations; (ii) to the best of the Supplier’s knowledge, the Supplier is not listed on any U.S. Government international trade sanctions lists and that Supplier will give immediate notice to DXC in the event that it is so listed; and
Quality Control A. Controlled Affiliate agrees to use the Licensed Marks and Name only in connection with the licensed services and further agrees to be bound by the conditions regarding quality control shown in attached Exhibit A as they may be amended by BCBSA from time-to-time.
B. Controlled Affiliate agrees to comply with all applicable federal, state and local laws.
C. Controlled Affiliate agrees that it will provide on an annual basis (or more often if reasonably required by Plan or by BCBSA) a report or reports to Plan and BCBSA demonstrating Controlled Affiliate’s compliance with the requirements of this Agreement including but not limited to the quality control provisions of this paragraph and the attached Exhibit A.
D. Controlled Affiliate agrees that Plan and/or BCBSA may, from time-to-time, upon reasonable notice, review and inspect the manner and method of Controlled Affiliate’s rendering of service and use of the Licensed Marks and Name.
E. As used herein, a Controlled Affiliate is defined as an entity organized and operated in such a manner, that it meets the following requirements:
(1) A Plan or Plans authorized to use the Licensed Marks in the Service Area of the Controlled Affiliate pursuant to separate License Agreement(s) with BCBSA, other than such Controlled Affiliate’s License Agreement(s), (the “Controlling Plan(s)”), must have the legal authority directly or indirectly through wholly-owned subsidiaries to select members of the Controlled Affiliate’s governing body having not less than 50% voting control thereof and to:
(a) prevent any change in the articles of incorporation, bylaws or other establishing or governing documents of the Controlled Affiliate with which the Controlling Plan(s) do(es) not concur;
(b) exercise control over the policy and operations of the Controlled Affiliate at least equal to that exercised by persons or entities (jointly or individually) other than the Controlling Plan(s); and Notwithstanding anything to the contrary in (a) through (b) hereof, the Controlled Affiliate’s establishing or governing documents must also require written approval by the Controlling Plan(s) before the Controlled Affiliate can:
(i) change its legal and/or trade names;
(ii) change the geographic area in which it operates;
(iii) change any of the type(s) of businesses in which it engages;
(iv) create, or become liable for by way of guarantee, any indebtedness, other than indebtedness arising in the ordinary course of business;
(v) sell any assets, except for sales in the ordinary course of business or sales of equipment no longer useful or being replaced;
(vi) make any loans or advances except in the ordinary course of business;
(vii) enter into any arrangement or agreement with any party directly or indirectly affiliated with any of the owners or persons or entities with the authority to select or appoint members or board members of the Controlled Affiliate, other than the Plan or Plans (excluding owners of stock holdings of under 5% in a publicly traded Controlled Affiliate);
(viii) conduct any business other than under the Licensed Marks and Name;
(ix) take any action that any Controlling Plan or BCBSA reasonably believes will adversely affect the Licensed Marks and Name. In addition, a Plan or Plans directly or indirectly through wholly owned subsidiaries shall own at least 50% of any for-profit Controlled Affiliate.
(2) A Plan or Plans authorized to use the Licensed Marks in the Service Area of the Controlled Affiliate pursuant to separate License Agreement(s) with BCBSA, other than such Controlled Affiliate’s License Agreement(s), (the “Controlling Plan(s)”), have the legal authority directly or indirectly through wholly-owned subsidiaries to select members of the Controlled Affiliate’s governing body having more than 50% voting control thereof and to:
(a) prevent any change in the articles of incorporation, bylaws or other establishing or governing documents of the Controlled Affiliate with which the Controlling Plan(s) do(es) not concur;
(b) exercise control over the policy and operations of the Controlled Affiliate. In addition, a Plan or Plans directly or indirectly through wholly-owned subsidiaries shall own more than 50% of any for-profit Controlled Affiliate.
Administrative Controls The Contractor must have the following controls in place:
a. A documented security policy governing the secure use of its computer network and systems, and which defines sanctions that may be applied to Contractor staff for violating that policy.
b. If the Data shared under this agreement is classified as Category 4, the Contractor must be aware of and compliant with the applicable legal or regulatory requirements for that Category 4 Data.
c. If Confidential Information shared under this agreement is classified as Category 4, the Contractor must have a documented risk assessment for the system(s) housing the Category 4 Data.
Compliance Control Services (1) Support reporting to regulatory bodies and support financial statement preparation by making the Fund's accounting records available to the Trust, the Securities and Exchange Commission (the “SEC”), and the independent accountants.
(2) Maintain accounting records according to the 1940 Act and regulations provided thereunder.
(3) Perform its duties hereunder in compliance with all applicable laws and regulations and provide any sub-certifications reasonably requested by the Trust in connection with any certification required of the Trust pursuant to the Xxxxxxxx-Xxxxx Act of 2002 (the “SOX Act”) or any rules or regulations promulgated by the SEC thereunder, provided the same shall not be deemed to change USBFS’s standard of care as set forth herein.
(4) Cooperate with the Trust’s independent accountants and take all reasonable action in the performance of its obligations under this Agreement to ensure that the necessary information is made available to such accountants for the expression of their opinion on the Fund’s financial statements without any qualification as to the scope of their examination.
