User Identification and Password Controls. Any and all users of any system providing access to PSEI or PHI must be issued a unique user name and password. Usernames must be promptly disabled, deleted or have the password associated therewith changed within twenty-four (24) hours after the transfer or termination of an employee with knowledge of the password. Passwords must be a non-dictionary word that has at least eight (8) characters, and must not be shared or stored in readable format on any computer. Passwords must be changed at least every ninety (90) days, preferably every sixty (60) days. Passwords must be immediately changed if revealed or compromised. Passwords must be composed of characters from at least three (3) of the following four (4) groups from the standard keyboard: • Upper case letters (A-Z); • Lower case letters (a-z); • Arabic numerals (0-9); • Non-alphanumeric characters (punctuation symbols).
Appears in 6 contracts
Samples: Professional Services Agreement, Local Implementation Agreement, Local Implementation Agreement
