Access Control Supplier will maintain an appropriate access control policy that is designed to restrict access to Accenture Data and Supplier assets to authorized Personnel. Supplier will require that all accounts have complex passwords that contain letters, numbers, and special characters, be changed at least every 90 days, and have a minimum length of 8 characters.
Website Hosting The Company shall host and maintain the website specified in paragraph (j)(1)(iii) of Rule 498A, so that the Fund Documents are publicly accessible, free of charge, at that website, in accordance with the conditions set forth in that paragraph, provided that the Fund and Underwriter fulfill their obligations under this Amendment.
Network Access Control The VISION Web Site and the Distribution Support Services Web Site (the “DST Web Sites”) are protected through multiple levels of network controls. The first defense is a border router which exists at the boundary between the DST Web Sites and the Internet Service Provider. The border router provides basic protections including anti-spoofing controls. Next is a highly available pair of stateful firewalls that allow only HTTPS traffic destined to the DST Web Sites. The third network control is a highly available pair of load balancers that terminate the HTTPS connections and then forward the traffic on to one of several available web servers. In addition, a second highly available pair of stateful firewalls enforce network controls between the web servers and any back-end application servers. No Internet traffic is allowed directly to the back-end application servers. The DST Web Sites equipment is located and administered at DST’s Winchester data center. Changes to the systems residing on this computer are submitted through the DST change control process. All services and functions within the DST Web Sites are deactivated with the exception of services and functions which support the transfer of files. All ports on the DST Web Sites are disabled, except those ports required to transfer files. All “listeners,” other than listeners required for inbound connections from the load balancers, are deactivated. Directory structures are “hidden” from the user. Services which provide directory information are also deactivated.
Control Notwithstanding any other provision of the Agreement, it is understood and agreed that the Trust shall at all times retain the ultimate responsibility for and control of all functions performed pursuant to this Agreement and has reserved the right to reasonably direct any action hereunder taken on its behalf by the Sub-Adviser.
Internal Control Effective control and accountability must be maintained for all cash, real and personal property, and other assets. Grantee must adequately safeguard all such property and must provide assurance that it is used solely for authorized purposes. Grantee must also have systems in place that provide reasonable assurance that the information is accurate, allowable, and compliant with the terms and conditions of this Agreement. 2 CFR 200.303.
Access Controls a. Authorized Access - DST shall have controls that are designed to maintain the logical separation such that access to systems hosting Fund Data and/or being used to provide services to Fund will uniquely identify each individual requiring access, grant access only to authorized personnel based on the principle of least privileges, and prevent unauthorized access to Fund Data.
Direct Website Communications Each of Holdings and the Borrower may, at its option, provide to the Administrative Agent any information, documents and other materials that it is obligated to furnish to the Administrative Agent pursuant to the Credit Documents, including, without limitation, all notices, requests, financial statements, financial, and other reports, certificates, and other information materials, but excluding any such communication that (A) relates to a request for a new, or a conversion of an existing, borrowing or other extension of credit (including any election of an interest rate or interest period relating thereto, (B) relates to the payment of any principal or other amount due under this Agreement prior to the scheduled date therefor, (C) provides notice of any default or event of default under this Agreement or (D) is required to be delivered to satisfy any condition precedent to the effectiveness of this Agreement and/or any borrowing or other extension of credit thereunder (all such non-excluded communications being referred to herein collectively as “Communications”), by transmitting the Communications in an electronic/soft medium in a format reasonably acceptable to the Administrative Agent to the Administrative Agent at an email address provided by the Administrative Agent from time to time; provided that (i) upon written request by the Administrative Agent, Holdings or the Borrower shall deliver paper copies of such documents to the Administrative Agent for further distribution to each Lender until a written request to cease delivering paper copies is given by the Administrative Agent and (ii) Holdings or the Borrower shall notify (which may be by facsimile or electronic mail) the Administrative Agent of the posting of any such documents and provide to the Administrative Agent by electronic mail electronic versions (i.e., soft copies) of such documents. Each Lender shall be solely responsible for timely accessing posted documents or requesting delivery of paper copies of such documents from the Administrative Agent and maintaining its copies of such documents. Nothing in this Section 13.17 shall prejudice the right of Holdings, the Borrower, the Administrative Agent, any other Agent or any Lender to give any notice or other communication pursuant to any Credit Document in any other manner specified in such Credit Document. The Administrative Agent agrees that the receipt of the Communications by the Administrative Agent at its e-mail address set forth above shall constitute effective delivery of the Communications to the Administrative Agent for purposes of the Credit Documents. Each Lender agrees that notice to it (as provided in the next sentence) specifying that the Communications have been posted to the Platform shall constitute effective delivery of the Communications to such Lender for purposes of the Credit Documents. Each Lender agrees (A) to notify the Administrative Agent in writing (including by electronic communication) from time to time of such Lender’s e-mail address to which the foregoing notice may be sent by electronic transmission and (B) that the foregoing notice may be sent to such e-mail address.
Notice of Sole Control If at any time the Secured Party delivers to the Financial Institution a Notice of Sole Control in substantially the form set forth in Exhibit A hereto (a “Notice of Sole Control”), the Financial Institution agrees that after receipt of such notice, it will take all instructions with respect to the Collateral Accounts solely from the Secured Party and shall not comply with instructions or entitlement orders of any other person.
Incident Event and Communications Management a. Incident Management/Notification of Breach - Transfer Agent shall develop, implement and maintain an incident response plan that specifies actions to be taken when Transfer Agent or one of its subcontractors suspects or detects that a party has gained material unauthorized access to Fund Data or systems or applications containing any Fund Data (the “Response Plan”). Such Response Plan shall include the following:
Change Control All systems processing and/or storing PHI COUNTY discloses to 14 CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY 15 must have a documented change control procedure that ensures separation of duties and protects the 16 confidentiality, integrity and availability of data.
