Right of Review and Audit Sample Clauses

Right of Review and Audit. Upon request by the EA, Contractor shall provide the EA with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required to undergo an audit of its privacy and security safeguards, measures and controls as it pertains to alignment with the requirements of New York State laws and regulations, the EA’s policies applicable to Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at Contractor’s expense, and provide the audit report to the EA. Contractor may provide the EA with a recent industry standard independent audit report on Contractor’s privacy and security practices as an alternative to undergoing an audit.

Right of Review and Audit. 21.1 Consultant grants City or its designees the right to audit, examine or inspect, at City’s election, all of Consultant’s records relating to the performance of the Work under this Agreement during the term of this Agreement and during the retention period herein. The audit, examination or inspection may be performed by a City designee, which may include its internal auditors or an outside representative engaged by City. Consultant agrees to retain its records for a minimum of four (4) years, following the termination of this Agreement, unless there is an ongoing dispute under the contract; then, such retention period shall extend until final resolution of the dispute. “Consultant’s records” include any and all information, materials and data, of every kind and character, generated as a result of the Work under this Agreement. Example of Consultant records include, but are not limited to, xxxxxxxx, books, general ledger, cost ledgers, invoices, production sheets, documents, correspondence, meeting notes, subscriptions, agreements, purchase orders, leases, contracts, commitments, arrangements, notes, daily diaries, reports, drawings, receipts, vouchers, memoranda, time sheets, payroll records, policies, procedures, federal and state tax filings, for any issue in question, and any and all other agreements, sources of information and matters which may, in City’s judgment, have any bearing on or pertain to any matters, rights, duties or obligations under or covered by any Agreement Documents. 21.2 City agrees that it will exercise the right to audit, examine or inspect only during regular business hours. Consultant agrees to allow City’s designee access to all of Consultant’s Records, facilities and current or former employees of Consultant deemed necessary by City or its designee(s) to perform such audit, inspection or examination. Consultant also agrees to provide adequate and appropriate Work space necessary to City or its designees to conduct such audits, inspections or examinations. 21.3 Consultant shall include this audit clause in any Sub-Consultant, Sub-Consultant, supplier or vendor contract.

Right of Review and Audit. City may review any and all of the services performed by Consultant under this Contract. City is granted the right to audit, at City’s election, all of Consultant’s records and xxxxxxxx relating to the performance of this Contract. Consultant agrees to retain such records for a minimum of three (3) years following completion of this Contract. Any payment, settlement, satisfaction, or release made or provided during the course of performance of this Contract shall be subject to City’s rights as may be disclosed by an audit under this section.

Right of Review and Audit. Upon request by the EA, Contractor shall provide the EA with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In the event of a data breach, contractor may be required to undergo an audit of its privacy and security safeguards, measures and controls as it pertains to alignment with the requirements of New York State laws and regulations, the EA’s policies applicable to Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at Contractor’s expense, and provide the audit report to the EA. Contractor may provide the EA with a recent industry standard independent audit report on Contractor’s privacy and security practices as an alternative to undergoing an audit.

Right of Review and Audit. Upon request by JCSD, Contractor shall provide JCSD with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required to undergo an audit of its privacy and security safeguards, measures and controls as it pertains to alignment with the requirements of New York State laws and regulations, JCSD’s policies applicable to Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at Contractor’s expense, and provide the audit report to JCSD. Contractor may provide JCSD with a recent industry standard independent audit report on Contractor’s privacy and security practices as an alternative to undergoing an audit.

Right of Review and Audit. Upon request by the EA, Contractor shall provide the EA with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, subject to confidentiality obligations, after reasonable notice EA may request and Contractor may provide the EA with a recent industry standard independent audit report on Contractor’s privacy and security practices.

Right of Review and Audit. Upon request by the District, the Contractor will provide the District with copies of its policies and related procedures that pertain to the protection of PII and District Data. The policies and procedures may be made available in a manner that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required by the District to undergo an audit of Contractor’s privacy and security safeguards, measures and controls as they pertain to alignment with the requirements of applicable New York, federal and local laws, rules and regulations, the District policies applicable to the Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at the Contractor’s expense, and provide the written audit report to the District. The Contractor may provide the District with a recent industry standard audit report performed by an independent third party on the Contractor’s privacy and security practices as an alternative to undergoing an audit. The determination of whether the previously prepared audit report is “recent” will be determined by the District in its sole judgment.

Right of Review and Audit. Upon request by the EA, Contractor shall provide the EA with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required to undergo an audit of its privacy and security safeguards, measures and controls as it pertains to alignment with the requirements of New York State laws and regulations, the EA’s policies applicable to Contractor, and provide the audit report to the EA. Contractor may provide the EA with a recent industry standard independent audit report on Contractor’s privacy and security practices as an alternative to undergoing an audit.

Right of Review and Audit. Upon request by the District, Contractor shall provide the District with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required to undergo an audit of its privacy and security safeguards, measures and controls as it pertains to alignment with the requirements of New York State laws and regulations, the District’s policies applicable to Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at Contractor’s expense, and provide the audit report to the District. Contractor may provide the District with a recent industry standard independent audit report on Contractor’s privacy and security practices as an alternative to undergoing an audit.

Right of Review and Audit. Upon written request by the EA, Contractor shall provide the EA with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does applicable laws. Upon written request by the EA, Contractor may provide the EA with a recent such audit report is not available, Contractor will allow the EA, upon receipt of a written request protection of PII or any portion thereof. The Contractor will cooperate fully with the EA and provide access to staff, agents, reports and records as reasonably necessary for performing the audit. Audits conducted by EA under this provision shall not exceed one (1) per annum, and must be: (i) conducted disruption t (a) know the PII in order to provide the Services and the disclosure of PII shall be limited to the extent necessary to provide such Services. Contractor shall ensure that all such employees comply with the terms of this DPA and that subcontractors abide by data security obligations in the terms outlined below. (b) Contractor must ensure that each subcontractor performing functions pursuant to the Service Agreement where the subcontractor will receive or have access to PII is contractually bound by a written agreement that includes confidentiality and data security obligations equivalent to, consistent with, and no less protective than, those found in this DPA. (c) Contractor shall examine the data security and privacy measures of its subcontractors prior to utilizing the subcontractor. If at any point a subcontractor fails to materially comply with the data security and privacy requirements of this DPA, Contractor shall: remove such subcontractor and/or ensure that PII has been securely deleted and destroyed in accordance with this DPA. In the event there is an incident in which the subcontractor compromises PII, Contractor shall follow the Data Breach reporting requirements set forth herein. (d) Contractor shall take full responsibility for the acts and omissions of its employees and subcontractors. (e) Contractor must not disclose PII to any other party unless such disclosure is required by statute, court order or subpoena, and the Contractor makes a reasonable effort to notify the EA of the court order or subpoena in advance of compliance but in any case, provides notice to the EA no later than the time the PII is disclosed, unless such disclosure to the EA is expressly prohibited by the statute, court order or subpoena.