- A.6 Organization of Information Security. 6.1.1 Information security roles and responsibilities All information security responsibilities are defined and allocated.
- A.6 Organization of Information Security Sample Clauses
Related to - A.6 Organization of Information Security
Designation of Information Xxxxx shall clearly identify any portions of its submissions that it believes are trade secrets, or information that is commercial or financial and privileged or confidential, and therefore potentially exempt from disclosure under the Freedom of Information Act (FOIA), 5 U.S.C. § 552. Xxxxx shall refrain from identifying any information as exempt from disclosure if that information does not meet the criteria for exemption from disclosure under FOIA.
Collection of Information You authorize us to access and download information from your Meter or from your PC Postage account. We may disclose this information to the USPS or other authorized governmental entity. We won’t share with any third parties (except the USPS or other governmental entity) individually identifiable information that we obtain about you in this manner unless required to by law or court order. We may elect to share aggregate data about our clients’ postage usage with third parties.
Distribution of Information The Employer shall assure that the results of Labor Management Committees are distributed to affected managers and supervisors. The Union may distribute the results to the bargaining unit through exiting security briefings (i.e., roll call), bulletin boards and other appropriate venues. In the event that there are issues distributing LMC meeting results at security briefings, via bulletin boards, or other appropriate venues, the Union may seek assistance from the Executive Director of the Office of Personnel Services and Benefits, Department of Budget and Management, to resolve the issue to the satisfaction of the parties. In no instance shall the dissemination of information by the Union extend the time allotted for a security briefing or disrupt the primary purpose of the briefing.
Protection of Information E1 Data Protection Xxx X0 Official Secrets Acts 1911, 1989, Section 182 of the Finance Xxx 0000 E3 Confidentiality E4 Freedom of Information E5 Security of Confidential Information E6 Publicity, Media and Official Enquiries E7 Security E8 Intellectual Property Rights and Assigned Deliverables E9 Audit and the National Audit Office
Preservation of Information The Trustee shall preserve, in as current a form as is reasonably practicable, the names and addresses of Certificateholders contained in the most recent list furnished to the Trustee as provided in Section 7.14, and the names and addresses of Certificateholders received by the Trustee in its capacity as Registrar, if so acting. The Trustee may destroy any list furnished to it as provided in Section 7.14, upon receipt of a new list so furnished.
Dissemination of Information The Borrower authorizes each Lender to disclose to any Participant or Purchaser or any other Person acquiring an interest in the Loan Documents by operation of law (each a “Transferee”) and any prospective Transferee any and all information in such Lender’s possession concerning the creditworthiness of the Borrower and its Subsidiaries, including without limitation any information contained in any Reports; provided that each Transferee and prospective Transferee agrees to be bound by Section 9.11 of this Agreement.
Provision of Information (a) For so long as any of the Certificates of any Series or Class are “restricted securities” within the meaning of Rule 144(a)(3) under the Act, each of the Depositor, the Master Servicer and the Trustee agree to cooperate with each other to provide to any Certificateholders, and to any prospective purchaser of Certificates designated by such holder, upon the request of such holder or prospective purchaser, any information required to be provided to such holder or prospective purchaser to satisfy the condition set forth in Rule 144A(d)(4) under the Act. Any reasonable, out-of-pocket expenses incurred by the Trustee in providing such information shall be reimbursed by the Depositor.
Retention of Information You acknowledge and accept that the Bank will be required under the China Connect Rules to keep records in relation to Northbound trading for a period of not less than 20 years.
Security of Information Unless otherwise specifically authorized by the DOH Chief Information Security Officer, Contractor receiving confidential information under this contract assures that: • Encryption is selected and applied using industry standard algorithms validated by the National Institute of Standards and Technology (NIST) Cryptographic Algorithm Validation Program against all information stored locally and off-site. Information must be encrypted both in-transit and at rest and applied in such a way that it renders data unusable to anyone but authorized personnel, and the confidential process, encryption key or other means to decipher the information is protected from unauthorized access. • It is compliant with the applicable provisions of the Washington State Office of the Chief Information Officer (OCIO) policy 141, Securing Information Technology Assets, available at: xxxxx://xxxx.xx.xxx/policy/securing-information-technology-assets. • It will provide DOH copies of its IT security policies, practices and procedures upon the request of the DOH Chief Information Security Officer. • DOH may at any time conduct an audit of the Contractor’s security practices and/or infrastructure to assure compliance with the security requirements of this contract. • It has implemented physical, electronic and administrative safeguards that are consistent with OCIO security standard 141.10 and ISB IT guidelines to prevent unauthorized access, use, modification or disclosure of DOH Confidential Information in any form. This includes, but is not limited to, restricting access to specifically authorized individuals and services through the use of: o Documented access authorization and change control procedures; o Card key systems that restrict, monitor and log access; o Locked racks for the storage of servers that contain Confidential Information or use AES encryption (key lengths of 256 bits or greater) to protect confidential data at rest, standard algorithms validated by the National Institute of Standards and Technology (NIST) Cryptographic Algorithm Validation Program (CMVP); o Documented patch management practices that assure all network systems are running critical security updates within 6 days of release when the exploit is in the wild, and within 30 days of release for all others; o Documented anti-virus strategies that assure all systems are running the most current anti-virus signatures within 1 day of release; o Complex passwords that are systematically enforced and password expiration not to exceed 120 days, dependent user authentication types as defined in OCIO security standards; o Strong multi-factor authentication mechanisms that assure the identity of individuals who access Confidential Information; o Account lock-out after 5 failed authentication attempts for a minimum of 15 minutes, or for Confidential Information, until administrator reset; o AES encryption (using key lengths 128 bits or greater) session for all data transmissions, standard algorithms validated by NIST CMVP; o Firewall rules and network address translation that isolate database servers from web servers and public networks; o Regular review of firewall rules and configurations to assure compliance with authorization and change control procedures; o Log management and intrusion detection/prevention systems; o A documented and tested incident response plan Any breach of this clause may result in termination of the contract and the demand for return of all personal information.
Return of Information Upon the expiration or termination of this Agreement, each Party will, upon the written request of the other Party, return or destroy (at the option of the Party receiving the request) all confidential information, documents, manuals and other materials specified the other Party.
