Compliance and Third-Party Certification Sample Clauses

Compliance and Third-Party Certification. The Solution shall comply with relevant standards like General Data Protection Regulation (GDPR), Criminal Justice Information Services (CJIS), Health Insurance Portability and Accountability Act (HIPAA), Family Educational Rights and Privacy Act, Personally Identifiable Information (PII) data requirements, Driver Privacy Protection Act, and third-party certifications such as Systems and Organizations Controls 2 (SOC 2) and International Organization for Standardization (ISO) 27001. The Department, Purchaser, or Customer may require Contractor(s) to execute security agreements, including but not limited to, CJIS riders or Business Associate Agreements as a condition of performance or purchase order issuance.
Sample 1Sample 2Sample 3See All (6)
AutoNDA by SimpleDocs
Compliance and Third-Party Certification. The Solution shall comply with relevant state and federal laws and standards such as the Health Insurance Portability and Accountability Act, Family Educational Rights and Privacy Act, Driver Privacy Protection Act, General Data Protection Regulation, and third-party certifications such as SOC 2 and ISO 27001.The Department, Purchaser, or Customer may require awarded Vendors(s) to execute security agreements, including but not limited to, Criminal Justice Information System (CJIS) riders or Business Associate Agreements as a condition of performance or purchase order issuance.
Sample 1Sample 2
Compliance and Third-Party Certification. The Solution shall comply with relevant standards like General Data Protection Regulation (GDPR), Criminal Justice Information Services (CJIS), Health Insurance Portability and Accountability Act (HIPAA), Family Educational Rights and Privacy Act, Personally Identifiable Information (PII) Endpoint Detection and Response Solution data requirements, Driver Privacy Protection Act, and third-party certifications such as Systems and Organizations Controls 2 (SOC 2) and International Organization for Standardization (ISO) 27001. The Department, Purchaser, or Customer may require Contractor(s) to execute security agreements, including but not limited to, CJIS riders or Business Associate Agreements as a condition of performance or purchase order issuance. SentinelOne Response: Singularity XDR supports these requirements and can be validated in our FedRAMP, ISO27001 and SOC2 reports, Privacy Policy and Data Sharing Agreements. We would entertain signing of Riders or BAA’s as needed.
Sample 1
Compliance and Third-Party Certification. The Solution shall comply with relevant standards like General Data Protection Regulation (GDPR), Criminal Justice Information Services (CJIS), Health Insurance Portability and Accountability Act (HIPAA), Family Educational Rights and Privacy Act, Personally Identifiable Information (PII) data requirements, Driver Privacy Protection Act, and third-party certifications such as Systems and Organizations Controls 2 (SOC 2) and International Organization for Standardization (ISO) 27001. The Department, Purchaser, or Customer may require Contractor(s) to execute security agreements, including but not limited to, CJIS riders or Business Associate Agreements as a condition of performance or purchase order issuance. Chronicle Sec Ops SIEM/SOAR platform architecture currently meets CJIS, ISO 27001, CJIS and FedRAMP Moderate accreditation standards, and is scheduled to meet DoD IL4 and FedRAMP High accreditation levels in 2024. The State of Florida Department of Management Services May 2023
Sample 1
Compliance and Third-Party Certification. The Solution shall comply with relevant standards like General Data Protection Regulation (GDPR), Criminal Justice Information Services (CJIS), Health Insurance Portability and Accountability Act (HIPAA), Family Educational Rights and Privacy Act, Personally Identifiable Information (PII) data requirements, Driver Privacy Protection Act, and third-party certifications such as Systems and Organizations Controls 2 (SOC 2) and International Organization for Standardization (ISO) 27001. The Department, Purchaser, or Customer may require Contractor(s) to execute security agreements, including but not limited to, CJIS riders or Business Associate Agreements as a condition of performance or purchase order issuance. Akamai was the first Content Delivery Network (CDN) to obtain a FedRAMP Moderate Joint Authorization Board P-ATO in 2013 and remains the most secure solution in the market for government agencies. Akamai’s solutions complies with a variety of global and regional information security compliance programs, such as: • FedRAMP: The Federal Risk and Authorization Management Program, U.S. Government Cloud Service Provider Authorization • HIPAA: Health Insurance Portability and Accountability Act, Protected Health InformationPCI DSS: Payment Card Industry Data Security Standard • SOC 2: System and Organization Controls 2, Type 1 and 2 • ISO 27001: International Organization for Standardization, Security Management Controls • ISO 27017: International Organization for Standardization, Public Cloud Security Controls • ISO 27018: International Organization for Standardization, Public Cloud Privacy Controls • ISO 27701: International Organization for Standardization, Privacy Management Controls xxxxx://xxx.xxxxxx.xxx/legal/compliance
Sample 1
Compliance and Third-Party Certification. Yes CRITICALSTART only ingests alerts. All logs and data remain within the client’s environment. We will provide a SOC2 Type II and PCI-DSS report. Additionally, we comply with GDPR and NIST CSF
Sample 1
Compliance and Third-Party Certification. The Solution shall comply with relevant state and federal laws and standards such as the Health Insurance Portability and Accountability Act, Family Educational Rights and Privacy Act, Driver Privacy Protection Act, General Data Protection Regulation, and third-party certifications such as SOC 2 and ISO 27001. The Department, Purchaser, or Customer may require awarded Vendors(s) to execute security agreements, including but not limited to, Criminal Justice Information System (CJIS) riders or Business Associate Agreements as a condition of performance or purchase order issuance. Armis is compliant with the Freedom of Information and Protection of Privacy Act - Armis does not store any personal information, PHI, or other type of traffic that would otherwise violate HIPAA, PCI, GLBA, etcetera. The company and the product is compliant with ISO 27001-2022, ISO 27018, SOC 2, UK Cyber Essentials, FedRAMP Moderate, DISA Impact Level 4*, TxRAMP, CJIS and CSA STAR Level 1. In terms of internal security governance, formal risk assessment processes have been embedded in our release management process. Our code and product environments are assessed weekly, and findings brought forward for remediation as part of the monthly release process. Exposure and risk levels are presented to executive leadership every two weeks. Armis employees handling personal data or systems storing and/or processing them are instructed and bound to abide by all relevant laws and contracts (e.g., General Data Protection).
Sample 1
AutoNDA by SimpleDocs

Related to Compliance and Third-Party Certification

  • COMPLIANCE AND CERTIFICATION 25.1 Each Party shall comply at its own expense with all Applicable Laws that relate to that Party’s obligations to the other Party under this Agreement. Nothing in this Agreement shall be construed as requiring or permitting either Party to contravene any mandatory requirement of Applicable Law.

  • Third-Party Certifications and Audits Upon Customer’s written request at reasonable intervals, and subject to the confidentiality obligations set forth in the Agreement and this DPA, Data Processor shall make available to Customer (or Customer’s independent, third-party auditor that is not a competitor of Data Processor) a copy of Data Processor’s then most recent third-party audits or certifications, as applicable (provided, however, that such audits, certifications and the results therefrom, including the documents reflecting the outcome of the audit and/or the certifications, shall only be used by Customer to assess compliance with this DPA and/or with applicable Data Protection Laws and Regulations, and shall not be used for any other purpose or disclosed to any third party without Data Processor’s prior written approval and, upon Data Processor's first request, Customer shall return all records or documentation in Customer's possession or control provided by Data Processor in the context of the audit and/or the certification). With respect to audits and inspections, the parties shall discuss in good faith and agree on the scope, timing and details of the audits and inspections. To the extent that Data Processor’s obligations in this section involve more than 8 hours/man of work, Customer shall bear the costs and expenses of complying with this clause.

  • E-VERIFY CERTIFICATION Pursuant to Executive Order RP-80, Engineer certifies and ensures that for all contracts for services, Engineer shall, to the extent permitted by law, utilize the United States Department of Homeland Security’s E-Verify system during the term of this agreement to determine the eligibility of:

  • Certification of Compliance The Owner may permit the use, prior to sampling and testing, of certain materials or assemblies when accompanied by manufacturer's certificates of compliance stating that such materials or assemblies fully comply with the requirements of the contract. The certificate shall be signed by the manufacturer. Each lot of such materials or assemblies delivered to the work must be accompanied by a certificate of compliance in which the lot is clearly identified. Materials or assemblies used on the basis of certificates of compliance may be sampled and tested at any time and if found not to be in conformity with contract requirements will be subject to rejection whether in place or not. The form and distribution of certificates of compliance shall be as approved by the Owner. When a material or assembly is specified by "brand name or equal" and the Contractor elects to furnish the specified "brand name", the Contractor shall be required to furnish the manufacturer's certificate of compliance for each lot of such material or assembly delivered to the work. Such certificate of compliance shall clearly identify each lot delivered and shall certify as to:

  • Independence and Objectivity Certification Prior to performing the first Quarterly Claims Review, and annually thereafter, the IRO shall submit to Practitioner a certification that the IRO has (a) evaluated its professional independence and objectivity with respect to the reviews required under this Section III.C and (b) concluded that it is, in fact, independent and objective, in accordance with the requirements specified in Appendix A to this IA. The IRO’s certification shall include a summary of all current and prior engagements between Practitioner and the IRO.

  • Non-compliance Penalty Certificate h) If any Non-compliance Penalty arises, the Supplier Development Manager shall issue a Non- compliance Penalty Certificate on the last day of each month during such Non-compliance indicating the Non-compliance Penalties which have accrued during that period.

  • Industry Certification Certified Pharmacy Technician Code: PTCBD001 College Credit: This Gold Standard Career Pathways Statewide Articulation Agreement guarantees the minimum award of course credits or a block of credit toward the above AAS/AS program is 9 hours of credit. This agreement does not preclude the awarding of additional credits by any college through local agreements.

  • CHILD SUPPORT CERTIFICATION Under Section 231.006, Texas Family Code, the Engineer certifies that the individual or business entity named in this contract, bid, or application is not ineligible to receive the specified grant, loan, or payment and acknowledges that this contract may be terminated and payment may be withheld if this certification is inaccurate. If the above certification is shown to be false, the Engineer is liable to the state for attorney’s fees, the cost necessary to complete the contract, including the cost of advertising and awarding a second contract, and any other damages provided by law or the contract. A child support obligor or business entity ineligible to receive payments because of a payment delinquency of more than thirty (30) days remains ineligible until: all arrearages have been paid; the obligor is in compliance with a written repayment agreement or court order as to any existing delinquency; or the court of continuing jurisdiction over the child support order has granted the obligor an exemption from Subsection (a) of Section 231.006, Texas Family Code, as part of a court- supervised effort to improve earnings and child support payments.

  • Management Certifications In addition to the responsibilities set forth in this CIA for all Covered Persons, certain employees for the U.S. Healthcare Supply DMEPOS Companies (Certifying Employees) are expected to monitor and oversee activities within their areas of authority and shall annually certify that the applicable department for the U.S. Healthcare Supply DMEPOS Companies is in compliance with applicable Federal health care program requirements and the obligations of this CIA. These Certifying Employees shall include, at a minimum, the following individuals at U.S. Healthcare Supply, LLC, Spectrum Diabetic Services, LLC, Heritage Diabetic Supply, Inc, and Dependable Diabetic Supply, LLC: any Covered Person with the title and job responsibilities of Chief Executive Officer, President, Compliance Officer, Chief Operating Officer, Chief Financial Officer, director, or manager. For each Reporting Period, each Certifying Employee shall sign a certification that states: “I have been trained on and understand the compliance requirements and responsibilities as they relate to [insert name of department], an area under my supervision. My job responsibilities include ensuring compliance with regard to the [insert name of department] with all applicable Federal health care program requirements, obligations of the Corporate Integrity Agreement, and [insert name of applicable entity] policies, and I have taken steps to promote such compliance. To the best of my knowledge, the [insert name of department] of [insert name of applicable entity] is in compliance with all applicable Federal health care program requirements and the obligations of the Corporate Integrity Agreement. I understand that this certification is being provided to and relied upon by the United States.” If any Certifying Employee is unable to provide such a certification, the Certifying Employee shall provide a written explanation of the reasons why he or she is unable to provide the certification outlined above. Within 90 days after the Effective Date, the U.S. Healthcare Supply DMEPOS Companies shall develop and implement a written process for Certifying Employees to follow for the purpose of completing the certification required by this section (e.g., reports that must be reviewed, assessments that must be completed, sub-certifications that must be obtained, etc. prior to the Certifying Employee making the required certification).

  • Notification of Non-Compliance If Seller is unable to comply with the obligations stated in this Section, Seller shall promptly notify Apple, and Apple may take any one or more of the following actions: (i) suspend the transfer of Confidential Data to Seller; (ii) require Seller to cease processing Confidential Data; (iii) demand the secure return or destruction of Confidential Data; and/or (iv) immediately terminate this Agreement.

Time is Money Join Law Insider Premium to draft better contracts faster.