Compliance and Third-Party Certification Clause Samples

Compliance and Third-Party Certification. The Solution shall comply with relevant standards like General Data Protection Regulation (GDPR), Criminal Justice Information Services (CJIS), Health Insurance Portability and Accountability Act (HIPAA), Family Educational Rights and Privacy Act, Personally Identifiable Information (PII) data requirements, Driver Privacy Protection Act, and third-party certifications such as Systems and Organizations Controls 2 (SOC 2) and International Organization for Standardization (ISO) 27001. The Department, Purchaser, or Customer may require Contractor(s) to execute security agreements, including but not limited to, CJIS riders or Business Associate Agreements as a condition of performance or purchase order issuance.
Compliance and Third-Party Certification. The Solution shall comply with relevant state and federal laws and standards such as the Health Insurance Portability and Accountability Act, Family Educational Rights and Privacy Act, Driver Privacy Protection Act, General Data Protection Regulation, and third-party certifications such as SOC 2 and ISO 27001.The Department, Purchaser, or Customer may require awarded Vendors(s) to execute security agreements, including but not limited to, Criminal Justice Information System (CJIS) riders or Business Associate Agreements as a condition of performance or purchase order issuance.
Compliance and Third-Party Certification. ‌ Chronicle Sec Ops SIEM/SOAR platform architecture currently meets CJIS, ISO 27001, CJIS and FedRAMP Moderate accreditation standards, and is scheduled to meet DoD IL4 and FedRAMP High accreditation levels in 2024. The State of Florida Department of Management Services May 2023
Compliance and Third-Party Certification. The Solution shall comply with relevant standards like General Data Protection Regulation (GDPR), Criminal Justice Information Services (CJIS), Health Insurance Portability and Accountability Act (HIPAA), Family Educational Rights and Privacy Act, Personally Identifiable Information (PII) Endpoint Detection and Response Solution data requirements, Driver Privacy Protection Act, and third-party certifications such as Systems and Organizations Controls 2 (SOC 2) and International Organization for Standardization (ISO) 27001. The Department, Purchaser, or Customer may require Contractor(s) to execute security agreements, including but not limited to, CJIS riders or Business Associate Agreements as a condition of performance or purchase order issuance. SentinelOne Response: Singularity XDR supports these requirements and can be validated in our FedRAMP, ISO27001 and SOC2 reports, Privacy Policy and Data Sharing Agreements. We would entertain signing of Riders or BAA’s as needed.
Compliance and Third-Party Certification. The Solution shall comply with relevant state and federal laws and standards such as the Health Insurance Portability and Accountability Act, Family Educational Rights and Privacy Act, Driver Privacy Protection Act, General Data Protection Regulation, and third-party certifications such as SOC 2 and ISO 27001. The Department, Purchaser, or Customer may require awarded Vendors(s) to execute security agreements, including but not limited to, Criminal Justice Information System (CJIS) riders or Business Associate Agreements as a condition of performance or purchase order issuance. Armis is compliant with the Freedom of Information and Protection of Privacy Act - Armis does not store any personal information, PHI, or other type of traffic that would otherwise violate HIPAA, PCI, GLBA, etcetera. The company and the product is compliant with ISO 27001-2022, ISO 27018, SOC 2, UK Cyber Essentials, FedRAMP Moderate, DISA Impact Level 4*, TxRAMP, CJIS and CSA STAR Level 1. In terms of internal security governance, formal risk assessment processes have been embedded in our release management process. Our code and product environments are assessed weekly, and findings brought forward for remediation as part of the monthly release process. Exposure and risk levels are presented to executive leadership every two weeks. Armis employees handling personal data or systems storing and/or processing them are instructed and bound to abide by all relevant laws and contracts (e.g., General Data Protection).
Compliance and Third-Party Certification. Yes CRITICALSTART only ingests alerts. All logs and data remain within the client’s environment. We will provide a SOC2 Type II and PCI-DSS report. Additionally, we comply with GDPR and NIST CSF