{"component": "clause", "props": {"groups": [{"snippet": "The Contractor shall perform an independent audit of its data centers at least annually at its expense, and provide an unredacted version of the audit report upon request to a Purchasing Entity. The Contractor may remove its proprietary information from the unredacted version. A Service Organization Control (SOC) 2 audit report or approved equivalent sets the minimum level of a third-party audit.", "size": 29, "samples": [{"hash": "iZT93nFOTht", "uri": "/contracts/iZT93nFOTht#data-center-audit", "label": "Cooperative Contract", "score": 32.5646286011, "published": true}, {"hash": "2GHJh27K7Si", "uri": "/contracts/2GHJh27K7Si#data-center-audit", "label": "Professional Services", "score": 30.5178279877, "published": true}, {"hash": "kEfcmmud66D", "uri": "/contracts/kEfcmmud66D#data-center-audit", "label": "Professional Services", "score": 29.8718090057, "published": true}], "snippet_links": [{"key": "the-contractor-shall", "type": "clause", "offset": [0, 20]}, {"key": "independent-audit", "type": "clause", "offset": [32, 49]}, {"key": "data-centers", "type": "clause", "offset": [57, 69]}, {"key": "audit-report", "type": "definition", "offset": [145, 157]}, {"key": "upon-request", "type": "definition", "offset": [158, 170]}, {"key": "purchasing-entity", "type": "clause", "offset": [176, 193]}, {"key": "the-contractor-may", "type": "clause", "offset": [195, 213]}, {"key": "information-from", "type": "clause", "offset": [237, 253]}, {"key": "organization-control", "type": "clause", "offset": [288, 308]}, {"key": "approved-equivalent", "type": "definition", "offset": [333, 352]}, {"key": "minimum-level", "type": "definition", "offset": [362, 375]}], "hash": "7e61cb18d0e3cd0bcba826d3217c1873", "id": 1}, {"snippet": "The Provider shall have an independent third party audit of its data center(s) performed at least annually at their own expense, and provide the audit report to the State upon request.", "size": 2, "samples": [{"hash": "6HXj1VUjRVr", "uri": "/contracts/6HXj1VUjRVr#data-center-audit", "label": "Cover Packet to the Software Publisher/Services Provider Terms and Conditions", "score": 35.1507053869, "published": true}, {"hash": "bvMrP2e4m9a", "uri": "/contracts/bvMrP2e4m9a#data-center-audit", "label": "Scientific Products Agreement", "score": 33.6493759155, "published": true}], "snippet_links": [{"key": "the-provider-shall", "type": "clause", "offset": [0, 18]}, {"key": "third-party-audit", "type": "clause", "offset": [39, 56]}, {"key": "its-data", "type": "definition", "offset": [60, 68]}, {"key": "report-to", "type": "clause", "offset": [151, 160]}, {"key": "the-state", "type": "clause", "offset": [161, 170]}, {"key": "upon-request", "type": "definition", "offset": [171, 183]}], "hash": "9c9023d5e35aa3cff75c3dde699f685d", "id": 3}, {"snippet": "From time to time, but at least once per year, the Service Provider shall retain external auditors to verify its security measures (e.g., in a Statement on Standards for Attestation Engagements (SSAE) No. 16 Service Organization Control (SOC) 2 Type II audit of its data centers, or its successor or similar audit as determined by Service Provider) at its own expense. The Service Provider shall provide a version of the report(s) issued by the external auditors (which may or may not be redacted) upon request. The Service Provider may or may not remove its proprietary information from the redacted version; the State acknowledges that such information is Confidential Information and subject to the Mutual NDA (Exhibit C). If a request for the contents of, or other information relating to, this Contract is made under the California Public Records Act, the Government will provide the Service Provider with reasonable written notice to permit the Service Provider to prevent against the disclosure of such information to the maximum extent permitted under applicable law.", "size": 1, "samples": [{"hash": "4IPAnPZYJMP", "uri": "/contracts/4IPAnPZYJMP#data-center-audit", "label": "Aws Cloud Services Agreement", "score": 25.2299785614, "published": true}], "snippet_links": [{"key": "from-time-to-time", "type": "clause", "offset": [0, 17]}, {"key": "per-year", "type": "definition", "offset": [37, 45]}, {"key": "the-service-provider-shall", "type": "clause", "offset": [47, 73]}, {"key": "external-auditors", "type": "clause", "offset": [81, 98]}, {"key": "to-verify", "type": "definition", "offset": [99, 108]}, {"key": "security-measures", "type": "definition", "offset": [113, 130]}, {"key": "organization-control", "type": "clause", "offset": [216, 236]}, {"key": "type-ii", "type": "definition", "offset": [245, 252]}, {"key": "data-centers", "type": "clause", "offset": [266, 278]}, {"key": "by-service-provider", "type": "clause", "offset": [328, 347]}, {"key": "provide-a", "type": "definition", "offset": [396, 405]}, {"key": "issued-by", "type": "clause", "offset": [431, 440]}, {"key": "upon-request", "type": "definition", "offset": [498, 510]}, {"key": "information-from", "type": "clause", "offset": [571, 587]}, {"key": "redacted-version", "type": "definition", "offset": [592, 608]}, {"key": "the-state", "type": "clause", "offset": [610, 619]}, {"key": "confidential-information-and", "type": "clause", "offset": [658, 686]}, {"key": "mutual-nda", "type": "definition", "offset": [702, 712]}, {"key": "exhibit-c", "type": "definition", "offset": [714, 723]}, {"key": "request-for", "type": "clause", "offset": [731, 742]}, {"key": "other-information", "type": "clause", "offset": [763, 780]}, {"key": "relating-to", "type": "definition", "offset": [781, 792]}, {"key": "this-contract", "type": "definition", "offset": [794, 807]}, {"key": "california-public-records-act", "type": "clause", "offset": [826, 855]}, {"key": "the-government", "type": "clause", "offset": [857, 871]}, {"key": "provide-the", "type": "clause", "offset": [877, 888]}, {"key": "notice-to", "type": "definition", "offset": [930, 939]}, {"key": "disclosure-of", "type": "clause", "offset": [991, 1004]}, {"key": "applicable-law", "type": "definition", "offset": [1060, 1074]}], "hash": "89e380eec822457d654e094068cdc646", "id": 6}, {"snippet": "The Service Provider shall perform an independent audit of its data centers at least annually at its expense and provide a redacted version of the audit report upon request. The Service Provider may remove its proprietary information from the redacted version. A Service Organization Control (SOC) 2 audit report or approved equivalent sets the minimum level of a third-party audit.", "size": 4, "samples": [{"hash": "7hM2r01gLlC", "uri": "/contracts/7hM2r01gLlC#data-center-audit", "label": "Technology Contracts", "score": 35.6351089478, "published": true}], "snippet_links": [{"key": "the-service-provider-shall", "type": "clause", "offset": [0, 26]}, {"key": "independent-audit", "type": "clause", "offset": [38, 55]}, {"key": "data-centers", "type": "clause", "offset": [63, 75]}, {"key": "provide-a", "type": "definition", "offset": [113, 122]}, {"key": "redacted-version", "type": "definition", "offset": [123, 139]}, {"key": "audit-report", "type": "definition", "offset": [147, 159]}, {"key": "upon-request", "type": "definition", "offset": [160, 172]}, {"key": "information-from", "type": "clause", "offset": [222, 238]}, {"key": "organization-control", "type": "clause", "offset": [271, 291]}, {"key": "approved-equivalent", "type": "definition", "offset": [316, 335]}, {"key": "minimum-level", "type": "definition", "offset": [345, 358]}], "hash": "279f8f045322a85d1a5029ef4345b03d", "id": 2}, {"snippet": "The contractor shall perform an annual independent audit of its data center(s) where Data, State applications, or other State information is maintained. The contractor shall perform this independent audit at its expense and shall, upon completion, provide an unredacted version of the complete audit report to the State. (The contractor may redact its proprietary information from the unredacted version, however.) A Service Organization Control (SOC) 2 audit report or equivalent approved by the Indiana Office of Technology sets the minimum level of a third-party audit. The State may perform an annual audit of contractor\u2019s data center(s) where Data, State applications, or other State information is maintained. The audit may take place onsite or remotely, at the State\u2019s discretion. The State shall provide to contractor thirty (30) days\u2019 advance notice prior to the audit. The contractor will make reasonable efforts to facilitate the audit and will make available to the State members of its staff during the audit. The State may contract with a third party to conduct the audit at its discretion and at the State\u2019s expense. If the contractor maintains Data, State applications, or other State information at multiple data centers, the State may perform an annual audit of each data center. The parties agree that any documents provided to the State under this paragraph shall be deemed a trade secret of contractor and is deemed administrative or technical information that would jeopardize a record keeping or security system, and shall be exempt from disclosure under the Indiana Access to Public Records Act, IC 5-14-3.", "size": 2, "samples": [{"hash": "1UTfiTjXJxA", "uri": "/contracts/1UTfiTjXJxA#data-center-audit", "label": "Quantity Purchase Agreement for Managed Services Provider (Msp)", "score": 34.1455497742, "published": true}, {"hash": "52HvsYPCQst", "uri": "/contracts/52HvsYPCQst#data-center-audit", "label": "Quantity Purchase Agreement", "score": 30.9376602173, "published": true}], "snippet_links": [{"key": "the-contractor-shall", "type": "clause", "offset": [0, 20]}, {"key": "annual-independent-audit", "type": "clause", "offset": [32, 56]}, {"key": "its-data", "type": "definition", "offset": [60, 68]}, {"key": "state-information", "type": "clause", "offset": [120, 137]}, {"key": "upon-completion", "type": "clause", "offset": [231, 246]}, {"key": "report-to", "type": "clause", "offset": [300, 309]}, {"key": "the-contractor-may", "type": "clause", "offset": [322, 340]}, {"key": "information-from", "type": "clause", "offset": [364, 380]}, {"key": "organization-control", "type": "clause", "offset": [425, 445]}, {"key": "approved-by", "type": "clause", "offset": [481, 492]}, {"key": "minimum-level", "type": "definition", "offset": [535, 548]}, {"key": "audit-of-contractor", "type": "clause", "offset": [605, 624]}, {"key": "the-audit", "type": "clause", "offset": [716, 725]}, {"key": "the-state-shall", "type": "clause", "offset": [788, 803]}, {"key": "to-contractor", "type": "definition", "offset": [812, 825]}, {"key": "advance-notice", "type": "definition", "offset": [844, 858]}, {"key": "prior-to-the", "type": "clause", "offset": [859, 871]}, {"key": "the-contractor-will", "type": "clause", "offset": [879, 898]}, {"key": "reasonable-efforts", "type": "clause", "offset": [904, 922]}, {"key": "available-to", "type": "definition", "offset": [961, 973]}, {"key": "members-of", "type": "clause", "offset": [984, 994]}, {"key": "its-staff", "type": "definition", "offset": [995, 1004]}, {"key": "a-third-party", "type": "clause", "offset": [1051, 1064]}, {"key": "if-the-contractor", "type": "clause", "offset": [1132, 1149]}, {"key": "data-centers", "type": "clause", "offset": [1225, 1237]}, {"key": "the-parties-agree-that", "type": "clause", "offset": [1298, 1320]}, {"key": "documents-provided", "type": "clause", "offset": [1325, 1343]}, {"key": "trade-secret", "type": "definition", "offset": [1396, 1408]}, {"key": "technical-information", "type": "clause", "offset": [1455, 1476]}, {"key": "record-keeping", "type": "definition", "offset": [1501, 1515]}, {"key": "security-system", "type": "clause", "offset": [1519, 1534]}, {"key": "access-to-public-records-act", "type": "clause", "offset": [1590, 1618]}], "hash": "2130533090867bcfcb8fd5a518dfe0ce", "id": 4}, {"snippet": "NAVITAIRE will provide Customer with [CONFIDENTIAL PORTION OMITTED AND FILED SEPARATELY WITH NAVITAIRE Proprietary and Confidential Hosted Services Agreement Exhibit 4.28 THE COMMISSION PURSUANT TO A REQUEST FOR CONFIDENTIAL TREATMENT] SOC 2 \u201cReport on Controls at a Service Organization\u201d report, valued at [CONFIDENTIAL PORTION OMITTED AND FILED SEPARATELY WITH THE COMMISSION PURSUANT TO A REQUEST FOR CONFIDENTIAL TREATMENT] available for delivery to Customer, [CONFIDENTIAL PORTION OMITTED AND FILED SEPARATELY WITH THE COMMISSION PURSUANT TO A REQUEST FOR CONFIDENTIAL TREATMENT], upon completion by the reporting agency Ernst and Young. The estimated completion date is [CONFIDENTIAL PORTION OMITTED AND FILED SEPARATELY WITH THE COMMISSION PURSUANT TO A REQUEST FOR CONFIDENTIAL TREATMENT].", "size": 1, "samples": [{"hash": "3ShyRB1ND3z", "uri": "/contracts/3ShyRB1ND3z#data-center-audit", "label": "Hosted Services Agreement (Gol Intelligent Airlines Inc.)", "score": 24.3251190186, "published": true}], "snippet_links": [{"key": "will-provide", "type": "clause", "offset": [10, 22]}, {"key": "proprietary-and-confidential", "type": "clause", "offset": [103, 131]}, {"key": "hosted-services-agreement", "type": "clause", "offset": [132, 157]}, {"key": "pursuant-to-a", "type": "definition", "offset": [186, 199]}, {"key": "request-for-confidential-treatment", "type": "definition", "offset": [200, 234]}, {"key": "soc-2", "type": "definition", "offset": [236, 241]}, {"key": "service-organization", "type": "definition", "offset": [267, 287]}, {"key": "confidential-portion-omitted-and-filed-separately-with-the-commission-pursuant-to", "type": "clause", "offset": [308, 389]}, {"key": "delivery-to-customer", "type": "clause", "offset": [442, 462]}, {"key": "upon-completion", "type": "clause", "offset": [586, 601]}, {"key": "reporting-agency", "type": "definition", "offset": [609, 625]}, {"key": "estimated-completion-date", "type": "definition", "offset": [647, 672]}], "hash": "6e02617215c1a5a9fef79f1076083013", "id": 5}, {"snippet": "The Contractor shall perform an annual independent audit of its data center(s) where Data, State applications, or other State information is maintained. The Contractor shall perform this independent audit at its expense and shall, upon completion, provide an unredacted version of the complete audit report to the State. (The Contractor may redact its proprietary information from the unredacted version, however.) A Service Organization Control (SOC) 2 audit report or equivalent approved by the Indiana Office of Technology sets the minimum level of a third-party audit. The parties agree that any documents provided to the State under this paragraph shall be deemed a trade secret of contractor and is deemed administrative or technical information that would jeopardize a record keeping or security system, and shall be exempt from disclosure under the Indiana Access to Public Records Act, IC 5-14-3.", "size": 1, "samples": [{"hash": "hmj1ncbTZSi", "uri": "/contracts/hmj1ncbTZSi#data-center-audit", "label": "Professional Services Contract (Syra Health Corp)", "score": 34.3360710144, "published": true}], "snippet_links": [{"key": "the-contractor-shall", "type": "clause", "offset": [0, 20]}, {"key": "annual-independent-audit", "type": "clause", "offset": [32, 56]}, {"key": "its-data", "type": "definition", "offset": [60, 68]}, {"key": "state-information", "type": "clause", "offset": [120, 137]}, {"key": "upon-completion", "type": "clause", "offset": [231, 246]}, {"key": "report-to", "type": "clause", "offset": [300, 309]}, {"key": "the-state", "type": "clause", "offset": [310, 319]}, {"key": "the-contractor-may", "type": "clause", "offset": [322, 340]}, {"key": "information-from", "type": "clause", "offset": [364, 380]}, {"key": "organization-control", "type": "clause", "offset": [425, 445]}, {"key": "approved-by", "type": "clause", "offset": [481, 492]}, {"key": "minimum-level", "type": "definition", "offset": [535, 548]}, {"key": "the-parties-agree-that", "type": "clause", "offset": [573, 595]}, {"key": "documents-provided", "type": "clause", "offset": [600, 618]}, {"key": "trade-secret", "type": "definition", "offset": [671, 683]}, {"key": "of-contractor", "type": "clause", "offset": [684, 697]}, {"key": "technical-information", "type": "clause", "offset": [730, 751]}, {"key": "record-keeping", "type": "definition", "offset": [776, 790]}, {"key": "security-system", "type": "clause", "offset": [794, 809]}, {"key": "access-to-public-records-act", "type": "clause", "offset": [865, 893]}], "hash": "8d4210984e564469a68d471bdd48b181", "id": 7}, {"snippet": "From time to time, but at least once a year, the Service Provider shall retain external auditors to verify its security measures at its own expense. The Service Provider shall provide a version of the report issued by the external auditors, may not be redacted, upon request. In the event the audit report contains the Service Provider\u2019s proprietary information, the State acknowledges that such information is Confidential Information and the audit report shall be disclosed only upon execution of a mutual non-disclosure agreement. If the State of Eligible Public Entity receives a California Public Records Act request for the audit report, the State and Eligible Public Entity shall provide the Service Provider reasonable written notice to permit the Service Provider to enable the Service Provider to take steps to prevent the disclosure of such information to the maximum extent permitted by law, including exemption from disclosures pursuant to \u00a76254 (aa) and (ab) and Stats 2005 ch 476 Section 2.", "size": 1, "samples": [{"hash": "8OnwZXnj89", "uri": "/contracts/8OnwZXnj89#data-center-audit", "label": "Cloud Services Agreement", "score": 25.188911438, "published": true}], "snippet_links": [{"key": "from-time-to-time", "type": "clause", "offset": [0, 17]}, {"key": "a-year", "type": "definition", "offset": [37, 43]}, {"key": "the-service-provider-shall", "type": "clause", "offset": [45, 71]}, {"key": "external-auditors", "type": "clause", "offset": [79, 96]}, {"key": "to-verify", "type": "definition", "offset": [97, 106]}, {"key": "security-measures", "type": "definition", "offset": [111, 128]}, {"key": "provide-a", "type": "definition", "offset": [176, 185]}, {"key": "the-report", "type": "clause", "offset": [197, 207]}, {"key": "issued-by", "type": "clause", "offset": [208, 217]}, {"key": "upon-request", "type": "definition", "offset": [262, 274]}, {"key": "audit-report", "type": "definition", "offset": [293, 305]}, {"key": "proprietary-information", "type": "definition", "offset": [338, 361]}, {"key": "the-state", "type": "clause", "offset": [363, 372]}, {"key": "confidential-information-and", "type": "clause", "offset": [411, 439]}, {"key": "upon-execution", "type": "clause", "offset": [481, 495]}, {"key": "disclosure-agreement", "type": "clause", "offset": [512, 532]}, {"key": "state-of", "type": "clause", "offset": [541, 549]}, {"key": "eligible-public-entity", "type": "definition", "offset": [550, 572]}, {"key": "request-for", "type": "clause", "offset": [614, 625]}, {"key": "provide-the", "type": "clause", "offset": [687, 698]}, {"key": "notice-to", "type": "definition", "offset": [735, 744]}, {"key": "disclosure-of", "type": "clause", "offset": [833, 846]}, {"key": "to-the-maximum-extent-permitted-by-law", "type": "clause", "offset": [864, 902]}, {"key": "exemption-from", "type": "clause", "offset": [914, 928]}, {"key": "pursuant-to", "type": "clause", "offset": [941, 952]}, {"key": "section-2", "type": "clause", "offset": [995, 1004]}], "hash": "e09029fd0b48f767c52dc5c4822d2cf3", "id": 8}, {"snippet": "If applicable in the performance of the services covered by this PA, Contractor shall ensure an independent audit or provide ISO 27001 certification of its data centers at least annually at its expense and provide a copy of the audit report upon request. A Service Organization Control (SOC) 2 audit report or approved equivalent (the ISO 27001 certification) sets the minimum level of a third-party audit.", "size": 1, "samples": [{"hash": "f7btofAvTEO", "uri": "/contracts/f7btofAvTEO#data-center-audit", "label": "Contract Amendment", "score": 33.2151412964, "published": true}], "snippet_links": [{"key": "if-applicable", "type": "clause", "offset": [0, 13]}, {"key": "services-covered-by-this", "type": "clause", "offset": [40, 64]}, {"key": "contractor-shall", "type": "clause", "offset": [69, 85]}, {"key": "independent-audit", "type": "clause", "offset": [96, 113]}, {"key": "certification-of", "type": "clause", "offset": [135, 151]}, {"key": "data-centers", "type": "clause", "offset": [156, 168]}, {"key": "audit-report", "type": "definition", "offset": [228, 240]}, {"key": "upon-request", "type": "definition", "offset": [241, 253]}, {"key": "organization-control", "type": "clause", "offset": [265, 285]}, {"key": "approved-equivalent", "type": "definition", "offset": [310, 329]}, {"key": "minimum-level", "type": "definition", "offset": [369, 382]}], "hash": "87696cc1c9592125f78dad829669bdcb", "id": 9}, {"snippet": "As of the date of the proposal, Microsoft has achieved FedRAMP High ATO for Azure Government Services as set forth at the Microsoft Trust Center Compliance page for Microsoft Trust Center Compliance page for FedRAMP at \u2587\u2587\u2587\u2587\u2587://\u2587\u2587\u2587.\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587.\u2587\u2587\u2587/enus/trustcenter/compliance/fedramp. Microsoft anticipates commencement of the process for annual Statement on Standards for Attestation Engagements (SSAE) No. 16 Service Organization Control (SOC) 2 Type II audits of its data centers, or the applicable successor to such SSAE standard. While SSAE 16 audits are not currently performed, Microsoft will be able to demonstrate to the State a mapping of the FedRAMP control standards with their corresponding SSAE 16 standards, in order to demonstrate compliance with the intent of this requirement. All such audits will be at Microsoft\u2019s own expense. The Service Provider shall provide a redacted version of the audit report and Service Provider\u2019s plan to correct any negative findings upon request after receipt of a signed confidential nondisclosure agreement from the State. The Service Provider may remove its proprietary information from the redacted version.", "size": 1, "samples": [{"hash": "8kUQy1s886B", "uri": "/contracts/8kUQy1s886B#data-center-audit", "label": "Service Agreement", "score": 25.188911438, "published": true}], "snippet_links": [{"key": "date-of", "type": "clause", "offset": [10, 17]}, {"key": "the-proposal", "type": "clause", "offset": [18, 30]}, {"key": "azure-government-services", "type": "definition", "offset": [76, 101]}, {"key": "trust-center", "type": "definition", "offset": [132, 144]}, {"key": "commencement-of-the-process", "type": "clause", "offset": [304, 331]}, {"key": "annual-statement", "type": "definition", "offset": [336, 352]}, {"key": "organization-control", "type": "clause", "offset": [416, 436]}, {"key": "type-ii", "type": "definition", "offset": [445, 452]}, {"key": "data-centers", "type": "clause", "offset": [467, 479]}, {"key": "the-applicable", "type": "clause", "offset": [484, 498]}, {"key": "ssae-16-audits", "type": "clause", "offset": [538, 552]}, {"key": "the-state", "type": "clause", "offset": [623, 632]}, {"key": "in-order-to", "type": "clause", "offset": [720, 731]}, {"key": "compliance-with-the", "type": "clause", "offset": [744, 763]}, {"key": "the-service-provider-shall", "type": "clause", "offset": [844, 870]}, {"key": "provide-a", "type": "definition", "offset": [871, 880]}, {"key": "redacted-version", "type": "definition", "offset": [881, 897]}, {"key": "audit-report", "type": "definition", "offset": [905, 917]}, {"key": "upon-request", "type": "definition", "offset": [979, 991]}, {"key": "receipt-of-a", "type": "clause", "offset": [998, 1010]}, {"key": "nondisclosure-agreement", "type": "definition", "offset": [1031, 1054]}, {"key": "information-from", "type": "clause", "offset": [1119, 1135]}], "hash": "66ea55fefbb5612e77aa2dab2e4552e5", "id": 10}], "next_curs": "CloSVGoVc35sYXdpbnNpZGVyY29udHJhY3RzcjYLEhZDbGF1c2VTbmlwcGV0R3JvdXBfdjU2IhpkYXRhLWNlbnRlci1hdWRpdCMwMDAwMDAwYQyiAQJlbhgAIAA=", "clause": {"title": "Data Center Audit", "parents": [["subscription-terms", "Subscription Terms"], ["entire-agreement", "Entire Agreement"], ["state-boilerplate-affirmation-clause", "State Boilerplate Affirmation Clause"], ["statement-of-work", "Statement of Work"], ["special-requirements", "Special Requirements"]], "children": [["warranty-authority", "Warranty - Authority"], ["warranty-performance", "Warranty - Performance"]], "size": 41, "id": "data-center-audit", "related": [["sao-audit", "SAO AUDIT", "SAO AUDIT"], ["configuration-management", "Configuration Management", "Configuration Management"], ["help-desk", "Help Desk", "Help Desk"], ["construction-phase-services", "Construction Phase Services", "Construction Phase Services"], ["statewide-contract-management-system", "STATEWIDE CONTRACT MANAGEMENT SYSTEM", "STATEWIDE CONTRACT MANAGEMENT SYSTEM"]], "related_snippets": [], "updated": "2025-07-23T06:14:19+00:00", "also_ask": ["What audit rights and scope should be non-negotiable for effective oversight?", "How can audit frequency and notice periods be strategically negotiated?", "What are the key risks if audit access is limited or overly restricted?", "How does this audit clause compare to industry standards and regulatory requirements?", "What factors most impact the enforceability of audit rights in court?"], "drafting_tip": "Specify audit frequency and notice requirements to ensure operational clarity; define auditor qualifications to maintain data security; outline scope of access to protect sensitive information.", "explanation": "The Data Center Audit clause grants a party the right to inspect and review the facilities, operations, and security measures of a data center used to store or process their data. Typically, this clause outlines the procedures for scheduling audits, the scope of information that can be reviewed, and any advance notice requirements or limitations to protect confidentiality and operational integrity. Its core function is to provide assurance that the data center complies with agreed-upon standards and regulatory requirements, thereby mitigating risks related to data security and operational reliability."}, "json": true, "cursor": ""}}