Common use of Data Sensitivity Clause in Contracts

Data Sensitivity. 4.9.1 Data exchanged between CSD and Contractor must be limited to the data fields included on Data Transfer Rules documents posted on the Providers’ Website. No personal financial information, (e.g., credit card, bank account numbers), shall be stored or exchanged in the data exchange sessions. 4.9.2 Data exchanged between CSD and Contractor must be limited to the data fields as requested within the web applications. No personal financial information (e.g., credit card, bank account numbers), shall be stored or exchanged in the data exchange sessions. 4.9.3 Data exchanged between CSD and Contractor via email communication must have all personally identifying information (PII) and other sensitive information redacted before the document is sent. Alternately, Contractor is to encrypt any attachments that have sensitive data using encryption tools and configurations as required by CSD. 4.9.4 Access to the above-mentioned data must only be given to authorized personnel to complete essential duties. Authorized personnel are to log into these systems using their own assigned credentials (i.e., no login account sharing). Upon departure of personnel with assigned credentials, the Contractor will remove the employee’s access to the systems as soon as possible.

Data Sensitivity. 4.9.1 Data exchanged between CSD and Contractor must be limited to the data fields included on Data Transfer Rules documents posted on the Providers’ Provider Website. No personal financial information, information (e.g., credit card, bank account numbers), shall be stored or exchanged in the data exchange sessions. 4.9.2 Data exchanged between CSD and Contractor must be limited to the data fields as requested within the web applications. No personal financial information information, (e.g., credit card, bank account numbers), shall be stored or exchanged in the data exchange sessions. 4.9.3 Data exchanged between CSD and Contractor via email communication must have all personally identifying information (PII) and other sensitive information redacted before the document is sent. Alternately, Contractor is to encrypt any attachments that have sensitive data using encryption tools tool and configurations as required by CSD. 4.9.4 Access to the above-mentioned data must only be given to authorized personnel to complete essential duties. Authorized personnel are to log into these systems using their own assigned credentials (i.e., no login account sharing). Upon departure of personnel with assigned credentials, the Contractor will remove the employee’s employee’s access to the systems as soon as possible.

Data Sensitivity. 4.9.1 Data exchanged between CSD and Contractor must be limited to the data fields included on Data Transfer Rules documents posted on the Providers’ Providers’ Website. No personal financial information, (e.g.i.e., credit card, bank account numbers), shall be stored or exchanged in the data exchange sessions. 4.9.2 Data exchanged between CSD and Contractor must be limited to the data fields as requested within the web applications. No personal financial information (e.g.information, i.e., credit card, bank account numbers), shall be stored or exchanged in the data exchange sessions. 4.9.3 Data exchanged between CSD and Contractor via email communication must have all personally identifying information (PII) and other sensitive information redacted before the document is sent. Alternately, Contractor is to encrypt any attachments that have sensitive data using encryption tools tool and configurations as required by CSD. 4.9.4 Access to the above-mentioned data must only be given to authorized personnel to complete essential duties. Authorized personnel are to log into these systems using their own assigned credentials (i.e., no login account sharing). Upon departure of personnel with assigned credentialslogins, the Contractor contractor will remove the employee’s employee's access to the systems as soon as possible.

Data Sensitivity. 4.9.1 Data exchanged between CSD and Contractor must be limited to the data fields included on Data Transfer Rules documents posted on the Providers’ Providers’ Website. No personal financial information, (e.g., credit card, bank account numbers), shall be stored or exchanged in the data exchange sessions. 4.9.2 Data exchanged between CSD and Contractor must be limited to the data fields as requested within the web applications. No personal financial information (e.g., credit card, bank account numbers), shall be stored or exchanged in the data exchange sessions. 4.9.3 Data exchanged between CSD and Contractor via email communication must have all personally identifying information (PII) and other sensitive information redacted before the document is sent. Alternately, Contractor is to encrypt any attachments that have sensitive data using encryption tools and configurations as required by CSD. 4.9.4 Access to the above-mentioned data must only be given to authorized personnel to complete essential duties. Authorized personnel are to log into these systems using their own assigned credentials (i.e., no login account sharing). Upon departure of personnel with assigned credentials, the Contractor will remove the employee’s employee’s access to the systems as soon as possible.