Common use of IDENTITY, AUTHENTICATION AND ACCESS CONTROL Clause in Contracts

IDENTITY, AUTHENTICATION AND ACCESS CONTROL. 5.1 The Supplier shall operate an access control regime to ensure: (a) all users and administrators of the Supplier System are uniquely identified and authenticated when accessing or administering the Services; and (b) all persons who access the Premises are identified and authenticated before they are allowed access to the Premises. 5.2 The Supplier shall apply the ‘principle of least privilege’ when allowing persons access to the Supplier System and Premises so that such persons are allowed access only to those parts of the Premises and the Supplier System they require. 5.3 The Supplier shall retain records of access to the Premises and to the Supplier System and shall make such record available to the Authority on request.

IDENTITY, AUTHENTICATION AND ACCESS CONTROL. 5.1 The Supplier shall operate an access control regime to ensure: (a) 5.1.1 all users and administrators of the Supplier System are uniquely identified and authenticated when accessing or administering the Services; and (b) 5.1.2 all persons who access the Premises Sites are identified and authenticated before they are allowed access to the PremisesSites. 5.2 The Supplier shall apply the ‘principle of least privilege’ when allowing persons access to the Supplier System and Premises Sites so that such persons are allowed access only to those parts of the Premises Sites and the Supplier System they require. 5.3 The Supplier shall retain records of access to the Premises Sites and to the Supplier System and shall make such record available to the Authority on request.