Information Security IET information security management practices, policies and regulatory compliance requirements are aimed at assuring the confidentiality, integrity and availability of Customer information. The UC Xxxxx Cyber-safety Policy, UC Xxxxx Security Standards Policy (PPM Section 310-22), is adopted by the campus and IET to define the responsibilities and key practices for assuring the security of UC Xxxxx computing systems and electronic data.
Information Security Program (1) DTI shall implement and maintain a comprehensive written information security program applicable to the Personal Information ("Information Security Program") which shall include commercially reasonable measures, including, as appropriate, policies and procedures and technical, physical, and administrative safeguards that are consistent with industry standards, providing for (i) the security and confidentiality of the Personal Information, (ii) protection of the Personal Information against reasonably foreseeable threats or hazards to the security or integrity of the Personal Information, (iii) protection against unauthorized access to or use of or loss or theft of the Personal Information, and (iv) appropriate disposal of the Personal Information. Without limiting the generality of the foregoing, the Information Security Program shall provide for (i) continual assessment and re-assessment of the risks to the security of Personal Information acquired or maintained by DTI and its agents, contractors and subcontractors in connection with the Services, including but not limited to (A) identification of internal and external threats that could result in unauthorized disclosure, alteration or destruction of Personal Information and systems used by DTI and its agents, contractors and subcontractors, (B) assessment of the likelihood and potential damage of such threats, taking into account the sensitivity of such Personal Information, and (C) assessment of the sufficiency of policies, procedures, information systems of DTI and its agents, contractors and subcontractors, and other arrangements in place, to control risks; and (ii) appropriate protection against such risks.
Personal Information security breach Supplier/Service Provider’s Obligations
Information Security Requirements In cases where the State is not permitted to manage/modify the automation equipment (server/computer/other) that controls testing or monitoring devices, the Contractor agrees to update and provide patches for the automation equipment and any installed operating systems or applications on a quarterly basis (at minimum). The Contractor will submit a report to the State of updates installed within 30 days of the installation as well as a Plan of Actions and Milestones (POA&M) to remediate any vulnerabilities ranging from Critical to Low. The contractor will provide an upgrade path or compensatory security controls for any operating systems and applications listed as beyond “end-of-life” or EOL, within 90 days of the EOL and complete the EOL system’s upgrade within 90 days of the approved plan.
Handling Sensitive Personal Information and Breach Notification A. As part of its contract with HHSC Contractor may receive or create sensitive personal information, as section 521.002 of the Business and Commerce Code defines that phrase. Contractor must use appropriate safeguards to protect this sensitive personal information. These safeguards must include maintaining the sensitive personal information in a form that is unusable, unreadable, or indecipherable to unauthorized persons. Contractor may consult the “Guidance to Render Unsecured Protected Health Information Unusable, Unreadable, or Indecipherable to Unauthorized Individuals” issued by the U.S. Department of Health and Human Services to determine ways to meet this standard.
Contractor Information The Contractor will provide up to date information for each of the following in the form and manner specified by OGS:
SERVICE MONITORING, ANALYSES AND ORACLE SOFTWARE 11.1 We continuously monitor the Services to facilitate Oracle’s operation of the Services; to help resolve Your service requests; to detect and address threats to the functionality, security, integrity, and availability of the Services as well as any content, data, or applications in the Services; and to detect and address illegal acts or violations of the Acceptable Use Policy. Oracle monitoring tools do not collect or store any of Your Content residing in the Services, except as needed for such purposes. Oracle does not monitor, and does not address issues with, non-Oracle software provided by You or any of Your Users that is stored in, or run on or through, the Services. Information collected by Oracle monitoring tools (excluding Your Content) may also be used to assist in managing Oracle’s product and service portfolio, to help Oracle address deficiencies in its product and service offerings, and for license management purposes.
How Do I Get More Information? For more information, including the full Notice, Claim Forms and Settlement Agreement go to xxx.xxxxxxxxxxxxxxxxxxxx.xxx, contact the settlement administrator at 0-000-000-0000, or call Class Counsel at 1-866-354-3015. Exhibit E UNITED STATES DISTRICT COURT FOR THE SOUTHERN DISTRICT OF FLORIDA Xxxxx v. AvMed, Inc., Case No. 10-cv-24513 If You Paid for or Received Insurance from AvMed, Inc. at Any Time Through December of 2009, You May Be Part of a Class Action Settlement. IMPORTANT: PLEASE READ THIS NOTICE CAREFULLY. THIS NOTICE RELATES TO THE PENDENCY OF A CLASS ACTION LAWSUIT AND, IF YOU ARE A MEMBER OF THE SETTLEMENT CLASSES, CONTAINS IMPORTANT INFORMATION ABOUT YOUR RIGHTS TO MAKE A CLAIM UNDER THE SETTLEMENT OR TO OBJECT TO THE SETTLEMENT (A federal court authorized this notice. It is not a solicitation from a lawyer.) Your legal rights are affected whether or not you act. Please read this notice carefully. YOUR LEGAL RIGHTS AND OPTIONS IN THIS SETTLEMENT SUBMIT A CLAIM FORM This is the only way to receive a payment. EXCLUDE YOURSELF You will receive no benefits, but you will retain any rights you currently have to xxx the Defendant about the claims in this case. OBJECT Write to the Court explaining why you don’t like the Settlement. GO TO THE HEARING Ask to speak in Court about your opinion of the Settlement. DO NOTHING You won’t get a share of the Settlement benefits and will give up your rights to xxx the Defendant about the claims in this case. These rights and options – and the deadlines to exercise them – are explained in this Notice. QUESTIONS? CALL 0-000-000-0000 TOLL FREE, OR VISIT XXX.XXXXXXXXXXXXXXXXXXXX.XXX PARA UNA NOTIFICACIÓN EN ESPAÑOL, LLAMAR O VISITAR NUESTRO WEBSITE BASIC INFORMATION
Contractor Sensitive Information 17.1 The Authority must:
Electronic and Information Resources Accessibility and Security Standards a. Applicability: The following Electronic and Information Resources (“EIR”) requirements apply to the Contract because the Grantee performs services that include EIR that the System Agency's employees are required or permitted to access or members of the public are required or permitted to access. This Section does not apply to incidental uses of EIR in the performance of the Agreement, unless the Parties agree that the EIR will become property of the State of Texas or will be used by HHSC’s clients or recipients after completion of the Agreement. Nothing in this section is intended to prescribe the use of particular designs or technologies or to prevent the use of alternative technologies, provided they result in substantially equivalent or greater access to and use of a Product.
