Common use of Information Security Clause in Contracts

Information Security. Without limitation to any other information governance requirements set out in this Schedule 3 of these Call-off Terms and Conditions, the Supplier shall: notify the Authority forthwith of any information security breaches or near misses (including without limitation any potential or actual breaches of confidentiality or actual information security breaches) in line with the Authority’s information governance Policies; and fully cooperate with any audits or investigations relating to information security and any privacy impact assessments undertaken by the Authority and shall provide full information as may be reasonably requested by the Authority in relation to such audits, investigations and assessments. Where required in accordance with the Specification and Tender Response Document, the Supplier will ensure that it puts in place and maintains an information security management plan appropriate to this Contract, the type of Services being provided and the obligations placed on the Supplier. The Supplier shall ensure that such plan is consistent with any relevant Policies, Guidance, Good Industry Practice and with any relevant quality standards as may be set out in the Key Provisions and/or the Specification and Tender Response Document. Where required in accordance with the Specification and Tender Response Document, the Supplier shall obtain and maintain certification under the HM Government Cyber Essentials Scheme at the level set out in the Specification and Tender Response Document.

Information Security. Without limitation to any other information governance requirements set out in this Schedule 3 of these Call-off Terms and Conditions3, the Supplier shall: notify the Authority forthwith of any information security breaches or near misses (including without limitation any potential or actual breaches of confidentiality or actual information security breaches) in line with the Authority’s information governance Policies; and fully cooperate with any audits or investigations relating to information security and any privacy impact assessments undertaken by the Authority and shall provide full information as may be reasonably requested by the Authority in relation to such audits, investigations and assessments. Where required in accordance with the Specification and Tender Response Document, the Supplier will ensure that it puts in place and maintains an information security management plan appropriate to this Contract, the type of Services being provided and the obligations placed on the SupplierSupplier under this Contract. The Supplier shall ensure that such plan is consistent with any relevant Policies, Guidance, Good Industry Practice and with any relevant quality standards as may be set out in the Key Provisions and/or the Specification and Tender Response Document. Where required in accordance with the Specification and Tender Response Document, the Supplier shall obtain and maintain certification under the HM Government Cyber Essentials Scheme at the level set out in the Specification and Tender Response Document. .

Information Security. 4.1 Without limitation to any other information governance requirements set out in this Schedule 3 of these Call-off Terms and Conditions3, the Supplier shall: : 4.1.1 notify the Authority forthwith of any information security breaches or near misses (including without limitation any potential or actual breaches of confidentiality or actual information security breaches) in line with the Authority’s information governance Policies; and and 4.1.2 fully cooperate with any audits or investigations relating to information security and any privacy impact assessments undertaken by the Authority and shall provide full information as may be reasonably requested by the Authority in relation to such audits, investigations and assessments. . 4.2 Where required in accordance with the Specification and Tender Response Document, the Supplier will ensure that it puts in place and maintains an information security management plan appropriate to this Contract, the type of Services being provided and the obligations placed on the Supplier. The Supplier shall ensure that such plan is consistent with any relevant Policies, Guidance, Good Industry Practice and with any relevant quality standards as may be set out in the Key Provisions and/or the Specification and Tender Response Document. . 4.3 Where required in accordance with the Specification and Tender Response Document, the Supplier shall obtain and maintain certification under the HM Government Cyber Essentials Scheme at the level set out in the Specification and Tender Response Document.

Information Security. 4.1 Without limitation to any other information governance requirements set out in this Schedule 3 of these Call-off Terms and Conditions3, the Supplier shall: : 4.1.1 notify the Authority forthwith of any information security breaches or near misses (including without limitation any potential or actual breaches of confidentiality or actual information security breaches) in line with the Authority’s information governance Policies; and and 4.1.2 fully cooperate with any audits or investigations relating to information security and any privacy impact assessments undertaken by the Authority and shall provide full information as may be reasonably requested by the Authority in relation to such audits, investigations and assessments. . 4.2 Where required in accordance with the Specification and Tender Response Document, the Supplier will ensure that it puts in place and maintains an information security management plan appropriate to this Contract, the type of Services being provided and the obligations placed on the Supplier. The Supplier shall ensure that such plan is consistent with any relevant Policies, Guidance, Good Industry Practice and with any relevant quality standards as may be set out in the Key Provisions and/or the Specification and Tender Response Document. . 4.3 Where required in accordance with the Specification and Tender Response Document, the Supplier shall obtain and maintain certification under the HM Government Cyber Essentials Scheme at the level set out in the Specification and Tender Response Document. .

Information Security. Without limitation to any other information governance requirements set out in this Schedule 3 of these Call-off Terms and Conditions3, the Supplier shall: notify the Authority forthwith of any information security breaches or near misses (including without limitation any potential or actual breaches of confidentiality or actual information security breaches) in line with the Authority’s information governance Policies; and fully cooperate with any audits or investigations relating to information security and any privacy impact assessments undertaken by the Authority and shall provide full information as may be reasonably requested by the Authority in relation to such audits, investigations and assessments. Where required in accordance with the Specification and Tender Response Document, the Supplier will ensure that it puts in place and maintains an information security management plan appropriate to this Contract, the type of Services being provided and the obligations placed on the SupplierSupplier under this Contract. The Supplier shall ensure that such plan is consistent with any relevant Policies, Guidance, Good Industry Practice and with any relevant quality standards as may be set out in the Key Provisions and/or the Specification and Tender Response Document. Where required in accordance with the Specification and Tender Response Document, the Supplier shall obtain and maintain certification under the HM Government Cyber Essentials Scheme at the level set out in the Specification and Tender Response Document.

Information Security. Without limitation to any other information governance requirements set out in this Schedule 3 of these Call-off Terms and Conditions3, the Supplier shall: notify the Authority forthwith of any information security breaches or near misses (including without limitation any potential or actual breaches of confidentiality or actual information security breaches) in line with the Authority’s information governance Policies; and fully cooperate with any audits or investigations relating to information security and any privacy impact assessments undertaken by the Authority and shall provide full information as may be reasonably requested by the Authority in relation to such audits, investigations and assessments. Where required in accordance with the Specification and Tender Response Document, the Supplier will ensure that it puts in place and maintains an information security management plan appropriate to this Contract, the type of Services being provided and the obligations placed on the Supplier. The Supplier shall ensure that such plan is consistent with any relevant Policies, Guidance, Good Industry Practice and with any relevant quality standards as may be set out in the Key Provisions and/or the Specification and Tender Response Document. Where required in accordance with the Specification and Tender Response Document, the Supplier shall obtain and maintain certification under the HM Government Cyber Essentials Scheme at the level set out in the Specification and Tender Response Document.

Information Security. Without limitation to any other information governance requirements set out in this Schedule 3 12 of these Call-off Terms and Conditions, the Supplier shall: notify the Authority forthwith of any information security breaches or near misses (including without limitation any potential or actual breaches of confidentiality or actual information security breaches) in line with the Authority’s information governance Policies; and fully cooperate with any audits or investigations relating to information security and any privacy impact assessments undertaken by the Authority and shall provide full information as may be reasonably requested by the Authority in relation to such audits, investigations and assessments. Where required in accordance with the Specification and Tender Response Document, the Supplier will ensure that it puts in place and maintains an information security management plan appropriate to this Contract, the type of Services being provided and the obligations placed on the Supplier. The Supplier shall ensure that such plan is consistent with any relevant Policies, Guidance, Good Industry Practice and with any relevant quality standards as may be set out in the Key Provisions and/or the Specification and Tender Response Document. Where required in accordance with the Specification and Tender Response Document, the Supplier shall obtain and maintain certification under the HM Government Cyber Essentials Scheme at the level set out in the Specification and Tender Response Document.

Information Security. Without limitation to any other information governance requirements set out in this Schedule 3 of these Call-off Terms and Conditions, the Supplier shall: notify the Authority forthwith of any information security breaches or near misses (including without limitation any potential or actual breaches of confidentiality or actual information security breaches) in line with the Authority’s information governance Policies; and fully cooperate with any audits or investigations relating to information security and any privacy impact assessments undertaken by the Authority and shall provide full information as may be reasonably requested by the Authority in relation to such audits, investigations and assessments. Where required in accordance with the Specification and Tender Response Document, the Supplier will ensure that it puts in place and maintains an information security management plan appropriate to this Contract, the type of Services being provided provided, and the obligations placed on the Supplier. The Supplier shall ensure that such plan is consistent with any relevant Policies, Guidance, Good Industry Practice and with any relevant quality standards as may be set out in the Key Provisions and/or the Specification and Tender Response Document. Where required in accordance with the Specification and Tender Response Document, the Supplier shall obtain and maintain certification under the HM Government Cyber Essentials Scheme at the level set out in the Specification and Tender Response Document.

Information Security. 4.1 Without limitation to any other information governance requirements set out in this Schedule 3 of these Call-off Terms and Conditions3, the Supplier shall: : 4.1.1 notify the Authority forthwith of any information security breaches or near misses (including without limitation any potential or actual breaches of confidentiality or actual information security breaches) in line with the Authority’s information governance Policies; and and 4.1.2 fully cooperate with any audits or investigations relating to information security and any privacy impact assessments undertaken by the Authority and shall provide full information as may be reasonably requested by the Authority in relation to such audits, investigations and assessments. . 4.2 Where required in accordance with the Specification and Tender Response Document, the Supplier will ensure that it puts in place and maintains an information security management plan appropriate to this Contract, the type of Services being provided and the obligations placed on the Supplier. The Supplier shall ensure that such plan is consistent with any relevant Policies, Guidance, Good Industry Practice and with any relevant quality standards as may be set out in the Key Provisions and/or the Specification and Tender Response Document. . 4.3 Where required in accordance with the Specification and Tender Response Document, the Supplier shall obtain and maintain certification under the HM Government Cyber Essentials Scheme at the level set out in the Specification and Tender Response Document.. Docusign Envelope ID: 1 Definitions

Information Security. Without limitation to any other information governance requirements set out in this Schedule 3 of these Call-off Terms and Conditions3, the Supplier shall: notify the Authority forthwith of any information security breaches or near misses (including without limitation any potential or actual breaches of confidentiality or actual information security breaches) in line with the Authority’s information governance Policies; and fully cooperate with any audits or investigations relating to information security and any privacy impact assessments undertaken by the Authority and shall provide full information as may be reasonably requested by the Authority in relation to such audits, investigations and assessments. Where required in accordance with the Specification and Tender Response Document, the Supplier will ensure that it puts in place and maintains an information security management plan appropriate to this Contract, the type of Services being provided Contract and the obligations placed on the SupplierSupplier under this Contract. The Supplier shall ensure that such plan is consistent with any relevant Policies, Guidance, Good Industry Practice and with any relevant quality standards as may be set out in the Key Provisions and/or the Specification and Tender Response Document. Where required in accordance with the Specification and Tender Response Document, the Supplier shall obtain and maintain certification under the HM Government Cyber Essentials Scheme at the level set out in the Specification and Tender Response Document.

Information Security. Without limitation to any other information governance requirements set out in this Schedule 3 of these Call-off Terms and Conditions, the Supplier shall: notify the Authority forthwith of any information security breaches or near misses (including without limitation any potential or actual breaches of confidentiality or actual information security breaches) in line with the Authority’s information governance Policies; and fully cooperate with any audits or investigations relating to information security and any privacy impact assessments undertaken by the Authority and shall provide full information as may be reasonably requested by the Authority in relation to such audits, investigations and assessments. Where required in accordance with the Specification and Tender Response DocumentDocument and/or the Order Form, the Supplier will ensure that it puts in place and maintains an information security management plan appropriate to this Contract, the type of Services being provided and the obligations placed on the SupplierSupplier under this Contract. The Supplier shall ensure that such plan is consistent with any relevant Policies, Guidance, Good Industry Practice and with any relevant quality standards as may be set out in the Key Provisions Framework Agreement and/or the Specification and Tender Response DocumentOrder Form. Where required in accordance with the Specification and Tender Response Document, the Supplier shall obtain and maintain certification under the HM Government Cyber Essentials Scheme at the level set out in the Specification and Tender Response Document.