Common use of Logical Separation Clause in Contracts

Logical Separation. Accounts must ensure logical separation of access to different components and data within the Information Resource based on Role. That logical separation must ensure that accounts and individuals have only the minimal amount of access necessary to fulfill their business and technical requirements. Additionally, Owners must ensure that such access constraints are uniformly enforced (across Information Resources and in each instance of access). Access must be constrained, procedurally or logically, in a way that ensures that account holders are generally prohibited from: a. Passing information to unauthorized individuals; b. Inappropriately downloading or saving information; c. Inappropriately passing information to other Information Resource components; d. Sharing account information or otherwise granting their account privileges to others; e. Changing security attributes to data, Information Resources, or Information Resource components; f. Changing security attributes for newly created data or Information Resources; or g. Changing how access control is governed. Notwithstanding the foregoing, Owners may define privileged accounts which do permit some or all of the above if business requirements warrant.