Minimum Security Measures Sample Clauses

Minimum Security Measures. A5.3.1 The Contractor must provide the following minimum mandatory security measures: Compliance with the Baseline Personnel Security Standard, see paragraphs A5.3 below that cover pre-employment checks and Contractor’s declaration ; Appropriate risk mitigation actions as may be appropriate for effective contract management activities. Includes the identification of soft copy information as well as hard copy information; Ensure the minimum number of Contractor personnel handle the Client’s data and the identification of roles and responsibilities of staff handling the Client’s data is recorded; Development of appropriate incident management processes and systems that will be used to deal effectively with any incident of data loss; Ensure that all Contractors’ staff involved in handling departmental data within the contract understands their obligations to data security including their legal and contractual responsibilities.
Sample 1Sample 2Sample 3See All (16)
AutoNDA by SimpleDocs
Minimum Security Measures. The Supplier must provide the following minimum mandatory security measures:
Sample 1Sample 2Sample 3See All (8)
Minimum Security Measures. The Assessment Supplier will implement the technical and organisational security measures described below in respect of personal data it processes on behalf of the SRA pursuant to this Agreement: • Information security policy: The Assessment Supplier will implement a written information security policy that specifies the security standards it will apply to protect the personal data it processes in accordance with this Agreement. The information security policy will mandate the use of appropriate technical and organisational security measures throughout the Assessment Supplier's organisation to protect personal data against unauthorised and unlawful processing and against accidental loss, damage or destruction. It will further describe the measures to be taken, and individuals to be notified, in the event of an actual or suspected data or security breach. The Assessment Supplier will provide a copy of its information security policy to the SRA upon request. • Information security officer: The Assessment Supplier will appoint a duly skilled, qualified and experienced employee with responsibility for ensuring the security of personal data processed by the Assessment Supplier throughout its organisation and for reviewing, maintaining and updating the Assessment Supplier's information security policy in accordance with best industry practice. • Physical security: Access to data processing facilities will be restricted to duly authorised employees and contractors who have been issued with security badges. All data processing facilities will be manned by a security front desk on a 24 x 7 x 365 basis. • Firewall and anti-virus: The Assessment Supplier will implement appropriate firewall, anti-virus, anti-spyware and other anti-malware software and technologies on all networks and systems it uses to process personal data. The Assessment Supplier will update its firewall, anti-virus, anti-spyware and other anti-malware software and technologies on a regular basis to ensure that they protect against then-current virus, spyware and other malware threats.
Sample 1
Minimum Security Measures. Measures of pseudonymisation and encryption of personal data Data is encrypted at rest and in transit using AES-256 encryption. Measures for ensuring ongoing confidentiality, integrity, availability and resilience of processing systems and services Our system architecture is subject to regular penetration testing and we have a full information security programme implemented. Measures for ensuring the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident We maintain a full IT disaster recovery process and business continuity process. This is tested annually. We follow a strict backup policy which includes both online and offline backups. Processes for regularly testing, assessing and evaluating the effectiveness of technical and organisational measures in order to ensure the security of the processing We run regular vulnerability scans of our internal and external environment. We conduct regular penetration testing of our production application and hosting infrastructure. Measures for user identification and authorisation We enforce multifactor authentication on all user accounts. We technically enforce a complex password policy. Measures for the protection of data during transmission Data is encrypted at rest and in transit using AES-256 encryption. We enforce a TLS version of 1.2 or greater. Measures for the protection of data during storage Data is encrypted at rest and in transit using AES-256 encryption. Our data is stored within secure data centres with strong physical security controls. Measures for ensuring physical security of locations at which personal data are processed Data is stored within our production environment that has strict physical security policies in place. Physical controls include CCTV, alarmed perimeters, and armed security. Measures for ensuring events logging We utilise a gold standard logging solution that centralises all our events and logs from across our environment. These are monitored with automated alerts triggered if thresholds are met. Measures for ensuring system configuration, including default configuration System configuration is maintained by using a defined CI/CD pipeline (with security and quality testing built in) with infrastructure as code, subject to multiple approvals before deployment. Measures for internal IT and IT security governance and management We maintain a full ISMS which covers a full suite of security policies and proc...
Sample 1
Minimum Security Measures. The Supplier must provide the following minimum mandatory security measures: Compliance with the Baseline Personnel Security Standard (BPSS), (as referred to in the HMG Security Policy Framework at paragraph B10.1.a, above); Procedures are in place to ensure periods of storage are limited and only at times where this is unavoidable due to consignments not being able to be delivered to offices, e.g. overnight, weekends and unforeseeable circumstances; Prior notification to the Client where delivery is not possible on the same day and ensure items are stored in a secure area overnight; Identify premises from which the contract will be delivered to assess security protocols that exist, access to premises, controls and measures in place to ensure sufficient security and what safeguards are in place to ensure security to departmental data whilst on the premises.
Sample 1
Minimum Security Measures. The minimum security measures for the common lock box system and the rules and regulations and procedures of administration of the common lock box system as adopted by RSC are hereby incorporated in this Agreement and made a part hereof by this reference as the same may be amended from time to time.
Sample 1
Minimum Security Measures. A6.3.1 The Contractor must provide the following minimum mandatory security measures: Compliance with the Baseline Personnel Security Standard, see paragraph A6.4 below that cover pre-employment checks and Contractor’s declaration ; Appropriate risk mitigation actions as may be appropriate for effective contract management activities; this includes the identification of soft copy information as well as hard copy information; Ensure the minimum number of Contractor personnel handle the Client’s data and the identification of roles and responsibilities of staff handling the Client’s data is recorded; Development of appropriate incident management processes and systems that will be used to deal effectively with any incident of data loss; Ensure that all Contractor staff involved in handling departmental data within the contract understands their obligations regarding data security including their legal and contractual responsibilities. The Contractor will be required to deliver training to staff as part of induction and on-going employment activities; Procedures are in place to identify and resolve any security weaknesses and measures identified as a result of security breaches and breaches of the Data Protection Act etc. including, but not exclusive to, disciplinary procedures and procedures in place to identify software and IT system faults; Procedures are in place to ensure periods of storage are limited and only at times where this is unavoidable due to couriered mail not being able to be delivered to offices, e.g. overnight, weekends and unforeseeable circumstances; Prior notification to the Client where delivery is not possible on the same day and ensure items are stored in a secure area overnight; Identify premises from which the contract will be delivered to assess security protocols that exist, access to premises, controls and measures in place to ensure sufficient security and what safeguards are in place to ensure security to departmental data whilst on the premises; Damaged packages should not be accepted into the network. Any packages collected and subsequently damaged in the Contractor’s network should be photographed and held securely at the Contractor’s depot, until further instructions are received from the Client.
Sample 1
AutoNDA by SimpleDocs

Related to Minimum Security Measures

  • Security Measures Lessee hereby acknowledges that the rental payable to Lessor hereunder does not include the cost of guard service or other security measures, and that Lessor shall have no obligation whatsoever to provide same. Lessee assumes all responsibility for the protection of the Premises, Lessee, its agents and invitees and their property from the acts of third parties.

  • Safety Measures Employees working in any unsanitary or dangerous jobs shall be supplied with all the necessary tools, safety equipment, and protective clothing.

  • Interim Measures 6.1 The Parties acknowledge that the British Columbia Claims Task Force made the following recommendation concerning interim measures:

  • Protective Measures We have implemented and will maintain appropriate technical and organisational measures in relation to the Services taking into account the state of the art, the costs of implementation, and the nature, scope, context and purposes of Processing, as well as the likelihood and severity of risk to the rights and freedoms of data subjects. This includes measures relating to the physical security of Our facilities used to deliver them, measures to control access rights to Our assets and relevant networks, and processes for testing these measures. In accordance with Our obligations under applicable law, We may undertake digital forensic investigations in relation to the use of the Services and Subscriptions. You are responsible for using, and ensuring that your Users use, the controls and advice provided by the Services correctly and consistently.

  • Emergency Measures Additional measures and/or other special requirements necessary during periods of critical fire-weather conditions shall be included in the fire prevention and presuppression plan.

  • Safeguard Measures 1. The Parties note the multilateral negotiations pursuant to Article X of GATS on the question of emergency safeguard measures based on the principle of non- discrimination. Upon the conclusion of such multilateral negotiations, the Parties shall conduct a review for the purpose of discussing appropriate amendments to this Agreement so as to incorporate the results of such multilateral negotiations.

  • Non-Tariff Measures 1. Neither Party shall adopt or maintain any non-tariff measures, including quantitative restrictions, on the importation of any good of the other Party or on the exportation or sale for export of any good destined for the other Party, except in accordance with its rights and obligations under the WTO Agreement or as otherwise provided for in this Agreement.

  • Bilateral Safeguard Measures 1. Where, as a result of the reduction or elimination of a customs duty under this Agreement, any product originating in a Party is being imported into the territory of another Party in such increased quantities, in absolute terms or relative to domestic production, and under such conditions as to constitute a substantial cause of serious injury or threat thereof to the domestic industry of like or directly competitive products in the territory of the importing Party, the importing Party may take bilateral safeguard measures to the minimum extent necessary to remedy or prevent the injury, subject to the provisions of paragraphs 2 to 10.

  • Corrective Measures If the Participating Generator fails to meet or maintain the requirements set forth in this Agreement and/or the CAISO Tariff, the CAISO shall be permitted to take any of the measures, contained or referenced in the CAISO Tariff, which the CAISO deems to be necessary to correct the situation.

  • Disciplinary Measures 19.01 Any disciplinary measure must be the subject of a written notice addressed to the employee concerned and stating the reasons for the measure. Such notice must be sent simultaneously to the Union. Only those disciplinary measures of which the employee and the Union have been informed in writing can be used as evidence in arbitration and can appear in the employee's employment file.

Time is Money Join Law Insider Premium to draft better contracts faster.