Common use of Right to Audit Clause in Contracts

Right to Audit. 6.1. Upon the GLO’s request and to confirm Provider’s compliance with this Attachment, Provider grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, and application software that stores, processes, or transports GLO Data. In lieu of a GLO-conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO approval, the following reports: SSAE16, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any subcontract it awards.

Right to Audit. 6.1. Upon the GLO’s request and to confirm Provider’s compliance with this Attachment, Provider grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractorsubcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, and application software that stores, processes, or transports GLO Data. In lieu of a GLO-conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO approval, the following reports: SSAE16, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any subcontract it awards.

Right to Audit. 6.1. Upon the GLO’s request and to confirm Provider’s compliance with this AttachmentAttachment C, Provider grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractorsubcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, and application software that stores, processes, or transports GLO Data. In lieu of a GLO-conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO approval, the following reports: SSAE16, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any subcontract it awards.

Right to Audit. 6.1. Upon the GLO’s request and to confirm ProviderContractor’s compliance with this Attachment, Provider Contractor grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the ProviderContractor’s, or ProviderContractor’s Subcontractor’s, physical and/or technical environment in relation to GLO Data. Provider Contractor agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, and application software that stores, processes, or transports GLO Data. In lieu of a GLO-conducted assessment, audit, examination, investigation, or review, Provider Contractor may supply, upon GLO approval, the following reports: SSAE16, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider Contractor shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any subcontract it awards.

Right to Audit. 6.1. 6.1 Upon the GLO’s request and to confirm Provider’s compliance with this Attachment, Provider grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractorcontractor/subcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, infrastructure and application software that stores, processes, or transports GLO Data. In lieu of a GLO-GLO- conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO approval, the following reports: SSAE16SSAE18, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any contract/subcontract it that Provider awards.

Right to Audit. 6.1. Upon the GLO’s request and to confirm Provider’s compliance with this Attachment, Provider grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractorsubcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, and application software that stores, processes, or transports GLO Data. In lieu of a GLO-GLO- conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO approval, the following reports: SSAE16, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any subcontract it awards.

Right to Audit. 6.1. 6.1 Upon the GLO’s request and to confirm Provider’s compliance with this Attachment, Provider grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractorcontractor/subcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, infrastructure and application software that stores, processes, or transports GLO Data. In lieu of a GLO-conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO approval, the following reports: SSAE16SSAE18, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any contract/subcontract it that Provider awards.

Right to Audit. 6.1. 6.1 Upon the GLO’s request and to confirm Provider’s compliance with this Attachment, Provider grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractorcontractor/subcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to shall fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, infrastructure and application software that stores, processes, or transports GLO Data. In lieu of a GLO-GLO- conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO approval, the following reports: SSAE16SSAE18, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any contract/subcontract it that Provider awards.

Right to Audit. 6.1. Upon the GLOBoard’s request and to confirm Provider’s compliance with this AttachmentAttachment F, Provider grants the GLOBoard, or a GLOBoard-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractorsubcontractor’s, physical and/or technical environment in relation to GLO Board Data. Provider agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, infrastructure and Attachment F GLO Contract No. 21-111-000-C750 In Process application software that stores, processes, or transports GLO Board Data. In lieu of a GLO-Board- conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO Board approval, the following reports: SSAE16SSAE18, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLOBoard’s authority to assess, audit, examine, investigate, or review review, is included in any subcontract it awards.

Right to Audit. 6.1. 6.1 Upon the GLO’s request and to confirm ProviderSubrecipient’s compliance with this Attachment, Provider Subrecipient grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the ProviderSubrecipient’s, or ProviderSubrecipient’s Subcontractorcontractor/subcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to Subrecipient shall fully cooperate with such In Process assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, infrastructure and application software that stores, processes, or transports GLO Data. In lieu of a GLO-conducted assessment, audit, examination, investigation, or review, Provider Subrecipient may supply, upon GLO approval, the following reports: SSAE16SSAE18, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider Subrecipient shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any contract/subcontract it that Subrecipient awards.

Right to Audit. 6.1. Upon the GLOBoard’s request and to confirm Provider’s compliance with this AttachmentAttachment F, Provider grants the GLOBoard, or a GLOBoard-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractorsubcontractor’s, physical and/or technical environment in relation to GLO Board Data. Provider agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, infrastructure and application software that stores, processes, or transports GLO Board Data. In lieu of a GLO-Board- conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO Board approval, the following reports: SSAE16SSAE18, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLOBoard’s authority to assess, audit, examine, investigate, or review review, is included in any subcontract it awards.

Right to Audit. 6.1. 6.1 Upon the GLO’s request and to confirm ProviderContractor’s compliance with this Attachment, Provider Contractor grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the ProviderContractor’s, or ProviderContractor’s Subcontractorcontractor/subcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to Contractor shall fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, infrastructure and application software that stores, processes, or transports GLO Data. In lieu of a GLO-conducted assessment, audit, examination, investigation, or review, Provider Contractor may supply, upon GLO approval, the following reports: SSAE16SSAE18, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider Contractor shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any contract/subcontract it that Contractor awards.

Right to Audit. 6.1. 6.1 Upon the GLO’s request and to confirm Provider’s compliance with this Attachment, Provider grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractorsubcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to fully cooperate cooperate, and ensure its contractors, subcontractors, and affiliates fully cooperate, with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, infrastructure and application software that stores, processes, or transports GLO DataData (but only in a manner that does not breach any of Provider’s confidentiality obligations to third parties). In lieu of a GLO-conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO Attachment C GLO Contract No. 21-023-000-C341 approval, the following reports: SSAE16SSAE18, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review review, is included in any subcontract it awards.

Right to Audit. 6.1. Upon the GLO’s request and to confirm ProviderContractor’s compliance with this Attachment, Provider Contractor grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the ProviderContractor’s, or ProviderContractor’s Subcontractor’s, physical and/or technical environment in relation to GLO Data. Provider Contractor agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, and application software that stores, processes, or transports GLO Data. In lieu of a GLO-conducted assessment, audit, examination, investigation, or review, Provider Contractor may supply, upon GLO approval, the following reports: SSAE16, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider Contractor shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any subcontract it awards.

Right to Audit. 6.1. Upon the GLO’s request and to confirm Provider’s compliance with this Attachment, Provider grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractorsubcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, and application software that stores, processes, or transports GLO Data. In lieu of a GLO-GLO- conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO approval, the following reports: SSAE16, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any subcontract it awards.

Right to Audit. 6.1. Upon the GLO’s request and to confirm Provider’s compliance with this Attachment, Provider grants the GLO, or a GLO-contracted vendor, permission to perform an assessment, audit, examination, investigation, or review of all controls in the Provider’s, or Provider’s Subcontractor’s, physical and/or technical environment in relation to GLO Data. Provider agrees to fully cooperate with such assessment by providing access to knowledgeable personnel, physical premises, documentation, infrastructure, and application software that stores, processes, or transports GLO Data. In lieu of a GLO-GLO- conducted assessment, audit, examination, investigation, or review, Provider may supply, upon GLO approval, the following reports: SSAE16, ISO/ICE 27001 Certification, FedRAMP Certification, and PCI Compliance Report. Provider shall ensure that this clause concerning the GLO’s authority to assess, audit, examine, investigate, or review is included in any subcontract it awards.