Electronic and Information Resources Accessibility and Security Standards a. Applicability: The following Electronic and Information Resources (“EIR”) requirements apply to the Contract because the Grantee performs services that include EIR that the System Agency's employees are required or permitted to access or members of the public are required or permitted to access. This Section does not apply to incidental uses of EIR in the performance of the Agreement, unless the Parties agree that the EIR will become property of the State of Texas or will be used by HHSC’s clients or recipients after completion of the Agreement. Nothing in this section is intended to prescribe the use of particular designs or technologies or to prevent the use of alternative technologies, provided they result in substantially equivalent or greater access to and use of a Product.
Accessibility of Web-Based Information and Applications For State Agency Authorized User Acquisitions: Any web-based information and applications development, or programming delivered pursuant to the contract or procurement, will comply with New York State Enterprise IT Policy NYS-P08-005, Accessibility of Web-Based Information and Applications as follows: Any web-based information and applications development, or programming delivered pursuant to the contract or procurement, will comply with New York State Enterprise IT Policy NYS-P08- 005, Accessibility of Web-Based Information and Applications as such policy may be amended, modified or superseded, which requires that state agency web-based information and applications are accessible to persons with disabilities. Web-based information and applications must conform to New York State Enterprise IT Policy NYS-P08-005 as determined by quality assurance testing. Such quality assurance testing will be conducted by the State Agency Authorized User and the results of such testing must be satisfactory to the Authorized User before web-based information and applications will be considered a qualified deliverable under the contract or procurement.
Contact Information for Privacy and Security Officers and Reports 2.1 Business Associate shall provide, within ten (10) days of the execution of this Agreement, written notice to the Contract or Grant manager the names and contact information of both the HIPAA Privacy Officer and HIPAA Security Officer of the Business Associate. This information must be updated by Business Associate any time these contacts change.
Transparency and Freedom of Information 15.1 The Contractor acknowledges that the Authority is subject to the requirements of FOISA and the Environmental Information Regulations. The Contractor shall:
Confidentiality and Safeguarding of University Records; Press Releases; Public Information Under this Agreement, Contractor may (1) create, (2) receive from or on behalf of University, or (3) have access to, records or record systems (collectively, University Records). Among other things, University Records may contain social security numbers, credit card numbers, or data protected or made confidential or sensitive by Applicable Laws. [Option (Include if University Records are subject to FERPA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Family Educational Rights and Privacy Act, 20 United States Code (USC) §1232g (FERPA) are addressed in Section 12.41.] [Option (Include if University is a HIPAA Covered Entity and University Records are subject to HIPAA.): Additional mandatory confidentiality and security compliance requirements with respect to University Records subject to the Health Insurance Portability and Accountability Act and 45 Code of Federal Regulations (CFR) Part 160 and subparts A and E of Part 164 (collectively, HIPAA) are addressed in Section 12.26.] Contractor represents, warrants, and agrees that it will: (1) hold University Records in strict confidence and will not use or disclose University Records except as (a) permitted or required by this Agreement, (b) required by Applicable Laws, or (c) otherwise authorized by University in writing; (2) safeguard University Records according to reasonable administrative, physical and technical standards (such as standards established by the National Institute of Standards and Technology and the Center for Internet Security [Option (Include if Section 12.39 related to Payment Card Industry Data Security Standards is not include in this Agreement.):, as well as the Payment Card Industry Data Security Standards]) that are no less rigorous than the standards by which Contractor protects its own confidential information; (3) continually monitor its operations and take any action necessary to assure that University Records are safeguarded and the confidentiality of University Records is maintained in accordance with all Applicable Laws and the terms of this Agreement; and (4) comply with University Rules regarding access to and use of University’s computer systems, including UTS165 at xxxx://xxx.xxxxxxxx.xxx/board-of-regents/policy-library/policies/uts165-information-resources-use-and-security-policy. At the request of University, Contractor agrees to provide University with a written summary of the procedures Contractor uses to safeguard and maintain the confidentiality of University Records.
Protection of Private Information If this Agreement requires City to disclose “Private Information” to Contractor within the meaning of San Francisco Administrative Code Chapter 12M, Contractor and subcontractor shall use such information only in accordance with the restrictions stated in Chapter 12M and in this Agreement and only as necessary in performing the Services. Contractor is subject to the enforcement and penalty provisions in Chapter 12M.
Information and Reports The contractor will provide all information and reports required by the Acts, the Regulations, and directives issued pursuant thereto and will permit access to its books, records, accounts, other sources of information, and its facilities as may be determined by the sponsor or the Federal Aviation Administration to be pertinent to ascertain compliance with such Nondiscrimination Acts And Authorities and instructions. Where any information required of a contractor is in the exclusive possession of another who fails or refuses to furnish the information, the contractor will so certify to the sponsor or the Federal Aviation Administration, as appropriate, and will set forth what efforts it has made to obtain the information.
Freedom of Information and Transparency The Supplier acknowledges that the Authority and Other Contracting Bodies are subject to the requirements of the FOIA and the Environmental Information Regulations and shall assist and co-operate with the Authority and the Other Contracting Bodies to enable the Authority and Other Contracting Bodies to comply with their Information disclosure obligations in relation to this Framework Agreement and any Call Off Agreements. The Supplier shall: transfer to the Authority and/or the relevant Other Contracting Bodies, as applicable, all Requests for Information that it receives as soon as practicable and in any event within two (2) Working Days of receiving a Request for Information; and provide all necessary assistance reasonably requested by the Authority and/or the Other Contracting Body to enable the Authority and/or the Other Contracting Body to respond to the Request for Information within the time for compliance set out in section 10 of the FOIA or regulation 5 of the Environmental Information Regulations. The Authority shall be responsible for determining in absolute its discretion and notwithstanding any other provision in this Framework Agreement or any other agreement whether the Commercially Sensitive Information and/or any other Information is exempt from disclosure in accordance with the provisions of the FOIA or the Environmental Information Regulations. In no event shall the Supplier respond directly to a Request for Information unless expressly authorised to do so by the Authority. The Supplier acknowledges that (notwithstanding the provisions of this Clause FW-40.) the Authority may, acting in accordance with the Ministry of Justice’s Code of Practice on the Discharge of the Functions of Public Authorities under Part 1 of the Freedom of Information Act 2000 (“the Code”), be obliged under the FOIA, or the Environmental Information Regulations to disclose information concerning the Supplier or the Services: in certain circumstances without consulting the Supplier; or following consultation with the Supplier and having taken its views into account; provided always that where Clause FW-40.5.1 applies the Authority shall, in accordance with any recommendations of the Code, take reasonable steps, where appropriate, to give the Supplier advanced notice, or failing that, to draw the disclosure to the Supplier’s attention after any such disclosure. The Supplier acknowledges that the description of information as Commercially Sensitive Information as notified to the Authority prior to the Commencement Date is of an indicative nature only and that the Authority and Other Contracting Body may be obliged to disclose the Commercially Sensitive Information in accordance with this Clause FW-40.. Subject to any information which is exempt from disclosure under the FOIA and notwithstanding any other term of this Framework Agreement or the Call Off Agreement, the Supplier agrees that the contents of the Framework Agreement and the Call Off Agreement are not Confidential Information and the Supplier hereby gives his consent for the Authority to publish this Framework Agreement and for the Contracting Body to publish the Call Off Agreement in their entirety including from time to time agreed changes to this Framework Agreement and/or the Call Off Agreement, to the general public.
RECORDS, INFORMATION AND REPORTS Contractor shall maintain full and accurate records with respect to all matters covered under this Agreement. To the extent permitted by law, County shall have free access at all proper times or until the expiration of four (4) years after the furnishing of services to such records, and the right to examine and audit the same and to make transcripts therefrom, and to inspect all data, documents, proceedings, and activities pertaining to this Agreement. To the extent permitted by law, Contractor shall furnish County such periodic reports as County may request pertaining to the work or services undertaken pursuant to this Agreement. The costs and obligations incurred or to be incurred in connection therewith shall be borne by the Contractor.
Access to Protected Information If BA maintains a designated record set on behalf of CE, BA shall make Protected Information maintained by BA or its agents or subcontractors in Designated Record Sets available to CE for inspection and copying within five (5) days of a request by CE to enable CE to fulfill its obligations under state law [Health and Safety Code Section 123110] and the Privacy Rule, including, but not limited to, 45 C.F.R. Section 164.524 [45 C.F.R. Section 164.504(e)(2)(ii)(E)]. If BA maintains Protected Information in electronic format, BA shall provide such information in electronic format as necessary to enable CE to fulfill its obligations under the HITECH Act and HIPAA Regulations, including, but not limited to, 42 U.S.C. Section 17935(e) and 45 C.F.R. Section 164.524.
