AUDIT AND SECURITY Clause Samples

The 'Audit and Security' clause grants one party the right to review and assess the other party's compliance with agreed-upon security standards and procedures. Typically, this involves allowing audits of systems, processes, or records to ensure that sensitive data is being handled appropriately and that security measures are in place and effective. This clause is essential for maintaining trust and accountability, as it helps prevent data breaches and ensures ongoing adherence to security obligations.
AUDIT AND SECURITY. ‌ 15.1 The Contractor shall demonstrate the security of any and all systems that may contain consumer data, including the secure transmission and receipt of data and be prepared for an audit of the security measures and confirm the integrity of services; Schedule 6 of the call off Terms and Conditions describes the security requirements in detail and bidders should ensure they have fully considered them. 15.2 The Contractor shall operate the services from secure locations and ensure that all IT, communication and other systems used have the appropriate level of security and the latest IS Security Policy and Standards. 15.3 The Framework Agreement between the Contractor and the Authority shall state the confidentiality and integrity of the information passed between both parties. Subsequent call off contracts pursuant to paragraphs 3.1 and 3.2 above will be subject to each OGD’s security requirements which includes accreditation where required. Contracts with DWP are subject to formal approval by the Authority’s Departmental Security Team and will only be granted when the full technical/security features of the Contractor’s operations and solution are defined and conform to the DWP Security Accreditation procedure and policy. This may involve DWP being granted access to the following:  The Contractor’s premises;  Contractor documentation;  Contractor data;  Where the Contractor’s computer and communications system is located and how access to these and the services they provide is controlled. 15.4 In accordance with the DWP Offshoring Policy, the Contractor, or any of its sub-contractors, shall not process, host or access Authority Data from premises outside the United Kingdom without the prior written consent of DWP. Where DWP gives consent, the Contractor shall comply with any reasonable instructions notified to it by DWP in relation to the Authority Data in question. A copy of A Guide for DWP Contractors on the DWP Offshoring Policy is attached an Annex 1.
View SourceView Similar (6)
AUDIT AND SECURITY. 7.1 The Contractor shall demonstrate the security of any and all systems that may contain consumer data, and be prepared for an Audit of the security measures and confirm the integrity of services. 7.2 The Contractor shall operate the Service from secure locations and ensure that all IT and other systems used have the appropriate level of security for example the latest IS Security Policy and standards.
View SourceView Similar (2)
AUDIT AND SECURITY. Licensee will take reasonable action to restrict and control the installation and use of the FSMLabs Software in accordance with the limitations and restrictions set forth in Section 2 of this License, and to permit access only to Developers authorized to install and use the FSMLabs Software. Licensee will make reasonable efforts to ensure compliance by all Developers authorized to use the FSMLabs Software with this License. Licensee grants to FSMLabs the right to have independent auditors selected by FSMLabs and acceptable to Licensee, such acceptance not to be unreasonably withheld, audit the installation and use of the FSMLabs Software by Licensee to ensure compliance with this License at any time during regular business hours with three days prior written notice to Licensee.
View SourceView Similar (2)
AUDIT AND SECURITY. Oleeo provide access to standard “Non-protectively Marked” Oleeo audit and security policy documents free of charge but reserves the right to charge at the applicable rates set out in Schedule 1 for any requests for additional information not contained within such documents and/or additional resources required by the Client from Oleeo to assist with an audit or other security requirements. Oleeo Standdard Terms v27x GC Page 22 of 32 Schedule 8 TESTING SERVICES‌ 1. Description of Services The services to be supplied by the Oleeo to the Client pursuant to the agreement annexed hereto and in accordance with the Service Levels are: 1.1. the Implementation Services and Consultancy Services for the Tests for use by the Client and/or Candidates as more fully set out in paragraph 2 below; 1.2. the specification, support and integration of the System (and therefore the Tests) with the Web Site, as more fully set out in paragraph 3; 1.3. the maintenance, reporting on the use of the System and the application of information gathered as more fully set out in paragraph 3.4.2; 1.4. the training of a Client’s staff in the use of the System as more fully set out in paragraph 4; 1.5. the supply of management information on Candidate error rates as more fully set out in paragraph 6; and 1.6. the production, procurement and/or delivery of the deliverables as more fully set out in paragraph 7.
View Source
AUDIT AND SECURITY. 12.1 The Contractor shall demonstrate the security of any and all systems that may contain consumer data, and be prepared for an Audit of the security measures and confirm the integrity of services. 12.2 The Contractor shall operate the Service from secure locations and ensure that all IT and other systems used have the appropriate level of security for example the latest IT Security Standards (copy available on request).
View Source
AUDIT AND SECURITY. Oleeo provide access to standard “Non-protectively Marked” Oleeo audit and security policy documents free of charge but reserves the right to charge at the applicable rates set out in Schedule 1 for any requests for additional information not contained within such documents and/or additional resources required by the Client from Oleeo to assist with an audit or other security requirements. Oleeo will maintain accreditation to ISO 27001:2013 or a later equivalent for the duration of the term. Schedule 7 TESTING SERVICES‌ 1. Description of Services The services to be supplied by the Oleeo to the Client pursuant to the agreement annexed hereto and in accordance with the Service Levels are: 1.1. the Implementation Services and Consultancy Services for the Tests for use by the Client and/or Candidates as more fully set out in paragraph 2 below; 1.2. the Statement of Work, support and integration of the System (and therefore the Tests) with the Web Site, as more fully set out in paragraph 3; 1.3. the maintenance, reporting on the use of the System and the application of information gathered as more fully set out in paragraph 3.4.2; 1.4. the training of the Client’s staff in the use of the System as more fully set out in paragraph 6 of Schedule 5; 1.5. the supply of management information on Candidate error rates as more fully set out in paragraph 5; and 1.6. the production, procurement and/or delivery of the deliverables as more fully set out in paragraph 6.
View Source

Related to AUDIT AND SECURITY

  • Password and Security If you are issued or create any password or other credentials to access the Service or the portion of the Site through which the Service is offered, you agree not to give or make available your password or credentials to any unauthorized individuals, and you agree to be responsible for all actions taken by anyone to whom you have provided such credentials. If you believe that your credentials have been lost or stolen or that someone may attempt to use them to access the Site or Service without your consent, you must inform us at once at the telephone number provided in Section 6 of the General Terms above. See also Section 16 of the General Terms above regarding how the timeliness of your notice impacts your liability for unauthorized transfers.

  • Borrowing and Security To borrow funds and to mortgage and pledge the assets of the Trust or any part thereof to secure obligations arising in connection with such borrowing;

  • Access and Security Customer shall employ all physical, administrative and technical controls, screening and security procedures and other safeguards necessary to: (a) securely administer the distribution and use of all Access Credentials and protect against any unauthorized access to or use of the Hosted Services; and (b) control the content and use of Customer Data, including the uploading or other provision of Customer Data for Processing by the Hosted Services.

  • Privacy and Security (a) Each of the Company and its Subsidiaries complies (and requires and monitors the compliance of applicable third parties) in all material respects with all applicable Laws relating to privacy or data security, and reputable industry practice, standards, self-governing rules and policies and their own published, posted and internal agreements and policies (which are in conformance with reputable industry practice) (all of the foregoing collectively, “Privacy Laws”) with respect to: (i) personally identifiable information (including name, address, telephone number, electronic mail address, social security number, bank account number or credit card number), sensitive personal information and any special categories of personal information regulated thereunder or covered thereby (“Personal Information”), whether any of same is accessed or used by the Company or any of its Subsidiaries or any of their respective business partners; and (ii) non-personally identifiable information, whether any of same is accessed or used by the Company or any of its Subsidiaries or any of their respective business partners. (b) Neither the Company nor any of its Subsidiaries uses, collects, or receives any Personal Information or sensitive non-personally identifiable information and does not become aware of the identity or location of, or identify or locate, any particular Person as a result of any receipt of such Personal Information, in a manner which would materially breach or violate any Privacy Laws and materially and adversely impact the business of the Company and its Subsidiaries, taken as a whole. (c) To the Company’s knowledge, Persons with which the Company or any of its Subsidiaries have contractual relationships have not breached any agreements or any Privacy Laws pertaining to Personal Information and to non-personally identifiable information. (d) To the Company’s knowledge, the Company and its Subsidiaries take all commercially reasonable steps to protect the operation, confidentiality, integrity and security of their respective business systems and websites and all information and transactions stored or contained therein or transmitted thereby against any unauthorized or improper use, access, transmittal, interruption, modification or corruption, and there have been no material breaches of same. Without limiting the generality of the foregoing, each of the Company and its Subsidiaries (i) uses industry standard encryption technology and (ii) has implemented a comprehensive security plan that (1) identifies internal and external risks to the security of the Company’s or its Subsidiaries’ confidential information and Personal Information and (2) implements, monitors and improves adequate and effective safeguards to control those risks.

  • Collateral and Security Section 10.01.