Common use of Auditable Events Clause in Contracts

Auditable Events. Each Participant shall utilize the security policy established by the QHIN with whom the Participant has a signed a Participant-QHIN Agreement to identify a set of auditable events. Said security policy shall be consistent with the QHIN’s security policy but with appropriate modifications based on the transactions being performed. Each Participant’s security policy shall include the following auditing requirements for each Exchange Purpose that it performs: (i) A list of auditable events described in said security policy; (ii) An audit log including records for all auditable events identified by said security policy. A Participant shall retain all audit logs (both electronic and non-electronic) in accordance with Applicable Law and make such audit logs available during any audit; and (iii) A record of an auditable event which at a minimum should include the following information: • The description of the event; • The date and time the event occurred; • A success or failure indicator; and • Where appropriate, the identity of the entity and/or operator that was responsible for the event.

Auditable Events. Each Participant Member shall utilize the security policy established by the QHIN Participant with whom the Participant Member has a signed a Participant-QHIN Participant member Agreement to identify a set of auditable events. Said security policy shall be consistent with the QHINParticipant’s security policy but with appropriate modifications based on the transactions being performed. Each ParticipantParticipant Member’s security policy shall include the following auditing requirements for each Exchange Purpose that it performs: (i) A list of auditable events described in said security policy; (ii) An audit log including records for all auditable events identified by said security policy. A Participant Member shall retain all audit logs (both electronic and non-electronic) in accordance with Applicable Law and make such audit logs available during any audit; and (iii) A record of an auditable event which at a minimum should include the following information: • The description of the event; • The date and time the event occurred; • A success or failure indicator; and • Where appropriate, the identity of the entity and/or operator that was responsible for the event.