Disposal of Stored Data Clause Samples

Disposal of Stored Data. All data must be securely disposed of when no longer required by Stockport School, regardless of the media or application type on which it is stored. • An automatic process must exist to permanently delete on-line data, when no longer required. • All hard copies of cardholder data must be manually destroyed when no longer required for valid and justified business reasons. A quarterly process must be in place to confirm that all non-electronic cardholder data has been appropriately disposed of in a timely manner. • Stockport School will have procedures for the destruction of hardcopy (paper) materials. These will require that all hardcopy materials are crosscut shredded, incinerated or pulped so they cannot be reconstructed. • Stockport School will have documented procedures for the destruction of electronic media. These will require: o All cardholder data on electronic media must be rendered unrecoverable when deleted e.g. through degaussing or electronically wiped using military grade secure deletion processes or the physical destruction of the media; o If secure wipe programs are used, the process must define the industry accepted standards followed for secure deletion. • All cardholder information awaiting destruction must be held in lockable storage containers clearly marked “To Be Shredded” - access to these containers must be restricted.
View SourceView Similar (13)
Disposal of Stored Data.  All data must be securely disposed of when no longer required by the trust, regardless of the media or application type on which it is stored.  An automatic process must exist to permanently delete on-line data, when no longer required.  All hard copies of cardholder data must be manually destroyed when no longer required for valid and justified business reasons. A quarterly process must be in place to confirm that all non-electronic cardholder data has been appropriately disposed of in a timely manner.  The trust will have procedures for the destruction of hardcopy (paper) materials. These will require that all hardcopy materials are crosscut shredded, incinerated or pulped so they cannot be reconstructed.  The trust will have documented procedures for the destruction of electronic media. These will require: o All cardholder data on electronic media must be rendered unrecoverable when deleted e.g. through degaussing or electronically wiped using military grade secure deletion processes or the physical destruction of the media; o If secure wipe programs are used, the process must define the industry accepted standards followed for secure deletion.  All cardholder information awaiting destruction must be held in lockable storage containers clearly marked “To Be Shredded” - access to these containers must be restricted. The policies and procedures outlined below must be incorporated into company practice to maintain a high level of security awareness. The protection of sensitive data demands regular training of all employees and contractors.  Review handling procedures for sensitive information and hold periodic security Approved by the Board of Trustees on 20th March 2023 To be reviewed annually. awareness meetings to incorporate these procedures into day to day company practice.  Distribute this security policy document to all company employees to read. It is required that all employees confirm that they understand the content of this security policy document by signing an acknowledgement form (see Appendix A).  All employees that handle sensitive information will undergo background checks (such as criminal and credit record checks, within the limits of the local law) before they commence their employment with the trust.  All third parties with access to credit card account numbers are contractually obligated to comply with card association security standards (PCI/DSS).  Company security policies must be reviewed annually and updated as needed.
View Source

Related to Disposal of Stored Data

  • Selection of Subcontractors, Procurement of Materials and Leasing of Equipment The contractor shall not discriminate on the grounds of race, color, religion, sex, national origin, age or disability in the selection and retention of subcontractors, including procurement of materials and leases of equipment. The contractor shall take all necessary and reasonable steps to ensure nondiscrimination in the administration of this contract. a. The contractor shall notify all potential subcontractors and suppliers and lessors of their EEO obligations under this contract. b. The contractor will use good faith efforts to ensure subcontractor compliance with their EEO obligations.

  • Storage of Materials Borrower shall cause all materials supplied for or intended to be utilized in the construction of the Improvements but not affixed to or incorporated into the Property to be stored on the Property or at such other location as may be approved by Lender in writing, with adequate safeguards to prevent loss, theft, damage or commingling with other materials not intended to be utilized in the construction of the Improvements.

  • Covered Data All instances of "Student Data" should be replaced with "LEA Data". The protections provided within this DPA extend to all data provided to or collected by the Provider.

  • Stored Materials Upon prior written agreement between the Contractor and Region 4 ESC, payment may be made for materials not incorporated in the work but delivered and suitably stored at the site or some other location, for installation at a later date. An inventory of the stored materials must be provided to Region 4 ESC prior to payment. Such materials must be stored and protected in a secure location and be insured for their full value by the Contractor against loss and damage. Contractor agrees to provide proof of coverage and additionally insured upon request. Additionally, if stored offsite, the materials must also be clearly identified as property of Region 4 ESC and be separated from other materials. Region 4 ESC must be allowed reasonable opportunity to inspect and take inventory of stored materials, on or offsite, as necessary. Until final acceptance by Region 4 ESC, it shall be the Contractor's responsibility to protect all materials and equipment. Contractor warrants and guarantees that title for all work, materials and equipment shall pass to Region 4 ESC upon final acceptance.

  • SERVICE MONITORING, ANALYSES AND ORACLE SOFTWARE 11.1 We continuously monitor the Services to facilitate Oracle’s operation of the Services; to help resolve Your service requests; to detect and address threats to the functionality, security, integrity, and availability of the Services as well as any content, data, or applications in the Services; and to detect and address illegal acts or violations of the Acceptable Use Policy. Oracle monitoring tools do not collect or store any of Your Content residing in the Services, except as needed for such purposes. Oracle does not monitor, and does not address issues with, non-Oracle software provided by You or any of Your Users that is stored in, or run on or through, the Services. Information collected by Oracle monitoring tools (excluding Your Content) may also be used to assist in managing Oracle’s product and service portfolio, to help Oracle address deficiencies in its product and service offerings, and for license management purposes. 11.2 We may (i) compile statistical and other information related to the performance, operation and use of the Services, and (ii) use data from the Services in aggregated form for security and operations management, to create statistical analyses, and for research and development purposes (clauses i and ii are collectively referred to as “Service Analyses”). We may make Service Analyses publicly available; however, Service Analyses will not incorporate Your Content, Personal Data or Confidential Information in a form that could serve to identify You or any individual. We retain all intellectual property rights in Service Analyses. 11.3 We may provide You with the ability to obtain certain Oracle Software (as defined below) for use with the Services. If we provide Oracle Software to You and do not specify separate terms for such software, then such Oracle Software is provided as part of the Services and You have the non-exclusive, worldwide, limited right to use such Oracle Software, subject to the terms of this Agreement and Your order (except for separately licensed elements of the Oracle Software, which separately licensed elements are governed by the applicable separate terms), solely to facilitate Your use of the Services. You may allow Your Users to use the Oracle Software for this purpose, and You are responsible for their compliance with the license terms. Your right to use any Oracle Software will terminate upon the earlier of our notice (by web posting or otherwise) or the end of the Services associated with the Oracle Software. Notwithstanding the foregoing, if Oracle Software is licensed to You under separate terms, then Your use of such software is governed by the separate terms. Your right to use any part of the Oracle Software that is licensed under the separate terms is not restricted in any way by this Agreement.