Hardware Return. Upon termination or expiration of the Contract at any time upon County’s request, Contractor must return all hardware, if any, provided by the County containing Personally Identifiable Information, Protected Health Information, or County’s Confidential Information to County. The Personally Identifiable Information, Protected Health Information, and County’s Confidential Information should not be removed or altered in any way. The hardware should be physically sealed and returned via a bonded courier or as otherwise directed by the County. In the event the hardware containing County’s Confidential Information or Personally Identifiable Information is owned by Contractor or a third party, a notarized statement, detailing the destruction method used and the data sets involved, the date of destruction, and the company and/or individual who performed the destruction will be sent to a designated County security representative within fifteen (15) days of termination or expiration of the Contract or at any time upon the County’s request. Contractor’s destruction or erasure of Personal Information and Protected Health Information pursuant to this Section will be in compliance with industry Best Practices (e.g., NIST Special Publication 800-88, Guidelines for Media Sanitization).
Appears in 1 contract
Hardware Return. Upon termination or expiration of the Contract at any time upon County’s request, Contractor must shall return all hardware, if any, provided by the County containing Personally Identifiable Information, Protected Health Information, or County’s Confidential Information to County. The Personally Identifiable Information, Protected Health Information, and County’s Confidential Information should not be removed or altered in any way. The hardware should be physically sealed and returned via a bonded courier or as otherwise directed by the County. In the event the hardware containing County’s Confidential Information or Personally Identifiable Information is owned by Contractor or a third party, a notarized statement, detailing the destruction method used and the data sets involved, the date of destruction, and the company and/or individual who performed the destruction will be sent to a designated County security representative within fifteen (15) days of termination or expiration of the Contract or at any time upon the County’s request. Contractor’s destruction or erasure of Personal Information and Protected Health Information pursuant to this Section will shall be in compliance with industry Best Practices (e.g., NIST Special Publication 800-88, Guidelines for Media Sanitization).
Appears in 1 contract
Sources: Consulting Services Agreement