Common use of Information Integrity and Security Clause in Contracts

Information Integrity and Security. (Continued) 2. The Contractor, and its Subcontractors/Vendors, shall protect from unauthorized disclosure, PSCI such as names and other identifying information concerning persons receiving services pursuant to this Agreement, except for statistical information not identifying any participant. 3. “Personal Identifying information” shall include, but not be limited to: name; identifying number; social security number; state driver’s license or state identification number; financial account numbers; and symbol or other identifying characteristic assigned to the individual, such as finger or voice print or a photograph. 4. The Contractor, and its Subcontractors/Vendors, shall not use PSCI above for any purpose other than carrying out the Contractor’s obligations under this Agreement. The Contractor and its Subcontractors are authorized to disclose and access identifying information for this purpose as required by OAA. 5. The Contractor and its Subcontractors/Vendors, shall not, except as otherwise specifically authorized or required by this Agreement or court order, disclose any identifying information obtained under the terms of this Agreement to anyone other than CDA without prior written authorization from CDA. The Contractor may be authorized, in writing, by a participant to disclose identifying information specific to the authorizing participant. 6. The Contractor, and its Subcontractors/Vendors, may allow a participant to authorize the release of information to specific entities, but shall not request or encourage any participant to give a blanket authorization or sign a blank release, nor shall the Contractor accept such blanket authorization from any participant.

Information Integrity and Security. (Continued) C. Disclosure 1. The Contractor, and its Subcontractors/Vendors, shall ensure that all confidential, sensitive and/or personal identifying information is protected from inappropriate or unauthorized access or disclosure in accordance with applicable laws, regulations, and State policies. 2. The Contractor, and its Subcontractors/Vendors, shall protect from unauthorized disclosure, PSCI confidential, sensitive and/or personal identifying information such as names and other identifying information concerning persons receiving services pursuant to this Agreement, except for statistical information not identifying any participant. 3. “Personal Identifying information” shall include, but not be limited to: name; identifying number; social security number; state driver’s license or state identification number; financial account numbers; and symbol or other identifying characteristic assigned to the individual, such as finger or voice print or a photograph. 4. The Contractor, and its Subcontractors/Vendors, shall not use PSCI confidential, sensitive and/or personal identifying information above for any purpose other than carrying out the Contractor’s obligations under this Agreement. The Contractor and its Subcontractors are authorized to disclose and access identifying information for this purpose as required by OAA. 5. The Contractor and its Subcontractors/Vendors, shall not, except as otherwise specifically authorized or required by this Agreement or court order, disclose any identifying information obtained under the terms of this Agreement to anyone other than CDA without prior written authorization from CDA. The Contractor may be authorized, in writing, by a participant to disclose identifying information specific to the authorizing participant. 6. The Contractor, and its Subcontractors/Vendors, may allow a participant to authorize the release of information to specific entities, but shall not request or encourage any participant to give a blanket authorization or sign a blank release, nor shall the Contractor accept such blanket authorization from any participant.