Information Technology and Security Clause Samples

The Information Technology and Security clause establishes requirements and standards for the use, management, and protection of information technology systems and data within the scope of the agreement. It typically outlines obligations regarding data security measures, access controls, incident response protocols, and compliance with relevant laws or industry standards. By setting clear expectations for IT practices and security safeguards, this clause helps prevent data breaches, ensures the confidentiality and integrity of sensitive information, and allocates responsibility for maintaining secure technology environments.
Information Technology and Security. Within 90 days of this Agreement, the Bank shall submit to the Reserve Bank and the DFI an acceptable plan, including timetables, to correct the information technology and security deficiencies noted in the Report of Examination.
View SourceView Similar (4)
Information Technology and Security. The employee is required to have the appropriate technology and security measures in place to perform the work that is outlined in their position description. In addition, the employee must have access to the College email system and any College systems and applications necessary to perform their tasks and duties. For systems that require virtual private network (VPN) access, the employee may request a VPN account through the OIT Work From Home Tools website. Note the VPN user agreement terms apply, i.e., safeguard data, your MyMC username and password. • The employee and their supervisor shall determine the minimum equipment and software necessary to telecommute. In determining which equipment (if any) shall be provided by the College, the employee’s supervisor may consult with the College’s IT department regarding needs. • The employee will implement sound information security practices by completing the required DataSecurity@MC training modules prior to commencing telework and pay extra attention to the Working Remotely and Cloud Services modules within Workday MC Learns. • The employee will immediately call in any security concerns or incidents to 240-567- 7222. • When working from their approved alternate (remote) work location the employee will adhere to all College policies, procedures and guidelines which are expressly incorporated by reference into, and made a part of, this Agreement. Specific policies related to the use of information technology and data security include:
View SourceView Similar (2)
Information Technology and Security. The employee and their supervisor shall determine the minimum equipment and software necessary for remote work. In determining which equipment (if any) shall be provided by the College, the employee’s supervisor may consult with the College’s IT department as to the appropriateness and availability. Any equipment provided by the College must be properly inventoried. This Agreement must be kept updated if equipment is returned or if new equipment is assigned. The employee must return any College property upon request. • The employee will adhere to all College policies and procedures, including those related to the use of information technology and data security. The employee will implement sound information security practices at their MWS, and will immediately confer with their supervisor should any security matters arise. • The employee is required to have the appropriate technology and security measures in place to perform the work as outlined in the flexible work arrangement agreement. In addition, the employee must have access to the College e-mail system and any College systems and applications necessary to perform the employee’s job responsibilities.
View Source
Information Technology and Security. (a) If applicable, the University acknowledges that, in connection with the services being provided hereunder, the Tenant may need to operate certain information technology systems, including, but not limited to, point-of-sale devices, e-commerce solutions, and computer hardware and software services and applications (collectively, “Non-University Systems”). The University further acknowledges that the Non-University Systems may need to interface with or connect to the University’s networks and information technology systems (collectively, “University Systems”). The University shall be solely responsible for all University Systems, and the Tenant shall be responsible for all non-University Systems, including taking reasonable security and privacy precautions including, but not limited to, network firewall protections, anti-virus software, and the ability to maintain regular patching levels of mission-critical software. (b) Nothing herein shall be construed by Tenant that University is or intends to be an Internet Service Provider as defined under applicable law. (c) ▇▇▇▇▇▇ agrees that it shall comply with all rules regulations, and procedures implemented by the University for the protection and security of its information technology systems and networks.
View Source
Information Technology and Security. (a) Each Exchange shall provide OCC with the current name(s) and contact information for Exchange employee(s) who shall have the requisite expertise and authority (each an “Exchange Designated Contact”) to assist OCC in the resolution of operational, technology and information security matters related to the provision of services to such Exchange under this Agreement. The Exchange shall make an Exchange Designated Contact available during Exchange trading hours and applicable OCC processing times (e.g., evening and expiration processing, etc.) as communicated by OCC from time to time. (b) OCC shall provide each Exchange with the current name(s) and contact information for OCC’s employee(s) who shall have the requisite expertise and authority (each an “OCC Designated Contact”) to assist each Exchange in the resolution of operational, technology and information security matters related to the provision of services to such Exchange under this Agreement. OCC shall make an OCC Designated Contact available during Exchange trading hours and applicable OCC processing times (e.g., evening and expiration processing, etc.) as communicated to each Exchange from time to time. (c) Each Exchange shall promptly notify OCC and provide ongoing updates of an incident related to the Exchange that could reasonably be expected to affect OCC’s ability to perform the services for such Exchange outlined in this Agreement. Exchange agrees to provide OCC information relating to the incident upon OCC’s reasonable request. (d) OCC shall promptly notify each Exchange and provide ongoing updates of an incident related to OCC that could reasonably be expected to affect the Exchange’s ability to receive the services for such Exchange outlined in this Agreement. OCC agrees to provide each Exchange information relating to the incident upon an Exchange’s reasonable request. (e) OCC and each Exchange agree to take reasonable steps to comply with applicable cybersecurity regulations, including Regulation Systems Compliance and Integrity (“Regulation SCI”), and to promptly contain and remedy any incident arising under subsection 19(c) and 19(d) in accordance with applicable law. (f) Cyber-Related Incidents. Upon notification by an Exchange pursuant to paragraph (c) of this Section 19 of an incident involving a cyber-related disruption or intrusion of the Exchange, including but not limited to any “systems intrusion”, “systems disruption” or “systems compliance issue” regarding an “SCI system” o...
View Source
Information Technology and Security. The employee and their supervisor shall determine the minimum equipment and software necessary to telecommute. In determining which equipment (if any) shall be provided by the College, the employee’s supervisor may consult with the College’s IT department regarding needs. • The employee will adhere to all College policies and procedures, including those related to the use of information technology and data security. The employee will implement sound information security practices at their AWL, and will immediately confer with their supervisor should any security matters arise. • The employee is required to have the appropriate technology and security measures in place to perform the work as outlined in the flexible work arrangement agreement. In addition, the employee must have access to the College e-mail system and any College systems and applications necessary to perform the employees job responsibilities.
View Source
Information Technology and Security 
View Source

Related to Information Technology and Security

  • Information Technology The following applies to all contracts for information technology commodities and contractual services. “Information technology” is defined in section 287.012(15), F.S., to have the same meaning as provided in section 282.0041, F.S.

  • Privacy and Security (a) Each of the Company and its Subsidiaries complies (and requires and monitors the compliance of applicable third parties) in all material respects with all applicable Laws relating to privacy or data security, and reputable industry practice, standards, self-governing rules and policies and their own published, posted and internal agreements and policies (which are in conformance with reputable industry practice) (all of the foregoing collectively, “Privacy Laws”) with respect to: (i) personally identifiable information (including name, address, telephone number, electronic mail address, social security number, bank account number or credit card number), sensitive personal information and any special categories of personal information regulated thereunder or covered thereby (“Personal Information”), whether any of same is accessed or used by the Company or any of its Subsidiaries or any of their respective business partners; and (ii) non-personally identifiable information, whether any of same is accessed or used by the Company or any of its Subsidiaries or any of their respective business partners. (b) Neither the Company nor any of its Subsidiaries uses, collects, or receives any Personal Information or sensitive non-personally identifiable information and does not become aware of the identity or location of, or identify or locate, any particular Person as a result of any receipt of such Personal Information, in a manner which would materially breach or violate any Privacy Laws and materially and adversely impact the business of the Company and its Subsidiaries, taken as a whole. (c) To the Company’s knowledge, Persons with which the Company or any of its Subsidiaries have contractual relationships have not breached any agreements or any Privacy Laws pertaining to Personal Information and to non-personally identifiable information. (d) To the Company’s knowledge, the Company and its Subsidiaries take all commercially reasonable steps to protect the operation, confidentiality, integrity and security of their respective business systems and websites and all information and transactions stored or contained therein or transmitted thereby against any unauthorized or improper use, access, transmittal, interruption, modification or corruption, and there have been no material breaches of same. Without limiting the generality of the foregoing, each of the Company and its Subsidiaries (i) uses industry standard encryption technology and (ii) has implemented a comprehensive security plan that (1) identifies internal and external risks to the security of the Company’s or its Subsidiaries’ confidential information and Personal Information and (2) implements, monitors and improves adequate and effective safeguards to control those risks.

  • Data Privacy and Security Bank will implement and maintain a written information security program, in compliance with all federal, state and local laws and regulations (including any similar international laws) applicable to Bank, that contains reasonable and appropriate security measures designed to safeguard the personal information of the Funds’ shareholders, employees, trustees and/or officers that Bank or any Subcustodian receives, stores, maintains, processes, transmits or otherwise accesses in connection with the provision of services hereunder. In this regard, Bank will establish and maintain policies, procedures, and technical, physical, and administrative safeguards, designed to (i) ensure the security and confidentiality of all personal information and any other confidential information that Bank receives, stores, maintains, processes or otherwise accesses in connection with the provision of services hereunder, (ii) protect against any reasonably foreseeable threats or hazards to the security or integrity of personal information or other confidential information, (iii) protect against unauthorized access to or use of personal information or other confidential information, (iv) maintain reasonable procedures to detect and respond to any internal or external security breaches, and (v) ensure appropriate disposal of personal information or other confidential information. Bank will monitor and review its information security program and revise it, as necessary and in its sole discretion, to ensure it appropriately addresses any applicable legal and regulatory requirements. Bank shall periodically test and review its information security program. Bank shall respond to Customer’s reasonable requests for information concerning Bank’s information security program and, upon request, Bank will provide a copy of its applicable policies and procedures, or in Bank’s discretion, summaries thereof, to Customer, to the extent Bank is able to do so without divulging information Bank reasonably believes to be proprietary or Bank confidential information. Upon reasonable request, Bank shall discuss with Customer the information security program of Bank. Bank also agrees, upon reasonable request, to complete any security questionnaire provided by Customer to the extent Bank is able to do so without divulging sensitive, proprietary, or Bank confidential information and return it in a commercially reasonable period of time (or provide an alternative response that reasonably addresses the points included in the questionnaire). Customer acknowledges that certain information provided by Bank, including internal policies and procedures, may be proprietary to Bank, and agrees to protect the confidentiality of all such materials it receives from Bank. Bank agrees to resolve promptly any applicable control deficiencies that come to its attention that do not meet the standards established by federal and state privacy and data security laws, rules, regulations, and/or generally accepted industry standards related to Bank’s information security program. Bank shall: (i) promptly notify Customer of any confirmed unauthorized access to personal information or other confidential information of Customer (“Breach of Security”); (ii) promptly furnish to Customer appropriate details of such Breach of Security and assist Customer in assessing the Breach of Security to the extent it is not privileged information or part of an investigation; (iii) reasonably cooperate with Customer in any litigation and investigation of third parties reasonably deemed necessary by Customer to protect its proprietary and other rights; (iv) use reasonable precautions to prevent a recurrence of a Breach of Security; and (v) take all reasonable and appropriate action to mitigate any potential harm related to a Breach of Security, including any reasonable steps requested by Customer that are practicable for Bank to implement. Nothing in the immediately preceding sentence shall obligate Bank to provide Customer with information regarding any of Bank’s other customers or clients that are affected by a Breach of Security, nor shall the immediately preceding sentence limit Bank’s ability to take any actions that Bank believes are appropriate to remediate any Breach of Security unless such actions would prejudice or otherwise limit Customer’s ability to bring its own claims or actions against third parties related to the Breach of Security. If Bank discovers or becomes aware of a suspected data or security breach that may involve an improper access, use, disclosure, or alteration of personal information or other confidential information of Customer, Bank shall, except to the extent prohibited by Applicable Law or directed otherwise by a governmental authority not to do so, promptly notify Customer that it is investigating a potential breach and keep Customer informed as reasonably practicable of material developments relating to the investigation until Bank either confirms that such a breach has occurred (in which case the first sentence of this paragraph will apply) or confirms that no data or security breach involving personal information or other confidential information of Customer has occurred. For these purposes, “personal information” shall mean (i) an individual’s name (first initial and last name or first name and last name), address or telephone number plus (a) social security number, (b) driver’s license number, (c) state identification card number, (d) debit or credit card number, (e) financial account number, (f) passport number, or (g) personal identification number or password that would permit access to a person’s account or (ii) any combination of the foregoing that would allow a person to log onto or access an individual’s account. This provision will survive termination or expiration of the Agreement for so long as Bank or any Subcustodian continues to possess or have access to personal information related to Customer. Notwithstanding the foregoing “personal information” shall not include information that is lawfully obtained from publicly available information, or from federal, state or local government records lawfully made available to the general public.

  • Information Technology Accessibility Standards Any information technology related products or services purchased, used or maintained through this Grant must be compatible with the principles and goals contained in the Electronic and Information Technology Accessibility Standards adopted by the Architectural and Transportation Barriers Compliance Board under Section 508 of the federal Rehabilitation Act of 1973 (29 U.S.C. §794d), as amended. The federal Electronic and Information Technology Accessibility Standards can be found at: ▇▇▇▇://▇▇▇.▇▇▇▇▇▇-▇▇▇▇▇.▇▇▇/508.htm.

  • DATA PROTECTION AND SECURITY 14.1 The Supplier must not remove any ownership or security notices in or relating to the Government Data. 14.2 The Supplier must make accessible back-ups of all Government Data, stored in an agreed off-site location and send the Buyer copies via secure encrypted method upon reasonable request. 1 ▇▇▇▇▇://▇▇▇.▇▇▇.▇▇/government/publications/ppn-0223-tackling-modern-slavery-in-government-supply-chains 14.3 The Supplier must ensure that any Supplier, Subcontractor, or Subprocessor system holding any Government Data, including back-up data, is a secure system that complies with the security requirements specified in the Order Form or otherwise in writing by the Buyer (where any such requirements have been provided). 14.4 If at any time the Supplier suspects or has reason to believe that the Government Data is corrupted, lost or sufficiently degraded, then the Supplier must immediately notify the Buyer and suggest remedial action. 14.5 If the Government Data is corrupted, lost or sufficiently degraded so as to be unusable the Buyer may either or both: 14.5.1 tell the Supplier to restore or get restored Government Data as soon as practical but no later than 5 Working Days from the date that the Buyer receives notice, or the Supplier finds out about the issue, whichever is earlier; and/or 14.5.2 restore the Government Data itself or using a third party. 14.6 The Supplier must pay each Party's reasonable costs of complying with clause 14.5 unless the Buyer is at fault.