PRIVACY & SECURITY REQUIREMENTS Sample Clauses

PRIVACY & SECURITY REQUIREMENTS. If Cresta will have access to Customer’s Systems and/or Nonpublic Personal Information, Cresta shall conform to Type 2 SOC 2 2020 and ISO/IEC 2701:2013 and ISO/IEC 27701:2019 standards. “Customer’s Systems” means Customer’s internal computer systems, and “Nonpublic Personal Information” means all personally identifying information, behavioral or demographic information, sensitive financial information, biometric information, or other information, disclosed by Customer, or which Cresta or Cresta Personnel acquire, access or derive in connection with this Agreement that, either individually or when combined with other information, could identify, contact or derive information specific to a particular individual, such as that individual’s identity, first and last name, social security number, government issued identification information (including driver’s license number, passport number, and military ID), telephone number, credit card number, payment card data, postal address, e-mail address, account information, payroll information, financial information, health information, employee identification number, criminal or employment history, mother’s maiden name, birth date or other factors specific to that individual’s physical or financial identity.
View Source
PRIVACY & SECURITY REQUIREMENTS. 1. This Section M sets forth the privacy and security requirements that apply to all Personally Identifiable Information (PII) that Contractor obtains, maintains, transmits, uses or discloses from the California Health Benefit Exchange (“Exchange” aka Covered California) pursuant to this Agreement. 2. The parties agree to all terms and conditions of this Section M in order to ensure the integrity, security, and confidentiality of the information exchanged pursuant to this Agreement, and to allow disclosure and use of such information only as permitted by law and only to the extent necessary to perform functions and activities pursuant to this Agreement. 3. This Section M establishes requirements in accordance with applicable federal and state privacy and security laws including, but not limited to, the Information Practices Act (California Civil Code section 1798 et seq.), the federal Patient Protection and Affordable Care Act (P.L. 111-148), as amended by the federal Health Care and Education Reconciliation Act of 2010 (P.L. 111-152) (herein, the “Affordable Care Act”), and its implementing regulations at 45 C.F.R. Sections 155.260 and 155.270 (the “Exchange Privacy and Security Rules”) and, where applicable, the Health Insurance Portability and Accountability Act (42 U.S.C. section 1320d-d8) and the Health Information Technology for Economic and Clinical Health Act and their implementing regulations at 45 C.F.R. Parts 160 and 164 (collectively, “HIPAA”).
View Source

Related to PRIVACY & SECURITY REQUIREMENTS

  • Security Requirements 7.1 The Authority will review the Contractor’s Security Plan when submitted by the Contractor in accordance with the Schedule (Security Requirements and Plan) and at least annually thereafter.

  • Data Security Requirements Without limiting Contractor’s obligation of confidentiality as further described in this Contract, Contractor must establish, maintain, and enforce a data privacy program and an information and cyber security program, including safety, physical, and technical security and resiliency policies and procedures, that comply with the requirements set forth in this Contract and, to the extent such programs are consistent with and not less protective than the requirements set forth in this Contract and are at least equal to applicable best industry practices and standards (NIST 800-53).

  • Accessibility Requirements Under Tex. Gov’t Code Chapter 2054, Subchapter M, and implementing rules of the Texas Department of Information Resources, the System Agency must procure Products and services that comply with the Accessibility Standards when those Products are available in the commercial marketplace or when those Products are developed in response to a procurement solicitation. Accordingly, Grantee must provide electronic and information resources and associated Product documentation and technical support that comply with the Accessibility Standards.

  • Safety Requirements Prior to setting sail the Operator of the Sector 43 Vessel shall detail and identify any vessel safety operating procedures and 44 other important information to the assigned ASM. The Sector Member 45 acknowledges that an ASM must complete a pre‐trip vessel safety checklist 46 as provided by NMFS prior to leaving port. An ASM cannot be deployed on 1 a vessel that has failed to review the safety issues, and such vessel is 2 prohibited from leaving port without the ASM on board (unless a waiver is 3 granted). For the safety of the vessels captain, crew and the ASM; the ASM 4 will not be allowed on deck any time that gear is being deployed. 5 6 The Sector and its Members note that each ASM must be provided with all 7 the equipment specified by the NEFOP. It is the responsibility of the 8 individual ASM and its employer to ensure that all equipment is in good

  • Federal Medicaid System Security Requirements Compliance Party shall provide a security plan, risk assessment, and security controls review document within three months of the start date of this Agreement (and update it annually thereafter) in order to support audit compliance with 45 CFR 95.621 subpart F, ADP System Security Requirements and Review Process.