Right of Review and Audit Sample Clauses
POPULAR SAMPLE Copied 1 times
Right of Review and Audit. Upon request by the EA, Contractor shall provide the EA with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required to undergo an audit of its privacy and security safeguards, measures and controls as it pertains to alignment with the requirements of New York State laws and regulations, the EA’s policies applicable to Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at Contractor’s expense, and provide the audit report to the EA. Contractor may provide the EA with a recent industry standard independent audit report on Contractor’s privacy and security practices as an alternative to undergoing an audit.
Right of Review and Audit. 8.1 Consultant grants City, or its designees, the right to audit, examine or inspect, at City’s election, all of Consultant’s records relating to the performance of the Work under this Agreement, during the term of this Agreement and retention period herein. The audit, examination or inspection may be performed by a City designee, which may include its internal auditors or an outside representative engaged by City. Consultant agrees to retain its records for a minimum of four (4) years following termination of the Agreement, unless there is an ongoing dispute under this Agreement, then such retention period shall extend until final resolution of the dispute.
8.2 Consultant’s records include any and all information, materials and data of every kind and character generated as a result of and relevant to the Work under this Agreement (Consultant’s Records). Examples include ▇▇▇▇▇▇▇▇, books, general ledger, cost ledgers, invoices, production sheets, documents, correspondence, meeting notes, subscriptions, agreements, purchase orders, leases, contracts, commitments, arrangements, notes, daily diaries, reports, drawings, receipts, vouchers, memoranda, time sheets, payroll records, policies, procedures, and any and all other agreements, sources of information and matters that may, in City’s and Consultant’s reasonable judgment, have any bearing on or pertain to any matters, rights, duties or obligations under or covered by any Agreement Documents.
8.3 City agrees that it shall exercise the right to audit, examine or inspect Consultant’s Records only during Consultant’s regular business hours. Consultant agrees to allow City’s designee access to all of Consultant’s Records, Consultant’s facilities and Consultant’s current employees, deemed necessary by City or its designee(s), to perform such audit, inspection or examination. Consultant also agrees to provide adequate and appropriate work space necessary to City or its designees to conduct such audits, inspections or examinations.
8.4 Consultant shall include this audit clause in any subcontractor, supplier or vendor contract.
Right of Review and Audit. Upon request by the EA, Contractor shall provide the EA with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In the event of a data breach, contractor may be required to undergo an audit of its privacy and security safeguards, measures and controls as it pertains to alignment with the requirements of New York State laws and regulations, the EA’s policies applicable to Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at Contractor’s expense, and provide the audit report to the EA. Contractor may provide the EA with a recent industry standard independent audit report on Contractor’s privacy and security practices as an alternative to undergoing an audit.
Right of Review and Audit. City may review any and all of the services performed by Consultant under this Contract. City is granted the right to audit, at City’s election, all of Consultant’s records and ▇▇▇▇▇▇▇▇ relating to the performance of this Contract. Consultant agrees to retain such records for a minimum of three (3) years following completion of this Contract. Any payment, settlement, satisfaction, or release made or provided during the course of performance of this Contract shall be subject to City’s rights as may be disclosed by an audit under this section.
Right of Review and Audit. Upon request by the EA, Contractor shall provide the EA with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, subject to confidentiality obligations, after reasonable notice EA may request and Contractor may provide the EA with a recent industry standard independent audit report on Contractor’s privacy and security practices.
Right of Review and Audit. Upon request by JCSD, Contractor shall provide JCSD with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required to undergo an audit of its privacy and security safeguards, measures and controls as it pertains to alignment with the requirements of New York State laws and regulations, JCSD’s policies applicable to Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at Contractor’s expense, and provide the audit report to JCSD. Contractor may provide JCSD with a recent industry standard independent audit report on Contractor’s privacy and security practices as an alternative to undergoing an audit.
Right of Review and Audit. Upon request by the District, the Contractor will provide the District with copies of its policies and related procedures that pertain to the protection of PII and District Data. The policies and procedures may be made available in a manner that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required by the District to undergo an audit of Contractor’s privacy and security safeguards, measures and controls as they pertain to alignment with the requirements of applicable New York, federal and local laws, rules and regulations, the District policies applicable to the Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at the Contractor’s expense, and provide the written audit report to the District. The Contractor may provide the District with a recent industry standard audit report performed by an independent third party on the Contractor’s privacy and security practices as an alternative to undergoing an audit. The determination of whether the previously prepared audit report is “recent” will be determined by the District in its sole judgment.
Right of Review and Audit. Upon request by the EA, Contractor shall provide the EA with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required to undergo an audit of its privacy and security safeguards, measures and controls as it pertains to alignment with the requirements of New York State laws and regulations, the EA’s policies applicable to Contractor, and provide the audit report to the EA. Contractor may provide the EA with a recent industry standard independent audit report on Contractor’s privacy and security practices as an alternative to undergoing an audit.
Right of Review and Audit. Upon request by the District, Contractor shall provide the District with copies of its policies and related procedures that pertain to the protection of PII. It may be made available in a form that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required to undergo an audit of its privacy and security safeguards, measures and controls as it pertains to alignment with the requirements of New York State laws and regulations, the District’s policies applicable to Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at Contractor’s expense, and provide the audit report to the District. Contractor may provide the District with a recent industry standard independent audit report on Contractor’s privacy and security practices as an alternative to undergoing an audit.
Right of Review and Audit. Upon request by the District, the Contractor will provide the District with copies of its policies and related procedures that pertain to the protection of PII and District Data. The policies and procedures may be made available in a manner that does not violate Contractor’s own information security policies, confidentiality obligations, and applicable laws. In addition, Contractor may be required by the District to undergo an audit of Contractor’s privacy and security safeguards, measures and controls as they pertain to alignment with the requirements of applicable New York, federal and local laws, rules and regulations, the District policies applicable to the Contractor, and alignment with the NIST Cybersecurity Framework performed by an independent third party at the Contractor’s expense, and provide the written audit report to the District. The Contractor may provide the District with a recent industry standard audit report performed by an independent third party on the Contractor’s privacy and security practices as an alternative to undergoing an audit. The determination of whether the previously prepared audit report is “recent” will be determined by the District in its sole judgment. Access to/Disclosure of District Data The Contractor agrees that it will limit the Contractor’s internal access to and only Disclose PII to the Contractor’s officers, employees and Subcontractors who need to access the PII in order to provide the Services and that the disclosure of PII will be limited to the extent necessary to provide the Services pursuant to the Service Agreement. The Contractor must take all actions necessary to ensure that all its officers, employees and Subcontractors comply with the terms of this DPA. The Contractor must ensure that each Subcontractor performing functions pursuant to the Service Agreement where the Subcontractor will receive or have access to District Data must be contractually bound by a written agreement that includes confidentiality and data security obligations equivalent to, consistent with, and no less protective than, those found in this DPA. The Contractor must examine the data security and privacy measures of its Subcontractors prior to utilizing the Subcontractor to ensure compliance with this DPA. If at any point a Subcontractor fails to materially comply with the requirements of this DPA, the Contractor must: notify the District and prevent the Subcontractor’s continued access to District Data; and, as applicable, retr...