Laserfiche WebLink
COUNTY data is accessed only by individuals with a need to <br />know for the delivery of contract services. <br />32.1.1.3 Control to prevent unauthorized access and to prevent <br />CONTRACTOR employees from providing COUNTY data to <br />unauthorized individuals. <br />32.1.1.4 Firewall protection. <br />32.1.1.5 Use of encryption methods of electronic COUNTY data while in <br />transit from CONTRACTOR networks to external networks, <br />when applicable. <br />32.1.1.6 Measures to securely store all COUNTY data, including, but not <br />be limited to, encryption at rest and multiple levels of <br />authentication and measures to ensure COUNTY data shall not <br />be altered or corrupted without COUNTY's prior written consent. <br />CONTRACTOR further represents and warrants that it has <br />implemented and will maintain during the term of this Agreement <br />administrative, technical, and physical safeguards and controls <br />consistent with State and federal security requirements. <br />32.2 Security Breach Notification <br />32.2.1 CONTRACTOR shall have policies and procedures in place for the <br />effective management of Security Breaches, as defined below. In the <br />event of any actual, attempted, suspected, threatened, or reasonably <br />foreseeable circumstance CONTRACTOR experiences or learns of that <br />either compromises or could reasonably be expected to comprise <br />COUNTY data through unauthorized use, disclosure, or acquisition of <br />COUNTY data ("Security Breach"), CONTRACTOR shall immediately <br />notify COUNTY of its discovery. After such notification, <br />CONTRACTOR shall, at its own expense, immediately: <br />32.2.1.1 Investigate to determine the nature and extent of the Security <br />Breach. <br />32.2.1.2 Contain the incident by taking necessary action, including, but <br />not limited to, attempting to recover records, revoking access, <br />WD9Sltf bEbuncil Page 34 o]2,C5— 36 WMM22022 <br />