My WebLink
|
Help
|
About
|
Sign Out
Browse
Search
Agmt22 Granicus
RedwoodCity
>
City Clerk
>
Agreements
>
2020-2029
>
2022
>
Under $ 100K
>
Agmt22 Granicus
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
2/14/2024 3:03:56 PM
Creation date
2/14/2024 3:03:15 PM
Metadata
Fields
Template:
Agreement
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
32
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
Show annotations
View images
View plain text
REV: 06-24-22 RL <br />measures will be implemented at Granicus to provide the agreed-upon service levels (for example, <br />encryption and lead-lined containers): <br />3.1 Personal Data in transfer over Granicus internal networks will be protected according to the <br />Granicus Information Security Policies. <br />3.2 When data is transferred between Granicus and its Customers, the protection measures for <br />the transferred Personal Data will be mutually agreed upon and made part of the relevant <br />agreement. This applies to both physical and network-based data transfer. In any case, the <br />Customer assumes responsibility for any data transfer once it is outside of Granicus-controlled <br />systems (e.g., data being transmitted outside the firewall of the Granicus data center). <br />4 JOB CONTROL <br />Granicus will ensure that Personal Data being processed on commission (i.e., Personal Data <br />processed on a customer’s behalf) is processed solely in accordance with the Master Subscription <br />Agreement and related instructions of the customer. Granicus takes the following measures: <br />4.1 Granicus will use controls and processes to monitor compliance with contracts between <br />Granicus and its customers, subprocessors or other service providers. <br />4.2 In accordance with Granicus Information Security Policies, Personal Data will require at least <br />the same protection level as “confidential” information according to the Granicus Information <br />Classification standard. <br />4.3 All Granicus employees and contractual subprocessors or other service providers will be <br />contractually bound to respect the confidentiality of all sensitive information including trade <br />secrets of Granicus customers and partners. <br />5 DATA SEPARATION CONTROL <br />Granicus will employ technical measures to ensure that data is properly segregated: <br />5.1 Where feasible, Granicus will use the technical capabilities of the deployed software (for <br />example: multi- tenancy, or separate system landscapes) to achieve data separation among <br />Personal Data originating from multiple customers. <br />5.2 If Personal Data is required to handle a support incident from Customer, the data is assigned <br />to that message and used only to process that message; it is not accessed to process any <br />other messages. This data is stored in dedicated support systems. <br />6 DATA INTEGRITY CONTROL <br />Granicus will ensure that Personal Data remains intact, complete, and current during processing <br />activities. <br />7 SECURITY INCIDENTS AND REPORTING <br />Granicus maintains a process to receive input regarding potential security incidents and violations. <br />Granicus will respond and report to actual incidents in accordance with the Granicus Incident <br />Response Plan and Information Security Policies. <br />ATTY/AGR.2022.156/Granicus (Online agenda and meeting hosting and indexing) (Page 31 of 32)
The URL can be used to link to this page
Your browser does not support the video tag.