My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
STATE OF CALIFORNIA DEPARTMENT OF REHABILITATION (3)
Clerk
>
Contracts / Agreements
>
S
>
STATE OF CALIFORNIA DEPARTMENT OF REHABILITATION (3)
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
4/28/2022 9:55:31 AM
Creation date
2/3/2022 3:13:04 PM
Metadata
Fields
Template:
Contracts
Company Name
STATE OF CALIFORNIA DEPARTMENT OF REHABILITATION
Contract #
N-2022-031
Agency
Community Development
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
17
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
E. Security breaches or information security incidents that shall be reported <br />include. but are not limited to: <br />1. Inappropriate use or unauthorized disclosure of DOR consumers' personal <br />information by the Contractor or the Contractor's assignees. Disclosure <br />methods include, but are not limited to, electronic, paper, and verbal. <br />2. Unauthorized access to DOR consumers' personal information. Information <br />can be held in medium that includes, but is not limited to, electronic and <br />paper. <br />3. Loss or theft of information technology (IT) equipment, electronic <br />devices/media, paper media, or data containing DOR consumers' personal <br />information. IT equipment and electronic devices/media include, but are not <br />limited to, computers (e.g., laptop and desktop, netbooks, tablets), <br />smartphones, cell phones, CDs, DVDs, USB flash drives, servers, printers, <br />peripherals, assistive technology devices (e.g., notetakers, videophones), <br />and copiers. Data can be held in medium that includes, but is not limited to, <br />electronic and paper. <br />F. Contractor agrees to provide annual security and privacy training for all <br />individuals who have access to personal, confidential, or sensitive information <br />relating to the performance of this agreement. <br />G. Contractor agrees to obtain and maintain acknowledgements from all individuals <br />to evidence their understanding of the consequences of violating California <br />privacy laws and the contractor's information privacy and security policies. <br />H. For contractors that do not have a security program that includes annual security <br />and privacy training, a self -training manual is available on the DOR website <br />under the "Providers" tab in the "Becoming a Service Provider" section under <br />"Annual Security and Privacy Training for VR Service Providers." The self - <br />training manual is named "Protecting Privacy in State Government" and can be <br />downloaded at the following link: <br />https://www.dor.ca.gov/Home/Secudtvand Privacy. <br />Additional training and awareness tools are available at the California Office of <br />Information Security (OIS) website and the California Office of Privacy <br />Protection (COPP) website. The COPP created the self -training manual, <br />"Protecting Privacy in State Government" that DOR revised to meet its business <br />needs. <br />6. Audit and Review Requirements <br />General Audit and Review Requirements <br />Exhibit D 4 <br />
The URL can be used to link to this page
Your browser does not support the video tag.