Laserfiche WebLink
request to a Purchasing Entity. The Contractor may remove its proprietary information from the <br />unredacted version. A Service Organization Control (SOC) 2 audit report or approved equivalent <br />sets the minimum level of a third -party audit. <br />12. Change Control and Advance Notice: The Contractor shall give a minimum forty eight (48) hour <br />advance notice (or as determined by a Purchasing Entity and included in the SLA) to the <br />Purchasing Entity of any upgrades (e.g., major upgrades, minor upgrades, system changes) that <br />may impact service availability and performance. A major upgrade is a replacement of <br />hardware, software or firmware with a newer or better version in order to bring the system up <br />to date or to improve its characteristics. It usually includes a new version number. <br />Contractor will make updates and upgrades available to Purchasing Entity at no additional costs <br />when Contractor makes such updates and upgrades generally available to its users. <br />No update, upgrade or other charge to the Service may decrease the Service's functionality, <br />adversely affect Purchasing Entity's use of or access to the Service, or increase the cost of the <br />Service to the Purchasing Entity. <br />Contractor will notify the Purchasing Entity at least sixty (60) days in advance prior to any major <br />update or upgrade. <br />13. Security: As requested by a Purchasing Entity, the Contractor shall disclose its non-proprietary <br />system security plans (SSP) or security processes and technical limitations to the Purchasing <br />Entity such that adequate protection and flexibility can be attained between the Purchasing <br />Entity and the Contractor. For example: virus checking and port sniffing — the Purchasing Entity <br />and the Contractor shall understand each other's roles and responsibilities. <br />14. Non -disclosure and Separation of Duties: The Contractor shall enforce separation of job duties, <br />require commercially reasonable non -disclosure agreements, and limit staff knowledge of <br />Purchasing Entity data to that which is absolutely necessary to perform job duties <br />15. Import and Export of Data: The Purchasing Entity shall have the ability to import or export data <br />in piecemeal or in entirety at its discretion without interference from the Contractor at any time <br />during the term of Contractor's contract with the Purchasing Entity. This includes the ability for <br />the Purchasing Entity to import or export data to/from other Contractors. Contractor shall <br />specify if Purchasing Entity is required to provide its' own tools for this purpose, including the <br />optional purchase of Contractors tools if Contractors applications are not able to provide this <br />functionality directly. <br />16. Responsibilities and Uptime Guarantee: The Contractor shall be responsible for the acquisition <br />and operation of all hardware, software and network support related to the services being <br />provided. The technical and professional activities required for establishing, managing and <br />maintaining the environments are the responsibilities of the Contractor. The system shall be <br />available 24/7/365 (with agreed -upon maintenance downtime), and provide service to <br />customers as defined in the SLA. <br />