My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Item 26 - Agreement with Allied Network Solutions, Inc. for Adobe Software and Subscription
Clerk
>
Agenda Packets / Staff Reports
>
City Council (2004 - Present)
>
2025
>
01/21/2025 Regular & Special SA
>
Item 26 - Agreement with Allied Network Solutions, Inc. for Adobe Software and Subscription
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
1/27/2025 5:03:20 PM
Creation date
1/21/2025 2:16:24 PM
Metadata
Fields
Template:
City Clerk
Doc Type
Agenda Packet
Agency
Information Technology
Item #
26
Date
1/21/2025
Jump to thumbnail
< previous set
next set >
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
762
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
sricnw-, <br />SUBSCRIPTION SERVICE GU DE <br />DATA SECURITY GUIDE <br />Security Statement of an Enterprise IT Cloud Company <br />EFFECTIVE DATE: NOVEMBER 12, 2014 <br />The ServiceNow cloud is built for the enterprise customer with every aspect aimed towards meeting the <br />customer's demand for reliability, availability and security. ServiceNow's comprehensive approach to address this <br />demand is enabled by the following: (a) ServiceNow's robust cloud infrastructure runs on its own applications and <br />utilizes industry best -of -breed technology to automate mission critical functionalities in the cloud service with <br />around -the -clock and around -the -world delivery; (b) ServiceNow achieves flexibility and control in its ability to <br />deliver a stable user experience to the customer by having a logical single tenant architecture; (c) ServiceNow's <br />application development which has a paramount focus on quality, security, and the user experience is closely <br />connected to the operations of delivering those applications in a reliable and secure cloud environment; (d) <br />ServiceNow invests in a comprehensive compliance strategy that allows its customers to attain their own <br />compliance to applicable laws by obtaining attestations and certifications and running its subscription service from <br />paired data centers situated close to where its customers are located; and (e) ServiceNow's homogeneous <br />environment where all applications are on a single platform offers ServiceNow a competitive advantage in being <br />able to concentrate its efforts to make the customer's user experience the best possible. <br />This Data Security Guide describes the measures ServiceNow takes to protect Customer Data when it resides in <br />the ServiceNow cloud. This Data Security Guide forms a part of any legal agreement into which this Data Security <br />Guide is explicitly incorporated by reference (the "Agreement') and is subject to the terms and conditions of the <br />Agreement. Capitalized terms that are not otherwise defined herein shall have the meaning given to them in <br />the Agreement. <br />1. SECURITY PROGRAM <br />While providing the Subscription Service, ServiceNow shall maintain a written information security <br />program of policies, procedures and controls ("Security Program") governing the processing, storage, <br />transmission and security of Customer Data. The Security Program includes industry standard practices designed <br />to protect Customer Data from unauthorized access, acquisition, use, disclosure, or destruction. ServiceNow may <br />periodically review and update the Security Program to address new and evolving security technologies, changes <br />to industry standard practices, and changing security threats, provided that any such update does not materially <br />reduce the commitments, protections or overall level of service provided to Customer as described herein. <br />2. CERTIFICATIONS AND ATTESTATIONS <br />2.1. Certifications and Attestations. ServiceNow shall establish and maintain sufficient controls to <br />meet the objectives stated in ISO 27001 and SSAE 16 / SOC 1 and SOC 2 Type 2 (or equivalent standards) <br />(collectively, the "Standards") for the information security management system supporting the Subscription <br />Service. At least once per calendar year, ServiceNow shall perform an assessment against such Standards <br />("Assessment'). Upon Customer's written request, which shall be no more than once per calendar year, <br />ServiceNow shall provide a summary of the Assessment(s) to Customer. Assessments shall be Confidential <br />Information of ServiceNow. <br />2.2. Safe Harbor. ServiceNow shall maintain self -certified compliance under the U.S.-EU and U.S.- <br />Swiss Safe Harbor Frameworks developed by the U.S. Department of Commerce regarding the collection, use <br />and retention of Personal Data (defined in Section 6 below) from European Union member countries and <br />Switzerland. <br />3. PHYSICAL, TECHNICAL AND ADMINISTRATIVE SECURITY MEASURES <br />The Security Program shall include the following physical, technical and administrative measures <br />designed to protect Customer Data from unauthorized access, acquisition, use, disclosure, ordestruction: <br />3.1. Physical Security Measures <br />(a) Data Center Facilities: (i) Physical access restrictions and monitoring that may include a <br />combination of any of the following: multi -zone security, man -traps, appropriate perimeter deterrents (for example, <br />SERVICENOw CONFIDENTIAL Page 7 (version 11/12/2014) <br />
The URL can be used to link to this page
Your browser does not support the video tag.