My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Item 26 - Agreement with Allied Network Solutions, Inc. for Adobe Software and Subscription
Clerk
>
Agenda Packets / Staff Reports
>
City Council (2004 - Present)
>
2025
>
01/21/2025 Regular & Special SA
>
Item 26 - Agreement with Allied Network Solutions, Inc. for Adobe Software and Subscription
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
1/27/2025 5:03:20 PM
Creation date
1/21/2025 2:16:24 PM
Metadata
Fields
Template:
City Clerk
Doc Type
Agenda Packet
Agency
Information Technology
Item #
26
Date
1/21/2025
Jump to thumbnail
< previous set
next set >
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
762
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
sricnw~ <br />SUBSCRIPTION SERVICE GU DE EFFECTIVE DATE: NOVEMBER 12, 2014 <br />described in the Agreement and only in accordance with Customer's lawful instructions (limited to those <br />instructions which ServiceNow can reasonably carry out in the provision of the Subscription Service), the terms of <br />the Agreement, and this Data Security Guide. ServiceNow shall ensure that those employees to whom it grants <br />access to such Personal Data are directed to keep such Personal Data confidential and are informed of any <br />additional data protection obligations applicable to such Personal Data. ServiceNow shall, to the extent legally <br />permitted, promptly notify Customer with respect to any request or communication ServiceNow receives from any <br />regulatory authority in relation to any data processing activities ServiceNow conducts on behalf of Customer. In <br />addition, ServiceNow will cooperate and assist Customer, at Customer's cost, in relation to any such request and <br />to any response to any such communication. ServiceNow will pass on to the Customer any requests of a Data <br />Subject to access, delete, correct, or block Personal Data processed under the Agreement. If ServiceNow is <br />compelled by law to disclose Customer's information as part of a civil proceeding to which Customer is a party, <br />and Customer is not contesting the disclosure, Customer will reimburse ServiceNow for its reasonable cost of <br />compiling and providing secure access to that information. <br />6.3. Subcontractors. ServiceNow may engage subcontractors for processing Customer Data under <br />the Agreement, provided ServiceNow shall ensure compliance by such subcontractor(s) with the requirements of <br />this Section 6 by entering into written agreements with such subcontractors which provide that the subcontractor <br />will apply the Safe Harbor principles to the processing of Personal Data. ServiceNow's use of any subcontractor <br />will not relieve, waive or diminish any obligation ServiceNow has under the Agreement or this Data Security <br />Guide. <br />7. PENETRATION TESTS <br />7.1. By a Third Party. ServiceNow contracts with third party vendors to perform an annual <br />penetration test on the ServiceNow platform to identify risks and remediation that help increase security. <br />7.2. By Customer. No more than once per calendar year Customer may request to perform, at its <br />own expense, an application penetration test of its instances of the Subscription Service. Customer shall notify <br />ServiceNow in advance of any test by submitting a request using ServiceNow's online support portal and <br />completing a penetration testing agreement. ServiceNow and Customer must agree upon a mutually acceptable <br />time for the test; and Customer shall not perform a penetration test without ServiceNow's express written <br />authorization. The test must be of reasonable duration, and must not interfere with ServiceNow's day-to-day <br />operations. Promptly upon completion of the penetration test, Customer shall provide ServiceNow with the test <br />results including any detected vulnerability. Upon such notice, ServiceNow shall, consistent with industry standard <br />practices, use all commercially reasonable efforts to promptly make any necessary changes to improve the <br />security of the Subscription Service. Customer shall treat the test results as Confidential Information of <br />ServiceNow. <br />8. SHARING THE SECURITY RESPONSIBILITY <br />8.1. Product Capabilities. The Subscription Service has the capabilities to: (i) authenticate users <br />before access; (ii) encrypt passwords; (iii) allow users to manage passwords; and (iv) prevent access by users <br />with an inactive account. Customer manages each user's access to and use of the Subscription Service by <br />assigning to each user a credential and user type that controls the level of access to the Subscription Service. <br />8.2. Customer Responsibilities. ServiceNow provides the cloud environment that permits Customer <br />to use and process Customer Data in the Subscription Service. The architecture in the Subscription Service <br />includes, without limitation, column level encryption functionality and the access control list engine. Customer <br />shall be responsible for using the column level encryption functionality and access control list engine for <br />protecting all Customer Data containing sensitive data, including without limitation, credit card numbers, social <br />security numbers, financial and health information, and sensitive personal data. Customer is solely responsible for <br />the results of its decision not to encrypt such sensitive data. ServiceNow protects all Customer Data in the <br />ServiceNow cloud infrastructure equally in accordance with this Data Security Guide, regardless of the <br />classification of the type of Customer Data. Customer shall be responsible for protecting the confidentiality of <br />each user's login and password and shall manage each user's access to the Subscription Service. <br />SERVICENOw CONFIDENTIAL Page 10 (version 11/12/2014) <br />
The URL can be used to link to this page
Your browser does not support the video tag.