Browse
Search
2021-484-E-Visitor Bureau-Photoshelter- Cloud base digital asset management platform licensing agreement
OrangeCountyNC
>
Board of County Commissioners
>
Contracts and Agreements
>
General Contracts and Agreements
>
2020's
>
2021
>
2021-484-E-Visitor Bureau-Photoshelter- Cloud base digital asset management platform licensing agreement
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
9/7/2021 2:31:31 PM
Creation date
9/7/2021 2:31:16 PM
Metadata
Fields
Template:
Contract
Date
9/1/2021
Contract Starting Date
9/1/2021
Contract Ending Date
9/3/2021
Contract Document Type
Contract
Amount
$6,999.00
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
28
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
<br />7. Is the Cloud provider obligated to inform the County of all locations in which the data is <br />stored (including backups) and to continually keep the County informed of any changes <br />to those locations? <br />a. Yes <br /> <br />If No, Explain: <br /> <br />8. What are the Cloud provider’s contractual obligations with respect to litigation holds on <br />County data? <br />a. We don’t hold our client data hostage. At any point the County will be able to pull <br />down your files. <br /> <br />9. What are the Cloud provider’s contractual prohibitions on disclosing data to individuals, <br />groups or organizations making record requests, unless so directed by an authorized <br />County official? <br />a. PhotoShelter does not release any client data to anyone outside of the client <br />organization. <br /> <br />10. Does the contract obligate the Cloud provider to allow third-party audits and/or <br />certifications related to infrastructure and security, including penetration testing and <br />vulnerability assessment, as requested by the County? <br />a. No. <br /> <br />If No, Explain: Not contractually. Regarding the security of the system, we already <br />employ two separate outside scanning vendors called Comodo and Nessus. These <br />two services scan our system both daily and monthly for vulnerabilities at the OS, <br />Network, and Application levels as well as across our two data centers and <br />corporate environment. PhotoShelter could happily provide a copy of the latest <br />certification. <br /> <br />11. Does the contract obligate the Cloud provider to allow third party onsite inspections of <br />the Cloud provider’s infrastructure and security practices on a specified basis? <br />a. No. <br /> <br />If No, Explain: Not contractually. We also would consider this to be a security risk to the <br />infrastructure. The two datacenters - one with Tel’x in the Google Building in <br />New York and one on the West Coast with Layer42 in Santa Clara - have state-- <br />of--the--art security including 24x7 guards, video surveillance, biometric entry <br />systems and servers housed in cages under lock and key. Take a tour of our <br />infrastructure with our VP of Network Operations: <br />https://librisblog.photoshelter.com/behind-the-scenes-with-libris-powering-a- <br />secure-reliable-network/ <br /> <br /> <br />12. Does the contract obligate the Cloud provider to provide security documentation upon <br />DocuSign Envelope ID: 576DD5DB-E4A9-406B-8F7C-CC4EF3C2484FDocuSign Envelope ID: 79107112-9BB9-477B-B662-FF2F869640FC
The URL can be used to link to this page
Your browser does not support the video tag.