Browse
Search
2023-520-E-Visitors Brueau-PhotoShelter-Digital asset management platform
OrangeCountyNC
>
Board of County Commissioners
>
Contracts and Agreements
>
General Contracts and Agreements
>
2020's
>
2023
>
2023-520-E-Visitors Brueau-PhotoShelter-Digital asset management platform
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
10/5/2023 2:19:12 PM
Creation date
10/5/2023 2:18:59 PM
Metadata
Fields
Template:
Contract
Date
8/31/2023
Contract Starting Date
8/31/2023
Contract Ending Date
9/26/2023
Contract Document Type
Contract
Amount
$7,716.00
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
19
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
DocuSign Envelope ID: 576DD5DB-E4A9-406B-8F7C-CC4EF3C2484F <br /> <br /> <br />7. Is the Cloud provider obligated to inform the County of all locations in which the data is <br />stored (including backups) and to continually keep the County informed of any changes <br />to those locations? <br />a. Yes <br /> <br />If No, Explain: <br /> <br />8. What are the Cloud provider’s contractual obligations with respect to litigation holds on <br />County data? <br />a. We don’t hold our client data hostage. At any point the County will be able to pull <br />down your files. <br /> <br />9. What are the Cloud provider’s contractual prohibitions on disclosing data to individuals, <br />groups or organizations making record requests, unless so directed by an authorized <br />County official? <br />a. PhotoShelter does not release any client data to anyone outside of the client <br />organization. <br /> <br />10. Does the contract obligate the Cloud provider to allow third-party audits and/or <br />certifications related to infrastructure and security, including penetration testing and <br />vulnerability assessment, as requested by the County? <br />a. No. <br /> <br />If No, Explain: Not contractually. Regarding the security of the system, we already <br />employ two separate outside scanning vendors called Comodo and Nessus. These <br />two services scan our system both daily and monthly for vulnerabilities at the OS, <br />Network, and Application levels as well as across our two data centers and <br />corporate environment. PhotoShelter could happily provide a copy of the latest <br />certification. <br /> <br />11. Does the contract obligate the Cloud provider to allow third party onsite inspections of <br />the Cloud provider’s infrastructure and security practices on a specified basis? <br />a. No. <br /> <br />If No, Explain: Not contractually. We also would consider this to be a security risk to the <br />infrastructure. The two datacenters - one with Tel’x in the Google Building in <br />New York and one on the West Coast with Layer42 in Santa Clara - have state-- <br />of--the--art security including 24x7 guards, video surveillance, biometric entry <br />systems and servers housed in cages under lock and key. Take a tour of our <br />infrastructure with our VP of Network Operations: <br />https://stories.photoshelter.com/behind-the-scenes-with-libris-powering-a-secure- <br />reliable-network/ <br /> <br /> <br />12. Does the contract obligate the Cloud provider to provide security documentation upon <br />DocuSign Envelope ID: A0C7375C-1E9C-4913-9D61-A5E31E833876
The URL can be used to link to this page
Your browser does not support the video tag.