Data Isolation The Contractor must provide a description of the approach for implementing controls to ensure appropriate isolation of resources such that Canada’s Data are not co-mingled with other tenant data, while in use, storage or transit, and throughout all aspects of the Cloud Services and Contractor Infrastructure’s functionality and system administration. This includes implementing access controls and enforcing appropriate logical or physical segregation to support: (a) The separation between Contractor’s internal administration from resources used by its customers; (b) The separation of customer resources in multi-tenant environments in order to prevent one malicious or compromised consumer from affecting the service or data of another; and (c) Ability for the GC to support isolation within GC-managed tenant environment