Assessment & Remediation. The Funds, acting collectively through an authorized representative reasonably acceptable to the Custodian, at no additional expense and with reasonable notice, may no more than once per year inspect documentation concerning Custodian’s information security practices and safeguards and may visit facilities relevant to the services provided to a Fund, provided, however, that no such documentation may be copied or removed from Custodian’s premises. Custodian, as its sole expense, shall commission an independent penetration test of externally facing information systems that process Confidential Information on at least an annual basis, remediate any material findings within a commercially reasonable timeframe, and provide a Fund with copies of any relevant independent SOC 1 audits.
Appears in 5 contracts
Samples: Custody Agreement (Aim Investment Securities Funds (Invesco Investment Securities Funds)), Custody Agreement (Aim Variable Insurance Funds (Invesco Variable Insurance Funds)), Custody Agreement (Invesco Management Trust)
