Common use of Audit Process Clause in Contracts

Audit Process. Unless required by Data Protection Laws and Regulations, Customer may request a summary audit report(s) or audit Bugcrowd no more than once annually. Customer must provide at least four (4) weeks’ prior written notice to Bugcrowd of a request for summary audit report(s) or request to audit. The scope of any audit will be limited to Bugcrowd’s policies, procedures and controls relevant to the protection of Customer’s Personal Data and defined in Exhibit C. Subject to Section 7(b), all audits will be conducted during normal business hours, at Bugcrowd's principal place of business or other Bugcrowd location(s) where Personal Data is accessed, processed or administered, and will not unreasonably interfere with Bugcrowd's day-to-day operations. An audit will be conducted at Customer‘s sole cost and by a mutually agreed upon third party who is engaged and paid by Customer, and is under a non- disclosure agreement containing confidentiality provisions substantially similar to those set forth in the Agreement, obligating it to maintain the confidentiality of all Bugcrowd Confidential Information and all audit findings. Further, Customer agrees to pay the costs of any support provided by Bugcrowd (including internal resources) based on Bugcrowd’s then-current rates. Before the commencement of any such on-site audit, Bugcrowd and Customer shall mutually agree upon the timing, and duration of the audit. Bugcrowd will reasonably cooperate with the audit, including providing auditor the right to review but not to copy Bugcrowd security information or materials during normal business hours. Customer shall, at no charge, provide to Bugcrowd a full copy of all findings of the audit. The results of the audit will be considered “Confidential Information” of Bugcrowd.

Audit Process. Unless required by Data Protection Laws and Regulations, Customer may request a summary audit report(s) or audit Bugcrowd no more than once annually. Customer must provide at least four (4) weeks’ prior written notice to Bugcrowd of a request for summary audit report(s) or request to audit. The scope of any audit will be limited to Bugcrowd’s policies, procedures and controls relevant to the protection of Customer’s Personal Data and defined in Exhibit C. Appendix 1. Subject to Section 7(b), all audits will be conducted during normal business hours, at Bugcrowd's principal place of business or other Bugcrowd location(s) where Personal Data is accessed, processed or administered, and will not unreasonably interfere with Bugcrowd's day-to-day operations. An audit will be conducted at Customer‘s sole cost and by a mutually agreed upon third party who is engaged and paid by Customer, and is under a non- non-disclosure agreement containing confidentiality provisions substantially similar to those set forth in the Agreement, obligating it to maintain the confidentiality of all Bugcrowd Confidential Information and all audit findings. Further, Customer agrees to pay the costs of any support provided by Bugcrowd (including internal resources) based on Bugcrowd’s then-current rates. Before the commencement of any such on-site audit, Bugcrowd and Customer shall mutually agree upon the timing, and duration of the audit. Bugcrowd will reasonably cooperate with the audit, including providing auditor the right to review but not to copy Bugcrowd security information or materials during normal business hours. Customer shall, at no charge, provide to Bugcrowd a full copy of all findings of the audit. The results of the audit will be considered “Confidential Information” of Bugcrowd.

Audit Process. Unless required by Data Protection Laws and Regulations, Customer may request a summary audit report(s) or audit Bugcrowd no more than once annually. Customer must provide at least four (4) weeks’ prior written notice to Bugcrowd of a request for summary audit report(s) or request to audit. The scope of any audit will be limited to Bugcrowd’s policies, procedures and controls relevant to the protection of Customer’s Personal Data and defined in Exhibit C. Appendix 1. Subject to Section 7(b), all audits will be conducted during normal business hours, at Bugcrowd's principal place of business or other Bugcrowd location(s) where Personal Data is accessed, processed or administered, and will not unreasonably interfere with Bugcrowd's day-to-to- day operations. An audit will be conducted at Customer‘s sole cost and by a mutually agreed upon third party who is engaged and paid by Customer, and is under a non- non-disclosure agreement containing confidentiality provisions substantially similar to those set forth in the Agreement, obligating it to maintain the confidentiality of all Bugcrowd Confidential Information and all audit findings. Further, Customer agrees to pay the costs of any support provided by Bugcrowd (including internal resources) based on Bugcrowd’s then-current rates. Before the commencement of any such on-site audit, Bugcrowd and Customer shall mutually agree upon the timing, and duration of the audit. Bugcrowd will reasonably cooperate with the audit, including providing auditor the right to review but not to copy Bugcrowd security information or materials during normal business hours. Customer shall, at no charge, provide to Bugcrowd a full copy of all findings of the audit. The results of the audit will be considered “Confidential Information” of Bugcrowd.

Audit Process. Unless required by Data Protection Laws and Regulations, Customer may request a summary audit report(s) or audit Bugcrowd no more than once annually. Customer must provide at least four (4) weeks’ prior written notice to Bugcrowd of a request for summary audit report(s) or request to audit. The scope of any audit will be limited to Bugcrowd’s policies, procedures and controls relevant to the protection of Customer’s Personal Data and defined in Exhibit C. Subject to Section 7(b), all audits will be conducted during normal business hours, at Bugcrowd's principal place of business or other Bugcrowd location(s) where Personal Data is accessed, processed or administered, and will not unreasonably interfere with Bugcrowd's day-to-day operations. An audit will be conducted at Customer‘s sole cost and by a mutually agreed upon third party who is engaged and paid by Customer, and is under a non- non-disclosure agreement containing confidentiality provisions substantially similar to those set forth in the Agreement, obligating it to maintain the confidentiality of all Bugcrowd Confidential Information and all audit findings. Further, Customer agrees to pay the costs of any support provided by Bugcrowd (including internal resources) based on Bugcrowd’s then-current rates. Before the commencement of any such on-site audit, Bugcrowd and Customer shall mutually agree upon the timing, and duration of the audit. Bugcrowd will reasonably cooperate with the audit, including providing auditor the right to review but not to copy Bugcrowd security information or materials during normal business hours. Customer shall, at no charge, provide to Bugcrowd a full copy of all findings of the audit. The results of the audit will be considered “Confidential Information” of Bugcrowd.