Common use of AUDIT RIGHT AND COOPERATION WITH YOU AND YOUR SUPERVISORY AUTHORITIES Clause in Contracts

AUDIT RIGHT AND COOPERATION WITH YOU AND YOUR SUPERVISORY AUTHORITIES. 9.1. To the extent provided in your Services Agreement, You may at Your sole expense audit Oracle’s compliance with the terms of this Data Processing Agreement by sending Oracle a written request, including a detailed audit plan, at least six weeks in advance of the proposed audit date. You and Oracle will work cooperatively to agree on a final audit plan. 9.2. The audit shall be conducted no more than once during a twelve-month period, during regular business hours, subject to Oracle’s on-site policies and regulations, and may not unreasonably interfere with business activities. If You would like to use a third party to conduct the audit, the third party auditor shall be mutually agreed to by the parties and the third-party auditor must execute a written confidentiality agreement acceptable to Oracle. Upon completion of the audit, You will provide Oracle with a copy of the audit report, which is subject to the confidentiality terms of Your Services Agreement. 9.3. Oracle will contribute to such audits by providing You with the information and assistance reasonably necessary to conduct the audit, including any relevant records of processing activities applicable to the Services. If the requested audit scope is addressed in a SOC 1 or SOC 2, ISO, NIST, PCI DSS, HIPAA or similar audit report issued by a qualified third party auditor within the prior twelve months and Oracle provides such report to You confirming there are no known material changes in the controls audited, You agree to accept the findings presented in the third party audit report in lieu of requesting an audit of the same controls covered by the report. Additional audit terms may be included in your Services Agreement.

AUDIT RIGHT AND COOPERATION WITH YOU AND YOUR SUPERVISORY AUTHORITIES. 9.1. 9.1 To the extent provided in your Services Agreement, You may at Your sole expense audit Oracle’s compliance with the terms of this Data Processing Agreement by sending Oracle a written request, including a detailed audit plan, at least six weeks in advance of the proposed audit date. You and Oracle will work cooperatively to agree on a final audit plan. 9.2. 9.2 The audit shall be conducted no more than once during a twelve-month period, during regular business hours, subject to Oracle’s on-site policies and regulations, and may not unreasonably interfere with business activities. If You would like to use a third party to conduct the audit, the third party auditor shall be mutually agreed to by the parties and the third-party auditor must execute a written confidentiality agreement acceptable to Oracle. Upon completion of the audit, You will provide Oracle with a copy of the audit report, which is subject to the confidentiality terms of Your Services Agreement. 9.3. 9.3 Oracle will contribute to such audits by providing You with the information and assistance reasonably necessary to conduct the audit, including any relevant records of processing activities applicable to the Services. If the requested audit scope is addressed in a SOC 1 or SOC 2, ISO, NIST, PCI DSS, HIPAA or similar audit report issued by a qualified third party auditor within the prior twelve months and Oracle provides such report to You confirming there are no known material changes in the controls audited, You agree to accept the findings presented in the third party audit report in lieu of requesting an audit of the same controls covered by the report. Additional audit terms may be included in your Services Agreement.

AUDIT RIGHT AND COOPERATION WITH YOU AND YOUR SUPERVISORY AUTHORITIES. 9.1. 9.1 To the extent provided in your Services Agreement, You may at Your sole expense audit Oracle’s compliance with the terms of this Data Processing Agreement by sending Oracle a written request, including a detailed audit plan, at least six weeks in advance of the proposed audit date. You and Oracle will work cooperatively to agree on a final audit plan. 9.2. 9.2 The audit shall be conducted no more than once during a twelve-month period, during regular business hours, subject to Oracle’s on-site policies and regulations, and may not unreasonably interfere with business activities. If You would like to use a third party to conduct the audit, the third party auditor shall be mutually agreed to by the parties and the third-party auditor must execute a written confidentiality agreement acceptable to Oracle. Upon completion of the audit, You will provide Oracle with a copy of the audit report, which is subject to the confidentiality terms of Your Services Agreement. 9.3. 9.3 Oracle will contribute to such audits by providing You with the information and assistance reasonably necessary to conduct the audit, including any relevant records of processing activities applicable to the Services. If the requested audit scope is addressed in a SOC 1 or SOC 2, ISO, NIST, PCI DSS, HIPAA or similar audit report issued by a qualified third party auditor within the prior twelve months and Oracle provides such report to You confirming there are no known material changes in the controls audited, You agree to accept the findings presented in the third party audit report in lieu of requesting an audit of the same controls covered by the report. Additional audit terms may be included in your Services Agreement.confirming