Cardholder Data. If Supplier handles, maintains, processes, or it otherwise responsible for credit, debit or other cardholder payment information (“Cardholder Data”), Supplier shall comply with the most current Payment Card Industry (“PCI”) Standard in connection with the processing of Cardholder Data such data, including, but not limited to: (a) creating and maintaining a secure network to protect Cardholder Data; (b) using all technical and procedural measures reasonably necessary to protect Cardholder Data it maintains or controls; (c) creating and implementing security measures to limit access to Cardholder Data; (d) monitoring access to Cardholder Data it maintains or controls; and (e) creating and implementing an information security policy that assures employee compliance with the foregoing. Supplier may provide Cardholder Data to third parties provided that Supplier remains liable for ensuring compliance with the then-current PCI Data Security Standard (“DSS”) requirements and monitoring the PCI DSS compliance of all associated third parties. Supplier agrees to handle all point of sale (“POS”) machines in accordance with the Point of Sale Anti-Tamper Inspection Procedure terms found at xxx.xxxxxxxxx.xxx/xxxxxxxxx.
Appears in 2 contracts
Samples: Master Services Agreement, Master Services Agreement
Cardholder Data. If Supplier handles, maintains, processes, or it is otherwise responsible for credit, debit or other cardholder payment information (“Cardholder Data”), Supplier shall comply with the most current Payment Card Industry (“PCI”) Standard in connection with the processing of Cardholder Data such dataData, including, but not limited to: (a) creating and maintaining a secure network to protect Cardholder Data; (b) using all technical and procedural measures reasonably necessary to protect Cardholder Data it maintains or controls; (c) creating and implementing security measures to limit access to Cardholder Data; (d) monitoring access to Cardholder Data it maintains or controls; and (e) creating and implementing an information security policy that assures employee compliance with the foregoing. Supplier Suppler may provide Cardholder Data to third parties provided that Supplier remains liable for ensuring compliance with the then-current PCI Data Security Standard (“DSS”) requirements and monitoring the PCI DSS compliance of all associated third parties. Supplier agrees to handle all point of sale (“POS”) machines in accordance with the Point of Point-of-Sale Anti-Tamper Inspection Procedure terms found at xxx.xxxxxxxxx.xxx/xxxxxxxxx.
Appears in 2 contracts
Samples: Master Ground Services Agreement, Master Ground Services Agreement
