Certifications and Audits. Company shall promptly complete and return to BNYM any certifications which BNYM in its sole discretion may from time to time send to Company, certifying that Company is using the Licensed System in strict compliance with the terms and conditions set forth in this Agreement. BNYM may, at its expense and after giving reasonable advance written notice to Company, enter Company locations during normal business hours and audit Company’s utilization of the Licensed System, the number of copies of the Documentation in Company’s possession, and the scope of use and information pertaining to Company’s compliance with the provisions of this Agreement. The foregoing right may be exercised directly by BNYM or by delegation to an independent auditor acting on its behalf. If BNYM discovers that there is any unauthorized scope of use or that Company is not in compliance with the aforementioned provisions, Company shall reimburse BNYM for the full costs incurred in conducting the audit.
Certifications and Audits. Company shall promptly complete and return to BNYM any certifications which BNYM in its sole reasonable discretion may from time to time send to Company, certifying that Company is using the Licensed System in material compliance with the terms and conditions set forth in this Agreement. BNYM may, at its expense and after giving at least 30 days' written notice to Company, virtually audit Company's utilization of the Licensed System and the scope of use and information during normal business hours pertaining to Company's compliance with the provisions of this Agreement. The foregoing right may be exercised directly by BNYM or by delegation to an independent auditor acting on its behalf.
Certifications and Audits. 6.1. Customer Audit Customer or its independent third party auditor reasonably acceptable to SAP (which shall not include any third party auditors who are either a competitor of SAP or not suitably qualified or independent) may audit SAP’s control environment and security practices relevant to Personal Data processed by SAP only if:
Certifications and Audits. (i) Microsoft has established and agrees to maintain a data security policy that complies with the ISO 27001 standards for the establishment, implementation, control, and improvement of the Information Security Management System and the ISO/IEC 27002 code of best practices for information security management (“Microsoft Online Information Security Policy”). On a confidential need-to-know basis, and subject to Customer’s agreement to non-disclosure obligations Microsoft specifies, Microsoft will make the Microsoft Online Information Security Policy available to Customer, along with other information reasonably requested by Customer regarding Microsoft security practices and policies. Customer is solely responsible for reviewing the Microsoft Online Information Security Policy, making an independent determination as to whether the Microsoft Online Information Security Policy meets Customer’s requirements, and for ensuring that Customer’s personnel and consultants follow the guidelines they are provided regarding data security.
Certifications and Audits. 6.1. On no more than an annual basis and upon thirty (30) days’ notice in writing by Customer, Entrust Datacard, to the extent that it is acting as a Data Processor to Customer, shall make available to Customer information necessary to demonstrate compliance with the obligations set forth under Data Protection Laws, provided that Entrust Datacard shall have no obligation to provide confidential and/or proprietary information. On no more than an annual basis and upon thirty (30) days’ notice in writing, Entrust Datacard shall, to the extent that it is acting as a Data Processor to Customer, following a request by Customer and at Customer’s expense, further allow for and contribute to off-site audits and inspections by Customer or its authorized third-party auditor. The scope, timing, cost and duration of any such audits, including conditions of confidentiality, shall be mutually agreed upon by Entrust Datacard and Customer prior to initiation. Customer shall promptly notify Entrust Datacard with information regarding non-compliance discovered during the course of an audit, and Entrust Datacard shall use commercially reasonable efforts to address any confirmed non- compliance. List of Schedules Schedule 1: Details of the Processing Schedule 2: EU Standard Contractual Clauses The parties' authorized signatories have duly executed this DPA: On behalf of Customer: Name (written out in full): Position: Address: Signature: On behalf of Entrust Datacard: Name (written out in full): Xxxx X. Xxxxxxx Position: General Counsel Address: 0000 Xxxx Xxxxx, Xxxxxxxx, Xxxxxxxxx 00000-0000 XXX Signature: SCHEDULE 1 - DETAILS OF PERSONAL DATA PROCESSING Nature and Purpose of Processing Entrust Datacard will Process Personal Data as necessary to perform the Services pursuant to the Agreement, as further specified in the Services-related documentation, and as further instructed by Customer in its use of the Services.
Certifications and Audits. 9.1. On no more than an annual basis and upon thirty (30) days’ notice in writing by Customer, Entrust, to the extent that it is acting as a Data Processor to Customer, shall make available to Customer information necessary to demonstrate compliance with the obligations set forth under Data Protection Laws, provided that Entrust shall have no obligation to provide confidential and/or proprietary information. On no more than an annual basis and upon thirty (30) days’ notice in writing, Entrust shall, to the extent that it is acting as a Data Processor to Customer, following a request by Customer and at Customer’s expense, further allow for and contribute to off-site audits and inspections by Customer or its authorized third- party auditor. The scope, timing, cost and duration of any such audits, including conditions of confidentiality, shall be mutually agreed upon by Entrust and Customer prior to initiation. Customer shall promptly notify Entrust with information regarding non-compliance discovered during the course of an audit, and Entrust shall use commercially reasonable efforts to address any confirmed non-compliance.
Certifications and Audits. 6.1. SAP Resources SAP provides Audit Reports and Certifications free of charge, online or upon request. Additional verifications that require SAP resources are limited and subject to the following Sections.
Certifications and Audits. For the Anaplan Service, during the term of the Agreement Anaplan, at its own expense, will engage an internationally recognized independent third party auditor to perform regular audits (at least annually) and to provide a valid SOC 1 Type 2 (SSAE 16 or ISAE 3402) and/or SOC 2 Type 2 report. Upon Client’s written request but no more than annually, and subject to the confidentiality obligations set forth in the Agreement, Anaplan shall provide a copy of Anaplan’s then most recent third-party audits or certifications, as applicable, or any summaries thereof, that Anaplan generally makes available to its Clients at the time of such request. Client may contact Anaplan in accordance with the “Notices” Section of the Agreement to request an on-site audit in respect of Personal Data, but only to the extent the scope of such audit is not addressed in the audit reports provided by Anaplan. Before the commencement of any such on-site audit, Client and Anaplan shall mutually agree upon the scope, timing, and duration of the audit in addition to the reimbursement rate for which Client shall be responsible. Client shall reimburse Anaplan for any time or reasonable costs expended for any such on-site audit at the Anaplan’s then-current standard rates for Professional Services, which shall be made available to Client upon request. Client shall promptly notify Anaplan with information regarding any non-compliance discovered during an audit. All audit information is subject to the confidentiality obligations of the Agreement.
Certifications and Audits. 8.1. Upon written request by Entrust, Vendor, to the extent that it is acting as a Data Processor to Entrust, shall make available to Entrust all information necessary to demonstrate compliance with the obligations set forth under Data Protection Laws, provided that Vendor shall have no obligation to provide commercially confidential information. On no more than an annual basis (unless there are indications of non- compliance), Vendor shall, to the extent that it is acting as a Data Processor to Entrust, following a request by Entrust and at Entrust’s expense, further allow for and contribute to audits and inspections by Entrust or its authorized third-party auditor. The scope, timing, cost and duration of any such audits, including conditions of confidentiality, shall be mutually agreed upon by Vendor and Entrust prior to initiation. Such agreement will not be unreasonably withheld or delayed by Vendor. Entrust shall promptly notify Vendor with information regarding non-compliance discovered during the course of an audit, and Vendor shall use commercially reasonable efforts to address any confirmed non-compliance.
Certifications and Audits. 6.1. Customer Audit Customer or its independent third-party auditor reasonably acceptable to RELISH (which shall not include any third party auditors who are either a competitor of RELISH or not suitably qualified or independent) may audit RELISH’s control environment and security practices relevant to Personal Data processed by RELISH only if: