Compliance with Card Association Rules. Merchant represents, warrants and covenants that it is and will remain throughout the term of this Agreement in compliance with Card Association bylaws, operating regulations and rules related to data security, data integrity and the safeguarding of Cardholder Information including the Payment Card Industry Data Security Standard (“PCI”), MasterCard’s Site Data Protection Program (“SDP”), Visa’s Customer Information Security Program (“CISP”), and Discover Information Security Compliance (“DISC”), , in effect and as may be amended, supplemented or replaced. Merchant will cause all of its service providers, subcontractors and agents to comply with PCI, SDP and CISP requirements at all times. Merchant will report any non-compliance immediately to Bank. To accomplish the foregoing, Merchant will encrypt all debit, credit or stored value card numbers whether in storage, transport or backup and will not store data security codes on its systems, network or software. Provide the acquirer with information on any service providers the merchant uses or intends to use The ISO may not subcontract, sublicense, assign, license, franchise, or any manner extend or transfer to any third party, any right or obligation of the ISO set forth in the Merchant Agreement. The Bank may not waive, forgive, release, assign, or fail to insist on strict performance of each requirement.
Appears in 13 contracts
