Customer Penetration Testing Clause Samples
The Customer Penetration Testing clause defines the terms under which a customer is permitted to conduct security testing, such as penetration tests, on a vendor’s systems or services. Typically, this clause outlines the required advance notice, scope limitations, and any necessary approvals or coordination with the vendor to ensure testing does not disrupt operations or compromise other customers’ data. Its core function is to balance the customer’s need to assess security with the vendor’s need to maintain system integrity and service continuity.
POPULAR SAMPLE Copied 1 times
Customer Penetration Testing a. No more than twice per calendar year, on Customer’s reasonable request, Visier will provide appropriate support to Customer to perform penetration tests of Visier’s test servers for the Services, provided that such tests are performed:
i. at the sole expense of Customer;
ii. under supervision by Visier personnel; iii. on a schedule agreed in advance between Customer and Visier; and
iv. in a responsible manner consistent with test guidelines provided by Visier prior to testing.
b. Customer may engage a third party to perform such penetration tests on Customer’s behalf (“Testing Provider”), provided that:
i. Customer obtains Visier’s prior written consent;
ii. Testing Provider agrees to abide by the terms of this Section applicable to Customer; and
iii. Testing Provider agrees to terms of confidentiality reasonably acceptable to Visier;
c. Promptly after completion of each penetration test, Customer (or its Testing Provider, if applicable) must provide a full, detailed report of its test results to Visier.
Customer Penetration Testing. Customer may conduct penetration testing of (a) Customer’s Projects and (b) Google’s system and the Services associated with Customer’s Projects provided Customer complies with the Agreement. If Customer’s penetration test compromises or impacts the security, privacy, or integrity of any data that is not Customer Data or threatens to do so, Google will take appropriate measures to protect such data and may request that Customer cease conducting the penetration test. Customer will comply with such request. All testing results and any potential vulnerabilities identified by Customer that pertain to Customer’s Projects are Customer’s Confidential Information; those that pertain Google’s system and Services are Google’s Confidential Information. Customer may be eligible for a reward if it reports a vulnerability to Google via the Vulnerability Reward Program at ▇▇▇▇▇://▇▇▇.▇▇▇▇▇▇.▇▇▇/about/appsecurity/reward- program/, or alternate URL as may be updated by Google from time to time.
Customer Penetration Testing. Customer may provide a written request for a penetration test of its Account ("Pen Test") by submitting such request via a support ticket. Following receipt by Snowflake of such request, Snowflake and Customer shall mutually agree in advance on details of such Pen Test, including the start date, scope and duration, as well as reasonable conditions designed to mitigate potential risks to confidentiality, security, or other potential disruption of the Service or Snowflake's business. Pen Tests and any information arising therefrom are deemed Snowflake's Confidential Information. If Customer discovers any actual or potential vulnerability in connection with a Pen Test, Customer must immediately disclose it to Snowflake and shall not disclose it to any third-party.
Customer Penetration Testing. Customer may provide a written request for a penetration test of its Account ("Pen Test") by submitting such request via their Customer Success Manager. Customers who wish to carry out a Pen-Test will be required to purchase the eGain Cloud Add On for Penetration Tests. Following receipt by eGain of such request and purchase of the applicable Add On, eGain and Customer shall mutually agree in advance on details of such Pen Test, including the start date, scope and duration, as well as reasonable conditions designed to mitigate potential risks to confidentiality, security, or other potential disruption of the Service or eGain's business which will be defined in the Rules of Engagement (▇▇▇). Pen Tests and any information arising therefrom are deemed eGain's Confidential Information. If Customer discovers any actual or potential vulnerability in connection with a Pen Test, Customer must immediately disclose it to eGain and shall not disclose it to any third-party. Customer is to ensure that it and any third parties that it may appoint for the penetration testing, adhere to this section 8.1, failure to do so would be in breach of contract.
Customer Penetration Testing. Customer may provide a written request for a penetration test of its Accounts (“Pen Test”) by submitting such request via a support ticket. Following receipt by DCC of such request, DCC and Customer will mutually agree in advance on details of such Pen Test, including the start date, scope and duration, as well as reasonable conditions designed to mitigate potential risks to confidentiality, security, or other potential disruption of the China Service, DCC’s, or DCC’s third-party service providers or partners respective businesses. Pen Tests and any information arising therefrom are deemed DCC’s or its third-party service providers’ or partners’ Confidential Information. If Customer discovers any actual or potential Vulnerability in connection with a Pen Test, Customer must immediately disclose it to DCC and will not disclose it to any third-party.