Common use of Data Security/Personal Cardholder Information Clause in Contracts

Data Security/Personal Cardholder Information. Merchant may not, as a condition of sale, impose a requirement on Cardholders to provide any personal information as a condition for honoring Cards unless such information is required to provide delivery of goods or services or Merchant has reason to believe the identity of the person presenting the Card may be different from that of the Cardholder. Merchant will not, under any circumstances, release, sell or otherwise disclose any Cardholder Information to any person other than Settlor or the applicable Card Association, except as expressly authorized in writing by the Cardholder, or as required bylaw. PayArc acknowledges that while cardholder information is in its possession it is responsible for the security of such cardholder data and any ensuing storage, processing or transmitting activity on behalf of the customer and would, to that extent only, be responsible for and store and secure such cardholder information under normal industry standards. (a) Safeguards. Merchant will maintain appropriate administrative, technical and physical safeguards for all Cardholder Information. These safeguards will (i) ensure the confidentiality of Cardholder Information; (ii) protect against any anticipated threats or hazards to the security or integrity of Cardholder Information; (iii) protect against unauthorized access to or use of Cardholder Information that could result in substantial harm or inconvenience to any Cardholder; and (iv) properly dispose of all Cardholder Information to ensure no unauthorized access to Cardholder Information. Merchant will maintain all such safeguards applicable to Merchant, ISO, or Bank in accordance with applicable federal and state laws, rules, regulations and guidance.

Data Security/Personal Cardholder Information. Merchant may not, as a condition of sale, impose a requirement on Cardholders to provide any personal information as a condition for honoring Cards unless such information is required to provide delivery of goods or services or Merchant Merchant, in good faith, has reason to believe the identity of the person presenting the Card may be different from than that of the Cardholder. Merchant will not, under any circumstances, release, sell or otherwise disclose any Cardholder Information to any person other than Settlor MAS or the applicable Card Association, except as expressly authorized in writing by the Cardholder, or as required bylaw. PayArc acknowledges that while cardholder information is in its possession it is responsible for the security of such cardholder data and any ensuing storage, processing or transmitting activity on behalf of the customer and would, to that extent only, be responsible for and store and secure such cardholder information under normal industry standardsby law. (a) Safeguards. Merchant will maintain appropriate administrative, technical and physical safeguards for all Cardholder Information. These safeguards will (i) ensure the confidentiality of Cardholder Information; (ii) protect against any anticipated threats or hazards to the security or integrity of Cardholder Information; (iii) protect against unauthorized access to or use of Cardholder Information that could result in substantial harm or inconvenience to any Cardholder; and (iv) properly dispose of all Cardholder Information to ensure no unauthorized access to Cardholder Information. Merchant will maintain all such safeguards applicable to Merchant, ISO, Merchant or Bank MAS in accordance with applicable federal and state laws, rules, regulations and guidance.

Data Security/Personal Cardholder Information. Merchant may not, as a condition of sale, impose a requirement on Cardholders to provide any personal information as a condition for honoring Cards unless such information is required to provide delivery of goods or services or Merchant has reason to believe the identity of the person presenting the Card may be different from than that of the Cardholder. Merchant will not, under any circumstances, release, sell or otherwise disclose any Cardholder Information to any person other than Settlor Peoples Trust or the applicable Card Association, except as expressly authorized in writing by the Cardholder, or as required bylaw. PayArc acknowledges that while cardholder information is in its possession it is responsible for the security of such cardholder data and any ensuing storage, processing or transmitting activity on behalf of the customer and would, to that extent only, be responsible for and store and secure such cardholder information under normal industry standardsby law. (aA) Safeguards. Merchant will maintain appropriate administrative, technical and physical safeguards for all Cardholder Information. These safeguards will (ia) ensure the confidentiality of Cardholder Information; (iib) protect against any anticipated threats or hazards to the security or integrity of Cardholder Information; (iiic) protect against unauthorized access to or use of Cardholder Information that could result in substantial harm or inconvenience to any Cardholder; and (ivd) properly dispose of all Cardholder Information to ensure no unauthorized access to Cardholder Information. Merchant will maintain all such safeguards applicable to Merchant, ISO, or Bank Merchant in accordance with Data Privacy Requirements and applicable federal and state laws, rules, regulations and guidanceLaws.