Information Security Program (1) DTI shall implement and maintain a comprehensive written information security program applicable to the Personal Information ("Information Security Program") which shall include commercially reasonable measures, including, as appropriate, policies and procedures and technical, physical, and administrative safeguards that are consistent with industry standards, providing for (i) the security and confidentiality of the Personal Information, (ii) protection of the Personal Information against reasonably foreseeable threats or hazards to the security or integrity of the Personal Information, (iii) protection against unauthorized access to or use of or loss or theft of the Personal Information, and (iv) appropriate disposal of the Personal Information. Without limiting the generality of the foregoing, the Information Security Program shall provide for (i) continual assessment and re-assessment of the risks to the security of Personal Information acquired or maintained by DTI and its agents, contractors and subcontractors in connection with the Services, including but not limited to (A) identification of internal and external threats that could result in unauthorized disclosure, alteration or destruction of Personal Information and systems used by DTI and its agents, contractors and subcontractors, (B) assessment of the likelihood and potential damage of such threats, taking into account the sensitivity of such Personal Information, and (C) assessment of the sufficiency of policies, procedures, information systems of DTI and its agents, contractors and subcontractors, and other arrangements in place, to control risks; and (ii) appropriate protection against such risks.
Card Information Updates and Authorizations If you have authorized a merchant to xxxx charges to your card on a recurring basis, it is your responsibility to notify the merchant in the event your card is replaced, your card information (such as card number and expiration date) changes, or the account associated with your card is closed. However, if your card is replaced or card information changes, you authorize us, without obligation on our part, to provide the updated card information to the merchant in order to permit the merchant to xxxx recurring charges to the card. You authorize us to apply such recurring charges to the card until you notify us that you have revoked authorization for the charges to your card. Your card is automatically enrolled in an information updating service. Through this service, your updated card information (such as card number and expiration date) may be shared with participating merchants to facilitate continued recurring charges. Updates are not guaranteed before your next payment to a merchant is due. You are responsible for making direct payment until recurring charges resume. To revoke your authorization allowing us to provide updated card information to a merchant, please contact us.
