PCI Standards Compliance. If you elect to store or hold "Account Data," as defined in the PCI Standards (including Customer card account number or expiration date), you must maintain a system that complies with the PCI Standards and upon Stripe’s request, you must provide to Stripe evidence of your compliance. If you do not comply with the PCI Standards, or if Stripe or any Payment Method Provider or Payment Method Acquirer is unable to verify your compliance with the PCI Standards, Stripe may suspend your Stripe Account or terminate this Agreement, in whole or in part. If you intend to use a third-party service provider to store or transmit Account Data, you must not share any data with the service provider until you verify that the third party holds sufficient certifications under the PCI Standards, and notify Stripe of your intention to share Account Data with the service provider. Further, you agree to never store or hold any "Sensitive Authentication Data," as defined in the PCI Standards (including the card verification value or similar security code), at any time. You can find information about the PCI Standards on the PCI Council’s website.
PCI Standards Compliance. In the event that as a result of the services provided under the Agreement, Vendor may be classified as a “Merchant”, and Beaumont may be classified as a “Service Provider”, as those terms are defined by the Payment Card Industry Security Standards Council (“PCI- SSC”), the Parties shall enter into a mutually acceptable PCI Services Addendum hereto, in order to ensure that both Parties comply with various standards published by the PCI-SSC, including, but not limited to, the then current PCI-SSC Data Security Standard Requirements for Security Assessment Procedures (“PCI-DSS”).
