Common use of Personal Information; Information Security Clause in Contracts

Personal Information; Information Security. (a) Each of the Transfer Agent and BFDS acknowledges that the Funds and CDI are subject to the requirements of Regulation S-P promulgated by the SEC, as from time to time amended, including 17 CFR 248.30 regarding procedures to safeguard customer records and information, including Customer Data, and the disposal of consumer report information and records. Each of the Funds, CSSI and CDI acknowledges that the Transfer Agent and BFDS are subject to 17 CFR 248.30(b) of Regulation S-P regarding the disposal of consumer report information and records. Accordingly, BFDS, as the designated service provider for the Transfer Agent, shall develop and maintain (in furtherance of all of the services provided under this Agreement) policies and procedures for safeguarding any Fund or CDI Customer Data received, processed, stored or disposed of by BFDS constituting customer records and information (including, without limitation, any Customer NPI and consumer report information) (collectively, "personal information"). BFDS shall cause such policies and procedures to be reasonably designed to (i) ensure the security and confidentiality of the personal information; (ii) protect against anticipated threats or hazards to the security and integrity of the personal information; and (iii) protect against unauthorized access to or use of the personal information that could result in substantial harm or inconvenience to any customer of a Fund or CDI, as applicable. From time to time, in accordance with its own review or in response changes in applicable law, BFDS shall revise such policies and procedures in order that the services provided by BFDS hereunder are consistent with any law, rule or regulation applicable to its transfer agency business.