Protection of PII. Personally identifiable information (“PII”) shall be defined as information that identifies a Cardholder or identifies a Card, which is disclosed to MasterCard pursuant to this Agreement, along with the Transaction information directly associated with such Cardholder. PII includes, but is not limited to, Cardholder Card information or information that can identify an individual or be used to authenticate an individual. MasterCard will keep and maintain all PII in strict confidence, using such degree of care as is appropriate to avoid unauthorized access, use, or disclosure. MasterCard acknowledges and agrees that its access, use, storage, disposal, or disclosure of PII complies with federal and state privacy and data security laws. MasterCard is responsible for any unauthorized collection, access, use, storage, disposal, or disclosure of PII by its employees, agents, Affiliates or subcontractors.
Protection of PII. The parties agree - PII compiled for purposes of this Data Sharing Agreement will be stored on one or more of the following media and protected as described:
Protection of PII. The parties agree that PII compiled for purposes of this Data Sharing Agreement will be stored on one or more of the following media and protected as described: Workstation Hard disk drives may have PII stored on local workstation hard disks. Access to the PII will be restricted to authorized users by requiring logon to the local workstation using a unique user ID and complex password or other authentication mechanisms which provide equal or greater security, such as biometrics or smart cards. The hard drive must be encrypted to protect PARTNER PII in the event the device is lost or stolen. Network server disks may have PII stored on hard disks mounted on third party network servers and made available through shared folders. Access to the PII will be restricted to authorized users through the use of access control lists which will grant access only after the authorized user has authenticated to the network using a unique user ID and complex password or other authentication mechanisms which provide equal or greater security, such as biometrics or smart cards. PII will be hosted in SSAE 16 accredited datacenters. Data is backed up daily to a primary datacenter and mirrored in real time to multiple storage locations. All PII at rest will be encrypted using AES 256-bit encryption. PII transmissions are secured using either Transport Layer Security (TLS) or a Secure Sockets Layer (SSL) with up to 128-bit encryption. Designated LCCC employees with access to PII have a unique login and password. PII storage on portable devices or media. PARTNER PII shall not be stored on portable devices or media unless specifically, explicitly authorized in writing by THE PARTNER Agreement Administrator or Technical Administrator. If so authorized, the PII shall be given the following protections: Encrypt the PII with a key length of at least 128 bits. Control access to devices with a unique user ID and complex password or stronger authentication method such as a physical token or biometrics. Manually lock devices whenever they are left unattended and set devices to lock automatically after a period of inactivity, if this feature is available. Maximum period of inactivity is 20 minutes. Physically protect the portable device(s) and/or media by: Keeping them in locked storage when not in use; Using check-in/check-out procedures when they are shared; and Taking frequent inventories. When being transported outside of a secure area, portable devices and media with confidential PII m...
Protection of PII. Handbook 755.1 shall state (such as in Section 1-5) that all personally identifiable information (PII) will be protected as required under law, government-wide regulations, and government-wide policies.
Protection of PII. We employ the following data security tools to protect Personally Identifiable Information: secure server with Secure Socket Layer (SSL). Unfortunately, even with these measures, we cannot guarantee the security of PII. By using our Website, you acknowledge and agree that we make no such guarantee, and that you use our Website at your own risk.
