Reporting Cardholder Data Compromises. In the event of a breach, intrusion of, theft of, or any other unauthorized access to Cardholder Data stored at your location or stored for You by any person or entity, You shall notify Processor in writing as soon as possible (but in no event any later than twenty-four (24) hours after learning of the breach, intrusion, or unauthorized access) in the manner required in the Data Security Regulations. You further agree to provide the Card Networks, the Bank, Processor, and their respective designees full access to your premises, facilities, computer hardware and software (including, without limitation, all computers, servers, and cloud-based storage, wherever located), and all pertinent records to conduct a thorough review of your compliance with the Data Security Regulations. You shall fully and timely cooperate with any such reviews or investigations.
Reporting Cardholder Data Compromises. In the event of a breach or intrusion of or otherwise unauthorized access to Cardholder Data stored at your location or for you, you shall immediately notify 2AP, in the manner required in Data Security Regulations, and provide the Card Networks, the Bank, 2AP and their respective designees access to your premises, facilities and all pertinent records to conduct a review of your compliance with the Data Security Regulations. You shall fully cooperate with any reviews or investigations of their facilities and records provided for in this paragraph.