Security and Internal Controls. In accordance with Acquia’s Security Annex incorporated herein by reference, Acquia shall (i) maintain a security framework of policies, procedures, and controls that includes administrative, physical, and technical safeguards for protection of the security and integrity of the Subscription Services, and of the Customer Data contained within the Subscription Services, using the capabilities of currently available technologies and in accordance with prevailing industry practices and standards, (ii) access and use the Customer Data solely to perform its obligations in accordance with the terms of this Agreement, and (iii) perform periodic testing by independent third party audit organizations, which include with Service Organization Controls 1 (SOC 1), SOC 2 audits and ISO 27001 certification or surveillance audits performed annually. In no event during the Subscription Term shall Acquia materially diminish the protections provided by the controls set forth in Acquia’s then-current Security Annex.
Appears in 4 contracts
Samples: Subscription and Services Agreement, Subscription and Services Agreement, Subscription and Services Agreement
