Security Reports and Audits. 7.1 Customer acknowledges that MailChimp is regularly audited against SSAE 16 and PCI standards by independent third party auditors and internal auditors, respectively. Upon request, MailChimp shall supply (on a confidential basis) a summary copy of its audit report(s) ("Report") to Customer, so that Customer can verify MailChimp's compliance with the audit standards against which it has been assessed, and this DPA.
Security Reports and Audits. 12.1. Upon request, MailerLite shall supply, on a confidential basis, a copy of its audit reports to Customer, so that Customer can verify MailerLite's compliance with the audit standards and this Agreement.
Security Reports and Audits. Any provision of security attestation or audit reports shall take place in accordance with Customer’s rights under the Agreement. If the Agreement does not include a provision regarding security attestation or audit reports, iManage shall (a) maintain security practices and policies for the protection of Customer Data as set forth in the written data security policy for the Cloud Services, and (b) upon Customer’s request (not more than one time per calendar year), and subject to the confidentiality and non-disclosure obligations set forth in the Agreement, iManage shall make available to Customer information regarding iManage’s compliance with the obligations set forth in the Agreement and this DPA in the form of iManage’s ISO 27001 certification and/or SOC 2 or SOC 3 reports. If the Agreement does not include audit rights, iManage shall allow Customer (or an independent third-party auditor appointed by Customer), at Customer’s sole cost and expense, upon Customer’s written request at reasonable intervals, to conduct an audit of the procedures relevant to the protection of Customer Personal Data, subject to the confidentiality provisions of the Agreement. Customer and iManage will discuss and agree in advance on the reasonable start date, scope and duration of, and security and confidentiality controls applicable to, any audit and Customer shall take all necessary steps to minimize the disruption to iManage’s business. iManage may elect to provide Customer with documents and records demonstrating its compliance with the obligations of this DPA and Customer shall refrain from exercising its audit right if the records are sufficient to demonstrate compliance with this DPA. Neither Customer nor any independent third-party auditor appointed by Customer shall have access to any data from iManage’s other customers or to iManage’s systems or facilities not involved in the Cloud Services.
Security Reports and Audits. 2.1 Where the Processor is audited against PCI standards, it shall supply (on a confidential basis) a copy of its annual attestation of compliance and certificate of compliance ("Reports") to Controller within 5 Business Days of Controller’s written request, to enable Controller verify Processor's compliance with the audit standards against which it has been assessed and this Agreement.
Security Reports and Audits. 6.1 Upon request, SailPoint shall provide to Customer (on a confidential basis) a summary copy of any third-party audit report(s) or certifications applicable to the Services ("Report"), so that Customer can verify SailPoint's compliance with this DPA, the audit standards against which it has been assessed, and the standards specified in the SailPoint Security Measures, as described in Annex A.
Security Reports and Audits. 7.1 Lookout is audited against data protection and information security standards ISO27001 on an annual schedule by independent third-party auditors. Upon request, Lookout shall supply (on a confidential basis) a summary copy of its audit report(s) ("Report") to Customer, so that Customer can verify Lookout's compliance with the audit standards against which it has been assessed, and this DPA.
Security Reports and Audits. 5.1 Customer acknowledges that certain Medallia Products are regularly audited against SSAE 18 (SOC 2 Type 2) and/or ISO27001 standards by independent third party auditors and/or internal auditors. Upon request, Medallia shall supply (on a confidential basis) a summary copy of its audit report(s) ("Report") to Customer where available, so that Customer can verify Medallia's compliance with the audit standards against which it has been assessed, and this DPA.
Security Reports and Audits. 7.1 Customer acknowledges that Pleo is regularly audited against PCI standards by independent third party auditors and internal auditors, respectively.
Security Reports and Audits. 5.1 Audit rights. Mailchimp shall make available to Customer all information reasonably necessary to demonstrate compliance with this DPA and allow for and contribute to audits, including inspections by Customer in order to assess compliance with this DPA. Customer acknowledges and agrees that it shall exercise its audit rights under this DPA (including this Section 5.1 and where applicable, the SCCs) by instructing Mailchimp to comply with the audit measures described in Sections 5.2 and 5.3 below.
Security Reports and Audits. 5.1 Bench shall maintain records of its security standards. Upon Customer's written request, Bench shall provide (on a confidential basis) copies of relevant certifications, audit report summaries and/or other documentation reasonably required by Customer to verify Bench's compliance with this DPA. Bench shall further provide written responses (on a confidential basis) to all reasonable requests for information made by Customer, including responses to information security and audit questionnaires, that Customer (acting reasonably) considers necessary to confirm Bench's compliance with this DPA, provided that Customer shall not exercise this right more than once per year.
