SOC 2 Reports. (i) In addition to its other obligations under this Section 9.9, Service Provider shall cause a Service Organization Controls 2 Report, type 2, ("SOC 2 Report") (SOC 2: Attestation Standards, Section 101 of the AICPA Codification Standards (AT Section 101). "Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy (SOC 2)", to be conducted by an independent, nationally recognized public accounting firm qualified to perform such audits at least annually, prepared in accordance with the relevant and current standards. The Service Provider acknowledges that each such SOC 2 Report shall cover Service Provider's policies, procedures, controls and systems for the twelve (12) months of Service Provider's performance of the Services immediately after the Commencement Date (and each successive twelve (12) month period thereafter), and in particular those policies, procedures, controls and systems applicable to an audit of Service Provider's customers. Prior to initiating any such SOC 2 Report, Service Provider shall confer with DIR as to the scope and timing of each SOC 2 Report and shall accommodate DIR's requested modifications (if any) for each such SOC 2 Report to the extent reasonably practicable.
Appears in 2 contracts
Samples: Master Services Agreement, Master Services Agreement
SOC 2 Reports. (i) In addition to its other obligations under this Section 9.99.8, Service Provider Successful Respondent shall cause a Service Organization Controls 2 Report, type 2, ("SOC 2 Report") (SOC 2: Attestation Standards, Section 101 of the AICPA Codification Standards (AT Section 101). "Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy (SOC 2)", as published by the AICPA in 2011) to be conducted by an independent, nationally recognized public accounting firm qualified to perform such audits at least annually, prepared in accordance with the relevant and current standards. The Service Provider Successful Respondent acknowledges that each such SOC 2 Report shall cover Service ProviderSuccessful Respondent's policies, procedures, controls and systems for the twelve (12) months of Service ProviderSuccessful Respondent's performance of the Services immediately after Services, in accordance with the Commencement Date State fiscal year (and each successive twelve (12) month period thereafter), and in particular those policies, procedures, controls and systems applicable to an audit of Service ProviderSuccessful Respondent's customers. Prior to initiating any such SOC 2 Report, Service Provider Successful Respondent shall confer with DIR as to the scope and timing of each SOC 2 Report and shall accommodate DIR's requested modifications (if any) for each such SOC 2 Report to the extent reasonably practicable.
Appears in 2 contracts
Samples: Master Services Agreement, Master Services Agreement
SOC 2 Reports. (i) In addition to its other obligations under this Section 9.99.8, Service Provider Successful Respondent shall cause a multi-client Service Organization Controls 2 Report, type 2, ("SOC 2 Report") (SOC 2: Attestation Standards, Section 101 of the AICPA Codification Standards (AT Section 101). "Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy Confidentiality (SOC 2)", as published by the AICPA in 2011) to be conducted by an independent, nationally recognized public accounting firm qualified to perform such audits at least annually, prepared in accordance with the relevant and current standards. The Service Provider Successful Respondent acknowledges that each such SOC 2 Report shall cover Service ProviderSuccessful Respondent's policies, procedures, controls and systems for the twelve (12) months of Service ProviderSuccessful Respondent's performance of the Services immediately after Services, in accordance with the Commencement Date State fiscal year (and each successive twelve (12) month period thereafter), and in particular those policies, procedures, controls and systems applicable to an audit of Service ProviderSuccessful Respondent's customers. Prior to initiating any such SOC 2 Report, Service Provider Successful Respondent shall confer with DIR as to the scope and timing of each SOC 2 Report and shall accommodate DIR's requested modifications (if any) for each such SOC 2 Report to the extent reasonably practicable.
Appears in 1 contract
Samples: Master Services Agreement
