Third Party Audits. The Parties acknowledge that Pancake uses external auditors to verify the adequacy of its security measures, including the security of the physical data centres from which Pancake provides its data processing services. This audit: • will be performed at least annually; • will be performed according to ISO 27001 standards or such other alternative standards that are substantially equivalent to ISO 27001; • will be performed by independent third-party security professionals at Pancake’s selection and expense; and • will result in the generation of an audit report affirming that Pancake’s data security controls achieve prevailing industry standards (including, without limitation, Service Organization Controls No. 2 (SOC2) in accordance with auditing standards in the Statements on Standards for Attestation Engagements No. 16 (SSAE16)) or such other alternative standards that are substantially equivalent to ISO 28001 (“Report”). Upon Customer’s written request at reasonable intervals, Pancake shall make available to Customer that is not a competitor of Pancake (or Customer’s independent, third-party auditor that is not a competitor of Pancake) a copy or a summary of Pancake’s most recent Report, as applicable.
Third Party Audits. The Contractor shall maintain a Price Accuracy Rate of 98% or greater. The Contractor shall obtain a third party firm at no additional cost to the State to confirm the price accuracy of the Contractor’s Punch-out Catalog. The third party firm (to be approved by the Department) shall perform a quarterly audit with statistically relevant sample of contract items to confirm the accuracy of X.X. Xxxxxxxx Price or MSRP, MSRP % discount, and final sell price. Specifically, the third party firm will verify that the prices displayed on the Contractor’s catalog are less than or equal to the approved contract prices. The Department has defined statistically relevant as a sample in which the confidence level is 95% with a 5% confidence interval. For example, statistically relevant sample for a catalog of 15,000 items would result in a sample size of 375. An example is provided at the following website: xxxx://xxx.xxxxxxxxxx.xxx/sample-size-calculator.html The third party firm shall submit a quarterly report to the Department confirming the Contractor’s Price Accuracy Rate within 15 days after the close of each quarter. The Price Accuracy Rate shall be calculated using the following formula: Price Accuracy Rate = the number of audited items each quarter where the net price is less than or equal to the contract price divided by the number of audited items. Example: Population size (# of items in the catalog) = 15,000 Sample size (from Calculator): 375 Number of catalog prices less than or equal to the approved contract prices = 370 Accuracy Rate = (370/375) = 98.6% At a minimum, the quarterly report will identify items not in compliance with the contract terms, provide the date of the audit, and screenshots of the items on the Contractor’s website that were not in compliance with the contract terms. If the Department deems it is in the best interest of the state, the Department reserves the right to increase the frequency of the Third Party Audit.
Third Party Audits. The Contractor shall obtain a third party firm at no additional cost to the State to conduct external price audits on this contract. The Contractor shall contract with a third party firm (to be approved by the Department) to conduct a quarterly random sampling (a minimum of 500 items per quarter) of contract items to confirm the accuracy of X.X. Xxxxxxxx Price or MSRP, MSRP % discount and final sell price. Specifically, the third party firm will confirm the prices displayed on the Contractor’s website are equal to or less than the contract terms. The third party firm shall provide a quarterly report to the Department indicating a Price Accuracy Percentage Rate of 98% or higher. The Price Accuracy Percentage Rate shall be calculated using the following formula: the total sum of the contract price for 500 products sampled divided by the total sum of the purchase price for 500 products. Example: $5,050 divided by $4,900 = 103%. At a minimum, the quarterly report will identify items not in compliance with the contract terms, provide the date of the audit, and screenshots of the items on the Contractor’s website that were not in compliance with the contract terms. If the Department deems it is in the best interest of the state, the Department reserves the right to increase the frequency of the Third Party Audit.
Third Party Audits. Without limiting VIVUS’ obligations under this Agreement in any respect, Purchaser acknowledges that VIVUS’ audit rights in its manufacturing and supply agreements with Sanofi are limited to periodic audits to ensure that cGMPs continue to be followed. In the event that VIVUS or any Third Party licensee of VIVUS outside the Purchaser Territory proposes to conduct or conducts an audit of the facilities used by or on behalf of VIVUS or a VIVUS Affiliate or Third Party for the production, storage, or testing of Product to be sold to Purchaser under this Agreement, then VIVUS will provide immediate notice to Purchaser of such audit and VIVUS shall use its Commercially Reasonable Efforts to permit Purchaser to be able to be present for and participate in such audit.
Third Party Audits. At least once per year during the term of the Agreement, Xactly shall have an audit of its operations performed by an independent auditing firm. This audit will include an evaluation that tests and validates key controls relating to the security of Personal Data (currently a SSAE 18 SOC 2 report (“SOC2 Report”)). Upon prior written request, and subject to the confidentiality provisions of the Agreement, Xactly shall make a summary of the then-current SOC2 Report available to Customer for evaluation.
Third Party Audits. MTC shall retain and pay for a neutral third party to audit objectively on an annual basis its compliance with agreed elements of this Agreement. MTC shall provide notice of its selected auditor to the DOJ, FBI, DOD and DHS, and the DOJ, FBI, DOD and DHS shall be able to review and approve or disapprove the selected auditor and terms of reference for that auditor within thirty (30) days of receiving notice. In addition, MTC shall provide to the DOJ, FBI, DOD and DHS a copy of its contract with the third party auditor, which shall include terms defining the scope and purpose of the audits. The DOJ, FBI, DOD and DHS shall have the right to review and approve the terms defining the scope and purpose of the audits. Through its contract with the third party auditor, MTC shall ensure that all reports generated by the auditor are provided promptly to the DOJ, FBI, DOD and DHS. Domestic Communications Companies also will provide the DOJ, FBI, DOD and DHS with access to facilities, information, and personnel consistent with Sections 5.9 and 5.10 below in the event that the DOJ, FBI, DOD or DHS wishes to conduct its own audit of a Domestic Communication Company. The terms defining the scope and purpose of the audits shall include, at a minimum, the following:
Third Party Audits. Supplier shall allow for and contribute to audits that include inspections by granting Buyer (through a third-party representative(s) credentialed in such reviews) access to all reasonable and industry recognized documentation evidencing Supplier’s policies and procedures governing the security and privacy of Buyer Data and its Security Program, excluding any third party proprietary information or documentation expressly excluded from disclosure by such party or by Applicable Law (“Audit”); provided that such representative(s) shall enter into written obligations of confidentiality and non-disclosure directly with Supplier). The Audit disclosure will include documentation evidencing Supplier’s Security Program, as well as Supplier’s privacy policies and procedures regarding personal information processed within the Services, copies of certifications and attestation reports (including Audits) listed above. Without limiting the foregoing, the Audit shall demonstrate that the Company has and maintains a comprehensive Security Program, including by completing information security questionnaires and, if requested, providing: (a) all privacy, data processing, data protection, data security, encryption, and confidentiality related: (i) Company policies, procedures, and standards (including escalation procedures for non- compliance and training materials); (ii) available third party assessments, audits, and reviews, and other equivalent evaluations, and (iii) evidence that Scanning Assessments and Pen Tests were performed in accordance with Section 6.2; (b) to the extent permitted, individuals’ requests under Applicable Law with respect to their Personal Data processed in connection with the Services provided hereunder; (c) the public Internet Protocol ranges associated with Supplier Information Systems used in connection with the Services provided hereunder; and (d) relevant information and documentation to verify compliance with this ISA.
Third Party Audits. In lieu of the University or its appointed audit firm performing their own audit, if the Supplier has engaged an external audit firm to perform an audit, the University shall be permitted to review the controls tested as well as the results.
Third Party Audits. Notwithstanding the other provisions of this Section 13, Vendor acknowledges and agrees that (i) a Governmental Authority may require an Operational Audit with or without prior notice to Company or Vendor, and (ii) a Company Customer may require an Operational Audit pursuant to the terms and conditions of the applicable Customer Agreement (collectively, “Third Party Audits”).
Third Party Audits. Metavante shall cause a Third Party review of the ------------------ Metavante Operations Center and related internal controls, to be conducted annually by its independent auditors in accordance with applicable regulatory and/or generally accepted accounting standards (e.g., SAS 70) then in effect. Metavante shall provide to Reseller, upon written request, one copy of the audit report resulting from such review.
