Common use of Third-Party Certifications and Audits Clause in Contracts

Third-Party Certifications and Audits. Xxxxxx has obtained the third-party certifications and audits set forth HERE. Upon Your written request at reasonable intervals, and subject to the confidentiality obligations set forth in the Agreement, Xxxxxx shall make available to You (or Your Third-Party Auditor - as defined below in Section 6.2.4) information regarding Xxxxxx’s compliance with the obligations set forth in this DPA in the form of a copy of Xxxxxx’s then most recent third-party audits or certifications. Such third-party audits or certifications may also be shared with Your competent Supervisory Authority on its request. Upon Your reasonable request, Xxxxxx shall provide a report and/or confirmation of Xxxxxx’s audits of third-party Sub-processors' compliance with the data protection controls set forth in this DPA and/or a report of third party auditors' audits of third party Sub-processors that have been provided by those third-party Sub- processors to Kandji, to the extent such reports or evidence may be shared with You (“Third-party Sub-processor Audit Reports”). You acknowledge that (i) Third-party Sub-processor Audit Reports shall be considered Confidential Information as well as confidential information of the third-party Sub-processor and (ii) certain third-party Sub-processors to Kandji may require You to execute a non-disclosure agreement with them in order to view a Third-party Sub-processor Audit Report.

Third-Party Certifications and Audits. Xxxxxx SFDC has obtained the third-party certifications and audits set forth HEREin the Security, Privacy and Architecture Documentation for each applicable Service. Upon Your Customer’s written request at reasonable intervals, and subject to the confidentiality obligations set forth in the Agreement, Xxxxxx SFDC shall make available to You Customer (or Your Customer’s Third-Party Auditor - as defined below in Section section 6.2.4) information regarding XxxxxxSFDC’s compliance with the obligations set forth in this DPA in the form of a copy of XxxxxxSFDC’s then most recent third-party audits or certificationscertifications set forth in the Security, Privacy and Architecture Documentation. Such third-party audits or certifications may also be shared with Your Customer’s competent Supervisory Authority supervisory authority on its request. Where SFDC has obtained ISO 27001 certifications and SSAE 18 Service Organization Control (SOC) 2 reports for a particular Service as described in the Documentation, SFDC agrees to maintain these certifications or standards, or appropriate and comparable successors thereof, for the duration of the Agreement. Upon Your reasonable request, Xxxxxx SFDC shall also provide a requesting Customer with a report and/or confirmation of Xxxxxx’s SFDC's audits of third-party Sub-processors' ’ compliance with the data protection controls set forth in this DPA and/or a report of third third-party auditors' ’ audits of third party Sub-processors that have been provided by those third-party Sub- processors to KandjiSFDC, to the extent such reports or evidence may be shared with You Customer (“Third-party Sub-processor Audit Reports”). You acknowledge Customer acknowledges that (i) Third-party Sub-processor Audit Reports shall be considered Confidential Information as well as confidential information of the third-party Sub-processor and (ii) certain third-party Sub-processors to Kandji SFDC may require You Customer to execute a non-disclosure agreement with them in order to view a Third-party Sub-Sub- processor Audit Report.

Third-Party Certifications and Audits. Xxxxxx KBC has obtained the third-party certifications and audits set forth HEREin the Security, Privacy and Architecture Documentation for each applicable Service. Upon Your Customer’s written request at reasonable intervals, and subject to the confidentiality obligations set forth in the Agreement, Xxxxxx KBC shall make available to You Customer (or Your Customer’s Third-Party Auditor - as defined below in Section section 6.2.4) information regarding XxxxxxKBC’s compliance with the obligations set forth in this DPA in the form of a copy of XxxxxxKBC’s then most recent third-party audits or certificationscertifications set forth in the Security, Privacy and Architecture Documentation. Such third-party audits or certifications may also be shared with Your Customer’s competent Supervisory Authority supervisory authority on its request. Where KBC has obtained ISO 27001 certifications and SSAE 18 Service Organization Control (SOC) 2 reports for a particular Service as described in the Documentation, KBC agrees to maintain these certifications or standards, or appropriate and comparable successors thereof, for the duration of the Agreement. Upon Your reasonable request, Xxxxxx KBC shall also provide a requesting Customer with a report and/or confirmation of Xxxxxx’s KBC's audits of third-party Sub-processors' ’ compliance with the data protection controls set forth in this DPA and/or a report of third third-party auditors' ’ audits of third party Sub-processors that have been provided by those third-party Sub- Sub processors to KandjiKBC, to the extent such reports or evidence may be shared with You Customer (“Third-party Sub-processor Audit Reports”). You acknowledge Customer acknowledges that (i) Third-party Sub-processor Audit Reports shall be considered Confidential Information as well as confidential information of the third-party Sub-processor and (ii) certain third-party Sub-processors to Kandji KBC may require You Customer to execute a non-disclosure agreement with them in order to view a Third-party Sub-Sub processor Audit Report.

Third-Party Certifications and Audits. Xxxxxx Xxxxxxx has obtained the third-party certifications and audits set forth HEREwhere noted in the Security Documentation for the applicable Service. Upon Your Customer’s written request at reasonable intervals, and subject to the confidentiality obligations set forth in the AgreementAgreement or other applicable confidentiality obligation or agreement, Xxxxxx Enverus shall make available to You Customer (or Your Customer’s Third-Party Auditor - as defined below in Section section 6.2.4) information regarding XxxxxxEnverus’s compliance with the obligations set forth in this DPA in the form of (a) a copy of XxxxxxEnverus’s then most recent third-party audits or certificationscertifications set forth in the Security Documentation, as applicable, or (b) such summary reporting materials prepared by Enverus supporting Enverus’s compliance with the obligations set forth in this DPA. Such third-party audits or certifications or summary reporting materials may also be shared with Your Customer’s competent Supervisory Authority supervisory authority on its request. Upon Your reasonable requestWhere Enverus has obtained SSAE 18 Service Organization Control (SOC) 2 reports for a particular Service as described in the Documentation, Xxxxxx shall Enverus agrees to maintain these certifications or standards, or appropriate and comparable successors thereof, for the duration of the Agreement. Enverus may also provide a requesting Customer to the extent available with a report and/or confirmation of Xxxxxx’s Enverus's audits of third-party Sub-processors' ’ compliance with the data protection controls set forth in this DPA and/or a report of third third-party auditors' ’ audits of third party Sub-processors that have been provided by those third-party Sub- processors to KandjiEnverus, to the extent such reports or evidence may be shared with You Customer (“Third-party Sub-processor Audit Reports”). You acknowledge Customer acknowledges that (i) Third-party Sub-processor Audit Reports shall be considered Confidential Information as well as confidential information of the third-third- party Sub-processor and (ii) certain third-party Sub-processors to Kandji Enverus may require You Customer to execute a non-disclosure agreement with them in order to view a Third-party Sub-Sub- processor Audit Report.

Third-Party Certifications and Audits. Xxxxxx Xxxxxxx has obtained the third-party certifications and audits set forth HEREwhere noted in the Security Documentation for the applicable Service. Upon Your Customer’s written request at reasonable intervals, and subject to the confidentiality obligations set forth in the AgreementAgreement or other applicable confidentiality obligation or agreement, Xxxxxx Enverus shall make available to You Customer (or Your Customer’s Third-Party Auditor - as defined below in Section section 6.2.4) information regarding XxxxxxEnverus’s compliance with the obligations set forth in this DPA in the form of (a) a copy of XxxxxxEnverus’s then most recent third-party audits or certificationscertifications set forth in the Security Documentation, as applicable, or (b) such summary reporting materials prepared by Enverus supporting Enverus’s compliance with the obligations set forth in this DPA. Such third-party audits or certifications or summary reporting materials may also be shared with Your Customer’s competent Supervisory Authority supervisory authority on its request. Upon Your reasonable requestWhere Enverus has obtained SSAE 18 Service Organization Control (SOC) 2 reports for a particular Service as described in the Documentation, Xxxxxx shall Enverus agrees to maintain these certifications or standards, or appropriate and comparable successors thereof, for the duration of the Agreement. Enverus may also provide a requesting Customer to the extent available with a report and/or confirmation of Xxxxxx’s Enverus's audits of third-party Sub-Sub- processors' ’ compliance with the data protection controls set forth in this DPA and/or a report of third third-party auditors' ’ audits of third party Sub-processors that have been provided by those third-party Sub- processors to KandjiEnverus, to the extent such reports or evidence may be shared with You Customer (“Third-party Sub-processor Audit Reports”). You acknowledge Customer acknowledges that (i) Third-party Sub-processor Audit Reports shall be considered Confidential Information as well as confidential information of the third-party Sub-processor and (ii) certain third-party Sub-processors to Kandji Enverus may require You Customer to execute a non-disclosure agreement with them in order to view a Third-party Sub-Sub- processor Audit Report.