Common use of Transfer Agent Security Assessment Clause in Contracts

Transfer Agent Security Assessment. As part of the Transfer Agent’s Security Assessment, the Transfer Agent will: (i) conduct, at the Transfer Agent’s expense, regular vulnerability scans on externally-facing applications that may receive, access, process or store Customer Confidential Information; (ii) evaluate the results of the vulnerability scans and Remediate Security Exposures deemed material by the Transfer Agent’s personnel as reasonably appropriate, taking into account facts and circumstances surrounding such issues; and (iii) Mitigate Security Exposures discovered and deemed material by the Transfer Agent’s personnel within a reasonably appropriate time period. In addition, the Transfer Agent will at least once per year, perform penetration testing on its externally-facing systems that may receive, access, process or store Customer Confidential Information, and will provide the Trust with a letter confirming the testing has been performed. The Fund is not permitted to conduct penetration testing or other code scanning on the Transfer Agent’s environment and software.

Transfer Agent Security Assessment. As part of the Transfer Agent’s Security Assessment, the Transfer Agent will: (i) conduct, at the Transfer Agent’s expense, conduct regular vulnerability scans on externally-facing applications that may receive, access, process or store Customer Fund Confidential InformationInformation at the Transfer Agent’s expense; (ii) evaluate the results of the vulnerability scans and Remediate Security Exposures deemed material by the Transfer Agent’s personnel as reasonably appropriate, taking into account facts and circumstances surrounding such issues; and (iii) Mitigate Security Exposures discovered and deemed material by the Transfer Agent’s personnel within a reasonably appropriate time period. In addition, the Transfer Agent will at least once per year, perform penetration testing on its externally-facing systems that may receive, access, process or store Customer Fund Confidential Information, and will provide the Trust Fund with a letter confirming the testing has been performed. The Fund is not permitted to conduct penetration testing or other code scanning on the Transfer Agent’s environment and software, unless the parties mutually agree otherwise.

Transfer Agent Security Assessment. As part of the Transfer Agent’s Security Assessment, the Transfer Agent will: (i) conduct, at the Transfer Agent’s expense, conduct regular vulnerability scans on externally-facing applications that may receive, access, process or store Customer Confidential InformationInformation at the Transfer Agent’s expense; (ii) evaluate the results of the vulnerability scans and Remediate Security Exposures deemed material by the Transfer Agent’s personnel as reasonably appropriate, taking into account facts and circumstances surrounding such issues; and (iii) Mitigate Security Exposures discovered and deemed material by the Transfer Agent’s personnel within a reasonably appropriate time period. In addition, the Transfer Agent will at least once per year, perform penetration testing on its externally-facing systems that may receive, access, process or store Customer Confidential Information, and will provide the Trust Fund with a letter confirming the testing has been performed. The Fund is not permitted to conduct penetration testing or other code scanning on the Transfer Agent’s environment and software.

Transfer Agent Security Assessment. As part of the Transfer Agent’s Security Assessment, the Transfer Agent will: (i) conduct, at the Transfer Agent’s expense, conduct regular vulnerability scans on externally-facing applications that may receive, access, process or store Customer Confidential InformationInformation of the Fund at the Transfer Agent’s expense; (ii) evaluate the results of the vulnerability scans and Remediate Security Exposures deemed material by the Transfer Agent’s personnel as reasonably appropriate, taking into account facts and circumstances surrounding such issues; and (iii) Mitigate Security Exposures discovered and deemed material by the Transfer Agent’s personnel within a reasonably appropriate time period. In addition, the Transfer Agent will at least once per year, engage an independent third party to perform penetration testing on its externally-facing systems that may receive, access, process or store Customer Confidential InformationInformation of the Fund, and will provide the Trust Fund with a letter confirming the testing has been performed. The Fund is not permitted to conduct penetration testing or other code scanning on the Transfer Agent’s environment and software.