Compliance with Card Association Rules. Merchant represents, warrants and covenants that it is and will remain throughout the term of this Agreement in compliance with Card Association bylaws, operating regulations and rules, including those provisions related to data security, data integrity and the safeguarding of Cardholder Information including the Payment Card Industry Data Security Standard (“PCI DSS”), Discover Information Security Compliance (“DISC”), Mastercard’s Site Data Protection Program (“SDP”), American Express’ Data Security Requirements (“DSR”) and VISA’s Customer Information Security Program (“CISP”), in effect and as may be amended, supplemented or replaced. Merchant will cause all of its employees, agents, and subcontractors agents to comply with PCI, SDP, DISC, DSR and CISP requirements at all times. To accomplish the foregoing, Merchant will encrypt all debit, credit or stored value card numbers whether in storage, transport or backup and will not store data security codes on its systems, network or software. Merchant will report, in writing, any non-compliance and any violation of security or privacy obligations or a breach in data security resulting in the potential for unauthorized access to Cardholder personal information immediately to MAS. If (i) Merchant informs, or
Appears in 2 contracts
Sources: Merchant Agreement, Merchant Agreement