Security Evaluations. West shall periodically (no less than annually) evaluate its processes and systems to ensure continued compliance with obligations imposed by law, regulation or contract with respect to the confidentiality, integrity, availability, and security of Customer Information and West Processing Resources. West shall periodically (no less than annually) have a reputable third party perform vulnerability assessments and penetration tests of its publicly accessible Information Processing Resources. West shall document the results of these evaluations and any remediation activities taken in response to such evaluations.
Appears in 3 contracts
Sources: Standard Contractual Clauses Addendum, Standard Contractual Clauses Addendum, Data Processing Agreement