Third Party Attestation. Defendants annually conduct: a. Independent third-party SOC 2 Type II examination, regarding design and operating effectiveness of controls relevant to the Security, Availability, Processing Integrity, and Confidentiality trust service criteria; b. Independent annual PCI DSS assessment covering data security requirements for protecting cardholder data processed, stored, or transmitted.
Appears in 2 contracts
Sources: Class Action Settlement Agreement, Settlement Agreement