PCI. To the extent SELLER stores, transmits, or processes cardholder data (as defined by the Payment Card Industry Data Security Standard, “PCI-DSS”), SELLER will obtain and maintain third- party PCI-DSS certification. SELLER acknowledges in writing that they are responsible for the security of BUYER cardholder data that SELLER possesses or otherwise stores, processes, or transmits on behalf of BUYER and will furnish evidence of current PCI-DSS certification for the relevant services. SELLER will conduct PCI -DSS required quarterly network scans on the in-scope environment via an Approved Scanning Vendor (as defined by PCI-DSS), whose use is hereby consented to by BUYER. All service providers performing work that is “in scope” of Payment Card Industry standards (PCI Service Provider or Merchants) acting on behalf of BUYER must have their PCI scope assessed by a Qualified Security Assessor (QSA) with an annual Report of Compliance (ROC).
PCI. PCI represents, warrants and undertakes to Zavante that Packaging shall have been performed in accordance with Applicable Laws and in conformance with the Specifications; provided, that PCI shall not be liable for defects attributable to Zavante-Supplied Materials (including artwork and labeling).
PCI. The Pavement Condition Index for the roadway, from the local jurisdiction’s Pavement Management Program. EXHIBIT D PAVEMENT MANAGEMENT PROGRAM REPORT The approved ordinance for the Transportation Safety & Investment Plan (Measure X) outlines the requirements for the use of local road maintenance, pothole repair and safety funds. It includes a requirement for each jurisdiction to have a pavement management program. "Each city and the County of Monterey shall develop, or participate in the development of by TAMC, a pavement management program. They shall submit regular reports on the conditions of their streets, to ensure timely repairs and keep the public informed. Development of the pavement management program by TAMC is eligible to be funded out of this program prior to distribution of funds to the cities and the County." SYSTEM REQUIREMENTS: In order to receive Measure X funds, the cities and the County shall utilize a pavement management program (PMP) and submit regular reports on the conditions of their streets, to ensure timely repairs and keep the public informed. The pavement management program should utilize an approved software-based tool for analyzing pavement conditions and reports findings on rehabilitation/maintenance strategies based on funding levels. The pavement management program used by the jurisdiction must contain, at a minimum, the following features: Store the inventory all roadways within a jurisdiction (in a compatible database with other jurisdictions). Assess the condition of the roadways (based on seven distresses and three severity levels). Provide the current Pavement Condition Index (PCI) for the roadways (as per ASTM D6433) Identify all pavement sections needing maintenance, rehabilitation, or replacement. Calculate budget needs for maintenance, rehabilitation or replacement of deficient pavement sections (for the current year and the next three years at various overall condition levels). Develop maintenance strategies for the most cost effective level of maintenance or repair appropriate at the time of the inspection. Generate pavement management program reports (in various formats). All jurisdictions must implement and maintain an approved Pavement Management Program (“StreetSaver” or equivalent). The “StreetSaver” Pavement Management Program developed by Metropolitan Transportation Commission (MTC) is the most utilized program in the Bay Area and would be an excellent program for this region as well. The use...
PCI. PCI provides a set of requirements established by the Payment Card Industry to enhance cardholder data security and facilitate the adoption of consistent data security measures to protect cardholder and transaction data. These requirements apply to all entities involved in payment card processing and transactions including Payment Card Industry members, merchants, processors, acquirers, issuers, vendors and service providers as well as other entities that store, process, or transmit cardholder data. The PCI Security Standards Council (https://www.pcisecuritystandards.org) is responsible for the development, management, education, and awareness of the PCI Standard, including the: • Data Security Standard (PCI DSS) • Payment Application Data Security Standard (PA-DSS) • PIN Transaction Security (PTS) requirements PCI requirements apply to all systems that store, process or transmit cardholder data as defined by PCI Security Standards.
PCI. PCI may disclose __________ Confidential Information to its employees, directors, and consultants who have a business need to receive such Confidential Information solely for carrying out the purposes of this Agreement and who are bound by confidentiality and use restrictions no less stringent than those set forth in this agreement.
PCI. In the event that Company stores, processes, or transmits CHD, as defined by the PCI DSS, Company shall maintain compliance with the PCI DSS, but only to the degree that the requirements of the PCI DSS are directly applicable to the services provided under contract to SoundBite.
PCI. Fiserv agrees to comply in all material respects with applicable requirements of PCI-DSS to the extent Fiserv stores, processes or transmits “cardholder data” or “sensitive authentication data” (as defined in PCI-DSS) (collectively “Cardholder Data”) on behalf of Client in connection with the Services or to the extent the Services impact the security of Client’s cardholder data environment. Consistent with Section 3(b) (Obligations) of this Master Agreement, Fiserv shall use Cardholder Data only for Fiserv’s performance of the Services and in accordance with this Agreement. Fiserv shall maintain a current PCI-DSS compliance validation, which Client may verify by examining the list of validated entities on the applicable website. (d) Security Incident. If Fiserv confirms or is notified of any incident that has or is reasonably believed to have resulted in unauthorized possession, acquisition, use, destruction, loss, alteration, theft or disclosure of, or unauthorized access to Client Data (each such incident, a “Security Incident”), Fiserv shall as soon as reasonably possible (and in any event within 48 hours or sooner if required by applicable laws after Fiserv confirms the Security Incident) notify the Client Relationship Manager, Client’s Information Security Officer and Client’s Chief Information Officer of such Security Incident and furnish applicable known details. To the extent the Security Incident is within Fiserv’s areas of responsibility, Fiserv shall investigate and mitigate the adverse effects of such Security Incident and shall provide regular updates appropriate to the nature of the Security Incident to Client. In addition, to the extent the Security Incident is within Fiserv’s areas of responsibility, Fiserv shall promptly (and in any event as soon as reasonably practicable) (A) perform a root cause analysis, (B) prepare a corrective action plan, (C) provide in writing to Client applicable information, including how and when such Security Incident occurred and what actions Fiserv is taking or has taken to remedy such Security Incident, and (D) to the extent the Security Incident is within Fiserv’s areas of control, remediate such Security Incident and take commercially reasonable actions to prevent its recurrence. In each case, Fiserv shall perform the activities described in the two preceding sentences at no additional charge to Client to the extent such Security Incident is attributable to the failure of Fiserv or Fiserv Personnel to compl...