PCI DSS Clause Samples

PCI DSS. Stripe will make reasonable efforts to provide the Services in a manner consistent with PCI-DSS requirements that apply to Stripe.

PCI DSS. We have implemented certain technical and procedural safeguards to keep Cardholder Data safe and will continue to comply with Payment Card Industry Data Security Standards (“PCI DSS”) as a Level 1 service provider to the extent we store, process or transmit Cardholder Data on your behalf. As a sub-merchant, you also have certain PCI DSS obligations to help keep Cardholder Data safe. Please visit this link to learn more about what you can and should do to protect payment transactions at your place of business. We reserve the right to suspend Payment Services for as long as we deem reasonably necessary to investigate suspicious or unusual activity associated with your account, and we shall have no liability to you for any losses that may be attributable to the period of suspension. Similarly, if you know or have reason to believe there has been a security intrusion that has or may result in unauthorized access to Cardholder Data, you must notify us immediately.

PCI DSS. (a) PCI compliance validation is based on where Transaction Data is retained, stored or transmitted. Merchant hereby permits BlueSnap to provide Acquirer with all relevant information regarding the extent to which Merchant stores Transaction Data. (b) Merchant and any agents, contractors and any third party partners engaged by ▇▇▇▇▇▇▇▇, that store, process or transmit data, shall comply and maintain compliance with PCI, Visa “Account Information Security Program” and the MasterCard “Site Data Protection Program” and any other similar program as stipulated by the Card Organizations including any changes to those programs and standards which may occur from time to time. Merchant shall notify BlueSnap immediately if any data breach (including any unauthorized use or disclosure, or any loss, theft or compromise of Cardholder Information or transaction data) may occur, is suspected to have occurred or has occurred. BlueSnap is permitted to immediately notify Acquirer of any such incident. (c) ▇▇▇▇▇▇▇▇ acknowledges and agrees that:

PCI DSS. Payment Card Industry Data Security Standard;

PCI DSS. Payment Card Industry Data Security Standard, which consists of specifications prescribed by Card Associations to ensure the data security of Card Transactions. A copy of PCI DSS is available online from ▇▇▇▇▇://▇▇▇.▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇.▇▇▇/.

PCI DSS. If Licensee is approved to process payment card transactions on campus, all transactions must be processed outside of Trinity’s network through Licensee’s own mobile Wi-Fi hotspot. Trinity ITS must approve of the equipment/device for processing. Licensee represents and warrants that it is compliant with current Payment Card Industry Data Security Standards ("PCI DSS") and shall remain compliant during the Term of the Agreement, ensuring that the environment for the processing of transactions is done in compliance with current PCI DSS standards. Should Licensee become PCI DSS non-compliant during the Term, Licensee shall promptly notify Trinity of its non- compliance status. Licensee agrees that no transactions will be processed using Trinity’s network. Licensee will provide Trinity a copy of its PCI DSS Certificate of Compliance prior to performance and annually thereafter. Licensee shall be liable for the security of Cardholder Data and shall notify Trinity of any real or suspected breaches immediately upon discovery.

PCI DSS. ParkMobile has obtained, and will continue to maintain throughout the term, Payment Card Industry – Data Security Standard (PCI DSS) certification.

PCI DSS. 17.1. Where relevant to the provision of the Service, where credit card information is collected from whatever source as part of any process that contributes to the delivery of the Service, the Supplier undertakes that it will comply in full with the obligations set it by the PCI DSS requirements. It will further, where necessary, carry out gap analysis, instruct Qualifies Security Assessor testing and complete remediation work to enable ongoing compliance at its own expense. 17.2. Where relevant to the provision of the Service, the Supplier will warrant that it is PCI DSS compliant and indemnifies the Company for any fine, levy or sanction imposed on the Supplier for any non compliance with the PCI DSS regulations made by any court, payment brand or payment aggregator or card issuer. 17.3. The Supplier will supply to the Company, on request, any summary of any gap analysis, QSA report or remediation action plan that demonstrates its compliance with PCI DSS.

PCI DSS. (a) Merchant hereby permits BlueSnap to provide Acquirer with all relevant information regarding the extent to which Merchant stores transaction data. (b) Merchant and any agents, contractors and any third party partners engaged by ▇▇▇▇▇▇▇▇, that store, process or transmit data, shall comply and maintain compliance with PCI, Visa “Account Information Security Program” and the MasterCard “Site Data Protection Program” and any other similar program as stipulated by the Card Organizations including any changes to those programs and standards which may occur from time to time. Merchant shall notify BlueSnap immediately if any data breach (including any unauthorized use or disclosure, or any loss, theft or compromise of Cardholder Information or transaction data) may occur, is suspected to have occurred or has occurred. BlueSnap is permitted to immediately notify Acquirer of any such incident. (c) ▇▇▇▇▇▇▇▇ acknowledges and agrees that: