Terms of Service

Company shall (i) notify Bank of changes made to technical or administrative contact information, (ii) maintain its own system(s) of record, (iii) ensure the supervision, management, and control of the use of Services by Company personnel, (iv) develop and maintain a disaster recovery and business continuity plans that address the inability to access or utilize the Services, (v) provide Bank with a list of approvers for security and system configuration changes for data transmission, (vi) immediately, and in no case later than twenty-four (24) hours after becoming aware of such Information Security Incident,  notify Bank (per Section D(i)(b) above) of any actual or suspected information security breaches, including compromised user accounts, including those used for integrations and secure file transfers, (vii) protect the confidentiality and integrity of Protected Information, (viii) protect against anticipated threats or hazards to the security or integrity of Protected Information, (ix) protect against unauthorized use of Protected Information that could result in substantial harm to a natural person.