Laserfiche WebLink
around anything InfoSend controls or operates to accommodate Redwood City in meeting this <br /> requirement. <br /> 2.g Retention of Oriainal Sales Information. Merchant or EPX on MerchanYs behalf shall retain the <br /> information required by Paragraphs 0(Documenting Transactions) and 0(Authorization for <br /> Transactions) for three (3) years from the date of the Transaction. Upon request, Merchant or <br /> EPX on MerchanYs behalf shall provide such information within five (5) days of receipt of <br /> request. Failure to meet such time frame or non-delivery of any item or delivery of an illegible <br /> copy of an item requested by an Issuer shall constitute a waiver by Merchant of any claims <br /> and may result in an irrevocable Chargeback for the full amount of the Transaction. <br /> 2.10 EPX Svstems: Merchant or its Agent acknowledges that its use of the EPX Systems and <br /> Software is in accordance with the specification provided by EPX. Any Software supplied to <br /> Merchant by EPX is owned by EPX. It is licensed to Merchant and not sold. The Manuals are <br /> protected by copyright laws and international copyright treaties, as well as other intellectual <br /> property laws and treaties. Merchant is prohibited from copying the Software or Manuals <br /> related to the EPX System and Software. Merchant shall not sell, lease, encumber or <br /> othervvise dispose of the Software or Manuals. Merchant acknowledges that the EPX Systems <br /> and Software requires suitable computer hardware to function properly. <br /> 5.1 Associations' and Issuers' Reauirements. Merchant shall comply with all bylaws, rules, <br /> regulations, policies and guidelines of the Associations and any Issuer whose Cards are used <br /> to process Transactions in accordance with this Agreement. EPX agrees to keep Merchant <br /> advised of Association rules and regulations as they are applied. <br /> - 5.2 Use of Marks. Merchant will display prominently at its place of business Card emblems and <br /> other promotional material and literature provided by Bank directly or through EPX. Subject to <br /> the prior written consent of Bank and upon such conditions as authorized by Bank, Merchant <br /> may use Card service marks or design marks in its own advertisement and promotional <br /> materials. <br /> 5.3 Pavment Card Industrv SecuriN Reauirements. Merchant agrees to be compliant with <br /> applicable PCI requirements, in accordance with Payment Card Industry Data Security <br /> Standards (PCI) for protecting Cardholder data as amended by the Associations from time to <br /> time. <br /> i. Visa, MasterCard and Discover have implemented a program to ensure the <br /> protection of cardholder data, whether processed, transmitted or stored, through a <br /> program of validation and compliance. Known as PCI, information about the program <br /> and specific requirements can be obtained at www.visa.comlciso. The program is <br /> comprised of 12 major requirements: <br /> 1. , Install and maintain a firewall configuration to protect data <br /> 2. Do not use vendor-supplied defaults for system passwords and other security <br /> parameters <br /> 3. Protect stored data <br /> 4. Encrypt transmission of cardholder data and sensitive information across <br /> public networks <br /> 5. Use and regularly update anti-virus software <br /> 6. Develop and maintain secure systems and applications <br /> 7. Restrict access to data by business need-to-know <br /> 8. Assign a unique ID to each person with computer access <br /> 9. Restrict physical access to cardholder data <br /> 10. Track and monitor all access to network resources and cardholder data <br />