| Dealer shall maintain adequate administrative, technical, and physical access controls and system security requirements and devices necessary to protect from threats or hazards to the privacy, confidentiality, or integrity of all non-public personal information about each Party’s customers (“Protected Data”), as required under Title V of the Federal Gramm-Leach-Bliley Act, the regulations issued by the federal financial regulatory agencies, and any other federal or state laws or regulations relating to the collection, sharing, use, and disposal of personal information (collectively referred to herein as the “Privacy Requirements”). Dealer will also maintain adequate, commercially available safety, facility, and data security procedures, and other safeguards against the disclosure, destruction, loss, or alteration of all Protected Data provided to the Dealer. Dealer agrees to ensure Protected Data is stored and transmitted in a commonly accepted encrypted format compliant with the Privacy Requirements. |
