Will you collect Payment Card Data?

Do you have a database in the cloud?

Do you separate between European and non-European data?

Are you subject to DFS NYCRR 500?

Do you have a Data Protection Officer?

Are employees, temporary users and sub-contractors subject to monitoring when processing EvenFinancial Information?

Do you ensure that you meet all your legal, regulatory and contractual requirements/obligations related to the processing of EvenFinancial information, e.g. licensing, intellectual property rights, copyright, data protection?

Do you deter employees, temporary users and sub-contractorsfrom using EvenFinancial information and information processing facilities for anything other than the tasks defined in the contractual agreement?

Has a network penetration test been conducted within the last 12 months?

Are there procedures to ensure compliance with legislative, regulatory, and contractual requirements on the use of material where intellectual property rights may be applied and on the use of proprietary software products?