Media Monorail


Vendor represents and warrants that no Personal Information and no Personal Data (as each is defined below) will be included when using/accessing Disney Direct and/or Media Monorail. Vendor shall implement and maintain reasonable security procedures and practices appropriate to the nature of the information, to protect any Personal Information (as defined below) obtained hereunder from unauthorized access, destruction, use, modification or disclosure. For the purposes herein, “Personal Information” means any information that refers, is related to, or is associated with an identified or identifiable individual, including, but not limited to, (a) Personal Data (as defined below) and (b) an individual’s first name or first initial and his or her last name in combination with any one or more of the following data elements: (i) Social Security number, (ii) driver’s license number or state identification card number, (iii) account number, credit or debit card number, in combination with any required security code, access code, or password that would permit access to an individual’s financial account or (iv) any individually identifiable information regarding an individual’s medical history or medical treatment or diagnosis by a health care professional. Vendor shall apply protective security measures consistent with the Massachusetts Standards for The Protection of Personal Information of Residents of the Commonwealth codified at 201 CMR 17:00 et seq. (the “Massachusetts Standards”) and any applicable federal regulations, as such standards and regulations may be modified from time to time, with respect to such portion of the Disney data as constitutes "personal information" under the Massachusetts Standards. “Personal Data” shall include all “personal data” as defined in Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 (the “Directive”) on the protection of individuals with regard to the processing of personal data and on the free movement of such data.