What data security standards must a Black Bear Diner franchisee comply with?
Black_Bear_Diner Franchise · 2025 FDDAnswer from 2025 FDD Document
ftware, including point-of-sale system, kitchen display system, as Franchisor may specify in the Manual or otherwise in writing as Franchisor may deem reasonably necessary for the efficient management and operation of the Franchised Restaurant and the transmission of data to and from
Franchisor. Franchisee agrees to permit Franchisor to access, by modem, Internet, or otherwise the computer system for the purpose of downloading information from Franchisee's computer system. Franchisee must configure and constitute its computer system so that Franchisor has complete, continuous, and unfettered access to all information the computer system generates and collects. As part of the Computer System, Franchisee agrees to maintain firewall protection by use of a managed configuration to monitor and restrict all inbound traffic to Franchisee's network which does not meet proper security protocol. Franchisee is solely responsible for protecting itself from disruptions, Internet access failures, Internet content failures, and attacks by hackers and other unauthorized intruders and Franchisee waives any and all claims Franchisee may have against Franchisor as the direct or indirect result of such disruptions, failures or attacks. Franchisee must comply with all laws and regulations relating to privacy and data protection, and must comply with all privacy policies or data protection and breach response policies as Franchisor may periodically establish. Franchisee must notify Franchisor immediately of any suspected data breach at or in connection with the Franchised Restaurant.
Franchisor and Franchisee agree that changes to technology are dynamic and are not predictable within the term of this Agreement. Franchisee agrees that Franchisor may establish from time-to-time in the Manual or otherwise in writing reasonable new standards for the implementation of technology in the System. Franchisee agrees to comply with any reasonable new standard for technology that is developed by Franchisor.
13. OPERATION OF THE FRANCHISED RESTAURANT
13.1 Authorized Products
Franchisee shall offer for sale at the Franchised Restaurant only the menu items, Gift Shop Products and other products that Franchisor has expressly approved and shall not offer for sale or sell or provide through the Franchised Restaurant, any products or services which Franchisor has not approved or use the Approved Location for any purpose other than the operation of a Black Bear Diner restaurant in full compliance with this Agreement and the Manual.
13.2 Gift Shop Products
Franchisee agrees to purchase from Franchisor, its affiliate(s), or certain designated or approved suppliers all Gift Shop Products, including Trademarked Products, and other products to the extent specified by Franchisor.
Source: Item 23 — RECEIPT (FDD pages 56–243)
What This Means (2025 FDD)
According to the 2025 Black Bear Diner Franchise Disclosure Document, franchisees must adhere to specific data security standards to protect their systems and customer information. Black Bear Diner requires franchisees to configure their computer systems to allow the franchisor complete and continuous access to all generated and collected information. To protect against unauthorized access, franchisees must maintain firewall protection using a managed configuration to monitor and restrict inbound network traffic that doesn't meet proper security protocols. Franchisees are solely responsible for protecting themselves from disruptions, internet failures, content failures, and hacker attacks, and they waive any claims against Black Bear Diner for these issues.
Black Bear Diner franchisees must comply with all laws and regulations related to privacy and data protection, including any privacy policies or data breach response policies that Black Bear Diner may establish. Franchisees are obligated to immediately notify Black Bear Diner of any suspected data breach at or connected to the franchised restaurant. The FDD also states that Black Bear Diner may establish new technology standards in the manual or in writing, and franchisees must comply with these standards.
Furthermore, Black Bear Diner retains all rights to the website, franchisee websites, and any intranet/extranet systems, including the data stored within. Franchisees must comply with the standards and procedures developed by Black Bear Diner for using social media that references the brand. Black Bear Diner reserves the right to approve any messages posted on social media and may require franchisees to cease posting on social media related to Black Bear Diner. These measures ensure that franchisees maintain adequate data security and comply with evolving technology standards and legal requirements.