What actions, other than those reported automatically by Discover, must Byrider franchisees take regarding credit bureau reporting?
Byrider Franchise · 2025 FDDAnswer from 2025 FDD Document
- 7.18 Information Security. The Franchisee must implement all administrative, physical and technical safeguards necessary to protect any information that can be used to identify an individual, including names, addresses, telephone numbers, e-mail addresses, employee identification numbers, signatures, passwords, financial information, credit card information, biometric or health data, government-issued identification numbers and credit report information ("Personal Information") in accordance with applicable law and industry best practices. It is entirely the Franchisee's responsibility (even if the Company provides the Franchisee with any assistance or guidance in that regard) to confirm that the safeguards the Franchisee uses to protect Personal Information comply with all applicable laws and industry best practices related to the collection, access, use, storage, disposal and disclosure of Personal Information. If Franchisee becomes aware of a suspected or actual breach of security or unauthorized access involving Personal Information, the Franchisee will notify the Company immediately and specify the extent to which Personal Information was compromised or disclosed. The Franchisee also agrees to follow the Company's instructions regarding curative actions and public statements relating to the breach. The Franchisee must comply with the Company's privacy policy, as it may be amended periodically. The Franchisee further agrees to comply with any requests to return or delete Personal Information, whether requested by the Company or directly by a consumer, as required by applicable data sharing and privacy laws**.**
Source: Item 23 — Receipts (FDD pages 88–335)
What This Means (2025 FDD)
Based on the 2025 Byrider Franchise Disclosure Document, franchisees are responsible for implementing and maintaining security measures to protect personal information, which includes credit report information. Byrider franchisees must implement administrative, physical, and technical safeguards to protect any information that can be used to identify an individual, including names, addresses, telephone numbers, e-mail addresses, employee identification numbers, signatures, passwords, financial information, credit card information, biometric or health data, government-issued identification numbers, and credit report information.
Specifically, Byrider franchisees must comply with all applicable laws and industry best practices related to the collection, access, use, storage, disposal, and disclosure of Personal Information. Franchisees are responsible for confirming that their safeguards comply with these standards, even if Byrider provides assistance or guidance.
Furthermore, if a Byrider franchisee becomes aware of a security breach or unauthorized access involving Personal Information, they must immediately notify Byrider and specify the extent to which Personal Information was compromised or disclosed. The franchisee must also follow Byrider's instructions regarding corrective actions and public statements related to the breach and comply with Byrider's privacy policy, as it may be amended. Franchisees must also comply with any requests to return or delete Personal Information, whether requested by Byrider or directly by a consumer, as required by applicable data sharing and privacy laws.
In summary, while the FDD does not explicitly detail actions beyond those automatically reported by Discover, it emphasizes the franchisee's responsibility to protect personal and credit information through robust security measures, immediate breach notification, and compliance with privacy policies and legal requirements.