What is the definition of 'remediated' in the context of firewall scan issues for Dq Treat?
Dq_Treat Franchise · 2025 FDDAnswer from 2025 FDD Document
- m. through any firewall in use, whether provided by Acumera or otherwise acquired by Participating Location, that has not passed its most recent Approved Scanning Vendor's scan (unless the issue has already been remediated);
Source: Item 17 — The following paragraph is added to the end of Item 17 of the Disclosure Document: (FDD pages 70–378)
What This Means (2025 FDD)
The 2025 Dq Treat FDD discusses firewall scan issues in the context of Acumera's liability for data breaches. Acumera, a third-party vendor, may provide or approve firewall or SD-WAN devices for Dq Treat franchisees. Acumera's liability is limited under certain conditions.
Specifically, Acumera is not liable for data breaches occurring through a firewall that has not passed its most recent Approved Scanning Vendor's (ASV) scan, unless the issue has already been remediated. However, the FDD does not define what 'remediated' means in this context.
For a prospective Dq Treat franchisee, this means that if a firewall scan reveals a security vulnerability, simply fixing the vulnerability might be considered 'remediated.' However, without a clear definition in the FDD, there could be ambiguity about what constitutes adequate remediation. A franchisee should seek clarification from Dq Treat regarding the specific steps or documentation required to demonstrate that a firewall issue has been properly remediated to avoid potential liability issues related to data breaches.