Dated September 29, 2014 RBS GLOBAL TRADE SERVICE CENTRE PRIVATE LIMITED and CITIZENS BANK, N.A. TRANSITIONAL SERVICES AGREEMENT TRANSITIONAL SERVICES AGREEMENT

including, without limitation, all Personal Data provided in relation to the Services to the Provider, any Affiliate of the Provider or any Third Party Supplier, by or on behalf of the Recipient or any Affiliate of the Recipient; or

generated by the Provider, any Affiliate of the Provider, or any Third Party Supplier in the course of providing the Services,

by the Provider, to the extent necessary to allow the provision of the Services or performance of the Provider’s other obligations under this TSA by the Provider to or for the benefit of the Recipient or receipt of the Services by the Recipient; or

by the Recipient, to the extent necessary for the Recipient to receive the benefit of the Services provided by the Provider under this TSA;

Singular, Plural, Gender

References to Persons and Companies

a person shall include any company, partnership, trust, joint venture, firm, association, unincorporated association, organization, or any government, state or local body or authority (whether or not having separate legal personality); and

a company shall include any company, corporation or any body corporate, wherever incorporated.

Schedules, Sections, Appendices, Paragraphs

Headings

Includes, in writing

Agreed

Information

References to Law

that statute or provision as modified or amended from time to time, whether before or after the date of this TSA; and

any subordinate legislation or regulation made from time to time under that statute or statutory provision, including (where applicable) that statute or statutory provision as modified or amended.

Precedence

the Sections of this TSA;

the Schedules to this TSA; and

any other document referred to in this TSA.

Costs

[Not Used].

The Provider shall provide the Services to the Recipient during the Term in accordance with the terms of this TSA. The Recipient shall timely pay the Provider for all Services provided in accordance with the terms of this TSA.

Without prejudice to the Mandatory Change provisions set out in Section 10.2, the Provider shall not be in breach of this TSA to the extent that it is unable to provide any of the Services or perform any of its other obligations under this TSA, in each case to the extent that to do so would result in a breach of Regulation so long as, if and to the extent commercially practicable, the Provider has promptly notified the Recipient of such prohibition, has consulted with the Recipient to explain why the Provider reasonably believes such prohibition applies, and has worked together with the Recipient in good faith to either arrange for modification of the Services at issue or a transition of the Services to a Successor Provider. For the avoidance of doubt, the transition of the Services to a Successor Provider pursuant to this Section 2.1.3 terminates the Services and the Service Schedule under this TSA and does not create a Third Party Agreement for which the Provider is responsible for the remainder of the Term with respect to the Services.

Subject to the requirements set forth below, the Provider may subcontract the provision of any or all of the Services or any of the Provider’s other obligations under this TSA. Except in relation to an Existing Third Party Agreement:

in selecting the subcontractor in question, the Provider shall have followed its applicable Policies on vendor procurement and approval;

the Provider will notify the Recipient in advance of entering into any subcontract;

the Provider shall ensure any Third Party Consent that is required for the Recipient to receive the Services (and to sublicense to the extent necessary to receive the full benefit of the Services) is obtained and maintained for the duration of the Term;

the Provider shall be entitled to increase the Charges to reflect any increase in the costs incurred by the Provider under that subcontract, compared to the costs previously incurred by the Provider; and

the Provider shall furnish the Recipient with information about the subcontractor in question which is reasonable for diligence purposes, and the Recipient approves of the use of the subcontractor via the Change Control Procedure, with such approval not be unreasonably withheld or delayed.

The Provider shall be primarily liable under this TSA for any default in the performance of obligations under this TSA by any subcontractor of the Provider.

The Provider shall provide the Services in accordance with the Service Level.

Subject to the Change Control Procedure with respect to any change in Regulation coming into effect after the date hereof, the Provider shall provide and procure the provision of the Services in compliance with the Regulation applicable to the Provider.

Subject to the Change Control Procedure with respect to any change in Regulation coming into effect after the date hereof, the Provider shall provide and procure the provision of the Services in accordance with the Policies applicable to the Provider.

Without prejudice to Section 2.3.3, if and to the extent that any proposed change to the Policies would materially increase the risk or reduce the operational controls available to the Provider or the Recipient in connection with the provision or receipt of the Services or materially increase the cost or reduce the benefit to the Recipient in receiving the Services or the Provider in providing the Services (an “Adverse Policy Change”), the Provider shall undertake an impact assessment in advance of the change being implemented and involve the Recipient in that impact assessment. In respect of any Adverse Policy Change the Parties shall, acting reasonably and in good faith, develop, agree and implement a remedial plan with the objective of mitigating any material increase in risk or reduction in operational controls available to the Provider or the Recipient in connection with the provision or receipt of the Services or material increase in the cost or reduction in the benefit to the Recipient or Provider in receiving or providing the Services. Any obligations set out in the Service Schedule which require compliance with policies shall be construed as referring to the Policies.

If and to the extent the Provider is aware of any material failure, or any circumstances that, in the Provider’s reasonable opinion, would be reasonably likely to result in a material failure, to provide any material part of the Services in accordance with Section 2.3.1, 2.3.2 or 2.3.3, then, without prejudice to the Recipient’s other rights and remedies, the Provider shall as soon as reasonably practicable:

inform the Recipient of such failure or potential failure (and, if known, what the Provider considers to be the cause of the problem);

advise the Recipient of the remedial efforts being undertaken with respect to that failure or to prevent that potential failure; and

subject to any duty of confidentiality owed by the Provider, provide the Recipient with further information in relation to the failure or potential failure if and to the extent that information has been produced by, or is otherwise in the possession or control of, the Provider or any of its Affiliates for its own purposes and the Recipient reasonably requires that information at the time in order to manage communications with its customers, employees, investors, suppliers and any Competent Authority.

The Service Schedule shall specify any “Recipient Dependencies” for the relevant Service, specific obligations to be performed by the Recipient under the Service Schedule in order for the Provider under the Service Schedule to be able to provide the relevant Service to the Recipient.

If and to the extent the Recipient is aware of any material failure, or any circumstances that, in the Recipient’s reasonable opinion, would be reasonably likely to result in a material failure, to perform any material part of the Recipient Dependencies that are set out in the Service Schedule in accordance with this TSA, then, without prejudice to the Provider’s other rights and remedies, the Recipient shall, as soon as reasonably practicable:

inform the Provider of such failure or potential failure and, if known, what the Recipient considers to be the cause of the problem; and

undertake appropriate remedial efforts and promptly advise the Provider of the remedial efforts being undertaken with respect to that failure or to prevent that potential failure.

Without prejudice to any right or remedy of the Provider under this TSA in respect of any other obligations of the Recipient (including in relation to any Recipient Dependency or any Incidental Service performed by a Recipient which is not set out in a Service Schedule), if and to the extent the Recipient fails to perform a Recipient Dependency that is set out in the Service Schedule, Section 2.4.4 sets out the Provider’s sole and exclusive remedy in respect of the failure by the Recipient to meet that Recipient Dependency other than with respect to:

any such failure which causes unauthorized or unlawful access by a third party to the Provider’s computing systems or loss or corruption of the Provider’s data; or

any obligation of the Recipient to pay any amount (including any Charges) to the Provider under this TSA.

Each Party recognizes that the Provider is reliant and dependent on the performance of the Recipient Dependencies in order to provide the Services and to perform its other obligations under this TSA. The Provider shall not be in breach of this TSA to the extent that its failure to provide the Services or perform its other obligations under this TSA is a result of a breach by the Recipient of a Recipient Dependency (provided that such relief shall not prejudice any rights or remedies of the Recipient in respect of any prior breach by the Provider, to the extent that such prior breach caused the Recipient’s breach of the relevant Recipient Dependency and was not itself caused by a breach by the Recipient of a Recipient Dependency). Any disputes relating to the Provider’s relief from a breach by the Recipient of a Recipient Dependency shall be resolved in accordance with Section 11. Nothing in this Section 2.4.4 shall exclude or limit the liability of the Provider in relation to any failure to provide the Services or perform its other obligations under this TSA to the extent that such failure is not the result of a breach by the Recipient of a Recipient Dependency.

The Recipient shall not be in breach of this TSA to the extent that its failure to perform a Recipient Dependency is a result of a breach by the applicable Provider of an obligation of the Provider (provided that such relief shall not prejudice any rights or remedies of the Provider in respect of any prior breach by the Recipient, to the extent that such prior breach caused the Provider’s breach of the relevant obligation and was not itself caused by a breach of the Provider’s obligations under this TSA). Nothing in this Section 2.4.5 shall exclude or limit the liability of the Recipient in relation to any failure to perform a Recipient Dependency to the extent that such failure is not the result of a breach by the Provider of its obligations under this TSA.

During the Term the Provider shall, with respect to each Service for which the Service Schedule requires a certain Service Level, provide to the Recipient, as part of its monthly performance reports a set of hard copy and soft copy reports to verify the Provider’s performance and compliance with the Service Levels.

The Parties will review the Provider’s performance against the Service Levels for the previous reporting period.

If, during the Term:

a Third Party Agreement is terminated by the Provider (or any member of its Group) or by the Third Party Supplier (for any reason other than Force Majeure (for which Section 14.2 shall apply) or for insolvency of the Third Party Supplier (for which Section 3.1.3 shall apply)); or

a Third Party Agreement expires or is terminated other than as provided in Section 3.1.1(i), or;

a Third Party Agreement otherwise ceases to be available to a Provider for the provisions of Services to a Recipient (for example, by virtue of application of a change of control or similar provision),

Each Party shall use commercially reasonable efforts to mitigate to the extent within its reasonable control any costs required to be incurred in respect of the negotiation and implementation of any change to, or extension, renewal or replacement of a Third Party Agreement and migration to an alternative Third Party Supplier.

In the event of the insolvency of a Third Party Supplier required for the provision or receipt of a Service or the performance of any obligation of the Provider or the applicable Recipient for such Service, the Provider may discontinue (which, for the avoidance of doubt, shall include electing not to replace) such Service without the discontinuance being a breach or causing any liability of the Provider to the relevant Recipient.

For the avoidance of doubt, the provisions of Section 3.1.1 through Section 3.1.3, inclusive, shall not affect the rights of a Provider to terminate the Services, or for the Services to terminate, pursuant to the terms of the Service Schedule.

In the event that a Third Party Supplier increases or decreases its fees in relation to a Service during the Term:

the Provider shall promptly notify the Recipient of the change in fees with such notice to include supporting documentation as might reasonably be expected to explain the change in fees to the Recipient; and

the Charges for the Services shall be adjusted accordingly.

So far as it relates to the provision of a Service or the performance of the Provider’s other obligations under this TSA, the Provider shall manage exclusively its relationship with Third Party Suppliers and the applicable Recipient shall not discuss with any Third Party Supplier the provision of the Services or the performance of the Provider’s other obligations under this TSA, except:

to the extent required to do so by a court, competent judicial authority and/or a Competent Authority;

as agreed by the Parties; or

if in the Provider’s opinion and only to the extent reasonably necessary in order for the Recipient to be able to receive the Services under the Service Schedule,

If the Provider breaches this TSA as a result of the acts or omissions of a Third Party Supplier, the Provider’s liability is subject to the Section 8.2 limitations and caps on liability.

Notwithstanding the limitations in Section 3.4.1, any amounts recovered by the Provider from a Third Party Supplier which are in relation to Losses incurred as a result of the acts or omissions of the Third Party Supplier shall be divided among the Provider and Recipient in proportion to their Losses, provided, however, that any amounts paid over to the Recipient shall not exceed the amount of the Recipient’s Losses. For the avoidance of any doubt:

any amounts paid over to the Recipient pursuant to this Section 3.4.2 are independent of and not to be part of any limitations or caps on the liability of the Parties as set forth in Section 8.2; and

if the Provider’s commercially reasonable efforts to recover such amounts from a Third Party Supplier are unsuccessful, such a failure to recover any amounts is not a breach and is not a liability of the Provider.

Without prejudice to the Parties’ rights and obligations in relation to mitigation of losses at law or in equity, each Provider and Recipient shall use commercially reasonable efforts to mitigate the quantum of Losses and/or any other adverse consequences incurred or suffered by the Recipient as a result of the breach of a Third Party Agreement by a Third Party Supplier (to the extent a Party is aware of such breach).

In consideration for the provision of the Services, Recipient agrees to pay to Provider upon the terms and subject to the conditions of this TSA, the Charges in accordance with the then prevailing tax guidelines as to arms length remuneration currently considered to be at cost plus such regulatory transfer pricing mark-up on cost as may be recommended by advisors from time to time.

The costs referred to in Section 4.1 shall mean all direct, managed and indirect costs associated with and attributable to the provision of the Services by Provider. These costs shall be inclusive of, but not limited to, all expenses in so far as they relate to the Services supplied by Provider for salaries, advisory, facilities and equipment plus the expenses to the extent reasonably allocatable to the Services provided by Provider. The appropriate charges for depreciable assets such as facilities and equipment shall be determined in accordance with generally accepted accounting rules.

The Charges payable under the Service Schedule are exclusive of any Taxes, which would be applicable from time to time as per statutory requirements and shall be for the account of Recipient.

Each party shall be responsible for Taxes based on its own net income, employment taxes of its own employees and Taxes on any property it owns or leases.

All payments made by the Recipient to the Provider will be made without deduction or withholding for or on account of any present or future Taxes, including but not limited to value added tax, turnover tax and withholding taxes, unless Recipient is required by law to deduct or withhold such taxes or duties.

In such event, the Recipient will pay such additional amounts as may be necessary in order that the net amounts receivable by Provider after such deduction or withholding shall be equal to the amount which would have been receivable in the absence of such deduction or withholding.

The Services provided are classed as either Business Process Outsourcing (BPO) or Knowledge Process Outsourcing (KPO) which attracts a mark up in accordance with rate prevailing when the invoice is issued, based on benchmarking studies recommended by external advisors. The prevailing rates are detailed on the invoices at the time of issue.

The invoice currency will be USD.

Provider will send the invoice in hard-copy format and use the address for invoicing as set out in the Service Schedule.

The invoice will contain the description as set out in the Service Schedule, failing which the description, “Professional Services Charges rendered by RBS Global Trade Service Centre Private Ltd”, or other words as agreed by both parties.

The Provider shall invoice the Recipient monthly.

The invoices are payable through physical remittance of funds within 30 days of receipt of the relevant invoice.

If any part of the Charges is subject to a bona fide dispute then that part of the Charges subject to dispute shall be dealt with in accordance with Section 11 and any part of the Charges that is not subject to dispute is to be paid pursuant to this Section 4.

Each Party represents and warrants to the other that as at the date hereof:

it is duly constituted, organized and validly existing under the laws of the jurisdiction of its incorporation;

it has the legal right and full power and authority to execute and deliver, and it have the legal right and full power and authority to exercise its rights and perform its obligations under, this TSA, the Service Schedule and any documents which are to be executed by it or any of them pursuant to this TSA;

its contemplated provision or receipt, as applicable, of Services in the Service Schedule does not conflict with any other contract to which it is a Party; and

it is satisfied that all Charges for the Services provided hereunder were negotiated and determined on an arm’s-length basis.

The Provider represents and warrants to the Recipient that as at the date hereof:

this TSA and the contemplated provision of the Services pursuant to the Service Schedule is compliant in all material respects with all Regulation applicable to it; and

its contemplated provision of Services in the Service Schedule is compliant in all material respects with the Policies applicable to it.

The Recipient represents and warrants to the Provider that as at the date hereof this TSA and the contemplated receipt of the Services by it pursuant to the Service Schedule is compliant in all material respects with all Regulation applicable to it, including, for the avoidance of any doubt and to the extent applicable, Regulation W of the Board of Governors of the Federal Reserve System.

Each Party shall:

subject to the Change Control Procedure with respect to any change in Regulation after the date hereof, comply with Regulation in connection with the performance of its obligations under this TSA including (in the case of the Provider) its provision of the Services and (in the case of the Recipient) its receipt of the Services;

perform its obligations under this TSA including (in the case of the Provider) its provision of the Services and (in the case of the Recipient) its receipt of the Services;

provide on a timely basis such information and data as the other Party may reasonably require for the purposes of the provision of the Services; and

participate in discussions regarding the provision or receipt of the Services (as applicable) to the extent reasonably required by the other Party in order to enable the Services to be properly provided or received.

Without prejudice to the Mandatory Change provisions set out in Section 10.2, each Party shall promptly notify the other upon becoming aware of any proposed changes to a Regulation or new Regulation which will or are likely to impact the provision or receipt of the Services.

If a Party or any of its Affiliates or, to its knowledge, any Third Party Supplier is subject to any investigation by any Competent Authority and such investigation is relevant to the performance of the obligations under this TSA, then, to the extent permitted by Regulation and the Competent Authority, the Party shall as soon as reasonably practicable notify the other Party of such investigation (such notice to contain reasonable detail relating to the reason for the investigation and why it is relevant to the provision or receipt of the Services). The Parties agree to cooperate to the extent reasonable in the event of any such investigation.

Notwithstanding any other provision of this TSA, the Recipient may terminate any of the Services, or any separable part of the Services, by providing the Provider with at least six months’ prior mailed notice of such termination.

The Recipient is not responsible or liable for any Provider costs incurred as a result of an early termination notice made in compliance herewith, provided, however, that a Recipient shall reimburse the Provider for any costs incurred by the Provider as a result of a Service being terminated early by the Recipient where such Service is provided pursuant to a Third Party Agreement which was renewed, extended or replaced after the date hereof.

Each Party shall have a right to terminate this TSA if directed in writing by a Competent Authority. A Party may exercise such right upon 90 days’ prior notice, or such shorter timeframe as required by a Competent Authority or to comply with Regulation.

In the event of a termination of this TSA pursuant to this Section 6.6, the Parties acknowledge and agree that Migration of the Services may not be fully implemented as of such termination and, to the extent required by a Competent Authority, neither Party will have any obligation to assist in the Migration of the Services after such termination.

Subject to Section 6.7.2, each Party (the “Non-Defaulting Party”) may terminate a Service immediately by written notice to the other Party (the “Defaulting Party”) if the Defaulting Party commits a material breach of its obligations with respect to that Service under this TSA and the Service Schedule and (where the breach is capable of being remedied) that breach has not been remedied within 30 days after receipt of a written request to do so from the Non-Defaulting Party.

In the event that a Party elects to terminate a Service pursuant to Section 6.7.1, the TSA shall be deemed to continue in full force and effect in accordance with its terms, except with respect to such terminated Service.

Unless otherwise specified, any breach in respect of the Service Schedule shall not constitute a breach of this TSA, and unless otherwise agreed in writing, the Parties will continue to provide Services and honor all other commitments under this TSA during the course of dispute resolution pursuant to Section 11, except to the extent such commitments are the subject of such dispute, controversy or claim.

Except if and to the extent otherwise agreed in the Service Schedule and subject always to Regulation, in the event of the termination or expiry of a Service pursuant to this TSA:

to the extent that:

any Recipient Data is in the possession or reasonable control of the Provider or its Affiliates, the Provider shall provide to the Recipient such Recipient Data in its then-current format; and

any Provider Data is in the possession or reasonable control of the Recipient or its Affiliates, the Recipient shall provide to the Provider such Provider Data in its then-current format;

once the Provider has provided the Recipient Data in accordance with Section 6.8.1.(i)(a), the Provider will (to the extent reasonably practicable) delete or destroy its copy or copies of such data, unless required to maintain a copy by Regulation or the requirements of any Competent Authority or to the extent such Recipient Data also relates to the Provider’s Group’s business; and

once the Recipient has provided the Provider Data in accordance with Section 6.8.1.(i)(b) the Recipient will (to the extent reasonably practicable) delete or destroy its copy or copies of such data, unless required to maintain a copy by Regulation or the requirements of any Competent Authority or to the extent such Provider Data also relates to the Recipient’s Group’s business.

Unless otherwise agreed by the Parties, the Provider shall charge Recipient in respect of the costs incurred by the Provider in respect of complying with its obligations under this Section 6.8.

Any Recipient Data retained by Provider and any Provider Data retained by Recipient pursuant to Section 6.8.1 shall be subject to the Data Protection requirements set forth in Section 13 and the Confidentiality requirements set forth in Section 13 for as long as such data is retained.

Migration

submit a plan reasonably acceptable to the Recipient, specifying how the Provider will assist in the orderly handover of the terminated Services;

regularly update the plan to ensure that it reflects changes in the Services or terminated Services, and the methods of delivering the terminated Services; and

revise the plan from time to time in accordance with Recipient's reasonable directions.

implement the plan referred to in Section 7.1; and

provide the Recipient with all information, documentation, Recipient software, Recipient Data, Recipient equipment and hardware and any work or records which are material to Recipient’s business. The Provider will also provide all other assistance reasonably required by the Recipient.

for or in respect of any loss of profit, loss of revenue, loss of goodwill or indirect or consequential losses, punitive, special or consequential damages; or

for the value of any lost or corrupted data; or

for the costs of reconstituting, restoring or rectifying lost or corrupted data (in each case, other than to the extent arising from a breach of Section 19.1),

Except in the case of death or personal injury, fraud or fraudulent misrepresentation, or Charges that have come due in connection with the Services, the Provider’s and the Recipient’s aggregate liability to the other in respect of the Service shall be limited to an amount equal to 12 x the Monthly Charge for such Service, where “Monthly Charge” means the amount of Charges paid for the first full calendar month (which shall include any amounts invoiced directly to the Recipient by a Third Party Supplier in that month) of the relevant Service giving rise to the claim.

Except in the case of death or personal injury, fraud or fraudulent misrepresentation, or Charges that have been paid or come due in connection with the Services, each Party’s total aggregate liability to the other in connection with this TSA shall be limited to an amount equal to the total Charges for the Services paid and payable to Provider pursuant to this TSA during the 12 months prior to the first date an event giving rise to the liability occurred.

The limits on, and exclusions of, liability set out in this Section 8 shall not apply in respect of:

any liability for death or personal injury;

any liability for fraud or fraudulent misrepresentation;

any other liability that cannot be lawfully excluded; and

the obligation of Recipient to pay Charges with respect to Services that have been provided.

Subject to the exclusions from liability in Section 8.1, the Provider and the Recipient agree to indemnify and hold harmless each other, and each of their directors, officers, employees and agents, and each of the heirs, executors, successors and assigns of any of the foregoing (collectively the “Indemnitees”), from and against any and all losses of the Indemnitees relating to, arising out of or resulting from any breach by a Party, of this TSA or the Service Schedule, to the extent caused by, resulting from or arising out of or in connection with the other Party’s infringement, misappropriation or violation of Intellectual Property Rights of a third party in connection with the provision or receipt of Services under this TSA;

the aggregate liability pursuant to this Section 8.3 shall not exceed the cap on damages in Section 8.2 (subject to the exclusions from the cap set forth therein); and

the Provider shall have no liability under this Section 8.3 with respect to any infringement, misappropriation or violation of Intellectual Property Rights of a third party to the extent that such claim is based upon or related to:

Services that have been modified by the Recipient;

use of the Services in conjunction or combination with any software, data or other materials not provided by the Provider of the Services; or

use of the Services in a manner or for any purpose other than as directed by the Provider or as expressly permitted by this TSA.

Subject to Sections 10.2 to 10.4 (inclusive), in the event that a Party wishes to make any Change it shall be managed by way of the “Change Control Procedure” as set forth in this Section 10.1.1.

Upon realization of the need for a Change, either Party shall provide prompt notice to the other Party of a Change request (“Change Control Request”) in writing specifying in as much detail as is reasonably practicable the nature of the proposed Change. Within four weeks of receipt of a Change Control Request, the Party that received such notice shall provide a response indicating whether it can make the proposed Change, its estimated costs of making the proposed Change and an estimated schedule for implementing the proposed Change.

The timing of implementation of any Change will be determined by the Parties.

Where a Change Control Request is in respect of a Mandatory Change, the Parties shall, as soon as reasonably practicable thereafter, meet to discuss and agree the terms on which, and the time frame in which, each Party shall implement that Mandatory Change (which shall be within the time frame required to comply with the relevant Regulation, except where it would not be reasonable for each Party to implement such Mandatory Change within such time frame, in which case each Party shall implement such Mandatory Change as soon as reasonably practicable thereafter). The Parties shall work together in good faith to mitigate the consequences of any delay in implementing the Mandatory Change beyond the date required to comply with the Regulation.

To the extent that a Mandatory Change requested by a Party increases the cost to the Provider (including, for the avoidance of doubt, the costs and appropriate margin of implementing the Mandatory Change and incremental running costs and appropriate margin incurred by the Provider arising as a result of that Mandatory Change), then the increased cost and margin to the Provider will be added to the Charges paid by the Recipient for the relevant Service.

Where a Change Control Request submitted by a Party is in respect of a Discretionary Change, the Parties shall, as soon as reasonably practicable thereafter, meet to discuss the terms of the Discretionary Change, including the payment of costs incurred by the Provider associated with the proposed Discretionary Change. For the avoidance of doubt, the Party being requested to implement a Discretionary Change may refuse to implement any Discretionary Change.

If a Change is required to respond to an Emergency, the affected Party shall use commercially reasonable efforts to notify the other Party and obtain the other Party’s prior consent for the Change but, if the notifying party is the Provider and the Provider is not able to notify the Recipient and obtain consent, the Provider shall be entitled, without limiting any rights and remedies of the Recipient in respect of any breach of this TSA (as if such Change had not been made), to nevertheless make the minimum necessary temporary Change as necessary to respond to the Emergency in accordance with the terms of any applicable disaster recovery plans. As soon as practicable following the implementation of any temporary Change, the Provider shall notify the Recipient of the temporary Change and the nature of the Emergency and shall then retroactively comply with the terms of the Change Control Procedure.

“Emergency” means a Change that is required to ensure: (i) continued provision of, or the continued operation and integrity of the Services; or (ii) the continued operation and integrity of the Provider Systems, in each case the implementation of which cannot wait (including for reasons of stability and performance) for authorization through the Change Control Procedure.

The Parties shall in the first instance attempt to resolve any dispute in relation to any aspect of, or failure to agree any matter arising in relation to, this TSA or any document agreed or contemplated as being agreed pursuant to this TSA (a “Dispute”) informally through discussion as follows:

the representatives will discuss to resolve the Dispute, and if the representatives cannot resolve the Dispute within 10 Business Days of the Dispute being referred to them, then;

the Dispute shall promptly be referred by the representatives to a nominated senior individual of each Party (the “Senior Nominees”), and if the Senior Nominees cannot resolve the Dispute within 10 Business Days of the Dispute being referred to them (unless a longer period is mutually agreed), then;

the dispute resolution process shall be deemed to have been exhausted in respect of the Dispute, and each Party shall be free to pursue its rights at law in respect of such Dispute without further reference to the dispute procedure under this Section 11.1.

The Parties will discuss in good faith, at either Party’s request, measures to shorten the time contemplated by this Section 11 to complete the Dispute resolution process.

The Provider and the Recipient (or their respective licensors) will retain all right, title and interest in or to their respective Intellectual Property Rights.

Each party grants the other party a royalty-free, non-transferable, non-exclusive licence to use the Intellectual Property Rights solely for the purpose of providing or receiving the Services.

Both parties undertake to:

comply with the other party’s reasonable directions (whether oral or written) relating to the manner of the use of the other Party’s Intellectual Property Rights;

only modify the other party’s Intellectual Property Rights with the prior written consent of that other party and then only in the manner and to the extent authorised by that other Party; and

treat all information relating to the other Party's Intellectual Property Rights as confidential in accordance with the terms of Section 13.

Neither Party shall:

sub-license, assign, transfer, charge or otherwise deal in or encumber the other Party’s Intellectual Property Rights or use the other Party’s Intellectual Property Rights on behalf of a third party; or

remove or alter any copyright or proprietary notice on any materials in which the other Party’s Intellectual Property Rights are embodied.

Each Party acknowledges and agrees that, solely to permit it to perform its obligations pursuant to this TSA and the Service Schedule, the other Party may provide it with Confidential Information, including Personal Data. Each Party further acknowledges and agrees that it shall have the right to use the other Party’s Confidential Information, including Personal Data, solely to fulfill and perform its obligations under this TSA and otherwise comply with Regulations that apply to that Party. Regulation in respect of Personal Data may include U.S. federal data privacy laws and regulations such as the GLB Act, the Federal “Privacy of Consumer Financial Information” Regulation (12 CFR Part 30), as amended from time to time, issued pursuant to Section 504 of the GLB Act, and the Health and Insurance Portability and Accountability Act of 1996 (42 U.S.C. § 1320d), U.S. state data privacy laws such as the Massachusetts Data Protection Act (201 CMR 17) and, if applicable, international data privacy laws such as The Data Protection Act 1998 and Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and the free movement of such data. To the extent that the Recipient requires the Provider to comply with any Regulation in respect of Personal Data which does not apply to the Provider at law, then the Recipient shall (i) instruct the Provider of the same under Clause 13.1.2(i) and (ii) provide all reasonable assistance and information to the Provider in order to allow the Provider to comply with the same. Each Party may provide guidelines to help the other Party comply with such Regulation, but each Party using its own legal advisors will remain fully responsible, subject to the Change Control Procedure in respect of any change in Regulation after the date hereof, for interpreting and complying with such Regulation with

Each Party confirms that, when it is processing data, it shall:

only process Personal Data in accordance with the other Party’s instructions; and

take appropriate technical and organizational measures to protect Personal Data against accidental or unlawful destruction or accidental loss, alteration, unauthorized disclosure or access and against all other unlawful forms of processing.

The Parties shall respectively comply with all Regulation, subject to the Change Control Procedure in respect of any change in Regulation after the date hereof, in respect of Confidential Information, including Personal Data, including securing such consents, registrations and notifications as may be required to enable the Provider and any Third Party Suppliers to provide the Services and to enable the Recipient to receive the Services.

The Parties hereby covenant and agree to keep confidential all Confidential Information relating to the other Party. Without limiting the generality of the foregoing, each Party shall cause its employees and agents to exercise the same level of care with respect to Confidential Information relating to the other Party as it would with respect to proprietary information, materials and processes relating to itself. “Confidential Information” shall mean all information, materials and processes relating to a Party, its Affiliates, its employees, third party vendors, counterparties or customers obtained by the other Party at any time (whether prior to or after the date hereof) in any format whatsoever (whether orally, visually, in writing, electronically or in any other form) arising out of the rendering or receipt of Services hereunder (or preparations for the same or for the termination thereof) and shall include, but not be limited to, economic and business information or data, business plans, software and information relating to personnel, products, financial performance and projections, processes, strategies and systems but shall not include information which:

was already in possession of the other Party prior to the date hereof and for which no confidentiality obligation or other restriction on use previously existed;

is or becomes generally available to the public other than by release in violation of the provisions of this Section 13;

is or becomes available on a non-confidential basis to a Party from a source other than the other Party to this TSA, provided that the Party in question reasonably believes that such source is not or was not bound by an obligation to the other Party to hold such information confidential; and

is acquired or developed independently by a Party without use or reference to otherwise Confidential Information of the other Party.

The provisions of Section 13.2.1 shall not prohibit a Party’s disclosure or use of the other Party’s Confidential Information if and to the extent such Confidential Information is made available to or used by the professional advisers or Third Party Suppliers of each Party for the provision or receipt of the Services, provided, however that in each case such professional advisors or Third Party Suppliers are subject to written confidentiality obligations in a form approved by the other Party (such approval not to be unreasonably withheld or delayed).

Each Party shall notify the other Party immediately of any suspected or known fraud relevant to its activities under this TSA or the Service Schedule, or of any unauthorized access, possession, use, or knowledge, or attempt thereof, of the other party's Confidential Information, or of the occurrence of any other incident relating to the Services that could cause financial, customer or reputational loss to another Party, and agrees to cooperate with the other Party to investigate the occurrence and mitigate the impact of such an event. Each Party shall promptly provide the other Party with full details of any such event and use all available efforts to prevent a recurrence of any such event.

Notwithstanding any provision of this Section 13 to the contrary, a receiving Party may disclose such portion of the Confidential Information relating to the disclosing Party to the extent, but only to the extent, the receiving Party reasonably believes that such disclosure is required Regulation or the rules of a Competent Authority or under a subpoena or other legal process; provided that if practicable and permissible under Regulation, or rules, the receiving Party shall first notify the disclosing Party of such requirement and allow such Party a reasonable opportunity to seek a protective order or other appropriate remedy to prevent such disclosure and cooperate with the disclosing Party in any lawful effort by the disclosing Party to contest the legal validity of such requirement and prevent such disclosure.

The Parties agree that monetary damages will not be an adequate remedy if this Section 13 regarding Data Protection and Confidential Information is breached and therefore, a disclosing Party shall, in addition to any other legal or equitable remedies, be entitled to seek injunctive relief against any breach or threatened breach of this Section 13 by the receiving Party with respect to the disclosing Party’s Confidential Information.

The Provider will at all times operate a consistent and generally accepted system of accounting in relation to, and maintain complete and accurate records of, and adequate supporting documents for the Service Records.

The Provider will maintain the Service Records:

in a manner and to a level of detail sufficient to justify the calculation of the Charges and to satisfy the requirements of the Regulation; and

for the period required by the Regulation, and for a minimum of seven years after the Service Records are created.

submit a Change Control Request to extend the time for performance of the affected Service for a period equal to the time lost by reason of the delay, provided

terminate this TSA in relation to those Services which are affected by the          Force Majeure event.

The Parties acknowledge and agree that the Acquired Rights Directive (Council Directive 77/187/EEC as amended by Council Directive 98/50 EEC and consolidated in Council Directive 2001/23/EEC) as amended (“ARD”) or any enactment of the ARD in any national law or any analogous national law will not apply on the commencement of the Services.

The Parties believe that on the cessation or partial cessation of the Services or any part of the Services on the termination, expiry or variation of this TSA, no transfer of the contracts of employment between a Provider or any Third Party Supplier (or any subcontractor thereof) and any of its/their employees to the Recipient or Successor Provider shall take place by reason of the ARD or any enactment of the ARD in any national law or any analogous national law.

Without prejudice to Section 15.1.1, if requested to do so by the Recipient at any time before the termination, expiry or variation of the Services, the Provider will (or will procure that) all persons working on the Services (“Staff”), whether employed/engaged by the Provider, by any Third Party Supplier or any subcontractor thereof, will be redeployed or otherwise removed from the Services before the cessation of those Services so that those Staff cease to be engaged within the Services and are not affected by any transfer pursuant to the ARD or any enactment of the ARD in any national law or any analogous national law that may otherwise occur on the cessation of those Services.

Subject to Regulation, the Provider shall require any individual it employs or engages in connection with the performance of its obligations under this TSA to have satisfied the screening procedures set out in the RBSG Policy for India, prior to such individual performing any Services hereunder:

In the event that:

the Provider is unable to comply fully with the pre-employment requirements above with respect to an individual;

any pre-engagement screening activity returns information that otherwise indicates in the Provider's reasonable judgment that such individual should not be engaged to provide Services under this TSA,

the terms of the response have been approved by the other Party (such consent not to be unreasonably withheld or delayed); or

Regulation requires a response to the Competent Authority without the other Party’s consent.

The Provider shall (and shall use all commercially reasonable efforts to ensure its Third Party Suppliers providing material Services or a material element of the Services shall) promptly permit:

the Recipient or its auditors (to the extent the Recipient and its auditors are directed by a Competent Authority); and

any Competent Authority (or its designated representatives),

Subject to any restriction under Regulation or the direction of any Competent Authority, the Provider shall ensure it is (and shall use all commercially reasonable efforts to ensure its Third Party Suppliers providing material Services or a material element of the Services are) open and cooperative with the Recipient and its auditors and any Competent Authority (and its designated representatives) in performing its obligations under this Section 17.1 and shall provide such information, assistance, records and materials, access to persons engaged in the provision of the Services and explanations as required by the Recipient or its auditors (to the extent the Recipient and its auditors are directed by a Competent Authority) or the Competent Authority (including attending any meetings requested by the Recipient and/or the Competent Authority (or its designated representatives) and providing copies of any internal audit reports which are relevant to the Services). The Recipient shall provide as much notice of the audit as is reasonably practicable. Unless otherwise agreed

If and to the extent the Provider does not have the rights under its relevant Third Party Agreement to ensure its Third Party Supplier grants the rights described in Sections 17.1.1 and 17.1.2, any costs in procuring such rights shall be borne by the Recipient, provided that such costs were approved by the Recipient in writing before they were incurred. If the Recipient declines, or otherwise fails, to approve such costs, the Provider shall not be required to obtain the grant of the relevant rights by that Third Party Supplier.

With respect to the Service Schedule:

The Provider shall, from time to time, but in any event no more than twice in any 12-month period (subject to the exception in Section 17.2.1(ii)), during regular business hours and upon reasonable notice, permit the Recipient or its representatives to perform audits of the Provider’s (and to the extent commercially reasonable, its Third Party Suppliers’) facilities, equipment, books and records (electronic or otherwise), operational systems, employees, contractors, subcontractors, and such other audits as may be necessary to ensure the Provider’s and its Third Party Suppliers’ compliance with the terms and conditions of this TSA and the Service Schedule, as well as Regulation and to ensure the Provider’s financial and operational viability, including but not limited to the Provider’s internal controls, pre-engagement employee screening, information and other security, business resumption, continuity, recovery, Service Level compliance, and contingency plans.

If an audit conducted pursuant to Section 17.2.1 (i) reveals any non-compliance or other deficiencies relating to risks to the Provider’s systems and facilities which could result in the unauthorized destruction, loss, alteration, disclosure of or access to the Recipient’s Confidential Information, then a senior technology executive of the Provider shall promptly meet with a representative of the Recipient to discuss the matter, and the Provider shall promptly take action to remedy the non-compliance or deficiencies and/or resolve the matters addressed by the qualification(s) so that any deficiencies that caused the qualified opinion to be issued are remedied to the Recipient’s reasonable satisfaction (including with respect to the timeline of the remediation). Notwithstanding the limitation on the number of audits in Section 17.2.1(i), the Provider shall permit the Recipient to perform an audit solely to the extent necessary to confirm that any non-compliance or deficiencies identified in an audit conducted pursuant to Section 17.2.1(i) have been remedied.

The Parties acknowledge that the Parties and their respective Affiliates are subject to the international sanction laws and regulations issued from time to time by HM Treasury, the European Union, the United States of America (including, but not limited to, all applicable regulations of the Office of Foreign Assets Control (“OFAC”), the Bank Secrecy Act and the USA Patriot Act (including such regulations that may require the Provider to implement a “Customer Identification Program” or “Know Your Customer Program” to confirm that no beneficiary or client of the Provider appears on any lists issued by OFAC, including the Specially Designated Nationals list, and determine whether transactions by or with such beneficiary or client may constitute suspicious activity, such as identity theft, fraud, money laundering, terrorist financing or other threats to national security)), and the United Nations.

Neither Party shall be obliged to make any payment under, or otherwise to implement any part of the Services, if in the reasonable opinion of the relevant Party to do so is illegal or there is involvement by any person (natural, corporate or governmental) listed in the HM Treasury, the European Union, the United States of America, the United Nations or local sanctions lists, or there is any involvement by any person located in, incorporated under the laws of, or owned or controlled by, or acting on behalf or, a person located in or organized under the laws of a country or territory that is the target of comprehensive sanctions.

A Party may not store, copy, disclose, or use the other Party’s Data for any purpose other than to the extent necessary to provide or receive, as applicable, the Services and to comply with Regulation.

Neither Party shall attempt to obtain access to, use or interfere with any information technology systems or data used or processed by the other Party except to the extent required to do so to provide or receive the Services (as applicable), or except to the extent expressly permitted to do so by this TSA.

Each Party shall maintain reasonable security measures to protect both Parties’ information technology systems, from third parties, and in particular from disruption by any “back door”, “time bomb”, “Trojan Horse”, “worm”, “drop dead device“, “virus” or other software routine intended or designed to (i) permit access or use of information technology systems by a third person other than as authorized by the Recipient or the Provider, or (ii) disable, damage or erase or disrupt or impair the normal operation of the Recipient’s or Provider’s information technology systems.

Each Party shall use reasonably up-to-date security measures to prevent unauthorized access to and unauthorized use of the information technology systems owned by the other Party (or, with respect to a Recipient, any member of the Recipient’s Group and, with respect to a Provider, any member of the Provider’s Group) and the other Party’s data

A Party shall not introduce any Disabling Device into any information technology environment or any system used by the other Party in connection with the Services. Without limiting a Party’s other obligations under this TSA, the Parties agree that, in the event any Disabling Device is found in the systems used to provide the Services, (i) if such Disabling Device originated in any software, deliverable or other resource provided under this TSA or the Service Schedule, the Party that introduced the Disabling Device shall, without prejudice to any other rights and remedies it may have, remove such Disabling Device at its sole expense and (ii) in any case (wherever such Disabling Device originated), the Party that introduced the Disabling Device shall exercise commercially reasonable efforts at no additional charge to eliminate, and reduce the effects of, the Disabling Device and, if the Disabling Device causes a loss of operational efficiency or loss of data, to mitigate such losses and restore such data using generally accepted data restoration techniques.

In addition to its other obligations set forth in this TSA,

whenever the Provider possesses, stores, processes or has access to the Recipient’s Personal Data, it shall comply with the applicable Fraud Prevention Policy; and

whenever the Provider possesses, stores, processes or has access to the Recipient’s Confidential Information (inclusive of Personal Data), it shall comply with the applicable IS Requirements.

Each Party shall make the other aware as soon as reasonably practical of any information security breach which may materially adversely impact the Services or the other Party’s business.

This TSA constitutes the entire agreement between the Parties with respect to the subject matter hereof at the date hereof and supersedes all prior agreements and understandings, both oral or written, between the Parties in relation to the subject matter hereof.

In this Section 20.1, “this TSA” includes all documents entered into pursuant to it and/or this TSA.

The provisions of this TSA shall be binding upon and inure to the benefit of the Parties hereto and their respective successors and assigns. Subject to Section 20.5.2, no Party may assign, delegate or otherwise transfer any of its rights or obligations under this TSA without the prior written consent of the other Party hereto.

The Provider may assign or in any way transfer or dispose of all or any of its rights under or derived from this TSA, or any part of them, to an Affiliate of the Provider.

Any provision of this TSA (including the Service Schedule hereto) may be amended or waived if, but only if, such amendment or waiver is in writing and is signed, in the case of an amendment, by each Party to this TSA, or in the case of a waiver, by the Party against whom the waiver is to be effective.

No failure or delay by any Party in exercising any right, power or privilege hereunder shall operate as a waiver thereof nor shall any single or partial exercise thereof preclude any other or further exercise thereof or the exercise of any other right, power or privilege. The

All notices, requests and other communications to any Party hereunder shall be in writing, (electronic mail (“e-mail”) transmission may be used, provided that a receipt of such e-mail is requested and received), and shall be given:

if to the Provider to:

if to the Recipient to:

If any provision of this TSA or the application thereof to any Party or circumstance is determined by a court of competent jurisdiction to be invalid, void or unenforceable, the remaining provisions hereof or the application of such provision to any of the Parties or circumstances or in jurisdictions other than those as to which it has been held invalid or unenforceable, shall remain in full force and effect and shall in no way be affected, impaired or invalidated thereby, so long as the economic or legal substance of the transactions contemplated hereby is not affected in any manner adverse to any Party. Upon such determination, the Parties shall negotiate in good faith in an effort to agree upon such a suitable and equitable provision to effect the original intent of the Parties.

This TSA may be executed in one or more counterparts, all of which shall be considered one and the same agreement, and shall become effective when one or more counterparts have been signed by each of the Parties and delivered to the other Party. Execution of this TSA or any other documents pursuant to this TSA by facsimile or other electronic copy of a signature shall be deemed to be, and shall have the same effect as, executed by an original signature.

Nothing in this TSA shall constitute or be deemed to constitute a partnership or joint venture between the Parties hereto or constitute or be deemed to constitute any Party the agent or employee of the other Party for any purpose whatsoever and neither Party shall have authority or power to bind the other or to contract in the name of, or create a liability against, the other in any way or for any purpose. The Parties hereto acknowledge and agree that when acting as a Provider, the other Party is an independent contractor in the performance of each and every part of this TSA and nothing herein shall be construed to be inconsistent with this status. Subject to the terms and conditions of this TSA, the Provider shall have the authority to select the means, methods and manner by which any Service is performed.

Each Party agrees that it shall comply with, and that the Services will be performed in accordance with, the Anti-Corruption Laws, subject to the Change Control Procedure in respect of any change in Anti-Corruption Laws after the date hereof, and that it shall not cause, by act or omission, any other Party to be in breach of any Anti-Corruption Laws.

Each Party shall have in place and comply with its own anti-bribery and corruption policy to ensure that it complies with the Anti-Corruption Laws (each such policy, an “Anti-Bribery and Corruption Policy”). If requested, a Party shall provide to the other Party a copy of its Anti-Bribery and Corruption Policy and, if required, the providing Party will explain to the receiving Party how the features set out in its Anti-Bribery and Corruption Policy correspond to the receiving Party’s Anti-Bribery and Corruption Policy. Subject to the Change Control Procedure, the providing Party shall promptly implement any amendments to its Anti-Bribery and Corruption Policy which the receiving Party, acting reasonably, considers necessary following its review of the providing Party’s Anti-Bribery and Corruption Policy to ensure that the providing Party complies with the Anti-Corruption Laws.

Each Party shall review its Anti-Bribery and Corruption Policy on a regular basis and shall promptly implement and notify the other Party of any amendments to its Anti-Bribery and Corruption Policy which it considers necessary for continued compliance with the Anti-Corruption Laws.

Each Party shall cooperate with the other Party and promptly provide any information or confirmation which the other Party requires from time to time in connection with the obligations set forth in this Section 20.13. Each Party acknowledges that the other Party will place reliance upon the information provided.

Each Party shall immediately notify the other Party in writing of any suspected or known breach of its Anti-Bribery and Corruption Policy or any of the Anti-Corruption Laws.

Each Party shall have the right to suspend and/or terminate the Service Schedule for material breach immediately, or on such other time specified by the terminating Party, upon written notice to the Provider under the Service Schedule if: (i) the Provider, or any person employed by it or acting on its behalf (whether with or without the knowledge of such Service Provider) fails to comply with any of the Anti-Corruption Laws or is in material breach of the Provider’s Anti-Bribery and Corruption Policy; or (ii) a Party has a reasonable suspicion that an occurrence as specified in clause (i) of this Section 20.13.6 has occurred.

Regardless of any other provision in this TSA, no Party shall be obliged to do, nor obliged to omit to do, any act which would, in its reasonable opinion, put it in breach of any Anti-Corruption Laws.