A Gartner report says IT procurement workers are “significantly dissatisfied” with the way SaaS vendors define contract language related to security. Vendors “accept little or no financial responsibility for fulfillment of these vague commitments,” report says. Customers should seek to include an array of protective language, such as ability to conduct audits of the vendor’s security measures; vulnerability testing; “ongoing background checks for administrative personnel”; and the ability to do periodic audits;. Customers also need to ask vendors to maintain liability insurance policies naming the customer as a beneficiary.”]