Note: We reserve the right to limit Hybrid Backup & Recovery Cloud usage under all Service Plans if we determine there is activity or usage in a manner that: (i) adversely impacts OSP; (ii) results in excessive bandwidth or storage usage; or (iii) harms, disrupts, or otherwise diminishes the OSP brand, services, network, or any computer system.
1.1.2
Cloud Server BackUp.1.1.2.1 At Customer’s sole discretion Customer shall schedule Data Backup to the Provider’s Cloud, and Customer has the obligation to verify that each Data Backup is successfully completed. On a monthly basis, OSP may rent Customer a Local Device for Customer Data Backup and related third party software so that the Customer may manage Data Backup to the Local Device. Customer agrees to be solely responsible for performing and testing restores of Data Backup to the Provider’s Cloud.
1.1.2.2 Customer shall responsible for encryption of all Data, and solely responsible to maintain and protect encryption keys.
1.1.3.
Stratus Endpoint Cloud BackUp. Based on an agreed policy Customer shall provide OSP a schedule of devices, and Customer shall provide OSP access to Customer’s Mobile Devices including laptops, tablets, smartphones, and desktop personal computers to permit backup access to OSP’s Cloud Servers and encryption based on the specific levels requested by Customer. Authorized Customer representatives shall make written request to access to backup data from and to remotely wipe Mobile Devices based on the appropriate fee schedule. Customer may choose a global deduplication option based on the fee schedule for such services.
1.1.4 Managed Backup and Recovery1.1.4.1 On a monthly basis OSP may rent Customer a Local Device for Customer Data Backup and related third party software so that Customer may manage Data Backup to the Local Device. Upon termination of Services under this ToS, the Customer shall return the Local Device within 10 business days, or pay OSP the current price of the Local Device.
1.1.4.2 OSP will conduct a daily review of all Customer Data Backup, and in the event that OSP identifies an issue with a daily Customer Data Backup, then OSP shall review the Local Device, software, and Customer Data and initiate steps to remediate each issue. In the event that OSP identifies a problem its remediation efforts, OSP will further escalate to resolve the issue as expeditiously as is reasonable in the circumstances.
1.1.4.3 Customer shall be responsible to promptly notify OSP immediately of all circumstances that occur in the Customer’s Data Backup environment that may impact backup and recovery of Customer Data Backup, including, without limitation, adding servers, removing servers, internal connectivity, and the like.
1.1.4.4 OSP passes through to Customer all third party warranties and indemnities for software used in conjunction with the Local Devices.
1.1.4.5 The manufacturer of the Local Device warranty does not cover Local Devices that have defects or failures resulting from 1) accident, neglect or abuse; 2) improper installation or maintenance; or 3) modifications, repairs, improvements, or any other changes to any software or hardware component of the Local Devices that have not been authorized in writing by OSP.
1.1.4.6 THE SOLE AND EXCLUSIVE REMEDY FOR BREACH OF THIS WARRANTY WILL BE TO REPAIR, REPLACE, OR ISSUE A CREDIT FOR A DEFECTIVE LOCAL DEVICE AT OSP’S OPTION. THIS WARRANTY IS THE SOLE AND EXCLUSIVE WARRANTY GIVEN BY OSP AND IS IN LIEU OF ALL OTHER WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO IMPLIED WARRANTIES OF MERCHANTABILITY, TITLE, NON-INFRINGEMENT OR FITNESS FOR A PARTICULAR PURPOSE, EACH OF WHICH IS HEREBY EXPRESSLY DISCLAIMED TO THE FULLEST EXTENT PERMITTED BY APPLICABLE LAW.
1.1.5 Offsite Tape Vaulting.OSP agrees to provide to Customer storage of Customer’s magnetically recorded computer tapes, cartridges, diskettes, disk packs, Microfiche, and computer film (all of such items herein collectively called the “BackUp Tapes”) within OSP’s climate controlled premises. Also Provider may provide courier services to retrieve from and deliver to Customer the BackUp Tapes to be stored by OSP. OSP shall track all BackUp Tapes with a unique UPC (“Universal Product Code”) identifier. All deliveries from Customer to Provider shall be FOB Destination and Customer assumes all liability while in transit to Provider’s offices, and all deliveries from Provider to Customer shall be FOB Origin and Customer assumes all liability while in transit to Customer’s offices.
1.1.5.1 OSP will accept requests for deposits and withdrawals of BackUp Tapes for storage only from those individuals authorized by the Customer on a written form provided by the OSP. The Customer must provide notice in writing on a form provided by OSP in the event that Customer desires to revoke the deposit or withdrawal authority of any officer or agent of Customer. OSP will have no liability to Customer or anyone else as a result of any action of any agent prior to OSP’s receipt of written notice of the revocation of such agent’s authority. Customer will be the sole owner of all BackUp Tapes tendered for storage and will not tender any illegal or dangerous materials.
1.1.5.2 Customer shall not have access to the BackUp Tapes while stored with OSP, and OSP will accept requests for deposits and withdrawals of BackUp Tapes for storage only from those individuals authorized by the Customer on a written form provided by the OSP. The Customer must provide notice in writing on a form provided by OSP in the event that Customer desires to revoke the deposit or withdrawal authority of any officer or agent of Customer. OSP will have no liability to Customer or anyone else as a result of any action of any agent prior to OSP’s receipt of written notice of the revocation of such agent’s authority. Customer will be the sole owner of all BackUp Tapes tendered for storage and will not tender any illegal or dangerous materials.
1.1.6
Video Tape & Film Archiving. OSP agrees to provide to Customer archiving and storing Customer’s magnetically recorded Video Tape and Films within OSP’s climate controlled premises. Also Provider may provide courier services to retrieve from, and deliver to, Customer the Video Tape and Films to be stored by OSP. OSP shall track all Video Tape and Films with a unique UPC identifier. All deliveries from Customer to Provider shall be FOB Destination and Customer assumes all liability while in transit to Provider’s offices, and all deliveries from Provider to Customer shall be FOB Origin and Customer assumes all liability while in transit to Customer’s offices.
1.1.7
Data Destruction. Based on an agreed Schedule of devices, OSP will destroy and provide written certification of the destruction of any magnetic devices including, without limitation, computer hard drive, SSD (“Solid State Disk”), Tape, CD, Cell Phone, or any media type.
1.1.8
Colocation Services.OSP shall provide the following:
1.1.8.1 Generator. OSP shall provide one (1) 100KV 480v Diesel Generator sized to support the entire space and associated systems or equipment at 100% of total load for 24 hours at full load. A minimum output of 400kw must be available for the A/C systems. All engine fluids and fuels will be maintained at optimum operating levels including a 24-hour fuel supply.
1.1.8.2 Air Conditioning. The initial system should provide a minimum of 20 tons of cooling. Temperature within the Site shall be maintained at 67-75 degrees F. Relative Humidity within the Site shall be maintained at 50% +/- 5%.
1.1.8.3 Fire Protection. FM-200 or Halon-1401 suppressant system.
1.1.8.4 Raised Floor. Site to be built on a 6” raised floor capable of supporting a minimum of 200 pounds (“lbs”) per square foot static load.
1.1.8.5 Security. Site will be physically secured and centrally monitored on a 7 X 24 X 365 basis. OSP will provide positive security systems using cameras and badge readers for the Premises to authenticate, grant access and monitor the full facility and all personnel requiring access to the Customer Site including all critical supporting systems and equipment rooms. Identification, access approval and monitoring, either in person or by electronic systems, will be provided by OSP or an appropriate contractor selected at OSP’ sole discretion. A written list of approved personnel, requiring access to the Customer Site, will be provided to OSP and timely updated as necessary by the Customer.
1.1.8.6 Connection. OSP will allow the Customer access to its carriers located in each of the Facilities. Any charges, including one-time installation and recurring power charges will be borne by the carriers or Customers.
1.1.8.7 Water Detection. Under floor water detection, will be part of the facilities monitoring infrastructure provided by OSP.
1.1.8.8 Premises Maintenance. Preventive and emergency maintenance and repair on Premises HVAC, Generators, UPS, Batteries and Fire Suppression – on a daily/weekly/monthly/quarterly basis as required.
1.1.8.9 Installation Charges. Customer shall pay to OSP, for connection of the Equipment to the distribution points of the UPS and to other electrical receptacles, which may not originate at the foregoing distribution points, and for all other services requested by Customer, which OSP contracts to others, a fee equal to the time and materials of OSP contractors and subcontractors, plus 20%. Customer shall pay such fee within 30 days of invoicing by OSP.
1.1.8.10 Smart Hands. With the written agreement of OSP, on a fee basis Customer may specifically request that OSP provide OSP staff to perform functions within the Colocation, including, without limitation, reset switches, restarting Customer equipment, removal of backup tapes, loading new backup tapes, and report of observations of Customer equipment.
1.1.8.11 Other Available Services. Other services provided by OSP shall be available to Customer on a fee basis, which shall be quoted separately upon receipt of written request from Customer and shall further subject to final mutual written approval. Such services include but are not limited to:
- On-site management
- Alternative lines
- In-house technical support
- Shared PBX
- Project management support
1.1.9
Hosted Syslog Backup. (
www.manageengine.com)
At Customer’s sole discretion, based on the fee schedule provided to Customer, Customer shall configure devices to send syslog data to the Provider’s hosted log aggregation and backup service. Customer has the obligation to verify that each device is configured correctly to communicate with the Providers cloud infrastructure and is sending syslog data to Provider. Customer agrees to be solely responsible for testing recovery of syslog data sent to the Provider’s cloud infrastructure.
1.1.9.1 Customer is solely responsible for monitoring data being logged and Provider has no responsibility to monitor logs for errors, security alerts, debug information, or any other events transmitted to the Provider under this service.
1.1.9.2 Customer agrees that the device count for the syslog service includes devices, which may no longer be in service, if Customer wishes to maintain data that was logged prior to retiring the device.
1.1.9.3 For computer systems running native syslog services, no additional software is provided or necessary to provide the service
1.1.9.4 For computer systems running Microsoft Windows based operating systems, Provider will license to Customer software capable of transmitting Microsoft Windows event logs to Provider’s cloud infrastructure.
1.1.10
G Suite Backup and Office 365 Backup (
www.backupify.com).
Customer agrees to the terms of the Datto’s Backupify Terms of Use (“Terms”) found at
https://www.backupify.com/backupify-terms-of-use for Backupify’s Backup Products for G Suite and Office 365 and your Backedup Data, means the data and content that Customer designates for copying, backup and use with Backupify’s Product.
1.1.10.1 You represent and warrant that You are acting as an agent of the Customer and You have the full authority to agree to Backupify’s Terms of Use with respect to access, use and support of the Backupify Product and Backedup Data. You agree to obtain Customer’s authorization and comply with Customer’s instructions at all times with respect to use of the Backupify Product and access to and management of Backedup Data, transition of Backupify Product or Backedup Data to a different Administrator, and transition assistance and cooperation upon termination or expiration of any relationship between or among an Administrator, Customer and us.
1.1.10.2 Additional Data Processing Terms. A Product may be configured to designate the geographic region where Backedup Data associated with the Backupify Product is stored. Backupify’s European Data Processing Addendum (“DPA”) (
https://www.backupify.com/european-data-processing-addendum) is incorporated into Backupify’s Terms of Use if a Backupify Product is configured to store Backedup Data in the European Economic Area.
1.1.10.3 Customer, for itself and its Users, authorizes us to access and interact with the Backedup Site to retrieve Backedup Data and grants us a limited, royalty-free, non-exclusive, assignable license to use, copy, reformat, display, disclose and distribute the Backedup Data solely for providing the Backupify Product as described in Backupify’s Terms of Use, including as authorized by an Administrator for support, and as described in Backupify’s Privacy Policy (
https://www.datto.com/legal/privacy-policy).
1.1.10.4 Customer acknowledges and agrees that Datto Affiliates may be retained as Subprocessors and that Datto and its Affiliates respectively may engage third party Subprocessors as needed to provide a Product. Customer hereby consents to the use of Subprocessors as described in this section.
1.1.10.4.1 A current list of Subprocessors for the Product will be available at www.datto.com/subprocessors. Datto will provide prior notification, by updating the list of Subprocessors and/or providing notice in the applicable Product management portal, of a new Subprocessor before authorizing such new Subprocessor to have access to Customer’s Personal Data in connection with the provision of the applicable Product.
1.2
Console. As part of receiving the Services of the Provider, Customer will have access to the Admin Console, through which Customer may administer the Services.
1.3
Facilities and Data Transfer. All facilities used to store and process an Application and Customer Data will adhere to reasonable security standards no less protective than the security standards at facilities where Provider processes and stores its own information of a similar type. Provider has implemented at least industry standard systems and procedures to ensure the security and confidentiality of an Application and Customer Data, protect against anticipated threats or hazards to the security or integrity of an Application and Customer Data, and protect against unauthorized access to or use of an Application and Customer Data. Except as set forth in the Service Specific Terms, Provider may process and store an Application and Customer Data in the United States (“U.S.”) or any other country in which Provider or its agents maintain facilities. By using the Services, Customer consents to this processing and storage of an Application and Customer Data. Under this Agreement, Provider is merely a data processor.
1.4
Accounts. Customer must have an Account to use the Services, and is responsible for the information it provides to create the Account, the security of its passwords for the Account, and for any use of its Account. If Customer becomes aware of any unauthorized use of its password, its Account, Customer will notify Provider as promptly as possible.
1.5
New Applications and Services. Provider may: (i) make new applications, tools, features or functionality available from time to time through the Services and (ii) add new services to the “Services” definition from time to time (by adding them at the URL set forth under that definition), the use of which may be contingent upon Customer’s agreement to additional terms.
1.6
Modifications.
- To the Services. Subject to Section 8.4, Provider may make commercially reasonable Updates to the Services from time to time. If Provider makes a material change to the Services, Provider will inform Customer, provided that Customer has subscribed with Provider to be informed about such change.
- To the Agreement. Provider may make changes to this Agreement, including pricing (and any linked documents) from time to time. Unless otherwise noted by Provider, material changes to the Agreement will become effective 30 days after they are posted, except if the changes apply to new functionality in which case they will be effective immediately. If Customer does not agree to the revised Agreement, please stop using the Services. Provider will post any modification to this Agreement to its website.
2. Payment Term2.1.
Service Fees. Provider calculates and bill fees and charges monthly. Provider may bill you more frequently for fees accrued if Provider suspects that your account is fraudulent or at risk of non-payment. You will pay us the applicable fees and charges for use of the Service Offerings as described on the Provider Site using a credit card Provider supports. All amounts payable under this Agreement will be made without setoff or counterclaim, and without any deduction or withholding. Fees and charges for any new Service or new feature of a Service will be effective when Provider posts updated fees and charges on the Provider Site unless Provider expressly states otherwise in a notice. Provider may increase or add new fees and charges for any existing Services by giving you at least 30 days’ advance notice. Provider may charge you interest at the rate of 1.5% per month (or the highest rate permitted by law, if less) on all late payments.
2.2
Taxes. All fees and charges payable by you are exclusive of applicable taxes and duties, including VAT and applicable sales tax. You will provide us any information Provider reasonably requests to determine whether we are obligated to collect VAT from you, including your VAT identification number. If you are legally entitled to an exemption from any sales, use, or similar transaction tax, you are responsible for providing us with legally-sufficient tax exemption certificates for each taxing jurisdiction. Provider will apply the tax exemption certificates to charges under your account occurring after the date Provider receives the tax exemption certificates. If any deduction or withholding is required by law, you will notify us and will pay us any additional amounts necessary to ensure that the net amount that Provider receives, after any deduction and withholding, equals the amount Provider would have received if no deduction or withholding had been required. Additionally, you will provide Provider with documentation showing that the withheld and deducted amounts have been paid to the relevant taxing authority.
2.3
Invoice Disputes & Refunds. To the fullest extent permitted by law, Customer waives all claims relating to Fees unless claimed within 60 days after charged (this does not affect any Customer rights with its credit card issuer). Refunds (if any) are at the discretion of Provider and will only be in the form of credit for the Services. Nothing in this Agreement obligates Provider to extend credit to any Party.
2.4
Delinquent Payments. Late payments may bear interest at the rate of 1.5% per month (or the highest rate permitted by law, if less). Provider reserves the right to suspend Customer’s Account, for any late payments.
3. Customer Obligations.3.1
Compliance. Customer is solely responsible for its Applications, Projects, and Customer Data and for making sure its Applications, Projects, and Customer Data comply with the AUP. Provider reserves the right to review the Application, Project, and Customer Data to ensure Customer’s compliance with the AUP. Customer is responsible for ensuring all End Users comply with Customer’s obligations under the AUP, the Service Specific Terms, and the restrictions in Sections 3.3 and 3.5 below.
3.2
Privacy. Customer will protect the privacy and legal rights of its End Users under all applicable laws and regulations, which includes a legally adequate privacy notice communicated from Customer. Customer may have the ability to access, monitor, use, or disclose Customer Data submitted by End Users through the Services. Customer will obtain and maintain any required consents from End Users to allow Customer’s access, monitoring, use and disclosure of Customer Data. Further, Customer will notify its End Users that any Customer Data provided as part of the Services will be made available to a third party as part of Provider providing the Services.
3.3
Restrictions. Customer will not, and will not allow third parties under its control to: (a) distribute bulk email, unsolicited commercial email, or any form of spam or phishing emails; (b) copy, modify, create a derivative work of, reverse engineer, decompile, translate, disassemble, or otherwise attempt to extract any or all of the source code of the Services (subject to Section 3.4 below and except to the extent such restriction is expressly prohibited by applicable law); (c) use the Services for High Risk Activities; (d) sublicense, resell, or distribute any or all of the Services separate from any integrated Application; (e) create multiple Applications, Accounts, or Projects to simulate or act as a single Application, Account, or Project (respectively) or otherwise access the Services in a manner intended to avoid incurring Fees; (f) unless otherwise set forth in the Service Specific Terms, use the Services to operate or enable any telecommunications service or in connection with any Application that allows End Users to place calls or to receive calls from any public switched telephone network; or (g) process or store any Customer Data that is subject to the International Traffic in Arms Regulations maintained by the Department of State. Unless otherwise specified in writing by Provider, Provider does not intend uses of the Services to create obligations under HIPAA, and makes no representations that the Services satisfy HIPAA requirements. If Customer is (or becomes) a Covered Entity or Business Associate, as defined in HIPAA, Customer will encrypt all Customer Protected Health Information (as defined in HIPAA) in transit and at rest and Provider shall have no obligation to verify Customer's compliance with its of encryption of Customer's Protected Health Information.
3.4
Third Party Components. Third party components (which may include open source software) of the Services may be subject to separate license agreements. To the limited extent a third party license expressly supersedes this Agreement, that third party license instead governs Customer’s agreement with Provider for the specific included third party components of the Services, or use of the Services (as may be applicable).
3.5
Documentation. Provider may provide Documentation for Customer’s use of the Services. The Documentation may specify restrictions (e.g. attribution or HTML restrictions) on how the Applications may be built or the Services may be used and Customer will comply with any such restrictions specified.
3.6
Digital Millennium Copyright Act (“DMCA”) Policy. Provider provides information to help copyright holders manage their intellectual property online, but Provider cannot determine whether something is being used legally or not without their input. Provider responds to notices of alleged copyright infringement and terminates accounts of repeat infringers according to the process set out in the U.S. DMCA. If Customer thinks somebody is violating Customer’s or its End Users’ copyrights and wants to notify Provider, Customer can email Provider at
support@Onesafeplace.com and provide all pertinent information.
3.7
Application and No Multiple Accounts, Bills. Any Application must have material value independent from the Services. Provider has no obligation to provide multiple bills, or Accounts to Customer under the Agreement.
4. Suspension and Removals.4.1
Suspension/Removals. If Customer becomes aware that any Application, Project (including an End User’s use of a Project), or Customer Data violates the AUP, Customer will immediately suspend the Application or Project (if applicable), remove the applicable Customer Data or suspend access to an End User (as may be applicable). If Customer fails to suspend or remove as noted in the prior sentence, Provider may specifically request that Customer do so. If Customer fails to comply with Provider’s request to do so within 24 hours, then Provider may suspend Provider accounts of the applicable End Users, disable the Project or Application, and/or disable the Account (as may be applicable) until such violation is corrected.
4.2
Emergency Security Issues. Despite the foregoing, if there is an Emergency Security Issue, then Provider may automatically suspend the offending, Application, Project, or End User Account. Suspension will be to the minimum extent required, and of the minimum duration, to prevent or terminate the Emergency Security Issue. If Provider suspends an End User account, Application, Project, or the Customer Account, for any reason, without prior notice to Customer, at Customer’s request, Provider will provide Customer the reason for the suspension as soon as is reasonably possible.
5. Intellectual Property Rights; Use of Customer Data; Feedback.5.1
Intellectual Property Rights. Except as expressly set forth in this Agreement, this Agreement does not grant either Party any rights, implied or otherwise, to the other’s content or any of the other’s intellectual property. As between the Parties, Customer owns all Intellectual Property Rights in Customer Data and the Application or Project (if applicable), and Provider owns all Intellectual Property Rights in the Services and Software.
5.2
Use of Customer Data. Provider may use Customer Data and Applications only to provide the Services to Customer and its End Users and to help secure and improve the Services. For instance, this may include identifying and fixing problems in the Services, enhancing the Services to better protect against attacks and abuse, and making suggestions aimed at improving performance or reducing cost.
5.3
Customer Feedback. If Customer provides Provider feedback or suggestions about the Services, then Provider may use that information without obligation to Customer, and Customer hereby irrevocably assigns to Provider all right, title, and interest in that feedback or those suggestions.
6. Technical Support Services.6.1
By Customer. Customer is responsible for technical support of its Applications and Projects.
6.2
By Provider. Subject to payment of applicable support Fees, Provider will provide Technical Support Services (“TSS”) to Customer during the Term as described below. Certain TSS levels include a minimum recurring Fee as described in the “Fees” definition below. If Customer downgrades its TSS level during any calendar month, Provider may continue to provide TSS at the same level and TSS Fees before the downgrade for the remainder of that month.
6.2.1
Support Request Submission.6.2.1.1 Customer Efforts to Fix Errors. Prior to making a request to Provider, Customer will use reasonable efforts to fix any error, bug, and malfunction or network connectivity defect without escalation to Provider. Thereafter, a Customer Contact may submit a written request for technical support through the Provider for Work Support Center.
6.2.1.2 Characterization of Requests. Customer designates priority upon submission of Requests. Upon receiving a request, Provider will determine whether the request is a “Service Unusable,” “Standard Request” or a “Feature Request.” Any such determination made by Provider is final and binding on Customer. Provider reserves the right to change Customer’s priority designation if Provider believes that Customer’s designation is incorrect and will inform Customer of any such change in its response to the support Request. Customer may appeal any such reclassification to Provider’s Support management for review through any available support channel.
6.2.1.3 Procedures for Acknowledgement and Resolution of Requests. When making a Request, Customer will provide all requested diagnostic information and assist Provider Support Personnel as may be required to resolve a Request.
6.2.1.4 Request Acknowledgement. Provider may respond to a Request by acknowledging receipt of the Request. Customer acknowledges and understands that Provider may be unable to provide answers to, or resolve all, Requests.
6.2.1.5 Feature Requests. If Provider deems a Request to be a Feature Request, Provider will log such Request for consideration to add to a future update or release of the Services and will consider the matter closed. Provider is under no obligation to respond to or resolve any Feature Request or to include any such Feature Request in any future update or release.
6.2.1.6 Building Applications. For clarity, Provider will not have any obligation to write or build any Applications or write code to facilitate Applications.