Aivan General terms and Conditions
- These general terms and conditions (the “Terms”) apply to the Agreement between Aivan Innovations ltd. (“Aivan”) and the Customer regarding Aivan's Services. They constitute an appendix to the Agreement and form an integral part of the Agreement. In the event of a conflict between these Terms and the provisions of the Agreement, the provisions of the Agreement shall prevail.
- Aivan may amend the Terms from time to time at its own discretion and shall notify the Customer of such changes at the latest thirty (30) days before such changes enter into force. If the Customer does not accept the changes, the Customer shall notify Aivan hereof within ten (10) days of receipt of the notification. Aivan may then, at its own discretion, terminate the Agreement.
Agreement: The agreement between Aivan and the Customer under which the Customer engages Aivan to supply the Services.
Customer: Aivan’s customer under the Agreement.
Party/Parties: Aivan and/or the Customer.
Aivan: Aivan Innovations Oy.
Services: The Services supplied by Aivan to the Customer under the Agreement.
Working Day: Monday to Friday excluding public holidays in the applicable territory where the Service is provided by Aivan.
Affiliates: Aivan’s officers, directors, employees, agents, service providers, licensors, sub-contractors.
Data protection legislation: the data protection legislation framework applicable to the Controller, including but not limited to the General Data Protection Regulation (EU) 2016/679 (the GDPR) applicable from 25 May 2018. The Data protection legislation is also applicable national law regulating the Processing of Personal Data.
Controller, Data Subject, Personal Data, Processor, Processing, Personal Data Breach, Supervisory Authority and Third Party have the meanings described in applicable Data protection legislation.
3. CUSTOMER'S RESPONSIBILITY
- Aivan will provide the Customer with user names and passwords (log-in credentials) in order for the Customer to gain access to Services provided online (such as the possibility for the Customer view and edit contracts which are stored in the Service). The Customer is responsible for all handling of user names and passwords and undertakes in particular to not disclose the user names and/or passwords to any unauthorized person or otherwise allow any unauthorized person to access the Services under the Customer’s user names and/or passwords. If the Customer has reason to believe that an unauthorized person has gained access to the Customer’s user names and/or passwords the Customer must immediately inform Aivan. The Customer is responsible for ensuring that all the Customer’s personnel comply with the provisions of this section.
- The Customer is responsible for all use of the Services under the user names and/or passwords provided to Customer by Aivan.
- The Customer is responsible for properly configuring and using the Services and taking measures to maintain appropriate security, protection and backup of their Content, Aivan log-in credentials are for Customer’s internal use only and the Customer may not sell, transfer or sublicense them to any other entity or person, except in situation where the customer may disclose their private key to their affiliates performing work on the customer’s behalf.
- The Customer is responsible for the quality of all content provided to Aivan. When using the Services, such as e.g. when uploading content to Aivan’s server, the Customer shall follow instructions provided by Aivan from time to time. Aivan is not liable for any delay or disruption in transmission of content or malfunctions caused by (i) the quality of the content provided to Aivan, (ii) the Customer’s mistake when uploading content (whether in breach of Aivan’s instructions or not), including but not limited to the Customer providing incorrect format information when uploading content or (iii) otherwise by the Customer’s incorrect use of the Services.
- Regardless of delivery method (which may include but is not limited to delivery via e-mail or by the Customer uploading content directly to Aivan’s servers) the transfer of content from the Customer to Aivan is at the Customer’s risk.
- The Customer guarantees that it owns or otherwise controls all necessary rights to the content for the purpose of Aivan providing the Services. The Customer shall indemnify and hold harmless Aivan from any claims regarding infringements of a third party’s rights attributable to the content.
The Customer agrees to not provide Aivan with any content (including but not limited to by uploading content to Aivan’s servers) which (i) contains viruses, corrupted data, malicious software or other programs that may harm computers or other property or (ii) is defamatory, constitutes agitation against an ethnic group, infringes the rights of any third party or is otherwise unlawful. Aivan has the right to immediately remove from Aivan’s servers any content that Aivan in its sole discretion deems is in breach of this section or the Terms otherwise. Aivan shall without undue delay notify the Customer thereof.
4. AIVAN'S RESPONSIBILITY
- If the Parties have entered into a Service Level Agreement (SLA), Aivan’s responsibility for Services is regulated in such SLA. These Terms shall equally apply to such SLA, unless otherwise stated therein.
- If the Parties have not entered into a SLA, Aivan assumes no liability for the accessibility or other functionality of the Services.
- Aivan is not responsible for any disturbances the Services may cause to any other software when the Services are used together with such software or otherwise.
5. Proprietary RIGHTS
- All copyright, patent or other intellectual property rights attributable to the Services are owned by or licensed to Aivan. The Services, and any software included therein, may only be used by the Customer during the Term and as described in the Agreement and may only be copied or otherwise reproduced by the Customer to the extent it is permitted by Aivan in writing.
- Without limiting the generality of the foregoing, in the event that Aivan as part of the Services delivers any services, material or applications tailored for the Customer (“Customer Applications”), Aivan shall be the sole owner of all such Customer Applications and the Customer may only use the Customer Applications during the term of the Agreement. The Customer may not use any Customer Applications upon expiry of the Agreement without Aivan’s prior written consent.
- For clarity, neither Party shall acquire any right under the Agreement to the other Party’s trademarks, product trademarks, distinctive marks and other symbols which are used in connection with the Services and any use of such marks or symbols of the other Party requires such party’s prior written consent.
- The Customer may not use Aivan Product, Service or Technology in any manner or for any purpose other than as expressly permitted by this Agreement. The Customer may not attempt to, (a) modify, alter, tamper with, repair, or otherwise create derivative works of any software included in the Services (except to the extent software included in the Services are provided to you under a separate license that expressly permits the creation of derivative works), (b) reverse engineer, disassemble, or decompile the Services or apply any other process or procedure to derive the source code of any software included in the Services, (c) access or use the Services in a way intended to avoid incurring fees or exceeding usage limits or quotas, or (d) resell or sublicense the Services (except agreed under a separate license that expressly permits the resell or sublicense of Aivan services) . All licenses granted to the Customer in this Agreement are conditional on Customer’s continued compliance this Agreement, and will immediately and automatically terminate if Customer do not comply with any term or condition of this Agreement. During and after the Term, the Customer will not assert, nor will authorize, assist, or encourage any third party to assert, against Aivan or any of Aivan’s affiliates, customers, vendors, business partners, or licensors, any patent infringement or other intellectual property infringement claim regarding any Services the Customer have used.
6. DATA PROCESSING AND PERSONAL DATA
- From data processing viewpoint Aivan is regarded as Processor, Customer as Controller.
- The Processor undertakes to Process Personal Data in accordance with these Terms and the Controller’s instructions as set out below, solely for purposes of providing the services under the Agreement. In addition, the Processor may use the Personal Data and other content that the Customer has stored (Customer Data) in the Service internally under the agreed confidentiality obligations for development purposes to improve and optimize its services to the Customer. Personal Data and other Customer Data may not in any way be processed for any other purposes.
- In addition to the Agreement and these Terms which shall form part of the Controllers instruction, the instructions with respect to the nature and content of the Processing are as follows:
General nature and purpose of the Processing:
The Processor Process Personal Data in accordance with the Agreement and for the purpose of providing the services under the Agreement.
Categories of Data Subjects:
The Controller may submit Personal Data to the Processor which may include, but is not limited to, the following categories of Data Subjects:
- The Controller itself
- Controller end-customers
- Controller employees, other staff and corporate representatives
- Property owners
Categories of Personal Data
The Controller may submit Personal Data to the Processor which may include, but is not limited to, the following categories of Personal Data:
- Personal identification (gender, name, surname, birthplace, citizenship, date of birth, pictures, passport numbers, national identification numbers, marital status, signature)
- Contact information (address, email, phone number)
- Financial information (bank account information, bank statements, credit card number)
- Property information (address, land-register reference
- Device information (Internet Protocol (IP) address, MAC address, domain addresses, recipients of data packages, Cookie information, system logs, website history, account information, geolocation data)
- Employment information (job title, function, name of employer, salary, benefits)
- The Processor shall maintain a record of all categories of Processing activities carried out on behalf of the Controller containing:
the name and contact details of the Processor and of the Controller, and, where applicable, of the Controller's or the Processor's representative, and the data protection officer;
the categories of Processing carried out on behalf of the Controller;
where applicable, transfers of Personal Data to a third country or an international organisation, including the identification of that third country or international organisation;
where possible, a general description of the technical and organisational security measures referred to in Section 6.5.
- The Processor guarantees that is has implemented appropriate technical and organizational measures providing a level of security that is appropriate, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of Processing as well as the risk of varying likelihood and severity for the rights and freedom of the Data Subjects.
- In assessing the appropriate level of security, account shall be taken of the risks that are presented by Processing, in particular from accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Data transmitted, stored or otherwise Processed.
- The Processor shall ensure that any personnel, consultants or other persons entrusted with Processing Personal Data have committed themselves to confidentiality or are under an appropriate statutory obligation of confidentiality. This section shall continue in force after the expiry or termination of the Agreement.
- If the Processor suspects or becomes aware of any Personal Data Breach or any other circumstance, within its own control, in which the Controller or Processor is required to act under applicable Data protection legislation, the Processor shall without undue delay notify the Controller thereof by email or other appropriate means of communication.
- The Processor shall, where appropriate, investigate the Personal Data Breach and take appropriate measures to rectify the breach, identify its root causes and prevent a recurrence.
- The Processor undertakes to assist the Controller by appropriate technical and organisational measures, insofar as this is possible, for the fulfilment of the Controller's obligation to respond to requests for exercising the Data Subject's rights laid down in the Data protection legislation. The Processor shall be entitled to reasonable compensation for its assistance according to this Section 6.10
- Should any Personal Data become subject to search and seizure, an attachment order, confiscation during bankruptcy or insolvency proceedings or similar, the Processor shall inform the Controller immediately by email or other appropriate means of communication. The Processor shall use its best efforts to protect the Controller’s Personal Data and notify the Third Party with access to the Personal Data that the affected Personal Data is confidential information.
- The Controller is entitled to, upon reasonable notice, audit in a manner mutually agreed with the Processor, the Processor’s (and any Sub-processor’s) compliance with these Terms. The Processor shall make available all information necessary to demonstrate compliance with these Terms and shall assist the Controller in such audits. The Processor shall be entitled to reasonable compensation of any audits carried out by the Controller.
- The Processor may Process and transfer Personal Data to a third country outside of the EU. In case of such a transfer, the Processor is responsible for ensuring that the transfer is lawful under the Data protection legislation.
- The Processor may engage Sub-processors for the Processing of Personal Data. The Processor shall inform the Controller of intended changes of Sub-processors in order for the Controller to object to such engagements. Such objections shall not be deemed valid unless the Controller can prove a reasonable cause. The Processor may, at its sole discretion, choose how such a notice should be provided to the Controller. The Processor shall ensure that a data processing agreement is concluded with the Sub-processor which includes obligations on the Sub-processor not less strict than the Processor’s obligations under these Terms. The Processor is fully liable for the performance of any Sub-processors Processing of Personal Data.
- If the Processor receives objections from the Controller regarding changes of Sub-processors according to Section 6.14 or otherwise receives instructions or demands from the Controller, not covered by these Terms, the Processor shall be entitled to reasonable compensation in order to comply with any such objections or instructions.
- The parties agree that where the applicable Data protection legislation changes as a result of legislative, regulatory or judicial developments, thereby altering the parties’ legal rights and/or obligations, or impacting either party’s ability to perform its rights and/or obligations under these Terms, the parties will negotiate in good faith the Terms to comply with the new developments with the goal to continue the commercial relationship between the parties.
- After the termination of the Agreement, the Processor shall delete all Personal Data and other Customer Data, or if requested in writing within fourteen (14) days from termination by the Controller, return them to the Controller, and delete existing copies of it, unless the applicable legislation requires the Processor to store the Personal Data.
- Aivan may change, discontinue, or deprecate any of the Service Offerings (including the Service Offerings as a whole) or change or remove features or functionality of the Service Offerings from time to time. Aivan will notify the Customer of any material change to or discontinuation of the Service Offerings. However, if Aivan changes, discontinues or deprecates its Service Offerings [ any APIs (Application Programming Interface) ] for the Services from time to time, Aivan will use commercially reasonable efforts to continue supporting the previous version of any API changed, discontinued, or deprecated for 12 months after the change, discontinuation, or deprecation (except if doing so (a) would pose a security or intellectual property issue, (b) is economically or technically burdensome, or (c) is needed to comply with the law or requests of governmental entities).
- Aivan may modify this Agreement (including any Appendices) at any time and notify the customer by email and/or written post; The modified terms will become effective upon acknowledgement of receipt of notification. By continuing to use the Services after the effective date of any modifications to this Agreement, the Customer agrees to be bound by the modified terms. It is Customer’s responsibility to verify the changes and revert back to Aivan by email or written notice on disagreement to the modified terms.
8. Fees and PAYMENT TERMS
- The fees shall be set out in the Agreement and Appendices.
- All fees shall be invoiced in the currency set out in the Agreement.
- If an invoice is more than thirty (30) days overdue and the Customer has not paid such invoice within ten (10) days from a reminder, Aivan is entitled to immediately suspend provision of the Services.
- Value added tax will be added to all fees to the extent required by law. In the event that value added tax is not initially charged, Aivan shall be entitled to charge value added tax at a later stage should relevant tax authorities decide that value added tax should be charged.
- For work performed outside Aivan’s ordinary working hours, but after 6 a.m. and before 8 p.m. (GMT+1), on Working Days, the agreed hourly rate shall be multiplied by 1.5 per hour. For work performed at other times outside of Aivan’s ordinary working hours, the agreed hourly rate shall be multiplied by 2.0 per hour.
9. No waivers
- The failure by Aivan to enforce any provision of this Agreement will not constitute a present or future waiver of such provision nor limit Aivan’s right to enforce such provision at a later time. All waivers by Aivan must be in writing to be effective.
- Each Party shall be entitled to terminate the Agreement by written notice with immediate effect if:
(i) the other Party is in material breach of the Agreement and does not remedy such breach (where possible to remedy) within thirty (30) days from written notice thereof,
(ii) the other Party is declared bankrupt, enters into liquidation, commences proceedings for a corporate reconstruction and/or when it otherwise becomes apparent that a Party is insolvent in some other way.
(iii) if Aivan’s relationship with a third party partner who provides software or other technology Aivan uses to provide the Services expires, terminates or requires Aivan to change the way they provide the software or other technology as part of the Services,
(iv) if Aivan believes providing the Services could create a substantial economic or technical burden or material security risk for Aivan,
(v) in order to comply with the law or requests of governmental entities.
11. EFFECT OF TERMINATION
- Upon termination of the Agreement, all rights under this agreement to use Aivan services will immediately terminate.
- Upon termination of the Agreement, Aivan will delete all content provided by the Customer, unless the Customer notifies Aivan otherwise within fourteen (14) days from the termination of the Agreement. The Customer shall compensate Aivan for any additional costs resulting from the Customer's instructions regarding handling of the content.
- Upon termination of the Agreement, the customer is responsible for all fees and payments incurred through the date of termination, including fees and payments for agreed in-process tasks completed after the date of termination.
12. LIMITATION OF LIABILITY
- Aivan shall not be liable for any loss of profits, loss of production, reduced turnover in business and similar costs or losses or any other indirect damages. Aivan shall not be liable for damage caused by the acts or omissions of the Customer. Aivan’s maximum liability for any event is limited to direct damages up to an amount corresponding to one month´s fee for the Services.
- The Customer shall present any claims against Aivan at the latest three (3) months from the date when the Customer discovered, or should have discovered, the reason for the claim.
- If a Party is prevented from fulfilling its commitments in accordance with the Agreement, by circumstances beyond its control that it could not reasonably be expected to have foreseen, and the result of which the Party could not reasonably be expected to have avoided or overcome such as including but not limited to strike, labour conflict, war, warlike hostilities, insurrection or riot, mobilization or general military call-up, civil war, requisition, seizure, fire, lightning, earthquake, flood or water damage, altered decisions by authorities, intervention by authorities, legislation or official restrictions, currency restrictions, export or import restrictions, general shortage of goods, lack of bandwidth and faults or delays in services from a subcontractor, such Party shall be relieved from liability for a failure to perform any obligation under the Agreement.
- Any Party that invokes relief in accordance with the above shall inform the other Party thereof without delay. If the performance of any obligation is prevented for a period longer than three (3) months as a result of any such circumstance stated above, each Party is entitled to terminate the Agreement free from liability to compensate the other Party.
- Aivan shall be entitled to engage subcontractors to fulfil its undertakings under the Agreement. Aivan shall be responsible for all work performed by the subcontractor as though the work had been performed by Aivan.
- Aivan may assign its rights or obligations under the Agreement to an affiliated company or to an entity to which Aivan has transferred its business operations.
- The Customer may only transfer the Agreement subject to Aivan’s prior written consent, which shall not be unreasonably withheld or delayed.
- Each Party undertakes not to disclose to any third party details of the Agreement or information regarding the other Party’s activities which may be deemed as business or professional secrets, without the other Party’s express written consent. Information which the Party states to be confidential will always be deemed to be business or professional secrets. The duty of confidentiality does not include such information which a Party can prove has come to its knowledge other than through the Services, or which is generally known, nor does the duty of confidentiality apply where a Party is obligated under law to supply the information.
- Each Party undertakes to supervise that employees or other engaged persons do not convey confidential information to any third party.
- The duty of confidentiality shall apply during the Term of this agreement and three (3) years thereafter.
- All PR, public announcements and marketing with respect to the Agreement shall be jointly approved by the Parties. Aivan shall however be entitled to publish the Customer's name and logotype on its website and to refer to the Customer as Aivan’s customer in marketing and promotion material.
- The customer will defend, indemnify, and hold harmless Aivan, Aivan’s affiliates and licensors, and each of their respective employees, officers, directors, and representatives from and against any claims, damages, losses, liabilities, costs, and expenses (including reasonable legal fees) arising out of or relating to any third party claim concerning: (i) the Customer’s use of the Services (including any activities under Customer’s Aivan account and use by Customer’s employees and personnel); (ii) breach of this Agreement or violation of applicable law by the Customer; (c) Customer’s Content or the combination of Customer’s Content with other applications, content or processes, including any claim involving alleged infringement or misappropriation of third-party rights by Customer’s Content or by the use, development, design or production of Customer’s Content; or (iv) a dispute between the Customer’s and any of their contract parties. If Aivan or Aivan’s affiliates are obligated to respond to a third party legal claims or other compulsory legal order or process described above, the Customer will also reimburse Aivan for reasonable legal fees, as well as Aivan’s employees’ sub-contactors’ and affiliates’ time and materials spent responding to the third party legal claims or other compulsory legal order or process at Aivan’s then current hourly rates.
- Any notice given by one Party to the other shall be deemed properly given if specifically acknowledged by the receiving Party in writing (e-mail is sufficient provided it comes from an official account) or when delivered to the receiving Party by hand, registered mail or courier during normal business hours.
20. GOVERNING LAW AND DISPUTES
- This Agreement and any non-contractual obligations arising out of or in connection with it shall be governed by substantive Finnish law, excluding the choice-of-law principles.
- Any dispute, controversy or claim arising out of or in connection with the Agreement or any non-contractual obligation arising out of or in connection with the Agreement shall be finally settled by arbitration administered by the Arbitration Institute of the Finland Chamber of Commerce. The place of arbitration shall be Helsinki, Finland. The language used in the proceeding shall be English, unless the Parties agree otherwise.
- The Rules for Expedited Arbitrations shall apply where the amount in dispute does not exceed EUR 100,000. Where the amount in dispute exceeds EUR 100,000 the Arbitration Rules shall apply. The Arbitral Tribunal shall be composed of a sole arbitrator where the amount in dispute exceeds EUR 100,000 but not EUR 1,000,000. Where the amount in dispute exceeds EUR 1,000,000, the Arbitral Tribunal shall be composed of three arbitrators.