WebPros Legal
WEBPROS PRIVACY POLICY
v.6 – Updated July 11th, 2024
WebPros Investments S.à r.l., Luxembourg (hereinafter “WebPros”), as the parent company of all affiliates and subsidiaries of the WebPros group of companies, is responsible for the operation of this group website.
This WebPros Privacy Policy is deemed to demonstrate that our visitors’, partners’ and customers’ (collectively “you” or “your”) privacy is one of WebPros’ cardinal objectives, especially when using any WebPros services or accessing this website. It sets forth the manner and legal commitments which WebPros agrees to maintain in collecting, processing and (where applicable) disclosing information about users of this website.
By using the WebPros website, our products and/or services (collectively referred to as “Offerings”) you agree to the practices described in this Privacy Policy.
Collection of Information
WebPros gathers information in most of its interactions with you, whether directly or indirectly. Although some of the information may be considered as “Personal Data”, most of the gathered information is not Personal Data. Personal Data is defined as information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context.
WebPros has taken extensive safety and operational precautions, including administrative, physical and technical safeguards to protect personal information. Furthermore, WebPros deploys commercially reasonable safeguards across the company databases to prevent unauthorized access, disclosure or loss of personal information.
Where information is provided to WebPros for the purpose of the establishment or maintenance of a contractual relationship, WebPros processes your data on the basis of Article 6 I b) GDPR. In all other cases, your data is processed on basis of and in accordance to your explicit consent as required by Article 6 I a) GDPR or a legitimate interest on basis of Article 6 I f) GDPR.
Information received from you directly
WebPros collects and stores information during the registration of products, the creation of online profiles, the application via our Offerings and any contact for support or other matters (e.g. contact or comment forms, telephone contact). Examples of information transmitted by you:
- Name, address, phone number, email address
- IP addresses
- Billing and other purchasing and shipping information;
- Records of transactions, including purchases, inquiries and service requests;
- Authentication data such as username and password to verify access.
- Application Data, CVs, profiles, pictures (additional Job Applicant Data Policy in place)
WebPros does not collect or process any credit card data during purchases. Any credit card purchase is made through a reliable and secure, external online payment processor (third-party controller), with the result that WebPros is never furnished with your sensitive credit card information.
In order to provide its Offerings or fulfill its contractual obligations to you, WebPros may be required to forward data which may include some of your personal information to third parties. In order to follow the requirements of data minimization, the data so transferred is reduced to the necessary minimum. Those suppliers or subcontractors are required to adhere to a data processing agreement with WebPros under which they are committed to process data solely in accordance with the applicable laws (including the GDPR and other national privacy laws) and in accordance to WebPros instructions. This processing includes a required screening of your provided data against international export and economic sanctions lists by WebPros. A negative (no match) screening result is a mandatory requirement for WebPros to communicate with, deal with, do business with or provide any form of services to you. The WebPros “Export and Sanctions Compliance Policy” applies, accordingly.
WebPros has an extensive data protection policy in place across its organization, which every WebPros employee or contractor must adhere to at all times. Such data protection policy sets forth the mandatory way, information is expected to be handled within WebPros and describes the necessary internal processes and the required level of confidentiality to be maintained in order to be compliant with national and international data protection laws (like e.g. GDPR).
WebPros strives to comply with the concept of data minimization (“privacy by default”) by only collecting as much information as needed for the intended and approved purpose. Only information which is relevant to such purpose and which has been provided to WebPros in free and informed manner by you as the data subject will be processed by WebPros for as long as needed for the purpose. Thereafter, any Personal Data is subject to defined deletion routines as defined in WebPros’ record of processing activities, created and maintained in accordance to Article 30 of the GDPR.
Information Collected Automatically
WebPros may automatically collect and store information about how users utilize the WebPros Offerings. This may include anonymized IP addresses of website visitors, browser type and other information such as search terms, which helps us to improve our Offerings to provide you with the best possible services and user experience. Any so collected data which may be considered as Personal Data is subject to immediate anonymization upon its collection with the result that the automatically collected data will not allow WebPros or any other party to identify you.
Data Protection for Minors
The WebPros Offerings as well as its contents, services and offers are not directed at children or minors. Accordingly, WebPros does not want and does not assume that any information collected on WebPros Offerings or any forum will be personal data pertaining to children or minors. Any data which is identified as belonging to a child or minor is subject to immediate deletion.
Is my data secure at WebPros?
WebPros has implemented appropriate technical and organizational measures related to the respective processing purpose in order to protect the Personal Data provided by you against abuse and loss. Personal Data and other information about you is stored in a secure operating environment that is not accessible to the public.
Any data transmission performed by WebPros is encrypted during transmission via SSL.
In addition, each of WebPros’ employees is contractually bound by comprehensive confidentiality and non-disclosure terms and is further required to abide by the WebPros data protection policy at all times.
What are my rights?
You have the following rights in respect to the Personal Data you provide to WebPros:
- You may at any time request WebPros to delete the data you provided or withdraw any data processing consent you provided to WebPros by contacting [email protected].
- You may further limit the scope of processing to certain processing activities or request a correction of your data.
- You have the right to be informed about where, for which purpose and for how long which data is collected by WebPros. You may at all times request to receive such information in a structured, commonly-used and machine-readable format to transfer your data to another data controller.
- In the unlikely case that WebPros may, in your reasonable discretion, not comply with the applicable data protection law, you have the right to file a complaint directed at the competent regulatory authority.
WebPros may ask you to provide a proper identification of yourself before performing any Personal Data-related action to avoid misuse.
Is my data shared with third parties?
In order for WebPros to execute its business processes in an optimal manner, it may be necessary for certain data to be processed by trusted 3rd parties and reliable partners. These 3rd parties may
- process payments
- fulfill orders
- send email
- manage communication (e.g. newsletters, security notifications, chat)
- website hosting
- store customer information (CRM)
- monitor and report on usage, reliance, availability or performance of our Offerings
- conduct other related activities
on behalf of WebPros. However, WebPros only shares such information needed to serve the specific purpose for which the 3rd parties were engaged. WebPros ensures that these 3rd parties are under similar obligations to maintain privacy and confidentiality as WebPros’ own employees are and that they will handle your information in the way and to the extend as WebPros itself is permitted to. WebPros does not allow any 3rd party to use your information for any purposes for which the information was not collected.
WebPros will only disclose your Personal Data abroad, if it is necessary for the intended purpose of processing. However, as a member of the worldwide WebPros group of companies, local WebPros entities may maintain or perform data processing operations in countries in- or outside the EEA or in countries without an adequate level of data protection, if it is required for the fulfillment of our obligations or the underlying agreement with you. Furthermore, subcontractors of WebPros which WebPros engages to act on its behalf in respect to the processing of your Personal Data may be domiciled in such areas.
In order to secure such transfer and processing in accordance to chapter 5 of the GDPR, WebPros has implemented and requests the required technical and organizational measures as well as has entered into the appropriate contractual frameworks with group companies and subcontractors which make sure that the recipient of data has implemented an adequate level of data privacy in its organization as required by the GDPR. This includes signature of Data Processing Agreements as well as EU Standard Contractual Clauses (EUSCCs) issued by the EU commission. These precautions are appropriate safeguards as requested by Article 46 GDPR and local data protection laws in effect, which make sure that your information will be treated securely, confidentially and in accordance to the applicable data protection laws.
Does WebPros sell my information?
No – WebPros does not sell your information to third parties for any commercial or non-commercial interest (a traditional “sale”). However, the term “sale” may in some jurisdictions also comprise providing data to third parties to process payment for services, and, if chosen by you, the provision of your personal information to entities, whose products WebPros resells. If you opt out of the sale of your information by contacting [email protected] or clicking the link on the corresponding WebPros Offering, WebPros may be unable to provide services to you if your request not to sell information includes a prohibition on processing payments for the products you purchase in your jurisdiction.
How long will my data be stored?
WebPros only maintains your Personal Data for as long as it is required for the intended and approved purpose. Data which is collected on basis of your explicit consent will be retained until such consent will be withdrawn or expires. Some data (e.g. billing related data) may be subject to statutory data retention obligations, which WebPros adheres to. Product trial licenses are tied to email addresses. For fraud protection purposes, such addresses are subject to an extended retention term after license expiration. As soon as your Personal Data is no longer needed to serve the purpose of its collection and no other retention policies apply, WebPros has implemented revolving routines to delete your data. WebPros employs data destruction techniques designed to completely destroy data and prevent any future recovery in all such routines.
Cookies
A “Cookie” is a piece of data stored on your computer, tied to information about you. WebPros may use all kinds of Cookies. This may either include Cookies which terminate and erase once you close your browser or log out, or Cookies stored on your computer for an extended timeframe.
Like many other Offerings, WebPros’ Offerings may use cookies or other technologies (such as “pixel tags,” “web beacons,” “clear GIFs”, links in emails, JavaScript, device IDs assigned by Google or Apple, or similar technologies).
Webpros is using first and third-party cookies. First party cookies are cookies that belong to the WebPros group and that WebPros places on your device. Third-party cookies are cookies that another party places on your device through Webpros’ Offerings. For more information on how these companies collect and use information on our behalf, please refer to their privacy policies.
First and third-party cookies allow us and third parties to obtain information about your visits to the Offerings, and your visiting patterns.
Cookies may be used on Webpros Offerings in order to improve your experience. For example we will use cookies to:
- Measure how many people use the Offerings and how they use them, so that we may keep it running quickly and efficiently;
- Ensure you obtain all requested information;
- Provide a safe and secure service for online transactions;
- Track your response to Offering content for analysis;
- Help us and others deliver communications and content to you that are relevant and responsive to your interests and location.
- Process trials, partner and support requests
Cookie categories in use by WebPros
Cookie types | Description |
Necessary | Necessary Cookies help make an Offering usable by enabling basic functions like page navigation and access to secure areas of the Offering. The Offering cannot function properly without these cookies. |
Preferences | Preference Cookies enable an Offering to remember information that changes the way the Offering behaves or looks, like your preferred language or the region that you are in. |
Statistics / Analytics | Analytic Cookies collect information about your use of the Offering and enable us to improve the way it works. These Cookies give us aggregated information that we use to monitor site performance, count page visits, spot technical errors, see how users reach the Site, and measure the effectiveness of advertising (including emails we send to you). |
Marketing | Marketing Cookies allow us and other trusted advertisers to select advertisements that are based on your interests, including those expressed or inferred by visits to our Site or apps or across other Offerings, online services, and apps over time. Others help prevent the same advertisement from continuously reappearing for you. These types of Cookies also help us provide you with content on the Site that is tailored to your interests and needs. Some Marketing Cookies and other technologies are used in part to also facilitate advertising. Please be aware that Marketing Cookies in some cases have a direct relation to Social Cookies. These Social Cookies are used to enable you to share content, which is a matter of your own interest as well as may participate in the process of authorization via social media services to gain access to 3rd party apps/websites, if you choose to do so. Social Cookies may also be used for advertising/analytics purposes. |
Managing Cookies
WebPros provides a customized Cookie consent manager on its Offerings, which gives you the opportunity to choose which cookies you allow and which you don’t agree to be used. When entering an Offering, a dedicated overlay lists all available cookies categories as well as detailed information about each Cookie being generally used on such Offering. Based on this information, you are asked to select the Cookies / Cookie categories, which you allow being used on the Offering during your visits. At all times, you have the option to change your chosen Cookie settings afterwards via the Cookie consent manager.
If you however wish to remove or block cookies from your device entirely, you can update your browser settings (consult your browser’s “help” menu to learn how) to remove or block Cookies. WebPros is not responsible for your browser settings. You can find good and simple instructions on how to manage Cookies on the different types of web browsers at www.allaboutcookies.org.
Please be aware that rejecting Cookies may affect your ability to perform certain transactions on Offerings, and our ability to recognize your browser from one visit to the next.
You can also control tracking Cookies by installing browser extensions like Ghostery: https://www.ghostery.com/products/
Other Technologies (incl. Third-Party Providers)
When providing its services and Offerings to you, WebPros makes use of different other technologies including third party providers. Such third party providers may be located inside and outside the European Economic Area and are contractually bound to adhere to European privacy standards by Data Processing Agreements and, where necessary, EU Standard Contractual Clauses. The utilization of other technologies varies between different Offerings of WebPros group companies.
This Offering uses the following other technologies:
Links to 3rd Parties
This Privacy Policy applies only to WebPros Offerings and not to Offerings owned by 3rd parties. The WebPros Offerings may contain links to websites of certain 3rd Parties (suppliers, 3rd party ISVs, etc.). Although WebPros pays particular attention to the contents of linked websites and the quality of the links posted on its website, WebPros neither has any influence on the contents of these 3rd parties’ websites, nor on the way, these 3rd parties treat personal information collected on their own websites.
Accordingly, WebPros disclaims any responsibility and liability for actions of any 3rd parties or the observance of data protection regulations by 3rd parties, linked to from WebPros Offerings. In the event you envisage any shortcomings or breaches of data protection regulations by one of the 3rd parties linked on WebPros Offerings, please immediately contact WebPros per the address below to allow WebPros to take the appropriate actions to stop this misbehavior.
Contact
If you have questions about this WebPros Privacy Policy and the procedures in effect, please contact our Data Privacy Department at [email protected] .
Responsible party: WebPros Investments S.à r.l., 14 Rue Robert Stümper, 2557 Luxembourg.
Version: v6 (11.07.2024)
This policy is subject to periodic revisions and may be amended by WebPros from time to time if necessary. Please come back periodically and check for updates.
PURPOSE
The affiliates and subsidiaries of the international WebPros group of companies (Organization) are committed to operating their respective businesses as fair, ethically acting and conscientious companies.
The Organization is committed to respecting all relevant laws, regulations and standards in all countries in which it operates and expects all its employees, directors, representatives and contractors to comply with the standards, inherent in this Code of Conduct and all other policies and procedures, published and/or revised by the Organization at any time. Notwithstanding the foregoing, where local laws or regulations require higher standards than represented in this Code of Conduct or another policy, such higher standards shall be respected.
- Labor Ethics
The core principle of the Organization’s labor ethics is the protection and preservation of human rights as well as respect, both in its own organizations as well as in its supply chains. The Organization complies with all applicable labor laws, regulations and internationally accepted labor standards according to law.
Child labor is forbidden. All employees, suppliers, contractors, and each of their employees must be of legal age. They must be employed under their free will and are free in their decision to end their employment with the Organization or any supplier. No forced labor, slave labor or similar form of labor may be used. Furthermore, no worker may be subjected to unacceptable treatment such as psychological cruelty or sexual or other personal harassment. The Organization reserves the right to conduct assessments and audits of its supply chains and contractors at any time without prior notice and take immediate action to eliminate any possible or actual misconduct.
- Discrimination and Harassment
The Organization is committed to complying with all applicable laws and regulations relating to e.g. equal employment opportunity, nondiscrimination or which prevent harassment. Accordingly, all employees shall be treated and shall treat each other with respect and dignity at all times.
As a valuable part of the Organization, every employee has a personal responsibility to report any violation of this policy to the General Counsel or the Senior Management Team in order to help eliminate actions, habits or circumstances, which undermine this policy to keep the Organization compliant with applicable laws.
- Anti-Corruption and Anti-Bribery
The Organization has released a separate, comprehensive Anti-Bribery Policy applicable to all its employees, officers, directors, contractors and agents, which is here [X].
- Protection of Assets
The Organization’s intellectual property is one of its most important and most valuable assets. Accordingly, the protection of all source code, brands, trademarks, service marks, copyrights, patents, trade secrets and know-how is valuable to Organization. Any misuse, disclosure or other improper use of intellectual property may cause irreparable harm to the Organization and may result in severe criminal and civil penalties.
Consistent with our commitment to protect the Organization’s intellectual property, we respect the intellectual property of others in the same manner. Accordingly, it is never permissible to copy, reproduce, distribute, alter or in any other way re-use intellectual property of others without specific written permission by the copyright owner or as otherwise permitted by law. All software and data used in the Organization’s business shall be properly licensed for commercial use.
The Organization’s tangible assets, such as laptops, computers, phones, IT equipment or office facilities require individual protection by each employee to allow employees to support its business. All data (both physical and electronic) stored on any of the Organization’s assets, is the property of the Organization. This includes emails located in the corporate email accounts.
- Data Protection
The protection of our own data as well as the data of our partners and customers is one of the Organization’s core concerns. That is why the Organization has set up and implemented technical and organizational measures as well as a comprehensive Data Protection Policy in order to preserve the privacy and protection of all data within the Organization. The Data Protection Policy has been communicated to all employees and contractors and is a core element of the Organization’s compliance program.
- Environment
The Organization encourages its employees to reduce or eliminate waste of all types by implementing appropriate conservation measures such as recycling, re-using or substituting materials.
- Health Protection and Safety
Each employee and supplier is responsible for a safe and healthy working environment. The Organization has taken the necessary preventive measures against accidents and injuries to health that could occur in connection with workplace activities. Employees are also informed regularly about the applicable health protection and safety norms and measures. Certain employees are designated as first response and fire response units and receive training as such. All employees are provided access to adequate quantities of drinking water and to clean sanitary facilities.
- Record Keeping
All business and financial records connected to the Organization must be complete, accurate and shall at all times correctly reflect the condition and financial situation of the business to which they relate. Certain applicable laws and contractual obligations force the Organization to preserve, maintain and keep available business and financial information for an extended period of time (up to 10 years). Therefore, all employees have to abide by these record keeping obligations and have to make sure that all information in their area of work is stored properly to avoid alteration, loss or any other threat to its integrity.
- Unfair Competition and Antitrust Laws
Competition and antitrust laws and regulations are designed to prohibit conduct that may damage fair competition. For example, these frameworks prohibit agreements or arrangements between competitors for the purpose of fixing prices, allocating markets or otherwise limiting competition. For the purpose of avoiding any alleged or actual violation of these laws, any direct or indirect contact with competitors involving business matters is prohibited and requires express written prior approval by the Organization’s CEO or CFO.
- Anti-Money-Laundering
The Organization does not tolerate any money laundering and takes a clear stand against it. Accordingly, all financial transactions to or from the Organization have to be performed either via the Organization’s bank accounts or other officially accepted payment providers, which excludes cash payments or other non-traceable means of payment.
The Organization is committed to only cooperate with honest and trustworthy business partners and reserves the right to immediately terminate any business relationship or agreement for cause in the event, the Organization becomes aware of the fact that any business partner may be involved in illegal activities. All employees are asked to abide by any applicable law at any time and report any suspicious transactions or behavior of a business partner.
- Export Controls
The United States, the European Union, Switzerland and the United Kingdom, among others, have policies that restrict trade, and restrict facilitating trade, with certain countries, entities and/or individuals. The organization has a comprehensive Export and Sanctions Compliance Policy in place, which directly applies to any employee or contractor of the Organization.
- Guidance and Complaint Mechanism
All employees and contractors of the Organization must at all times comply with any laws, regulations, directives and internal policies. In case of any questions of doubt in respect to the correct behavior in the context of this Code of Conduct, or wish to report any circumstance or behavior, that might be considered incorrect or illegal, you are encouraged to work with your direct supervisor or the department manager directly in resolving your concern. If that is not possible or appropriate, please contact the General Counsel ([email protected]), the CEO or the CFO directly. The Organization will do its utmost to maintain confidentiality and will not tolerate any retribution or retaliation taken against any person who has, in good faith, reached out for advice, reported questionable behavior or a possible violation of this Code of Conduct.
WEBPROS TERMS OF SERVICE
v.1 – Updated July 8th, 2024
1. INTRODUCTION
These Terms of Service (“Terms”) set forth the terms and conditions that apply to your use of certain WebPros software, subscriptions or Services (collectively the “Services”) as defined in these Terms and its annexes. Please review these Terms carefully: they are a legal and binding agreement between you and the Vendors (as defined below). By (a) creating an account in the Services; (b) placing an order through the Services or the associated online store; or (c) using the Services in any other manner, you agree to these Terms. You cannot use the Services if you do not agree to these Terms.
The Services may give you a central point of access to certain other services and systems of Vendor to license, support and maintain your software products and related services. The features of the specific Service are described on their relevant websites and within the annexes hereto. The Service features may be changed by Provider (as defined below) or Vendor at any time upon written notice. The Provider has no obligation to introduce any updates, enhancements, modifications, revisions, or additions to the Services. Certain aspects of the Services may be in “Beta.” If so indicated, the provisions of these Terms governing Beta items also apply. If you purchase third-party products offered through the Services, you may be required to agree to, or review, additional terms and conditions. Purchasing those products indicates your acceptance of those terms and conditions.
2. CONTRACTING PARTIES
The Services are licensed to you by the members of the WebPros group of companies: either (a) WebPros International L.L.C., 2550 North Loop W., Suite 4006, Houston, TX 77092 / USA (“WebPros U.S.”) for licenses in the Americas; or (b) WebPros International GmbH, Vordergasse 59, 8200 Schaffhausen / Switzerland (“WebPros EU”) for licenses elsewhere. In these Terms, WebPros U.S. and WebPros EU are each a “Vendor”, collectively they are referred to as “we” or the “Provider”. When licensing their individual software products to you, they are referred to as the Vendor of that particular software product. The Provider you contract with will be based on your billing address, or if none is provided, your contact information.
However, due to the fact that the Services will allow you to license, maintain and administer WebPros U.S. as well as WebPros EU products and services, any purchases you make through the Services will be provided directly by the respective Vendor of such product or service, directly. The entity with whom you are contracting will be shown in the order summary and the corresponding invoice.
3. WHAT THE SERVICES PROVIDE
WebPros offers a variety of Services and websites, the use of which is governed by these Terms and the corresponding specific Service Annex(es) hereto. Furthermore, the Services may also provide a method by which you may access different Services and features using a single set of credentials / single sign on (“SSO”). This may lead to a centralization and combination of different available data sources. If you do not agree to a combination of your available data for your use of the Services, you should NOT register for any of the Services.
4. LICENSE TO USE
Subject to your full and ongoing compliance with these Terms, including, without limitation, payment of all applicable fees for any licensed products or Services, Provider hereby grants to you, and you accept, a personal, limited, nonexclusive, nontransferable, non-assignable, revocable license to use the Services during the Term, only as authorized in these Terms.
Use of the products and licenses provided via the Services is governed by the respective end user license agreements (EULAs), in their then-current version. The same applies to any third-party products or licenses, potentially provided to you through the Services. Any use of these products or licenses is subject to your prior acceptance of the respective underlying third-party EULA.
5. YOUR OBLIGATIONS AND CONDUCT
a) You agree to be solely responsible for: (i) any passwords used in the Services and their security, and (ii) the provision of true, accurate, current and complete information when registering for the Services. Accordingly, if you provide any information that is false, inaccurate, out of date or incomplete, or Provider has reasonable grounds to suspect that such information is false, inaccurate, not current or incomplete, Provider may suspend or terminate your account and refuse any and all current or future use of, or access to, the Services (or any portion thereof).
Provider is not liable for any unauthorized use of your Services account or any third-party services associated with it and you accept all risks of unauthorized access to such information based on grounds, not attributable to Provider (e.g., your disclosure / loss of your login credentials).
You will not use available SSO features (if any) of the Services to provide services to third parties.
Furthermore, Provider shall have the right to delete abandoned free accounts or access to free Services after a reasonable timeframe of inactivity.
b) The creation, modification or termination of any product licenses through the Services will have a direct commercial effect on a Vendor’s license invoice to you. This is why you will bear any financial liability as a result of any licensing or service transaction, initiated within your account in the Services.
c) You agree not to use the Services for any illegal, destructive or fraudulent purposes. Any use of the Services for purposes other than the setup, maintenance and administration of your own servers, websites and product licenses is forbidden and unlicensed.
In the event the Services allow you to enter, manage, maintain or change data of others (e.g., your team members or customers), your use and processing of any form of personal information belonging to these persons may be restricted by privacy laws and you reaffirm that you have all required consents and authorizations by the affected data subjects for such processing. Provider is not responsible and disclaims any liability for breaches of privacy laws by your use of the data you provide to the Services. Furthermore, some systems or Service features may mandatorily require our acceptance of the WebPros Data Processing Agreement to allow WebPros to process the related data within the Services for such purpose. The WebPros DPA is attached to these Terms of Service as Annex 2 and is made an integral part of these Terms of Service in the event and for as long as you utilize a WebPros Service which involves the processing of personal data on your behalf.
d) You agree that you will not misuse the Services. Any use which violates these Terms, the WebPros Privacy Policy, additional conditions or applicable laws and regulations constitutes “misuse”. In such a case, WebPros may, at its own discretion, deny or terminate access to the Services without prior notice or justification requirement. While using the Services, you will not do any of the following: (i) send unauthorized commercial communications (such as spam) via the Services or otherwise; (ii) collect content or information from customers by automated means without express authorization by customers; (iii) upload, host, send or distribute viruses or other harmful code; (iv) bully, threaten or harass others; (v) post, send or transmit any content that is illegal, hateful, obscene, threatening, violent, abusive, defamatory, infringing of intellectual property rights, invasive of privacy, or containing graphic or gratuitous violence, or otherwise objectionable to others third parties; (vi) harass, threaten, embarrass or inconvenience any other person or entity, or impersonate any other person or entity, or otherwise prevent any person from using or benefiting from the Services; (vii) take any action that imposes a disproportionately large usage load on the Services, unless expressly authorized in advance by WebPros in writing; (viii) publish, post or transmit misleading content; (ix) transmit any information or content that you are not authorized to provide under any applicable law or under any contractual or fiduciary relationship, or that otherwise interferes with or infringes the rights of any third party; (x) encourage or promote participation in or distribution of content, pyramid schemes, surveys, chain letters, spam, or unsolicited email; (xi) publish, post or transmit hyperlinks to other websites that violate these Terms; (xii) facilitate or encourage violations of these Terms; (xiii) interfere with, disrupt, damage or create an undue burden on the Services or the networks or services connected to the Services; (xiv) commit or contribute to any criminal offense or tortious act; (xv) solicit or post personally identifiable information of others, or knowingly collect information from minors; (xvi) solicit login credentials or access another party’s account; (xvii) attempt to impersonate any person or entity, including but not limited to a WebPros employee, in order to falsely state or otherwise misrepresent affiliation with a person or entity; (xviii) provide false personal Information or create an account for another person without authorization; (xix) engage in the sale or other transfer of your account without WebPros prior permission.
6. OUR OBLIGATIONS
a) Subject to your compliance with these Terms at all times during your use of the Services, Provider grants you access to certain Services via your access credentials and/or in accordance with the type of your subscription. If a fee is required to access certain features of the Services, your access to those features is conditioned upon full payment of the fee set out during the subscription process.
b) Provider’s sole and exclusive obligation shall be to provide you with reasonable access to Services you are eligible for.
c) Technical support for the Services will be provided to you directly by your Provider. As a registered account holder, you will be eligible of submitting support requests to Provider relating to availability and functionality of the Services in general. Product related requests for technical support will have to be submitted to the respective product Vendor, directly, and will be subject to their individual support policies.
d) If SSO features are included in the Services you use, these SSO features provide connectors, configured by you, that interact with other WebPros services (Core Products, Support Systems, Monitoring, Testing platforms etc.) or third-party applications. You acknowledge and agree that the Provider is not responsible for any changes to, functionality of, or defect with, any third-party applications and that interoperability with the SSO features of the Services can be broken temporarily or permanently at any time.
e) WebPros and the Provider disclaim any responsibility or liability with respect to the data entered/stored by you when utilizing the Services. Accordingly, the Provider under no circumstances assumes responsibility for any output of the Services, such as designed websites and their content, databases or servers. Although the Provider expressly prohibits the uploading of data that is illegal, hateful, obscene, threatening, violent, abusive, defamatory, infringing of intellectual property rights, invasive of privacy, contains graphic or gratuitous violence, or is otherwise objectionable to third parties, such content will not be pre-screened. You hereby accept that you may be exposed to such content and use the Services at your own risk. The Provider reserves the right, but is not obligated, to remove any content that the Provider deems to be in violation of these Terms or applicable law without notifying customers. You understand and agree that the Provider assumes no liability for any risk, damage, injury, penalty or loss that may result from content submitted to or distributed via the Services.
7. FEES AND PAYMENTS
a) Payments will be processed via the individual Vendor and its third-party processors. Whenever a commercial transaction is initiated by you through the Services by licensing a software product or ordering a Service, you will either be forwarded to the online store, licensing system of the respective Vendor, directly or to a payment provider as the chosen merchant of record (e.g. Stripe, Cleverbridge) for the corresponding purchase. By initiating a purchase via one of WebPros’ payment providers, you agree to be additionally bound by such payment provider’s terms of service. WebPros disclaims any liability or responsibility for the performance of the payment transactions via a payment provider. WebPros is specifically not liable for loss or damage from errant or invalid transactions processed via a payment provider. This includes transactions that were not processed due to a network communication error, or any other reason. See any of the product specific Annexes hereto for more information.
b) If you are already in a contractual relationship (an “Existing Agreement”, such as a Partnership or Partner NOC Agreement) with a Vendor, relating transactions initiated by you via the Services may be processed in accordance with the terms and conditions of the Existing Agreement automatically and will be charged to you in accordance to the agreed then actual pricing. In the absence of an Existing Agreement, all transactions initiated by you via the Services will be charged to you under retail conditions via the respective Vendor’s online store or payment provider as further defined in the corresponding product-specific Annex hereto.
c) Vendor may add, remove or modify products and services offered as part of the Services at any time and without notice. In addition, Vendor may amend these Terms and the product pricing at any time, as set out herein, by providing 30 days prior written notice of such a change. If you do not agree with such a change, you must terminate and cease using the impacted product or Service prior to the thirty day period. Upon termination, your obligation to pay for the terminated Service will cease upon the next renewal date. For price increases of long-term subscriptions, you may be eligible for a pro-rata refund of fees pre-paid up to the effective date of your termination. Your continued use of the product or Service after the thirty day period indicates your acceptance of those changes. To the extent the terms of your Existing Agreement with an individual Vendor apply to pricing and fees for a particular product or Service, those terms supersede the prior sentence.
d) Subject to special provisions contained in Annex 1 for consumer purchases within the Services, all fees and charges as a result of any commercial transaction initiated via the Services shall be payable net cash without deductions for taxes, assessments, fees, or charges of any kind. You are responsible for paying all sales, use, excise, value-added, withholding or other tax or governmental charges imposed on the licensing or use of the Services. In the event withholding taxes apply to any payment from you to the respective Vendor, you agree that either the Vendor may automatically increase the original license or service pricing by the amount of such taxes or you will remit such taxes to your respective authority at your place of business yourself, with the effect that after deduction of such taxes, the Vendor will receive the original fee owed. In case an Existing Agreement exists, all transactions initiated by you will be subject to the payment and fees provisions of your Existing Agreement. If you do not have an Existing Agreement with either Vendor, the pricing and term provisions will be those set out herein or within the product itself and the WebPros EU EULA applies if WebPros EU is the licensor or conduit for sale of the product. The WebPros U.S. EULA applies if WebPros U.S. is the licensor or conduit for sale of the Service or product.
e) If a Vendor licenses a third-party software product to you, the Vendor acts as an authorized reseller (or sub-licensor) of such third-party product. Any financial obligation concerning such third-party product, beyond the designated license fees for such product, shall be in your sole and exclusive responsibility.
f) Recurring fees for ongoing licenses or Services will be charged by the respective Vendor or payment provider directly in its monthly invoices to you. You hereby acknowledge and agree that if you are entering into commercial relationships with different Vendors via the Services, you will receive one invoice per Vendor for each license/service term. The agreed payment term is set forth on a Vendor’s invoice(s) to you.
g) Unless set forth to the contrary in an Existing Agreement, all invoices are due immediately upon purchase and payable within fourteen (14) days from the date of Vendor’s invoice (“Invoice Date”). Should you dispute any invoice, you must provide written notice of the dispute to the Vendor prior to the invoice due date, specifically stating the reasons for your dispute. Should the Vendor agree with your dispute, the amount determined by the Vendor to be invoiced in error shall be applied as a credit to the next full invoice or paid back to you, directly using the payment method used for the original purchase. Should the Vendor reject the dispute, it shall notify you in writing. All determinations of the Vendor shall be final.
h) All payments shall be made in the invoiced currency. If payment in full is not received by the Vendor per the terms of the invoice, you will be assessed annual (pro-rated) interest at the rate of five percent (or the maximum rate permitted by law) until the invoice is paid in full. In the event your account has to be referred to a collection agency or a law office, you shall also pay all costs incurred by the Vendor for actions taken by such collection agency or law office.
i) The Services are directed to adults only. If you are below the legal age in your jurisdiction, the WebPros Services are not available to you. The majority of WebPros Services as well as these Terms are further directed to businesses only. Certain Services may however allow consumers to purchase own subscriptions, directly. In these cases, these Terms, together with the special terms for consumer customers as well as the respective service-specific terms included in the Annexes hereto, apply.
8. TERM / TERMINATION
a) Upon your successful registration for a Services account, these Terms will govern your use of the Services for as long as you make use of it. Subscriptions established under the Services account may have different durations as described on the Website. The subscription term begins on the effective date and ends on the same day of the month in which the selected subscription term expires. If the month in which the subscription term expires does not have the date corresponding to the effective date, the subscription term ends on the last day of that month. In the case of chargeable subscriptions that can be booked directly within the Services, the contract term for these subscriptions begins immediately upon completion of the corresponding transaction by clicking the order button for the agreed and chosen term (annual or monthly). The subscription term is hence automatically extended at the end of the then current subscriptions term by the previously selected term. Different terms may apply for EU Consumers as set out in Annex 1 hereto.
b) You may stop using the Services, as well as the applicability of these Terms, by permanently deleting your Services account in your account preferences or stop the Service via the merchant of record you originally purchased from. The Services account will provide an option to terminate Services via a cancellation link. For the avoidance of doubt and for clarity, the termination of a WebPros account as a management account for different Services does not have any effect on existing licenses, subscriptions or services, previously obtained from the respective Vendor through the account. If you no longer wish to use a Service or subscription, you can indicate this in your Service account settings. In this case, you can still use the terminated Service until the end of the current subscription period. You will not receive a refund for pre-paid terms, unless WebPros decides otherwise in its sole discretion or if required by law.
c) If you cease using the WebPros account as an administration interface between you and Vendors, existing licenses and service subscriptions can only be modified or terminated directly with the respective Vendor. A termination of the WebPros account does not have any influence on separate subscriptions, previously entered into using the WebPros account.
d) Both you, or Provider, may at any time terminate your access to the Services and/or delete your Services account for cause if the other party fails to perform any material obligation imposed by these Terms or otherwise breaches any material provision of these Terms. Failure to pay fees of any type to a Vendor or Provider shall be a material breach of these Terms. Any such termination of your access or account will also terminate your eligibility for the receipt of free and paid services, subscribed to in the Services (e.g. Monitoring etc.).
e) Upon termination of a Service or Service account, you will not have access to such Services, including SSO features (if any), any longer. Accordingly, any information and data provided by you for the creation of your Service account will be deleted permanently by Provider. Your pre-Existing Agreement with a Vendor will not be affected by a termination of your Services account.
9. CONFIDENTIALITY OF INFORMATION / INTELLECTUAL PROPERTY RIGHTS
a) In the course of performing their obligations pursuant to these Terms, both you, Provider as well as a Vendor (as the case may be, each a “Receiving Party”) will be furnished with, receive, and otherwise have access to information concerning you, Provider or Vendor (as the case may be, each a “Disclosing Party”) or proprietary information belonging to the Disclosing Party, which information the Disclosing Party considers to be confidential. For the purposes of these Terms, “Confidential Information” shall include, but not be limited to, structural information about the architecture of products and any information relating thereto; all information relating to the party’s business, including, without limitation, financial, marketing, and customer information, and any other information that would be considered a trade secret during the applicability of these Terms and for a period of five years following their termination or expiration.
All Confidential Information shall be the property of the Disclosing Party. The Receiving Party shall: (I) hold all Confidential Information in strict confidence and refrain from disclosing Confidential Information to third parties, except as expressly authorized by these Terms; (II) use Confidential Information solely and exclusively for the purposes of fulfilling its obligations under these Terms, and only as expressly authorized by these Terms; and (III) accord Confidential Information at least the same level of protection against unauthorized use or disclosure that the Receiving Party customarily accords to its own confidential, proprietary, or trade secret information of a like nature, but in no event less than a reasonable level of protection. Upon termination of your access to the Services for any reason, or upon the request of the Disclosing Party, the Receiving Party shall either return to the Disclosing Party or destroy, at the sole option of the Disclosing Party, all Confidential Information.
b) In furtherance of the foregoing, both Parties may in the course of their respective responsibilities under these Terms either provide or be furnished with or have access to information which may qualify as “personal data” in some or all jurisdictions. Each party agrees and acknowledges that the other may collect, use and or process such personal data in performing its contractual duties and for general administrational purposes and may also disclose the personal data to third parties in its country of residence and abroad to the extent required by these Terms or if required for the performance of its obligations under these Terms, however always in accordance with the provisions of the applicable data protection laws in effect. By implementing and maintaining sufficient technical and organizational measures as requested by applicable data protection laws, either party makes sure that the other party’s personal data is kept in strictest confidence and protected sufficiently against disclosure, loss or destruction.
Any personal data provided by you to Provider in the course of setting up and maintaining your account to the Services will be processed by Provider in accordance with its then current privacy policy, available at www.WebPros.com. As set forth in section 3 above, the use, processing and combination of different data sources available from a Vendor is one of the core functionalities of some Services, which is why the lawfulness of processing of such data results from Article 6, subsection 1(b) of the GDPR. Additionally, and for the sake of clarity, your express consent for these processing activities is furthermore required when setting up your Services account.
c) The Provider does not sell your information to third parties for any commercial or non-commercial interest (a traditional “sale”). However, the term “sale” may in some jurisdictions also comprise providing data to third parties to process payment for services, and, if chosen by you, the provision of your personal information to entities whose products the Provider resells. If you opt out of the sale of your information by contacting the Provider (via [email protected] for the USA or [email protected] for all other geographies) or clicking the link within the Services and opting-out of the sale of your information, the Provider may be unable to provide services to you if your request not to sell information includes a prohibition on processing payments for the products you purchase in your jurisdiction.
d) You acknowledge that the Services as well as the products, services, documentation and other materials available through it (collectively the “Products”) are protected under copyright law and other laws protecting intellectual property rights. You further acknowledge the exclusive rights of the respective Vendor in and to its Products and acknowledge that the Vendor retains sole title to and ownership of such Products, and any copies thereof made by you. Nothing in these Terms or the conduct of the Parties shall give you any ownership interest in the Products, except for a limited right to use the same in accordance with these Terms and the Vendor agreements referenced in these Terms. You shall not represent, in any manner, that you have an ownership interest in the Products or cause any third party to commit any act challenging, contesting, or in any way impairing or attempting to impair the rights of the Vendor in the Products provided to you.
10. INDEMNITY
You hereby agree to indemnify and hold harmless Provider as well as Vendor, their subsidiaries and affiliates, and each of their respective directors, officers, employees and agents (collectively the “Indemnified Parties”), against any and all claims, actions, demands, liabilities, losses, damages, judgments, settlements, costs, and expenses, including, without limitation, reasonable attorneys’ fees (any or all of the foregoing hereinafter referred to as “Loss” or “Losses”), insofar as such Losses or actions in respect thereof arise out of or are based on (i) any breach of any representation or warranty made by you hereunder, (ii) any breach of any covenant or agreement made by you herein, or any failure by you to perform the obligations imposed by these Terms; (iii) any other Loss suffered by any of the Indemnified Parties arising from or relating to your conduct with respect to your use of the Services; or (iv) your violation of any rights of another person or entity, including, but not limited to, third-party intellectual property rights or moral rights as well as life or health of individuals.
These indemnification obligations are in addition to any indemnification requirements set forth in the Existing Agreements between you and the Vendor referenced in these Terms.
11. MODIFICATION OF TERMS AND SERVICES
Provider may make changes to these Terms or other matters concerning the Services by displaying notices or links to notices to you in your Services account or by providing you with a change notice. It is your responsibility to periodically check these Terms and your account for changes. At any time, Provider reserves the right to modify or discontinue, temporarily or permanently, any of the Services offered (or any part thereof) with or without notice. Provider may make changes to the Services and a Vendor may make changes to their on-line store(s), including regarding products, services, programs, and prices, at any time without notice. Provider may, in its sole discretion, terminate your password or your use of any Services for any reason, including, without limitation, for lack of use or if Provider believes that you have violated or acted inconsistently with these Terms. Any termination of your access to the Services may occur without prior notice, and Provider may immediately de-activate or delete your account and all related information and files in your account and/or bar any further access to such files or the services. Provider will not be liable to you or any third-party for any termination, modification, or suspension of your access to the Services. However, in such case, Provider will have the right to entirely delete your account data (including personal information) after a reasonable timeframe and in accordance with the applicable privacy laws.
12. ADVERTISEMENTS AND PROMOTIONS
Provider may use the data you provide and which is generated by you within the Services or your usage behavior to provide you with tailored offerings or recommendations related to Vendor products, extensions, content, functionalities or best practices, which may be of interest for you (an “Offering”). A limited number of Services cookies, selected third-party services as well as up-to-date profile/account information help Provider choosing only relevant recommendations, which is why you are asked to periodically check the data you provide using the Services for accuracy. Whereas some of the data you provide is necessarily required for setting up your account, you will always have the possibility to provide additional data to further personalize recommendations and Offerings. It is your responsibility to determine the fitness of any third party with whom you transact as a result of any Offering.
In the event such Offerings involve services or products of third parties available from a Vendor via the Services, any correspondence or business dealings with, or participation in promotions of, advertisers other than a Vendor found on or through the Services, including direct payment and delivery of related goods or services, and any other terms, conditions, warranties or representations associated with such Offerings, are solely between you and such advertisers. Neither Provider, nor a Vendor, is responsible or liable for any loss or damage of any sort incurred as the result of any such Offerings or as the result of the presence of advertisers as being part of the Services.
13. LINKS
Within the Services or websites you may be provided with links to other Internet sites or resources (such as third-party vendors, etc.). Because Provider has no control over such sites and resources, you acknowledge and agree that Provider is not responsible for the availability of such external sites or resources, and does not endorse and is not responsible or liable for any content, advertising, products, or other materials on or available from such sites or resources. Provider is not responsible or liable, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with use of or reliance on any such third-party content, goods, websites or services available on or through any such site or resource. Provider is providing these links to you only as a convenience, and the inclusion of any link to such sites does not imply endorsement by Provider of those sites.
14. REPRESENTATIONS AND WARRANTIES
a) Provider warrants that it has the right to provide you with access to the Services as well as to connect the Services to the associated vendor systems, products and services. Furthermore, Provider warrants that the Services substantially function in accordance with their respective feature description or documentation for a period of at least 90 days from the license / subscription start date. Except for the warranties set out in the prior sentence, the Services are provided to you ‘as is’ and ‘as available’ and all other warranties, express or implied, included, but not limited to any implied warranties of merchantability or fitness for a particular purpose, title, quiet enjoyment, non-infringement or any implied warranties arising from course of dealing, course of performance or usage of trade are disclaimed. Provider makes no representations, warranties, conditions or guarantees as to the quality, suitability, truth, accuracy or completeness of any of the content contained in the Services or any product or service that the Services connect to.
b) You warrant to Provider that you: (a) have the full right, power and authority to enter into these Terms on behalf of yourself or the legal entity you are acting for and to undertake to perform the acts required of you hereunder; (b) the execution of these Terms by you, and the performance by you of your obligations and duties to the extent set forth in these Terms, do not and will not violate any agreement to which you are a party or by which you are otherwise bound; (c) when accepted (see section 1) or executed and delivered by you, these Terms and the applicable Annexes hereto will constitute a legal, valid and binding obligation on you, enforceable against you in accordance with the representations, warranties, terms and conditions; and (d) you will comply with all applicable laws related to the use and installation of the Services and the performance of your obligations under these Terms.
c) Provider furthermore makes no warranty or condition that: (i) the products or services will meet your requirements, (ii) the Services will be uninterrupted, timely, secure, or error-free, (iii) the results that may be obtained from the use of the Services and its services will be accurate or reliable, (iv) the quality of any products, software, services, information, or other material obtained by you through the Services will meet your expectations, or (v) any errors in any software or Services will be corrected.
d) Your use of the Services is at your sole risk. The Services as well as content provided therein are provided “with all faults”. Any material downloaded or otherwise obtained through the use of the Services occurs at your own discretion and risk and you are solely responsible for any damage to your computer system, loss of data or infringement that results from the download of any such material, including any damages resulting from computer viruses.
e) No advice or information, whether oral or written, obtained by you through the Services will create any warranty or condition not expressly stated in these terms.
15. LIMITATION OF LIABILITY
a) Notwithstanding the warranty provisions set forth in these Terms, all of the obligations of Provider regarding warranties shall be contingent on your use of the Services in accordance with these Terms, as these Terms may be amended, supplemented, or modified by Provider from time-to-time. Provider shall have no warranty obligations regarding any failures of the Services, which are the result of accident, abuse, misapplication, extreme power surge or extreme electromagnetic field.
b) TO THE EXTENT PERMITTED BY THE APPLICABLE LAWS, YOU ACKNOWLEDGE AND AGREE THAT GRANTING YOU WITH ACCESS TO THE SERVICES DOES NOT INCLUDE ANY RESPONSIBILITY OR LIABILITY OF PROVIDER OR THE ASSUMPTION BY PROVIDER OF THE RISK OF YOUR OR ANY THIRD PARTY’S INDIRECT, CONSEQUENTIAL OR INCIDENTAL DAMAGES (INCLUDING LOST PROFITS OR LOST DATA) WHICH MAY ARISE IN CONNECTION WITH YOUR USE OF THE SERVICES. ACCORDINGLY, YOU HEREBY AGREE, THAT NEITHER PROVIDER NOR VENDOR SHALL BE RESPONSIBLE FOR ANY INDIRECT, CONSEQUENTIAL, INCIDENTAL, OR SIMILAR DAMAGES, INCLUDING, BUT NOT LIMITED TO, LOSS OF PROFIT, LOST SAVINGS OR LOSS OF REVENUES ARISING FROM YOUR USE OF THE SERVICES, EVEN IF PROVIDER OR VENDOR HAD BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. THESE LIMITATIONS OF LIABILITY SHALL APPLY TO ALL CAUSES OF ACTION OR CLAIMS IN THE AGGREGATE. IT IS AGREED THAT PROVIDER’S AND VENDOR’S LIABILITY FOR SLIGHT OR SIMPLE NEGLIGENCE SHALL MUTUALLY BE EXCLUDED, HOWEVER SUBJECT TO THE LIMITATIONS BELOW OR GIVEN BY THE APPLICABLE LAWS. PROVIDER’S OR VENDOR’S LIABILITY IN CONNECTION WITH THESE TERMS AND THE USE OF THE SERVICES FOR ANY DAMAGES RESULTING FROM NEGLIGENCE OR GROSS NEGLIGENCE SHALL BE LIMITED TO THE AMOUNT OF THE TYPICAL AND FORSEEABLE DAMAGE. SUCH LIABILITY HOWEVER, WHETHER IN CONTRACT, IN TORT OR OTHERWISE, WILL NOT EXCEED THE AMOUNT OR EQUIVALENT OF US$ 1,000. THE EXISTENCE OF MULTIPLE CLAIMS WILL NOT EXPAND THIS LIMIT. YOU ACKNOWLEDGE THAT THIS LIMIT REFLECTS THE ALLOCATION OF RISK SET FORTH IN THESE TERMS AND THAT PROVIDER OR VENDOR WOULD NOT HAVE ACCEPTED YOUR REQUEST FOR ACCESS TO THE SERVICES WITHOUT THESE LIMITATIONS ON ITS LIABILITY. LIABILITY PROISIONS FOR CONSUMER TRANSACTIONS MAY DIFFER, SUBJECT TO THE PROVISIONS OF ANNEX 1 HERETO.
c) Provider is finally not liable for the loss of data and/or programs as far as the loss is based on the fact that you have refrained from making sufficient back-up copies and therefore from ensuring that lost data can be restored with reasonable effort.
d) Nothing in these Terms shall be deemed to exclude or limit either party’s liability with respect to (1) injuries to or death of any person, caused by a party or its representatives, auxiliary persons (executive and non-executive staff) and subcontractors; (2) loss and damages caused by willful intent or gross negligence by either party or Its representatives, auxiliary persons (executive and non-executive staff) and subcontractors; (3) any indemnity or guarantee given by either party under these Terms; and (4) any mandatory liability according to the applicable law.
In any case, the party’s liability hereunder shall be limited to the minimum required by the applicable law.
16. GENERAL
a) If WebPros U.S. is your Provider, these Terms and your use of the Services shall be governed by the laws of the State of Texas and you agree that jurisdiction and venue are appropriate in the applicable courts located in Harris County, Texas. The provisions of the U.N. Convention on Contracts for the International Sale of Goods are hereby mutually disclaimed.
b) If WebPros EU is your Provider, these Terms and your use of the Services shall be governed by the laws of Switzerland and the place of jurisdiction are the applicable courts located in Zürich / Switzerland. The provisions of the U.N. Convention on Contracts for the International Sale of Goods are hereby mutually disclaimed.
c) All notices, requests, and demands expressly contemplated by or related to these Terms or your use of the Services shall be made in writing and shall be deemed to have been duly given: (I) when hand-delivered to the addressee; (II) when provably transmitted by facsimile or e-mail (both with confirmation of receipt); (III) one business day after being given to an overnight courier with a reliable system for tracking delivery; or (IV) three business days after the day of mailing, when mailed by registered or certified mail, return receipt requested, postage prepaid.
d) All notices to a specific Provider shall be sent to addresses set forth at the beginning of these Terms and all notices to you will be sent to the address specified in your Services account. Each party shall promptly notify the other party in writing, as provided in these Terms, of a change of address or designated representative.
e) You agree that you will not, directly or indirectly, use, access, install, sublicense or resell any items provided to you through the Services, access the Services, or otherwise engage in any dealing or transaction, directly or indirectly, with or involving any country or region or any person if such use, access, installation, sublicense or resale of such items would be prohibited for any U.S. or EU citizen by virtue of any applicable law. You shall also ensure that no licensee or other third party, directly or indirectly, engages in any such use, installation, sublicensing or resale or engages in any such dealing or transaction. The foregoing commitments shall apply with respect to, without limitation, any individual or organization on the U.S. Treasury Department’s List of Specially Designated Nationals and Blocked Persons, the Consolidated Screening List, the SECO list or the Consolidated European Sanctions and Embargoes List or deal with any other individual who or organization that is the subject of a U.S. or EU legal measure that provides for sanctions blocking the property.
f) No waiver by you, Provider or a Vendor will be effective unless documented in writing, signed by an authorized representative of the party against which enforcement of the waiver is sought. The failure of either party to insist upon strict performance of any of the terms or provisions of these Terms, or the exercise of any option, right, or remedy contained in it, shall not be construed as a waiver of any future application of such term, provision, option, right, or remedy, and such term, provision, option, right, or remedy shall continue and remain in full force and effect.
g) If a court of competent jurisdiction finds any provision of the Terms to be invalid, the Parties agree that the court should endeavor to give effect to the Parties’ intentions as reflected in the provision, and the other provisions of these Terms remain in full force and effect. Regardless of any statute or law to the contrary, any claim or cause of action arising out of or related to the use of the Services or the Terms must be filed within one year after such claim or cause of action arose or be forever barred. The section titles in the Terms are for convenience only and have no legal or contractual effect.
h) The Parties shall be independent contractors under these Terms. Nothing in these Terms or in the conduct of the Parties shall be interpreted or construed as creating or establishing any relationship between the Parties other than that of independent contractors.
i) Either party’s non-performance hereunder will be excused, to the extent reasonably necessary, in the event that an act of God, war, civil unrest, fire, explosion, or other force majeure event that occurs without the fault or negligence of the non-performing party prevents timely performance under these Terms, provided that such failure to perform or delay could not have been prevented through the use of reasonable precautions, and such failure to perform or delay cannot reasonably be circumvented by the non-performing party through the use of alternate sources, work-around plans, or other means. The affected party will promptly notify the other party of the circumstances causing its failure to perform or delay. For as long as such circumstances prevail, the party whose performance is delayed or hindered will continue to use all commercially reasonable efforts to commence or resume performance without delay.
j) The provisions of any Existing Agreement or the Vendors’ respective EULAs shall prevail over any conflicting provisions of these Terms.
WebPros Terms of Service – Annex 1 – EU Consumer Terms
The EU consumer-specific terms contained in this Annex 1 place an integral part of the WebPros Terms of Service and exclusively apply to any transactions between a Provider and non-commercially acting end customers, residing in the European Union while using the Services (“Consumers”). The WebPros Terms of Service generally apply to these transactions as well, with modifications via these additional EU Consumer Terms. If you are using the Services as a Consumer or make any purchases through the Services as a Consumer, these additional terms apply and prevail over contradicting provisions of the general Terms of Service.
1. Term and Termination
In modification of Section 8 of the WebPros Terms of Service, subscription terms for Consumers will start upon the end of the statutory withdrawal period, will remain in effect for the chosen subscription term and will thereafter renew for similar terms until terminated. Consumer subscriptions with an initial term of 12 months will however thereafter only renew for successive one-month terms until terminated.
2. Withdrawal
WebPros grants Consumers (as defined in this Annex 1) the statutory right of withdrawal in accordance with these provisions. This right of withdrawal does not apply to businesses. Being a Consumer, a Service entered into online will legally only start after the end of the compulsory withdrawal period of 14 days, during which Consumers can withdraw from contractual relationships without cause upon written notice, unless approval for the immediate execution of the contractual obligations by WebPros has been granted by the Consumer before in return for waiving its right of withdrawal in accordance with EU consumer protection laws.
To exercise your right of withdrawal as a Consumer, you may either withdraw a Service in your account preferences or inform the Provider of your decision to withdraw from this contract by an unequivocal statement (e.g. a letter sent by post or an e-mail to [email protected]). You may use the sample withdrawal form provided at www.webpros.com, but this is not mandatory. In order to comply with the withdrawal period, it is sufficient to send the notification of the exercise of the right of withdrawal before the expiry of the withdrawal period.
If you as a Consumer effectively revoke a Service within the above-mentioned period, WebPros will refund payments made by you for the withdrawn Service subscription within fourteen days from the day on which notice of withdrawal has been received. WebPros will use the same means of payment which had been used for the original transaction. Under no circumstances will you be charged any fees for this repayment.
3. Limitation of Liability for Consumers
Any limitation of liability contained in the general WebPros Terms of Service is subject the applicable laws and Consumer protection regulations in the European Union. In the event, such laws or regulations restrict a limitation of liability towards Consumers, liability shall be limited to the largest extent allowed by the applicable laws, automatically.
4. Applicable Law and Jurisdiction
Unless otherwise stipulated by mandatory statutory Consumer protection regulations, the WebPros Terms of Service shall be governed by and construed in accordance with the laws of Switzerland. You agree that in the event of any dispute with respect to the WebPros Terms of Service or any Service thereunder, you will contact your Provider in order to solve the issue through mutual understanding and negotiation. If no solution is reached during these negotiations, you accept jurisdiction via the local or federal courts located in Switzerland, unless applicable laws provide you with an option to prosecute your rights in front of local courts. Wherever such right is legally negotiable, the applicable laws shall be the ones of Switzerland with place of jurisdiction in Zürich / Switzerland.
WebPros is neither willing nor obliged to participate in dispute resolution proceedings before a consumer arbitration board.
WebPros Terms of Service – Annex 2 – Data Processing Agreement
Between a member of the WebPros group of companies as your Provider, which may be WebPros International GmbH, Vordergasse 59, 8200 Schaffhausen / Switzerland; or WebPros International L.L.C., 2550 North Loop W., Suite 4006, Houston, TX 77092 / USA accordingly (the respective licensor will hereinafter be referred to as the “Data Processor”), and the customer, entering into a Service relationship on basis of the underlying WebPros Terms of Service (“Customer” or the “Data Controller”) (each a “Party”, collectively the “Parties” hereto).
By entering into a Service relationship with the Data Processor this Data Processing Agreement (the Agreement”), including all exhibits hereto are made integral parts of the underlying WebPros Terms of Service , being the contractual basis of the commercial relationship.
This Agreement specifies the Parties’ data protection obligations in regards to the Processing of personal data by the Data Processor on behalf of the Data Controller, as stipulated or established via the WebPros Terms of Service this DPA is attached to by reference, or any other contractual understanding between the Parties, which involves the processing of personal data on behalf of the Data Controller (collectively the “Base Agreement”). It applies to all activities performed in connection with the Base Agreement in the course of which the Data Processor, or a 3rd party acting on its behalf (the “Sub-Processor”), may come into contact with or process personal data belonging to the Data Controller or its’ customers on behalf of the Data Controller. The applicability of this Agreement is conditioned upon the existence of a data processing activity performed by the Data Processor on behalf of the Data Controller. In the absence of such processing activity, this Agreement will not apply.
This Data Processing Agreement will come into force and effect on the first date, the Customer makes use of a WebPros Service on basis of the Base Agreement (the “Effective Date”) and will be bound to the term of the Base Agreement, unless terminated by either Party giving the other at least 3 months prior written notice of its intention to terminate. This Agreement will terminate automatically at the termination or expiry of the Base Agreement. All Exhibits hereto place integral parts of this Data Processing Agreement upon signature hereof.
§1 Definitions
(1) “Personal Data”
Personal Data means any information relating to an identified or identifiable natural person (the “Data Subject”).
(2) “Processing”
Processing means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
(3) “Instruction”
Instruction means any written instruction, issued by the Data Controller to the Data Processor, and directing the same to perform a specific action with regard to Personal Data (including, but not limited to, de-personalizing, blocking, deletion, making available). Instructions will initially be specified in the Base Agreement and may, from time to time thereafter, be amended, amplified or replaced by Controller in separate written instructions (individual instructions).
(4) “Data Controller”
Data Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the Processing of Personal Data.
(5) “Data Processor”
Data Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
(6) “GDPR”
GDPR means the EU General Data Protection Regulation 2016/679.
(7) “EU Standard Contractual Clauses” or “EUSCC” means a set of contractual clauses for data transfers from controllers in the EU to processors established outside the EU or EEA, as issued by the European Commission (Decision C (2021) 3972).
(8) This Agreement applies to the Processing of Personal Data by WebPros on behalf of the Customer in the course of providing Services under the Base Agreement. For the purposes of this Data Processing Agreement:
The Customer may in some cases be considered as a Data Processor for a third-party Data Controller, and WebPros may in such situations be a Sub-Processor to Process Personal Data on the Customer’s behalf. For simplification purposes, WebPros is hereinafter referred to as a Data Processor and the Customer is hereinafter referred to as a Data Controller. Any notifications given by the third -party Data Controller to the Customer will in such cases be conveyed to WebPros insofar as the notifications relate to the Services provided by WebPros. In addition, any instructions given by the Customer to WebPros relating to the Processing of Personal Data should not in such cases contradict or conflict with the instructions given by the third-party Data Controller.
§ 2 Scope and Responsibility
(1) The Data Processor will process Personal Data on behalf of the Data Controller. Processing will include such actions as may be specified in the Base Agreement, any statement of work, Work Order or any other written statement signed by both Parties or provided in another written form, involving the Processing of Personal Data or the possibility of such. Within the scope of the Base Agreement, either Party will be responsible for complying with the statutory requirements relating to data protection and applicable to its Processing of Personal Data pursuant to the Base Agreement and this Agreement.
(2) Based on this responsibility, the Data Controller will be entitled to require from the Data Processor the rectification, deletion, blocking and making available of Personal Data during and after the term of the Base Agreement.
(3) The regulations of this Agreement will equally apply if technical maintenance or services are performed on behalf of the Data Controller and access to Personal Data in such context cannot be excluded.
(4) Any Personal Data Processed by the Data Processor under this Agreement or the Base Agreement will remain the property of the Data Controller.
(5) Together with this Agreement if legally required, the Parties will separately enter into EU Standard Contractual Clauses in the official format as issued by the European Commission (Decision C (2010)593).
§ 3 Obligations of Processor
(1) The Data Processor will collect, process and use Personal Data only in compliance with and within the scope of the Data Controller’s Instructions or as specified and agreed in the Base Agreement.
(2) Within the Data Processor’s area of responsibility, the Data Processor will structure its internal corporate organization for compliance with the specific requirements of the protection of Personal Data, established by GDPR, local data protection laws or any other applicable privacy and data protection laws and regulations currently in effect (the “Data Protection Laws”). The Data Processor will take the appropriate technical and organizational measures to ensure a level of security appropriate to the risk to the Data Controller’s Personal Data in accordance with the requirements of Article 32 GDPR. Such measures hereunder will include, but not be limited to:
a) the pseudonymization and encryption of personal data where possible;
b) the ability to ensure the ongoing confidentiality, integrity, availability and resilience of Processing systems and services (logical, physical access control, transfer control);
c) the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident (availability control);
d) a process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the Processing.
Data security measures referred to in this section above will be supported by the use of state-of-the-art encryption technology. An overview of the technical and organizational measures implemented by the Data Processor will be attached to this Agreement as an Exhibit.
(3) Upon the Data Controller’s request, the Data Processor will provide all information concerning the protection of Personal Data within the Data Processor’s organization in the sense of Article 32 of GDPR and will provide reasonable assistance to the Data Controller in order to allow it to comply with its obligations under the Data Protection Laws.
(4) The Data Processor will ensure that any personnel, entrusted with Processing the Data Controller’s Personal Data have undertaken in writing to comply with the principle of data secrecy in accordance with Article 5(f) GDPR and have committed themselves to confidentiality. The undertaking to secrecy will continue after the termination of the above-entitled activities.
(5) The Data Processor will notify to the Data Controller the contact details of the Data Processor’s data protection Officer (if appointed) or the responsible associate, respectively.
(6) The Data Processor will, without undue delay, inform the Data Controller in case of a Personal Data Breach (as defined under Article 4 (12) GDPR and will investigate and provide the Data Controller with sufficient information related to the Personal Data Breach and will ensure reasonable cooperation in order to enable Data Controller to comply with any legal obligation to report the Personal Data Breach and to inform Data Subjects and the supervisory authority within the time frame provided in the Data Protection Laws.
(7) Where applicable, the Data Controller will retain title as to any carrier media provided to the Data Processor as well as any copies or reproductions thereof. The Data Processor will store such media safely and protect them against unauthorized access by third parties. The Data Processor will, upon the Data Controller’s request, provide to the Data Controller all information on the Data Controller’s Personal Data and information. The Data Processor will be obliged to securely delete any test and scrap material, based on an Instruction issued by the Data Controller on a case-by-case basis. Where the Data Controller so decides, the Data Processor will hand over such material to the Data Controller or store it on the Data Controller’s behalf.
(8) The Data Processor will be obliged to self-audit and verify the fulfilment of the above-entitled obligations and will maintain an adequate documentation of such verification which will be provided to the Data Controller upon request.
(9) The Data Processor will inform the Data Controller without undue delay of any Personal Data Breach of Processing of Personal Data it becomes aware of.
§ 4 Obligations of Controller
(1) The Data Controller and Data Processor each will be responsible for conforming with such statutory data protection regulations as are applicable to them.
(2) The Data Controller and Processor will be responsible for fulfilling their duties to inform resulting from Article 33 GDPR.
(3) The Data Controller will, upon termination or expiration of the Base Agreement, and, by way of issuing an Instruction, stipulate, within a period of time set by the Data Controller, the measures to return Personal Data on carrier media or to delete stored Personal Data.
(4) Any additional cost arising in connection with the return or deletion of Personal Data after the termination or expiration of the Base Agreement or arising out of Instructions outside the Base Agreement’s scope shall be borne by the Data Controller.
(5) If applicable, the Data Controller will at all times make sure to have a sufficient legal basis for handing over his own customers’ data to the Data Processor in the event, the processing activities of the Data Processor relate to customers’ data. Such legal basis has to be set forth in writing between the Data Controller and his customer and must be provided to the Data Processor upon request.
§ 5 Enquiries by Data Subjects or Supervisory Authorities
The Data Processor will, without undue delay, inform the Data Controller in case of any request, claim or notice from a Data Subject or any third party and assist and cooperate with Data Controller in order ensure compliance with the Data Protection Laws. Where the Data Controller, based upon GDPR or other applicable data protection law, is obliged to provide information to an individual about the collection, Processing or use of its Personal Data, the Data Processor will assist the Data Controller in making this information available, provided that the Data Controller has instructed Processor in writing to do so.
§ 6 Audit Obligations
The Data Controller may, prior to the commencement of Processing, and in regular intervals thereafter, audit the technical and organizational measures taken by the Data Processor, and will document the resulting findings. For such purpose, the Data Controller will collect voluntary disclosures from the Data Processor. The Data Controller will: (i) ensure that any information request, audit or inspection is undertaken within normal business hours (unless such other time is mandated by a competent data protection regulator) with minimal disruption to Data Processor’s and/or its Sub-Processors’ businesses, and acknowledging that such information request, audit or inspection: (a) will not oblige Data Processor to provide or permit access to information concerning Data Processor’s internal business information or relating to other recipients of services from the Data Processor; and (b) shall be subject to any reasonable policies, procedures or instructions of Data Processor or its Sub-Processors for the purposes of preserving security and confidentiality; and (ii) provide Data Processor at least 30 days’ prior written notice of an information request and/or audit or inspection (unless the competent data protection regulator provides Data Controller with less than 30 days’ notice, in which case Data Controller shall provide Data Processor with as much notice as possible).
If any information request, audit or inspection relates to systems provided by or on the premises of Data Processor’s Sub-Processors, the scope of such information request, audit and/or inspection will be as permitted under the relevant agreement in place between Data Processor and the Sub-Processor.
A maximum of one information request, audit and/or inspection may be requested by Data Controller in any twelve (12) month period unless an additional information request, audit and/or inspection is mandated by a competent data protection regulator in writing.
The Data Processor will cooperate with the Controller in the sense of Art. 28 III h GDPR in the facilitation of any audit or inspection or other work undertaken pursuant to Data Processor’s obligations under this Agreement.
§ 7 Sub-Processors, Subcontractors
(1) The Data Controller generally agrees that the Data Processor may subcontract parts of its contractual obligations hereunder to the Data Processor’s affiliated companies and/or third parties (Sub-Processors) within or outside the EEA. Sub-Processors will only act on the Data Processor’s Instructions when Processing Personal Data and will abide by any applicable data protection laws in effect. The Data Processor agrees and warrants to remain liable to the Data Controller for any acts or omissions of its Sub-Processors related to the subcontracted Processing by them under this Agreement.
(2) Where the Data Processor engages Sub-Processors, the Data Processor will be obliged to pass on the Data Processor’s contractual obligations hereunder as required by the GDPR to such Sub-Processors and will restrict the Sub-Processor’s access to data only to what is necessary to maintain the subcontracted services. Sentence 1 of this paragraph 2 will apply in particular, but will not be limited to, the contractual requirements for confidentiality, data protection and data security stipulated between the parties of the Base Agreement. Furthermore, the Data Processor is responsible for setting-up and maintaining appropriate safeguards between it and the Sub-Processors as stipulated in Article 46 GDPR.
(3) The WebPros / Plesk website https://www.plesk.com/legal lists all Sub-Processors that are currently authorized by WebPros to access or process data on behalf of the Data Processor, only for specific purposes. Depending on the service requested, only specific Sub-Processors may be involved in the Processing of certain data. WebPros will periodically update the applicable list of Sub-Processors on that website. The Data Controller may subscribe to the update service available on https://www.plesk.com/legal in order to remain informed about any changes to this list. Alternatively, the Data Controller hereby commits to periodically check such website for changes in the list of WebPros Sub-Processors and acknowledges that satisfies its needs in regards to Sub-Processor information by the Data Processor.
Sub-Processors of WebPros International L.L.C. / cPanel or WHMCS are listed on schedules 1 and 2 of the cPanel privacy policy, which can be found at https://cpanel.net/privacy-policy/.
If the Data Controller does not approve a newly added Sub-Processor, then without prejudice to any termination rights under the Base Agreement and subject to the applicable terms and conditions, either Party shall have the right to either terminate this Agreement, its Instruction to Process data in writing or reject a specific form of data Processing in writing towards the Data Processor in order to avoid processing by such new Sub-Processor.
§ 8 International Data Transfers
The Data Controller acknowledges that the Data Processor’s Sub-Processors may maintain data processing operations in countries outside the EEA or in countries without an adequate level of data protection, if it is required for the fulfillment of the Data Controller’s Instructions or the underlying agreement. In such case, the Data Processor warrants that such Processing outside the EEA is protected by appropriate safeguards as requested by article 46 of GDPR. Specifically, the Data Processor will only transfer of Personal Data to entities outside the EEA if such entities are bound by EU Standard Contractual Clauses adopted by the EU Commission, Binding Corporate Rules, the EU/Swiss-US Privacy Framework(s) or such other appropriate safeguard to make sure that the foreign entity will have established an adequate level of data protection within its organization by taking the appropriate technical and organizational measures in accordance to GDPR and local data protection laws in effect.
§ 9 Duties to Inform
Where the Data Controller’s Personal Data becomes subject to search and seizure, an attachment order, confiscation during bankruptcy or insolvency proceedings, or similar events or measures by third parties, public authority or government body, while being Processed, the Data Processor will inform the Data Controller without undue delay. The Data Processor will, without undue delay, notify to all pertinent parties in such action, that any Personal Data affected thereby is in the Data Controller’s sole property and area of responsibility, that Personal Data is at the Data Controller’s sole disposition, and that the Data Controller is the responsible body in the sense of the GDPR and if possible, the Data Processor will not disclose any Personal Data of the Customer to the extent allowed by the applicable laws.
§10 Indemnity and Limitation of Liability
Unless expressly stipulated differently in this Agreement, the Base Agreement or the applicable law, the Data Processor is solely liable and responsible for its’ gross negligence and willful misconduct. This limitation of liability also applies to its assigned agents and proxies. In cases of simple negligence, the Data Processor shall only be liable for typical and foreseeable damages, caused by a violation of a cardinal contractual obligation. In this case, however, the Data Processor’s, its affiliates’, officers’, directors’, employees’, agents’, service providers’, suppliers’ or licensors’ liability for indirect damages, business interruption, loss of goodwill or for any type of incidental, special, exemplary, consequential or punitive loss or damages is excluded, regardless of whether such Party has been advised of the possibility of such damages.
Notwithstanding the foregoing, in the event the Data Controller forwards his own customers’ data to the Data Processor for further processing under this Agreement, the Data Controller will indemnify and hold harmless the Data Processor against all claims made by third parties, cost (including legal costs) and fines relating to the legal basis of such data forwarding. In this respect, the Data Controller has the sole and exclusive responsibility of making sure to have a sufficient permission by the Data Subject or his customers and a legal basis to forward data to WebPros for processing. WebPros strictly disclaims all associated liability towards Data Subjects or Data Controller customers, respectively.
Notwithstanding anything to the contrary in this Agreement or the Base Agreement, the Data Processor’s aggregate liability to the Data Controller or any 3rd party arising out of this Agreement or any data Processing services performed hereunder, shall in no event exceed to the limitations set forth in the Base Agreement. For the avoidance of doubt, this section shall not be construed as limiting the liability of either party with respect to claims brought by Data Subjects. The Data Controller and the Data Processor act as joint debtors in respect to such claims.
§11 General, Choice of Law
(1) No change of or amendment to this Agreement and all of its components, including any commitment issued by the Data Processor, will be valid and binding unless made in writing and signed by either Party and unless they make express reference to being a change or amendment to these regulations. The foregoing will also apply to the waiver of this mandatory written form.
(2) If any provision (or part thereof) of this Agreement is held invalid by a court with jurisdiction over the Parties, such provision (or part thereof) will be deemed to be restated to reflect as far as possible the Parties’ original intentions in accordance with applicable law, and the remainder of the Agreement or provision will remain in full force and effect as if the Agreement had been entered into without the invalid provision (or part thereof).
(3) This Agreement is governed by the laws of Switzerland. The courts located in Zürich / Switzerland will have the exclusive jurisdiction over the parties in regards to this Agreement.
(4) Name of the WebPros / Plesk Data Protection Officer: Kai Bollmann ([email protected])
Exhibit 1
A description of Personal Data elements and the purpose of their Processing by the Data Processor on behalf of the Data Controller. The description will state the extent, the nature and purpose of contemplated collection, Processing and use of data, the type of data, and the circle of data subjects.
• The Data Controller may store names and email addresses of certain of its key employees or end – customers in the Data Processor’s Services systems for purposes of account creation or maintenance in order to gain access to use such system for the purposes these Services are offering.
• As a customer of certain Data Processor Services, the Data Processor may further be instructed by the Data Controller to store the names, email addresses and the IP Addresses of the Data Controller’s customers, users and visitors of websites for purposes of authentication, service provision as well as user behavior analysis. If the Data Controller uses the Data Processor’s software to setup and maintain an ecommerce store (e.g. through the software “Sitejet”), the Data Processor is instructed by the Data Controller to collect, forward and Process the names, email addresses, physical addresses, phone numbers and the IP Addresses of the Data Controller’s customers for purposes of authentication, service provision, the initiation of ecommerce transactions as well as the forwarding of data to certain ecommerce providers.
• For Service data, the Processing of data is limited to the timeframe of the underlying Service / subscription relationship. Processing of data collected in the course of ecommerce transactions via the Data Processor’s software solutions is limited to forwarding such data to the respective ecommerce providers and to the Data Controller himself. Such data is not stored or maintained on Data Processor’s systems or servers.
• Every Data Processor employee or subcontractor is bound by a comprehensive WebPros Data Protection Policy. Where access to data is required to be granted from outside the EEA, such access is protected by the appropriate safeguards and guarantees (e.g. by EU Standard Contractual Clauses, EU-US Privacy Framework), required under the applicable Data privacy laws like GDPR or local data protection laws.
Exhibit 2
List of technical and organizational measures taken by WebPros as the Data Processor
1.1 Confidentiality guarantee
1.1.1 Access control
Measures designed to prevent unauthorized persons from gaining access to data processing equipment that processes or uses personal data.
Measures:
- 2FA login to all projects
- Visitors only accompanied by employees
- Office is subject to the exclusive use
- Chip cards / transponder systems
- Electric door locks
- Reception with reception
- Building is purely an office building
- Bell system without camera
- Security locks
- Key regulation with a list
- Doors with knob on the outside
- Monitored entrance area
1.1.2 Physical access control
Measures designed to prevent data processing systems (computers) from being used by unauthorized persons.
Measures:
- General policy data protection and / or security
- Anti-virus software
- Anti-Virus Clients
- Application of 2-factor authentication
- Assignment of user profiles to IT systems
- Use of VPN for remote access
- Use of a software firewall
- Login with username and password
- Mobile Device Management
- Encryption of data carriers
- Encryption of notebooks / tablet
- Smartphone encryption
- Manage user permissions
- Management of rights by a system administrator
- Assignment of user rights
1.1.3 Data access control
Measures to ensure that persons authorized to use a data processing system have access only to data subject to their right of access and that personal data cannot be read, copied, altered or removed without authorization during processing, use and after storage.
Measures:
- Document shredder
- Differentiated authorizations (applications)
- Use of program-technical authorization concepts
- Logging of the output of data carriers
- Logging of access to applications (when entering data)
- Management of user rights by administrators
1.1.4 Separation control
Measures to ensure that data collected for different purposes can be processed separately. This can be ensured, for example, by logical and physical separation of data.
Measures:
- Setting database rights
- Physical separation of systems
- Control via an authorization concept
1.2 Ensuring integrity
1.2.1 Handover control
Measures to ensure that personal data cannot be read, copied, altered or removed without authorization during their electronic transmission or during their transport or storage on data carriers and that it is possible to verify and establish the points to which personal data are to be transmitted by data transmission facilities.
Measures:
- Provisioning over encrypted connections such as sftp, https
- Documentation of the deletion periods
- Use of VPN technology
- Functional responsibilities
1.2.2 Input control
Measures to ensure that it can be subsequently verified and established whether and by whom personal data have been entered,modified or removed in data processing systems.
Measures:
- Clear responsibilities for the deletion of data
- Traceability of data processing through individual user names
- Use of access rights
1.3 Pseudonymization
Measures that guarantee the pseudonymization of data.
Measures:
- Internal instruction to pseudonymize personal data after expiry of the deletion period
1.4 Ensuring availability, resilience and recoverability
1.4.1 Availability (of data)
Measures to ensure that personal data are protected against accidental destruction or loss – ensuring the availability of data.
Measures:
- 99.99% server hardware availability
- Backup & recovery concept
- Data backup concept available
- RAID system / hard disk mirroring
- SLA with hosting service provider
1.4.2 Load capacity (of the systems)
Measures to ensure that personal data are protected against accidental destruction or loss – Ensure the resilience of systems.
Measures:
- Use of intrusion detection systems
- Use of software firewalls
- Installation of current security updates on all application servers
1.4.3 Recoverability (of data / systems)
Measures to ensure that personal data are protected against accidental destruction or loss – Ensure the recoverability of data and systems.
Measures:
- Fire and smoke detection systems
- Fire extinguisher in server room
- No sanitary connections in or above the server room
- Protective socket strips in the server room
- Server room has no windows
- Server room is separated from workstations
- Server room monitoring (humidity)
- Server room monitoring (temperature)
- Server room is air conditioned
- Surge protection devices
1.5 Procedures for periodic review, evaluation and evaluation
1.5.1 Order control
Measures to ensure that personal data processed on behalf of the customer can only be processed in accordance with the instructions of the customer.
Measures:
- Conclusion of the necessary order data agreements
- Conclusion of the necessary standard contractual clauses
- Regulation on the use of subcontractors
- Review of the level of protection of the contractor (initial)
- Agreement on effective control rights vis-à-vis the contractor
- Obligation of the contractor’s employees to maintain data secrecy
1.5.2 Privacy management
Measures that ensure that methods have been evaluated to systematically plan, organize, manage and control the legal and operational requirements of data protection.
Measures:
- Safety concept documented elsewhere
- Appointment of an internal data protection officer
- Documentation of all data protection procedures and regulations
- Carrying out data protection impact assessments (if required)
- Compliance with the information requirements according to Art. 13 DSGVO
- Use of software solutions for data protection management
- Evaluate a formalized process for handling requests for information.
- Implementation of suggestions for improvement
- Regular sensitization of employees to data protection
- Employee training on data protection
- Obligation of employees to data secrecy
- Access options for employees to the regulations on data protection (Wiki / Intranet)
1.5.3 Incident response management
Measures to ensure that security incidents can be prevented or, in the case of security incidents that have already occurred, that data and systems can be protected and that a rapid analysis and resolution of the security incident can be carried out.
Measures:
- Documentation of security incidents
- Involvement of data protection officers in security incidents
- Documented process for reporting security incidents
- Use of firewall and its regular updating
- Use of spam filters and their regular updating
- Use of virus scanners and their regular updating
- Clear process for regulating responsibilities in the event of security incidents
1.5.4 Privacy friendly presets
Measures that ensure that a certain level of data protection already exists in advance through the corresponding technology design (privacy by design) and factory settings (privacy by default) of a software.
Measures:
- Ensuring easy exercise of the right of withdrawal of a data subject
- Personal data is only collected for the purpose for which it is required
WebPros Terms of Service – Product Annex – Sitejet
1. Sitejet is a Service proprietary to WebPros International GmbH, Switzerland as the Vendor, and provided to you via the Provider.
2. The Sitejet Service enables Users to plan, create and, if necessary, host websites for themselves and their customers, as well as to use other services within Sitejet. Users may use the Sitejet Service for their personal benefit or for internal business purposes within their organization, as long as they comply with all terms and conditions of the WebPros Terms of Service. The Sitejet Service and Sitejet Commerce in specific are charged for by the Provider on a per-Website basis at the rates, published by the Provider and within the Sitejet Service.
3. The use of Sitejet Services is conditioned upon your full and unconditioned acceptance of the WebPros Terms of Service, including all applicable Annexes thereto in their then current version. Access to additional Services (such as Sitejet Commerce) is possible after successful registration and, if applicable, payment of the corresponding additional Service fee. During the registration process, you will be asked to provide some personal Information, the collection, use and storage of which is governed by the WebPros Privacy Policy. You are obliged to provide true, accurate, current and complete Information about yourself when requested by the relevant forms and to keep this Information up to date. If you provide Information that does not comply with the above conditions, Sitejet may suspend or terminate your access to all or parts of the Services. Sitejet is not liable for errors in the provision of the Services that are due to untrue, inaccurate, out-of-date or incomplete Information.
4. Some parts or functionalities of the Sitejet Services, such as Sitejet Commerce, may be provided by third-party providers as licensors to the Provider. In specific, Sitejet Commerce is technically provided to you by Ecwid (by Lightspeed) (Service Agreement, Privacy Policy) through the Sitejet Service. The Provider assumes no responsibility for third-party service deliverables, nor does the Provider monitor or control the content provided by third-party providers. Data you make accessible to third-party providers as part of the Services is subject to the data protection provisions of the respective third-party provider. WebPros / the Provider acts as an intermediary between you and the third-party provider, so that all claims regarding the use of this data must first be asserted against the third-party provider.
5. The Sitejet Service allows you to embed content such as images, animations, videos, audio or fonts into your websites. During the creation process of a website and for technical reasons, the uploaded content may be stored by the Provider on servers, located in the European Union until the website is published. Upon publishing a website, created via Sitejet Services, all files are stored on the respective Plesk / cPanel server and no data is retained by WebPros any longer.
6. The checkout process for the Service is performed by an independent payment provider (Stripe). The Provider assumes no responsibility for third-party service deliverables, nor does the Provider monitor or control the content provided to or by the third-party provider.
7. You are responsible for ensuring that all content, even if provided by third parties, complies with these Terms and other related terms of the respective third-party provider. Furthermore, you are solely responsible for compliance with all applicable laws and data protection regulations. If embedded content or services establish a connection to third-party providers and user or visitor data is transmitted to third-party providers as part of this connection, it is your responsibility to obtain appropriate prior consent from users or visitors for this data transmission (e.g. by means of a suitable cookie solution).
WebPros Terms of Service – Product Annex – WP Guardian Control Panel Addon
1. The WP Guardian Control Panel Addon is a Service proprietary to WebPros International GmbH, Switzerland as the Vendor, and provided to you via the Provider.
2. The WP Guardian Service is a vulnerability protection feature for WordPress websites, which automatically protects WordPress websites from most high-impact vulnerabilities until WordPress updates are installed, by applying virtual patches, created by an independent third-party provider through the Service. Whenever a new vulnerability is discovered for a WordPress asset, the third-party provider creates a virtual patch, which prevents the specific vulnerability from being exploited on the protected website. The Service automatically downloads and applies such patch for as long as the vulnerability is not fixed via an installed WordPress (core, plugin or themes) update.
3. The WP Guardian Service is licensed by the Provider on a subscription basis per WordPress installation (per website) at the subscription rates, shown in the checkout process. For multi-site WordPress installations, the WP Guardian Service currently only protects the main website.
4. WebPros’ WP Toolkit as the basis of the Service requires to be able to communicate with the licensing server every 24 hours in order for the Service to function. The Service may further require an up-to-date version of the underlying control panel to function. Accordingly, the server administrator is ultimately in control of the Service. The Provider is not liable for service outages or degradations, caused by adverse server configurations made by the server administrator.
5. The checkout process for the Service is performed by an independent payment provider (Stripe). The Provider assumes no responsibility for third-party service deliverables, nor does the Provider monitor or control the content provided to or by the third-party provider.
6. Subscriptions can be initiated as well as terminated towards their next renewal date in the Vendors’ control panel applications, using the “manage my subscriptions” option.
7. The Provider does not guarantee that the Service will be uninterrupted, error-free or will be able to find and eliminate all vulnerabilities at any time. The Service is provided on an as-is and as-available basis.
WebPros Terms of Service – Product Annex – Site Quality Monitoring powered by koality Service
1. The Site Quality Monitoring Service is a proprietary tool offered by WebPros International GmbH, Switzerland, as the Vendor, and is provided to you through the Provider.
2. Site Quality Monitoring Service offers a robust solution for monitoring the health and performance of websites. This service enables continuous scanning of websites to detect issues such as programming errors, defects, downtime, slow load times, and SEO deficiencies. It provides detailed insights and reports to help maintain and enhance site quality, thereby optimizing user experience and search engine rankings.
3. Site Quality Monitoring is licensed on a subscription basis per website at the subscription rates outlined during the checkout process. The service includes features such as alerts, comprehensive performance analysis, and recommendations for improvements.
4. As the foundation of the Site Quality Monitoring Service, WebPros’ proprietary technology requires regular communication with the 360 Monitoring and koality backend to monitor websites in order to detect performance degradations, website quality and health issues as well as downtime. The Service may also necessitate an up-to-date version of the underlying control panel software for optimal performance. Server administrators maintain ultimate control over the operational environment of the Service. The Provider is not responsible for any service interruptions or performance issues caused by improper server configurations made by the server administrator.
5. The processing of payments and management of subscriptions for the Site Quality Monitoring Service is handled through an independent payment provider (Stripe). The Provider does not assume responsibility for third-party service deliverables nor does it oversee the content provided to or by third-party providers.
6. Subscriptions can be initiated or terminated in accordance with their upcoming renewal date through the Vendor’s control panel applications, utilizing the “manage subscriptions” option.
7. The Provider does not ensure that the Service will be uninterrupted or error-free, nor that it will consistently identify all site quality issues. The Site Quality Monitoring Service is made available on an as-is and as-available basis.
WebPros Terms of Service – Product Annex – 360 Monitoring Service
1. The 360 Monitoring Service is a proprietary offering from WebPros International GmbH, Switzerland, acting as the Vendor, and is made available to you through the Provider.
2. The 360 Monitoring Service is a comprehensive server and website monitoring solution, designed to provide real-time alerts and performance data across various digital assets. The service enables users to monitor server health, website uptime, and performance metrics efficiently from a centralized dashboard. By using advanced monitoring techniques, the service quickly identifies potential issues and notifies the user, helping to minimize downtime and improve operational reliability.
3. 360 Monitoring is licensed on a subscription basis per server or website installation at subscription rates, displayed during the checkout process. The Service encompasses a variety of monitoring options including, but not limited to, server health checks, website uptime tracking, and performance analysis.
4. As the foundation of the 360 Monitoring Service, WebPros’ proprietary technology requires regular communication with the 360 Monitoring backend to monitor servers and websites in order to detect performance degradations, server and website issues as well as downtime. The Service may also necessitate an up-to-date version of the underlying control panel software for optimal performance. Server administrators maintain ultimate control over the operational environment of the Service. The Provider is not responsible for any service interruptions or performance issues caused by improper server configurations made by the server administrator.
5. The payment and subscription management for the 360 Monitoring Service is facilitated through an independent payment provider (Cleverbridge or Stripe). The Provider assumes no responsibility for the deliverables of third-party services, nor does the Provider have oversight or control over the content provided to or by third-party providers.
6. Subscriptions to the 360 Monitoring Service can be initiated or canceled in alignment with their next renewal date through the Vendor’s control panel applications, by selecting the “manage my subscriptions” option.
7. The Provider does not guarantee uninterrupted or error-free service, nor does it claim to resolve all potential performance issues at all times. The 360 Monitoring Service is provided on an as-is and as-available basis, and users engage with the service under these terms.
WITHDRAWAL FORM
If you as a consumer wish to withdraw from the contract concluded with WebPros International GmbH within the granted withdrawal period, please fill out this form, sign it and send it back to:
WebPros International GmbH, Vordergasse 59, 8200 Schaffhausen / CH
Email: [email protected]