Spendkey services are provided by, and you’re (“Customer”) contracting with:
incorporated and registered in England and Wales with company number 13024995 whose registered office is at 7-9 Macon Court, Crewe, Cheshire, CW1 6EA, United Kingdom, operating under the laws of England, United Kingdom.
The Supplier has developed certain software applications and platforms which it makes available to subscribers via the internet on a pay-per-transaction basis for the purpose of categorising and analysing 3rd party expenditure and related activities.
The Customer wishes to use the Supplier's Services in its internal business operations.
The Supplier has agreed to provide, and the Customer has agreed to take and pay for the Supplier's Services subject to the terms and conditions of this agreement.
WHEREBY IT IS AGREED as follows:
The definitions and rules of interpretation in this clause apply in this agreement.
"Authorised Users" means those employees, agents and independent contractors of the Customer who reside in the Territory and who are authorised by the Customer to import Transaction Rows and use the Services and the Documentation, as further described in clause 2.3.3;
"Business Day" means a day other than a Saturday, Sunday or public holiday in England when banks in London are open for business;
"Confidential Information" means information that is proprietary or confidential and is either clearly labelled as such or identified as Confidential Information in clause 10;
"Customer Data" means the input of Transaction Rows by the Customer, Authorised Users, or the Supplier on the Customer's behalf into the Spendkey web interface for the purpose of using the Services or facilitating the Customer's use of the Services and shall include all modifications thereof;
"Deliverable" means any materials, software or other output generated by the Supplier or the Supplier Personnel in performing its obligations under this agreement;
"Documentation" means the document or help menu made available to the Customer by the Supplier online via www.spendkey.co.uk or such other web address notified by the Supplier to the Customer from time to time which sets out a description of the Services and the user instructions for the Services;
"Effective Date" means the date of this agreement;
"Initial Term" means 90 days from the Effective Date
"Normal Business Hours" means 9.00 am to 5.00 pm UK time, each Business Day;
"Renewal Period" has the meaning given in clause 13 (being successive periods of 12 months following the Initial Term);
"Services" means the license services provided by the Supplier to the Customer under this agreement via www.spendkey.co.uk or any other website notified to the Customer by the Supplier from time to time, as more particularly described in the Documentation;
"Software" means the online software applications provided by the Supplier as part of the Services;
"License Fees" means the license fees payable by the Customer to the Supplier for the number of Transaction Rows used by the Customer, as set out in Schedule 1: Fees;
"Supplier Personnel" means Supplier's directors, officers, employees, agents, contractors and subcontractors and the employees of its agents, contractors and subcontractors;
"Support Services Policy" means the Supplier's policy for providing support in relation to the Services as set out in Schedule 2: Support Services Policy;
"Term" has the meaning given in clause 13 (being the Initial Term together with any subsequent renewals);
“Territory” means UK for the purposes of this agreement
"Transaction Rows" means the number of Transaction Rows purchased by the Customer pursuant to clause 8 which entitle Authorised Users to access the Software, import Customer Data and use the Services and the Documentation in accordance with this agreement;
Clause, schedule and paragraph headings shall not affect the interpretation of this agreement.
Any reference to persons includes natural persons, firms, partnerships, limited liability partnerships, companies, corporations, unincorporated associations, local authorities, governments, states, foundations and trusts (in each case whether or not having separate legal personality) and any agency of any of the above.
A reference to a company shall include any company, corporation or other body corporate, wherever and however incorporated or established.
Unless the context otherwise requires, words in the singular shall include the plural and in the plural shall include the singular.
Unless the context otherwise requires, a reference to one gender shall include a reference to all genders.
A reference to a statute or statutory provision is a reference to it as it is in force as at the date of this agreement.
A reference to a statute or statutory provision shall include all subordinate legislation made as at the date of this agreement under that statute or statutory provision.
A reference to writing or written includes faxes but not e-mail.
References to clauses and schedules are to the clauses and schedules of this agreement; references to paragraphs are to paragraphs of the relevant schedule to this agreement.
Subject to the Customer purchasing Transaction Rows in accordance with clause 3 and clause 8.1, the restrictions set out in this clause 2 and the other terms and conditions of this agreement, the Supplier hereby grants to the Customer a non-exclusive, non-transferable right to permit the Authorised Users to access the Software, import Transaction Rows and to use the Services and the Documentation during the Term solely for the Customer's internal business operations. The licence terms governing the use of the Deliverables is set out in clause 9.4 below.
In relation to the Transaction Rows, the Customer undertakes that:
the maximum number of Transaction Rows that it is authorised to import and use the Services and the Documentation shall not exceed the number of Transaction Rows it has purchased from time to time;
it shall maintain a written, up to date record of Transaction Rows and provide such record to the Supplier within 5 Business Days of the Supplier's written request at any time or times;
it shall permit the Supplier to audit the Services in order to establish the use of Transaction Rows in each Renewal Period. Such audit may be conducted no more than once per quarter, at the Supplier's expense, and this right shall be exercised with reasonable prior notice, in such a manner as not to substantially interfere with the Customer's normal conduct of business.
In relation to the Authorised Users, the Customer undertakes that:
it will not allow or suffer any username or password to be used by more than one individual Authorised User unless it has been reassigned in its entirety to another individual Authorised User, in which case the prior Authorised User shall no longer have any right to access or use the Services and/or Documentation;
each Authorised User shall keep a secure password for his use of the Services and Documentation, that such password shall be changed no less frequently than Monthly and that each Authorised User shall keep his password confidential;
it shall maintain a written, up to date list of current Authorised Users and provide such list to the Supplier within 5 Business Days of the Supplier's written request at any time or times;
it shall permit the Supplier to audit the Services in order to establish the use of usernames and passwords of Authorised Users within the Territory. Such audit may be conducted no more than once per quarter, at the Supplier's expense, and this right shall be exercised with reasonable prior notice, in such a manner as not to substantially interfere with the Customer's normal conduct of business;
If any of the audits referred to in clause 2.2.3 and 2.3.4 reveal that the maximum number of Transaction Rows has been exceeded or that any username or password has been provided to any individual outside the Territory, then without prejudice to the Supplier's other rights, the Customer shall promptly disable the import of Transaction Rows and disable usernames and passwords and the Supplier shall not issue any new Transaction Rows, usernames and passwords; and
if any of the audits referred to in clause 2.2.3 and 2.3.4 reveal that the Customer has underpaid License Fees to the Supplier, then without prejudice to the Supplier's other rights, the Customer shall pay to the Supplier an amount equal to such underpayment as calculated in accordance with the prices set out in Schedule 1: Fees within 7 Business Days of the date of the relevant audit.
The Customer shall not:
except as may be allowed by any applicable law which is incapable of exclusion by agreement between the parties:
and except to the extent expressly permitted under this agreement, attempt to copy, modify, duplicate, create derivative works from, frame, mirror, republish, download, display, transmit, or distribute all or any portion of the Software and/or Documentation (as applicable) in any form or media or by any means; or
attempt to reverse compile, disassemble, reverse engineer or otherwise reduce to human-perceivable form all or any part of the Software; or
access all or any part of the Services and Documentation in order to build a product or service which competes with the Services and/or the Documentation; or
use the Services and/or Documentation to provide services to third parties; or
subject to clause 21.1, license, sell, rent, lease, transfer, assign, distribute, display, disclose, or otherwise commercially exploit, or otherwise make the Services and/or Documentation available to any third party except the Authorised Users, or
attempt to obtain, or assist third parties in obtaining, access to the Services and/or Documentation, other than as provided under this clause 2; and
The Customer shall use all reasonable endeavours to prevent any unauthorised access to, or use of, the Services and/or the Documentation and, in the event of any such unauthorised access or use, promptly notify the Supplier.
The rights provided under this clause 2 are granted to the Customer only and shall not be considered granted to any subsidiary or holding company of the Customer.
ADDITIONAL TRANSACTION ROWS
Subject to clause 3.2, the Customer may, from time to time during the Term, purchase additional Transaction Rows and the Supplier shall grant the import of such additional Transaction Rows to the Software in accordance with the provisions of this agreement.
If the Customer wishes to purchase additional Transaction Rows, the Customer shall purchase these by paying the relevant license fees to the Supplier as per the License Fees outlined in Schedule 1: Fees.
The Supplier shall, during the Term, provide the Services and make available the Documentation to the Customer on and subject to the terms of this agreement.
The Supplier shall use reasonable endeavours to make the Services available 24 hours a day, seven days a week, except for:
planned maintenance carried out during the maintenance window of 10.00 pm to 4.00 am UK time; and
unscheduled maintenance performed outside Normal Business Hours.
The Supplier will, as part of the Services and at no additional cost to the Customer, provide the Customer with the Supplier's standard customer support services during Normal Business Hours in accordance with Schedule 2: Support Services Policy
The Supplier may amend the Support Services Policy in its sole and absolute discretion from time to time. The Customer may purchase enhanced support services separately at the Supplier's then current rates.
The Customer shall own all right, title and interest in and to all of the Customer Data and shall have sole responsibility for the legality, reliability, integrity, accuracy and quality of the Customer Data.
In the event of any loss or damage to Customer Data, the Customer's sole and exclusive remedy shall be for the Supplier to use reasonable endeavours to restore the lost or damaged Customer Data. The Supplier shall not be responsible for any loss, destruction, alteration or disclosure of Customer Data caused by any third party (except those third parties sub-contracted by the Supplier to perform services related to Customer Data maintenance and back-up).
The Customer grants Supplier a worldwide, non-exclusive, limited term licence to access, use, copy, distribute, perform and display Customer Data only as reasonably necessary to provide the Services to Authorised Users in accordance with this Agreement.
Both Parties will comply with Schedule 3: Personal Data Processing Terms and all applicable requirements of the Data Protection Legislation. This clause 5 and Schedule 3: Personal Data Processing Terms are in addition to, and does not relieve, remove or replace, a Party’s obligations or rights under the Data Protection Legislation.
The Parties acknowledge that if Supplier processes any Personal Data on the Customer’s behalf when performing its obligations under this Agreement, the Customer is the Controller and Supplier is the Processor for the purposes of the Data Protection Legislation.
Without prejudice to the generality of clause 5.5, the Customer will ensure that it has all necessary appropriate consents and notices in place to enable lawful transfer of the Personal Data to Supplier for the duration and purposes of this Agreement so that Supplier may lawfully use, Process and transfer the Personal Data in accordance with this Agreement on the Customer’s behalf.
The Supplier undertakes that the Services will be performed substantially in accordance with the Documentation and with reasonable skill and care.
The undertaking at clause 6.1 shall not apply to the extent of any non-conformance which is caused by use of the Services contrary to the Supplier's instructions, or modification or alteration of the Services by any party other than the Supplier or the Supplier's duly authorised contractors or agents. If the Services do not conform with the undertaking at clause 6.1, Supplier will, at its expense, use all reasonable commercial endeavours to correct any such non-conformance promptly, or provide the Customer with an alternative means of accomplishing the desired performance. Such correction or substitution constitutes the Customer's sole and exclusive remedy for any breach of the undertaking set out in clause 6.1. Notwithstanding the foregoing, the Supplier:
does not warrant that the Customer's use of the Services will be uninterrupted or error-free; or that the Services, Deliverables and/or Documentation and/or any information obtained by the Customer through the Services will meet the Customer's requirements; or the Services will be free from vulnerabilities; and
is not responsible for any delays, delivery failures, or any other loss or damage resulting from the transfer of data over communications networks and facilities, including the internet, and the Customer acknowledges that the Services and Documentation may be subject to limitations, delays and other problems inherent in the use of such communications facilities.
This agreement shall not prevent the Supplier from entering into similar agreements with third parties, or from independently developing, using, selling or licensing documentation, products and/or services which are similar to those provided under this agreement.
This agreement shall not prevent the Supplier from sharing any aggregate, anonymised Customer Data to any third-party providers from time to time and as required by the Supplier.
The Supplier warrants that it has and will maintain all necessary licences, consents, and permissions necessary for the performance of its obligations under this agreement.
The Customer shall:
provide the Supplier with:
all necessary co-operation in relation to this agreement; and
all necessary access to such information as may be required by the Supplier;
in order to provide the Services, including but not limited to Customer Data, security access information and configuration services;
comply with all applicable laws and regulations with respect to its activities under this agreement;
carry out all other Customer responsibilities set out in this agreement in a timely and efficient manner. In the event of any delays in the Customer's provision of such assistance as agreed by the parties, the Supplier may adjust any agreed timetable or delivery schedule as reasonably necessary;
ensure that the Authorised Users use the Services and the Documentation in accordance with the terms and conditions of this agreement and shall be responsible for any Authorised User's breach of this agreement;
obtain and shall maintain all necessary licences, consents, and permissions necessary for the Supplier, its contractors and agents to perform their obligations under this agreement, including without limitation the Services;
ensure that its network and systems comply with the relevant specifications provided by the Supplier from time to time; and
be solely responsible for procuring and maintaining its network connections and telecommunications links from its systems to the Supplier's data centres, and all problems, conditions, delays, delivery failures and all other loss or damage arising from or relating to the Customer's network connections or telecommunications links or caused by the internet.
CHARGES AND PAYMENT
The Customer shall pay the annual License Fees to the Supplier for the purchased Transaction Rows within 30 days from the start of each Renewal Period in accordance with this clause 8 and as set out in Schedule 1: Fees.
If the Supplier has not received payment prior to commencement of the use of the Services, and without prejudice to any other rights and remedies of the Supplier:
the Supplier may, without liability to the Customer, disable the Customer's password, account and access to all or part of the Services and the Supplier shall be under no obligation to provide any or all of the Services while the invoice(s) concerned remain unpaid; and
interest shall accrue on a daily basis on such due amounts at an annual rate equal to 5% over the then-current base lending rate of the Supplier's bankers in the UK from time to time, commencing on the due date and continuing until fully paid, whether before or after judgment.
All amounts and fees stated or referred to in this agreement:
are, subject to clause 12.3.2, non-cancellable and non-refundable;
are exclusive of the applicable value added tax.
If, at any time whilst using the Services, the Customer exceeds the amount of disk storage space specified in the Documentation, the Supplier shall charge the Customer, and the Customer shall pay, the Supplier's then current excess data storage fees. The Supplier's excess data storage fees current as at the Effective Date are set out in Schedule 1: Fees.
The Supplier shall be entitled to increase the License Fees, the fees payable in respect of the additional Transaction Rows purchased pursuant to clause 3 and/or the excess storage fees payable pursuant to clause 8.4 at the start of each renewal period upon 30 days' prior notice to the Customer.
A price increase to reflect indexation will apply to the Charges on an annual basis, with the first increase being applied on the first anniversary. Charges as a result of indexation, will be based on the following principles:
where the annual percentage increase in the National Living Wage is higher than the annual percentage increase in RPI, the following calculation will apply:
UK Indexation % Increase = 63.4% x annual percentage increase in National Living Wage +36.6% x annual percentage increase in RPI;
where the annual percentage increase in the National Living Wage is equal to or lower than the annual percentage increase in RPI, the following calculation will apply:
UK Indexation % Increase = Annual percentage increase in RPI
The Customer acknowledges and agrees that the Supplier and/or its licensors own all intellectual property rights in the Services and the Documentation. Except as expressly stated herein, this agreement does not grant the Customer any rights to, or in, patents, copyright, database right, trade secrets, trade names, trademarks (whether registered or unregistered), or any other rights or licences in respect of the Services or the Documentation.
As set out in clause 5.1, the Customer owns all right, title and interest in and to the Customer Data. Customer grants to Supplier and all Supplier Personnel, or shall procure the grant of, a worldwide, royalty-free, perpetual and irrevocable, non-exclusive, transferable licence to use, modify, adapt, copy and/or create derivative works of any of the Customer Data to the extent required to use, receive and fully enjoy the benefit of the Services, Documentation and/or Deliverables for its normal business purposes.
Supplier shall own all right, title and interest, including any intellectual property rights, in and to any Deliverables (including any work in progress and documentation of work developed by Supplier or Supplier Personnel in connection with the Services).
Supplier grants to Customer a worldwide, royalty-free, perpetual and irrevocable, non-exclusive and transferable licence to use the Deliverables solely for the Customer's internal business operations.
Each party may be given access to Confidential Information from the other party in order to perform its obligations under this agreement. A party's Confidential Information shall not be deemed to include information that:
is or becomes publicly known other than through any act or omission of the receiving party;
was in the other party's lawful possession before the disclosure;
is lawfully disclosed to the receiving party by a third party without restriction on disclosure;
is independently developed by the receiving party, which independent development can be shown by written evidence; or
is required to be disclosed by law, by any court of competent jurisdiction or by any regulatory or administrative body.
Subject to clauses 6.4, 9.2 and 9.4, each party shall hold the other's Confidential Information in confidence and, unless required by law, not make the other's Confidential Information available to any third party, or use the other's Confidential Information for any purpose other than the implementation of this agreement.
Each party shall take all reasonable steps to ensure that the other's Confidential Information to which it has access is not disclosed or distributed by its employees or agents in violation of the terms of this agreement.
Neither party shall be responsible for any loss, destruction, alteration or disclosure of Confidential Information caused by any third party.
The Customer acknowledges that details of the Services, and the results of any performance tests of the Services, constitute the Supplier's Confidential Information.
The Supplier acknowledges that the Customer Data is the Confidential Information of the Customer.
This clause 10 shall survive termination of this agreement, however arising.
No party shall make, or permit any person to make, any public announcement concerning this agreement without the prior written consent of the other parties (such consent not to be unreasonably withheld or delayed), except as required by law, any governmental or regulatory authority (including, without limitation, any relevant securities exchange), any court or other authority of competent jurisdiction.
The Customer shall defend, indemnify and hold harmless and keep indemnified the Supplier and/or all Supplier Personnel against claims, actions, proceedings, losses, damages, expenses and costs (including without limitation court costs and reasonable legal fees) arising out of or in connection with the Customer's and any Authorised User's use of the Transaction Rows, Services, Deliverables and/or Documentation
If a claim to which clause 11.1 applies is made against the Supplier and/or any Supplier Personnel, the following procedures apply:
the Supplier shall give the Customer prompt notice of any such claim;
the Supplier provides reasonable co-operation to the Customer in the defence and settlement of such claim, at the Customer's expense; and
the Customer is given sole authority to defend or settle the claim.
Failure by the Supplier to comply with the indemnification procedures in clause 11.1 does not relieve the Customer of any obligation to indemnify the Supplier and/or any Supplier Personnel in respect of any claim.
The Supplier shall defend the Customer against any claim that the Services, Deliverables (excluding any Customer Data included in the Deliverables) or Documentation infringes any United Kingdom patent effective as of the Effective Date, copyright, trademark, database right or right of confidentiality, and shall indemnify the Customer for any amounts awarded against the Customer in judgment or settlement of such claims, provided that:
the Supplier is given prompt notice of any such claim;
the Customer provides reasonable co-operation to the Supplier in the defence and settlement of such claim, at the Supplier's expense; and
the Supplier is given sole authority to defend or settle the claim.
In the defence or settlement of any claim, the Supplier may procure the right for the Customer to continue using the Services, replace or modify the Services, Documentation and/or Deliverables so that they become non-infringing or, if such remedies are not reasonably available, terminate this agreement on two  Business Days' notice to the Customer without any additional liability or obligation to pay liquidated damages or other additional costs to the Customer.
In no event shall the Supplier, its employees, agents and sub-contractors be liable to the Customer to the extent that the alleged infringement is based on:
a modification of the Services, Deliverables or Documentation by anyone other than the Supplier; or
the Customer's use of the Services, Deliverables or Documentation in a manner contrary to the instructions given to the Customer by the Supplier; or
the Customer's use of the Services, Deliverables or Documentation after notice of the alleged or actual infringement from the Supplier or any appropriate authority.
The foregoing and clause 12.3.2 states the Customer's sole and exclusive rights and remedies, and the Supplier's (including the Supplier's employees', agents' and sub-contractors') entire obligations and liability, for infringement of any patent, copyright, trademark, database right or right of confidentiality.
LIMITATION OF LIABILITY
Nothing in this agreement shall operate so as to exclude or limit the liability of either party to the other for:
death or personal injury arising out of that party's negligence; or
any other liability which cannot be excluded or limited by law.
Except as expressly and specifically provided in this agreement:
the Customer assumes sole responsibility for results obtained from the use of the Services, Deliverables and the Documentation by the Customer, and for conclusions drawn from such use. The Supplier shall have no liability for any damage caused by errors or omissions in any information, instructions or scripts provided to the Supplier by the Customer in connection with the Services, Documentation and/or creation or provision of the Deliverables or any actions taken by the Supplier at the Customer's direction;
all warranties, representations, conditions and all other terms of any kind whatsoever implied by statute or common law are, to the fullest extent permitted by applicable law, excluded from this agreement; and
the Services, Deliverables and the Documentation are provided to the Customer on an "as is" basis.
Subject to clause 12.1 and clause 12.2:
the Supplier shall not be liable whether in tort (including negligence), breach of statutory duty, contract, misrepresentation (whether tortious or statutory), restitution, under any indemnity or otherwise for any loss of profits, loss of business, depletion of goodwill and/or similar losses or loss or corruption of data or information, or pure economic loss, or for any special, indirect or consequential loss, costs, damages, charges or expenses however arising under this agreement; and
the Supplier's (including any Supplier Personnel's) total aggregate liability in contract (including in respect of the indemnity at clause 11.1), tort (including negligence), breach of statutory duty, misrepresentation (whether tortious or statutory), restitution or otherwise, arising under or in connection with this agreement shall be limited to the total License Fees paid for the Transaction Rows during the 12 months immediately preceding the date on which the claim arose.
TERM AND TERMINATION
This agreement shall, unless otherwise terminated as provided in this clause 13, commence on the Effective Date and shall continue for the Initial Term. Thereafter, the agreement shall automatically renew for successive periods of 12 months (each a “Renewal Period”), unless:
either party notifies the other party of termination, in writing, at least 60 days before the end of the Initial Term, in which case this agreement shall terminate upon the expiry of the applicable Initial Term; or
either party notifies the other party of termination, in writing, at least 60 days before the end of a Renewal Period, in which case this agreement shall terminate upon the expiry of the relevant Renewal Period; or
otherwise terminated in accordance with the provisions of this agreement;
and the Initial Term together with any subsequent renewal shall constitute the Term.
Supplier reserves the right to terminate this Agreement at any time for convenience with 60 days’ notice to Customer provided that Supplier will refund Customer any prepaid Fees prorated to cover the remainder of the term of the Renewal Period, as applicable, after the effective date of termination.
Without affecting any other right or remedy available to it, either party may terminate this agreement with immediate effect by giving written notice to the other party if:
the other party fails to pay any amount due under this agreement on the due date for payment and remains in default not less than 3 days after being notified in writing to make such payment;
the other party commits a material breach of any other term of this agreement which breach is irremediable or (if such breach is remediable) fails to remedy that breach within a period of 30 days after being notified in writing to do so;
the other party repeatedly breaches any of the terms of this agreement in such a manner as to reasonably justify the opinion that its conduct is inconsistent with it having the intention or ability to give effect to the terms of this agreement;
the other party suspends, or threatens to suspend, payment of its debts or is unable to pay its debts as they fall due or admits inability to pay its debts or is deemed unable to pay its debts within the meaning of the UK Enterprise and Regulatory Reform Act 2013;
the other party commences negotiations with all or any class of its creditors with a view to rescheduling any of its debts, or makes a proposal for or enters into any compromise or arrangement with its creditors other than for the sole purpose of a scheme for a solvent amalgamation of that other party with one or more other companies or the solvent reconstruction of that other party;
a petition is filed, a notice is given, a resolution is passed, or an order is made, for or in connection with the winding up of that other party other than for the sole purpose of a scheme for a solvent amalgamation of that other party with one or more other companies or the solvent reconstruction of that other party;
an application is made to court, or an order is made, for the appointment of an administrator, or if a notice of intention to appoint an administrator is given or if an administrator is appointed, over the other party;
the holder of a qualifying floating charge over the assets of that other party has become entitled to appoint or has appointed an administrative receiver;
a person becomes entitled to appoint a receiver over the assets of the other party or a receiver is appointed over the assets of the other party;
a creditor or encumbrancer of the other party attaches or takes possession of, or a distress, execution, sequestration or other such process is levied or enforced on or sued against, the whole or any part of the other party's assets and such attachment or process is not discharged within 14 days;
any event occurs, or proceeding is taken, with respect to the other party in any jurisdiction to which it is subject that has an effect equivalent or similar to any of the events mentioned in clause 13.3.4 to clause 13.3.10 (inclusive); or
the other party suspends or ceases, or threatens to suspend or cease, carrying on all or a substantial part of its business.
On termination of this agreement for any reason:
all licences granted under this agreement shall immediately terminate except for any perpetual and irrevocable licences which shall continue notwithstanding the termination of this agreement;
subject to clauses 6.4, 9.2 and 9.4, each party shall return and make no further use of any equipment, property, Documentation and other items (and all copies of them) belonging to the other party;
subject to clauses 6.4, 9.2 and 9.4, the Supplier may destroy or otherwise dispose of any of the Customer Data in its possession.
any rights, remedies, obligations or liabilities of the parties that have accrued up to the date of termination, including the right to claim damages in respect of any breach of the agreement which existed at or before the date of termination shall not be affected or prejudiced.
The Supplier shall have no liability to the Customer under this agreement if it is prevented from or delayed in performing its obligations under this agreement, or from carrying on its business, by acts, events, omissions or accidents beyond its reasonable control, including, without limitation, strikes, lock-outs or other industrial disputes (whether involving the workforce of the Supplier or any other party), failure of a utility service or transport or telecommunications network, act of God, war, riot, civil commotion, malicious damage, compliance with any law or governmental order, rule, regulation or direction, accident, breakdown of plant or machinery, fire, flood, storm or default of suppliers or sub-contractors, provided that the Customer is notified of such an event and its expected duration.
If there is an inconsistency between any of the provisions in the main body of this agreement and any terms on www.spendkey.co.uk, the provisions in the main body of this agreement shall prevail.
No variation of this agreement shall be effective unless it is in writing and signed by the parties (or their authorised representatives).
No failure or delay by a party to exercise any right or remedy provided under this agreement or by law shall constitute a waiver of that or any other right or remedy, nor shall it prevent or restrict the further exercise of that or any other right or remedy. No single or partial exercise of such right or remedy shall prevent or restrict the further exercise of that or any other right or remedy.
RIGHTS AND REMEDIES
Except as expressly provided in this agreement, the rights and remedies provided under this agreement are in addition to, and not exclusive of, any rights or remedies provided by law.
If any provision (or part of a provision) of this agreement is found by any court or administrative body of competent jurisdiction to be invalid, unenforceable or illegal, the other provisions shall remain in force.
If any invalid, unenforceable or illegal provision would be valid, enforceable or legal if some part of it were deleted, the provision shall apply with whatever modification is necessary to give effect to the commercial intention of the parties.
This agreement, and any documents referred to in it, constitute the whole agreement between the parties and supersede any previous arrangement, understanding or agreement between them relating to the subject matter they cover.
Each of the parties acknowledges and agrees that in entering into this agreement it does not rely on any undertaking, promise, assurance, statement, representation, warranty or understanding (whether in writing or not) of any person (whether party to this agreement or not) relating to the subject matter of this agreement, other than as expressly set out in this agreement.
The Customer shall not, without the prior written consent of the Supplier, assign, transfer, charge, sub-contract or deal in any other manner with all or any of its rights or obligations under this agreement.
The Supplier may at any time assign, transfer, charge, sub-contract or deal in any other manner with all or any of its rights or obligations under this agreement.
NO PARTNERSHIP OR AGENCY
Nothing in this agreement is intended to or shall operate to create a partnership between the parties, or authorise either party to act as agent for the other, and neither party shall have the authority to act in the name or on behalf of or otherwise to bind the other in any way (including, but not limited to, the making of any representation or warranty, the assumption of any obligation or liability and the exercise of any right or power).
Any notice required to be given under this agreement shall be in writing and sent by recorded delivery post to the other party at its address set out in this agreement, or such other address as may have been notified by that party for such purposes, as set out in this agreement.
A correctly addressed notice sent by recorded delivery post shall be deemed to have been received at the time at which it would have been delivered in the normal course of post.
This agreement and any dispute or claim arising out of or in connection with it or its subject matter or formation (including non-contractual disputes or claims) shall be governed by and construed in accordance with the laws of England and Wales, excluding any other choice of law or conflict of law rules or provisions (whether England and Wales, foreign or international).
Each party irrevocably agrees that the courts in the judicial district of London shall have exclusive jurisdiction to settle any dispute or claim arising out of or in connection with this agreement or its subject matter or formation (including non-contractual disputes or claims)
Schedule 1: Fees
The License Fee for the Initial Term are mentioned and agreed between the Supplier and the Customer as provided on www.spendkey.co.uk/pricing
Any variation to the pricing shall be agreed upon and signed by both parties as an addendum to these Terms of Service / SaaS Agreement.
Schedule 2: Support Services Policy
P3 issues reported in the last hour of business day will be considered in next day
P1 incident SLA will always take priority over other SLAs. For example, during ongoing P1 incident, only SLA for P1 incidents will be in effect and all other SLAs will not be applicable till the time P1 incidents are resolved
Schedule 3: Personal Data Processing Terms
Any terms not defined in this schedule shall have the meanings given to them in the Contract.
“Processor” means a natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Controller;
“Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
“Data Subject” means the natural person to whom Customer Personal Data relates;
“EEA” means the member states of the European Union, Iceland, Liechtenstein, Norway and Switzerland,1 and including the United Kingdom after its departure from the European Union2
“Personal Data” means any information, including information in electronic form, relating to a natural person who can be identified (a) from those data or (b) from those data and the use of additional information, taking into account all means reasonably likely to be used by anyone to identify the person directly or indirectly and includes, without limitation, first and last names, ID numbers, including government-issued identifiers, personal dates such as birthdates, email addresses, location data, internet protocol address or other online identifiers and information concerning race, ethnicity or mental or physical health. For clarity, Personal Data includes Personal Data that is publicly available and excludes Personal Data that has been anonymised so it’s no longer possible to re-identify a Data Subject from the information, taking into account all means likely reasonably to be used by Processor or anyone else to re-identify them;
“Data Privacy Legislation” means the national law(s) implementing the European Union Data Protection Directive (Directive 95/46/EC) and as from 25 May 2018, the General Data Protection Regulation (EU) 2016/679 (hereafter “GDPR”) including any national law in the execution of the GDPR
“Processing” means any operation or set of operations performed on Personal Data, whether or not by automated means, such as accessing, collection, downloading, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, blocking, erasure or destruction;
“Customer Personal Data” means any Personal Data submitted by Customer or any Customer Network Firm to Processor or that is otherwise processed by or on behalf of the Processor in connection with the Services;
“Subprocessor” means anyone engaged by Processor to perform processing that Processor performs on behalf of Customer or any Customer Network Firm;
"Business Day" means any weekday other than a bank or public holiday in England;
‘”Customer Network Firm” means the member firms of the global network of Customer, all members of which are separate, independent legal entities.
Scope of processing
Annex I records (i) the types of Personal Data processed by the Service Provider and (ii) the Data Subject and (iii) the nature and purpose of the processing performed by the Service Provider on Customer Personal Data.
3.1 The Service Provider can only act upon specific instructions of Customer, in accordance with the Data Privacy Legislation, and more in particular can only process the Personal Data (including providing the Personal Data to a third party) for the purposes determined by Customer and may not use it for any other purpose whatsoever.
3.2 The Service Provider must process Customer Personal Data only as necessary to provide the Services to Customer or as required by law.
3.3 The Service Provider must implement appropriate technical and organisational measures to prevent unauthorised processing of Customer Personal Data (including accidental or unauthorised disclosure, access, loss, alteration and destruction) taking into account the (i) state of the art, (ii) costs of implementation, (iii) nature of the Customer Personal Data processed and (iv) risks to Data Subjects and that are at least consistent with the security measures prescribed in the Contract.
3.4 The Service Provider must restrict access to Customer Personal Data within the Service Provider’s organisation to personnel who require access to Customer Personal Data to perform the Services and who are obliged to maintain the confidentiality and security of the information.
3.5 The Service Provider must inform Customer promptly, within 24 hours, after becoming aware of accidental or unauthorised destruction, loss, alteration or disclosure of or access to Customer Personal Data (including any Customer personal data processed by a sub-processor), including information about the nature of the incident and Personal Data affected. The Service Provider must take immediate measures to contain the incident and address its underlying causes. The Service Provider must provide reasonable information about remediation on Customer's request.
3.6 The Service Provider may engage sub-processors in connection with the Services. Using sub-processors does not release the Service Provider from its obligations under this schedule and the Service Provider remains primarily and fully liable for the failure of its sub-processors to comply with the obligations of this Appendix.
3.7 The Service Provider must notify Customer of all sub-processors engaged at the date of this schedule and shall thereafter notify Customer at least 30 days before appointing a new sub-processor. Customer may raise reasonable objections to a new sub-processor in which case the Parties will negotiate to reach a mutually acceptable solution. If a mutually acceptable solution is not reached within thirty days of Customer raising the objection, Customer reserves the right to terminate the Services without penalty in accordance with the termination provisions of the Contract.
3.8 The Service Provider must bind each sub-processor to a commitment substantially equivalent to this schedule. For clarity, this must include, where the sub-processor will process Customer Personal Data transferred from the EEA in a country not recognised by the EU Commission as having adequate protection, a commitment to enter into the EU Model Contractual Clauses3 notwithstanding any certification to the EU-U.S. Privacy Shield.
3.9 Subject to clause 3.9, on completion or termination of the Services, the Service Provider must within a reasonable timeframe: (i) follow Customer's instructions regarding return of Customer Personal Data and (ii) delete, and cause sub-processors to delete, all copies of Customer Personal Data remaining in the Service Provider’s (or sub-processor's) possession or control. On Customer's written request, the Service Provider shall provide Customer with information confirming deletion of Customer Personal Data.
3.10 Clause 3.8 does not apply to Customer Personal Data which the Service Provider is required to retain to comply with the law.
3.11 If the Services do not provide Customer with the ability to extract, delete, update or correct Personal Data, the Service Provider must, on Customer's request and as far as possible, assist Customer in addressing the legal rights of Data Subjects, including, without limitation, the right to receive a copy of Personal Data and to have Personal Data corrected, updated or deleted.
3.12 The Service Provider shall provide information, on Customer request, to enable Customer to comply with applicable Privacy Laws where the requested information is in the Service Provider's possession or under its control.
3.13 The Service Provider must inform Customer within 2 business days of receiving a request from a Data Subject relating to their Personal Data and without responding to the request, unless it has been otherwise authorised to do so.
3.14 On Customer's request, and subject to suitable confidentiality obligations, the Service Provider shall make available to Customer information regarding the Service Provider's or any sub-processor's compliance with the obligations set forth in this schedule, in the form of a SOC 2 Type II, SSAE 16 SOC 1 Type II or international equivalent (ISAE 3402 or ASAE 3402), Cobit 5, HIPAA (healthcare), PCI DSS (financial). Customer may in addition request an on-site audit of the Service Provider's or any sub-processor's architecture, systems and procedures relevant to the protection of Personal Data at the locations where Customer Personal Data is stored. Before commencement of any on-site audit, Customer must agree with the Service Provider (or sub-processor) the scope, timing, and duration of the audit in addition to the costs for which Customer shall be responsible.
3.15 The Service Provider must refrain from storing or transferring the Personal Data outside the European Union.
3.16 The Service Provider shall immediately inform Customer in writing if, in its opinion, an instruction under clause 3.13 infringes EU or national Privacy Laws applying to the Service Provider.
3.17 If the Service Provider cannot provide compliance with the Service Provider obligations mentioned in clause 3, for whatever reasons, the Service Provider agrees to inform promptly Customer of its inability to comply, in which case Customer is entitled to suspend and/or terminate the Contract.
3.18 The Service Provider is fully liable for Data Privacy Legislation Law compliance. Therefore, the Service Provider must comply with these Customer’s Personal Data Processing Terms and all applicable requirements of Data Privacy Legislation and it’s implementing national provisions regarding the nature of the data, the transfers, the scale of the processing and the technical and organizational safeguards in use.
Customer Network Firms
Customer Network Firms that are authorised users of the Services provided under the Contract shall be third party beneficiaries of the terms of this schedule.
The Service Provider agrees to indemnify and keep indemnified Customer, Customer Network Firms and their respective partners, members, officers, directors, employees, contractors, agents, representatives, successor and assigns ("Indemnitees") from and against all judgments, awards, settlements, liabilities, damages, claims, costs, expenses and other charges, including reasonable attorney's fees, and any penalties and fines incurred by or awarded against any of the Indemnitees, arising out of or related to any action by a supervisory authority or individual in relation to a breach by the Service Provider of the terms of this schedule.
Any phrase in the clauses introduced by the term “include”, “including”, “in particular” or similar expression shall be construed as illustrative and shall not limit the sense of the words preceding that term.
The obligations of this schedule survive termination or expiration of the Contract for as long as the Service Provider has Customer Personal Data in its possession or control.
To the extent any term of the Contract, including the definitions, contradicts anything in this schedule, the parties agree that the terms of this schedule shall prevail.
No amendment to this schedule will be effective unless it is in writing and signed by both Parties. This schedule may be modified without the consent of any third Party.