Software as a Service (SaaS) Agreement

Terms and Conditions

For service orders contracted with Shiji Deutschland GmbH.

Schedule I – Definitions

“Authorized User” means an employee of the Customer or such other person identified by the Customer who has been authorized by the Customer to access the Service.

“Charges” means the following amounts

  1. the amounts specified in the Service Order; 
  2. amounts calculated by multiplying the Company’s standard time-based charging rates (as notified by the Company to the Customer before the date of the Agreement) by the time spent by the Company’s personnel performing the Support Services; and
  3. such amounts as may be agreed in writing by the Parties from time to time. 

“Customer Data” means all data, works and materials: uploaded to or stored on the Platform by the Customer; transmitted by the Platform at the instigation of the Customer; supplied by the Customer to the Company for uploading to, transmission by or storage on the Platform; or generated by the Platform as a result of the use of the Services by the Customer;

“Effective Date” means the relevant date stated on the Service Order.

“Force Majeure Event” means an event, or a series of related events, that is outside the reasonable control of the party affected (including failures of the Internet or any public telecommunications network, hacker attacks, denial of service attacks, virus or other malicious software attacks or infections, power failures, industrial disputes affecting any third party, changes to the law, disasters, explosions, fires, floods, riots, terrorist attacks and wars);

“Platform” means the object code format in which the Company’s proprietary SaaS offering is made available via the Internet. 

“Services” means subscription to access and use of the Software that the Company provides to the Customer, or has an obligation to provide to the Customer, under the Agreement;

“Subscription Period” means, unless otherwise agreed, a period of twelve (12) months.

Schedule II – Confidentiality Obligations

  1. Confidentiality Obligations: Each Party must:
    1. keep the Confidential Information strictly confidential;
    2. not disclose the Confidential Information to any person without the other Party’s prior written consent, and then only under conditions of confidentiality approved in writing by the other Party;
    3. use the same degree of care to protect the confidentiality of the Confidential Information as the Party uses to protect the Party’s own confidential information of a similar nature, being at least a reasonable degree of care;
    4. act in good faith at all times in relation to the Confidential Information; and
    5. not use any of the Confidential Information for any purpose other than the Permitted Purpose.
  2. Notwithstanding provision 1 of this Schedule II, the Receiving Party may disclose the Confidential Information to the Receiving Party’s officers, employees, professional advisers, insurers, agents and subcontractors who have a need to access the Confidential Information for the performance of their work and who are bound by a written agreement or professional obligation to protect the confidentiality of the Confidential Information.
  3. The provisions of this Schedule II impose no obligations upon the Receiving Party with respect to Confidential Information that
    1. is known to the Party before disclosure under the Agreement and is not subject to any other obligation of confidentiality;
    2. is or becomes publicly known through no act or default of the other Party; or
    3. is obtained by the Party from a third party in circumstances where the Party has no reason to believe that there has been a breach of an obligation of confidentiality.
  4. Except in any proceeding to enforce the provisions of the Agreement or except as otherwise required by law, neither Party shall publicize or disclose to any third party the existence or provisions of the Agreement or any of the fees, terms or conditions herein, without the prior written consent of the other Party. Neither Party shall use the name or logo of the other in publicity releases or advertising regarding or related to the Agreement without securing the prior written approval of the other Party. Each Party may state that it has an agreement with the other.
  5. The restrictions in the provisions of this Schedule II do not apply to the extent that any Confidential Information is required to be disclosed by any law or regulation, by any judicial or governmental order or request, or pursuant to disclosure requirements relating to the listing of the stock of the Party on any recognised stock exchange.
  6. The provisions of this Schedule II shall continue in force for a period of 5 years following the termination of the Agreement, at the end of which period they will cease to have effect.

Schedule III – Data Security

  1. The Company will transfer Personal Data to the sub-processors if necessary to fulfil the Agreement. The Customer grants its approval for the transfer of data to the following sub-processor:
    1. Shiji Deutschland GmbH and it’s affiliates as necessary to support the Customer requirements.
    2. Amazon Web Services
  2. Right to submit a complaint to the supervisory authorities: The Customer notes that he is entitled to submit a complaint regarding data security to the competent supervisory authorities. The competent supervisory authorities are:

    Die Bundesbeauftragte für den Datenschutz und die Informationsfreiheit
    Husarenstr. 30
    53117 Bonn
    +49 (0)228-997799-0
    +49 (0)228-997799-5550
    poststelle@bfdi.bund.de

    European Data Protection Supervisor
    Rue Wiertz 60
    B-1047 Brussels
    +32 2 283 19 00
    edps@edps.europa.eu
    www.edps.europa.eu