Terms & Conditions

1. Your Acceptance

Thank you for choosing to use UPDAT’s products and services.

1. This agreement (Agreement) governs any UPDAT products and services (Services) provided to you through the UPDAT websites at updat.com.mt (Site), online application suite (UPDAT Platform) or that UPDAT otherwise provides or makes accessible to you and the seats (being the named individual users of the Services) that you nominate (End Users). This Agreement does not apply if you have executed a hard copy agreement with UPDAT for the provision of the Services.
2. This Agreement is between UPDAT Technologies Ltd (UPDAT) and the person or entity agreeing to these terms (you).
3. You warrant that you are over the age of eighteen and have the power and authority to enter into and perform your obligations under this Agreement. If you enter this Agreement on behalf of your company, then “you” in the remainder of this Agreement means your company, and you warrant that you are properly authorised to bind your company to this Agreement.
4. You agree to the terms of this Agreement when you submit an Order, create an account on the Site or UPDAT Platform or clicking on the “I agree” button that is presented to you at the time of submitting your Order. If you do not agree with this Agreement, do not click the “I agree” button and stop using and uninstall the Services. The Agreement becomes binding on the date that UPDAT accepts your Order or first makes the Services available to you, whichever is earlier (Commencement Date).

2. Scope

1. This Agreement comprises of:
   
   1. these terms and conditions (General Terms);
   2. the terms specified in the relevant order form completed pursuant to section (12) (Order);
   3. the terms applicable to each Service set out in product modules in Part B of this Agreement (Product Modules);
   4. the Privacy Policy, Acceptable Use Policy, Site Terms and Conditions, and any other UPDAT policies and attachments posted on the Site or UPDAT Platform, each of which may be modified from time to time (UPDAT Policies).
2. If any of the terms listed in this section (2)(a) are inconsistent, the terms first listed will have priority

3. Services

1. The Services include:
   
   1. all services, technology, data, information, programs, material and other content that UPDAT makes accessible to you through the Site or the UPDAT Platform, including on any desktop, mobile telephone or handheld device (Device) owned or controlled by you or your End Users (Subscription Services); and
   2. any other services that UPDAT otherwise provides to you, but excludes:
   3. data, information, templates, content, code, video, images or other materials or information of any type that you upload to the UPDAT Platform, or otherwise provide to UPDAT in connection with the Services (Your Data);
   4. Your Modifications (as defined in section (8)(a));
   5. shared materials created by UPDAT, you or other users of the Services that are published or made accessible through the Site and UPDAT Platform (Shared Materials).
2. UPDAT reserves the right to make changes to the Subscription Services in its sole discretion from time to time, including the functionality, performance, user interface, usability, and the service description published on the Site or that UPDAT provides to you (Service Description), and you agree that this Agreement will apply to any changes or updates to the Subscription Services. Subject to UPDAT’s obligations under existing Orders, UPDAT may discontinue any Service in whole or part at any time without notice or liability to you.
3. UPDAT will make the Subscription Services available to you and your End Users solely for your internal business operations during the subscription period specified in your Order (Subscription Term) and in accordance with any usage restrictions specified in the applicable Order and Product Module.
4. Unless permitted by law or as otherwise expressly permitted in this Agreement, you must not (nor may you authorise any third party to):
   
   1. rent, lease, distribute, license, sublicense, sell, transfer, assign, distribute or otherwise provide access to the Subscription Services to a third party;
   2. reproduce, modify, adapt, or create derivative works of, the Subscription Services or remove or tamper with any disclaimers or other legal notices in the Subscription Services;
   3. reverse engineer, disassemble, decompile, transfer, exchange or translate the Subscription Services or otherwise seek to obtain or derive the source code or API;
   4. incorporate the Subscription Services into any service that you provide to a third party; or
   5. use the Subscription Services to provide services, or to create a service that competes with the Subscription Services.
5. You must promptly notify UPDAT in writing of any breach of the above conditions of use.
6. You are solely responsible for ensuring that your Devices and systems are compatible with the Subscription Services and meet any minimum requirements specified in the applicable Service Description.

4. No-Charge Services

UPDAT may offer certain Services to you at no charge, including free accounts, trial use, and access to pre-release and beta products (No-Charge Services). Your use of No-Charge Services is subject to any additional terms that UPDAT specifies and is only permitted for the period designated by UPDAT, or if no such period is designated, 30 days. UPDAT may terminate your right to use No-Charge Services at any time and for any reason in UPDAT’s sole discretion, without liability to you.

5. Your Accounts

1. You must register an account in order to access or receive Services and to receive notices and information from UPDAT (Customer Account).
2. All End Users must establish a named account on the UPDAT Platform (End User Account).
3. You may specify one or more administrators who may elect to have password protected rights to access administrative account(s) (Admin Account(s)) to administer the Subscription Services and End User Accounts.
4. You are responsible for your Customer Account and all End User Accounts and Admin Accounts under your Customer Account (together, Your Accounts). Your responsibilities include:
   
   1. maintaining the confidentiality of the passwords associated with each of Your Accounts;
   2. ensuring that only those individuals authorised by you have access to Your Accounts; and
   3. ensuring that all activities that occur in connection with Your Accounts comply with this Agreement.

6. Intellectual Property Rights

1. UPDAT and its licensors have and retain all rights, title and interest, including all intellectual property rights, including copyright, trade or service marks, designs, patents, rights in circuit layouts, domain names and trade names anywhere in the world (Intellectual Property Rights) in and associated with the Services.
2. You and your licensors retain ownership of all rights, including Intellectual Property Rights, in Your Data.
3. You grant to UPDAT, or must procure the grant to UPDAT of, a non-exclusive, worldwide, irrevocable, royalty-free licence (including the right to sublicense) to use and develop the Intellectual Property Rights in Your Data to the extent required to:
   
   1. enable UPDAT to exercise its rights and discharge its obligations under this Agreement, including to provide or support the Services, and to offer to provide you with any other goods or services (including other products); and
   2. generate aggregated data sets, reports and analysis relating to technical data about customer use of the Subscription Services in a form that is anonymised and does not identify you or any individual (Aggregated Data). You acknowledge and agree that UPDAT will own all Intellectual Property Rights in Aggregated Data.
   3. UPDAT may use Aggregated Data to analyse, improve, support and operate the Services and for related internal business purposes.

7. Integration with Third Party Products

You may choose, in your sole discretion, to integrate the Services with third party products or services (Third Party Products). If you choose to use any Third Party Products in connection with the Services, UPDAT may provide such third parties access or use of Your Data to the extent required for the interoperation of the Services with the Third Party Product. Your use of any Third Party Product will be subject to the applicable agreement between you and the relevant third party provider. UPDAT is not responsible for any access to or use of Your Data by such third party providers. UPDAT DISCLAIMS ALL LIABILITY FOR ANY THIRD PARTY PRODUCTS AND FOR THE ACTS OR OMISSIONS OF ANY THIRD PARTY PROVIDERS OF THIRD PARTY PRODUCTS.

8. Your Data and Your Modifications

1. To the extent permitted by the functionality provided by a Subscription Service, you may modify a template, training course or incident workflow in the Subscription Services for the purposes of developing customisations and additional features of a template, training course or incident workflow (Your Modifications).
2. If you elect to publicly share any of Your Data or Your Modifications with UPDAT or other users through the functionality provided by the Subscription Services (Your Shared Materials), you grant UPDAT and each other user that downloads Your Shared Materials a non-exclusive, worldwide, perpetual, irrevocable, royalty-free licence (including the right to sublicense) to use, develop, modify, reformat, publish, distribute to third parties, and exercise any other Intellectual Property Rights you have in Your Shared Materials.
3. You warrant that Your Data and Your Modifications (including any of Your Shared Materials):
   
   1. are not unlawful, defamatory, offensive, obscene, harmful, of bad taste, or inappropriate;
   2. comply with the UPDAT Policies, including the Acceptable Use Policy;
   3. are not false, misleading or inaccurate;
   4. do not infringe third party rights (including Intellectual Property Rights);
   5. comply with all applicable laws; and
   6. are not infected with viruses or any other malicious computer code, files or programs.
      You acknowledge and agree that UPDAT may, in its absolute discretion, remove, delete, or modify any of Your Data or Your Modifications (including any of Your Shared Materials) from the Subscription Services, Site and UPDAT Platform.
4. You must indemnify, defend and hold UPDAT and its affiliates, service providers, officers, employees, contractors and customers (those indemnified) harmless from and against any and all claims, costs, damages, losses, liabilities and expenses (including legal fees) arising out of or in connection with any claim brought against those indemnified by a third party relating to Your Data or Your Modifications (including any of Your Shared Material), including but not limited to any claim relating to infringement of law or the rights of a third party (including Intellectual Property Rights), or representations or warranties that you make about Your Data, Your Modifications or the Services. UPDAT agrees to provide: (i) prompt written notice to you of any such claim; (ii) the exclusive right to control and direct the investigation, defence, or settlement of such claim; and (iii) all reasonably necessary cooperation of UPDAT at your expense.

9. Downloading Shared Materials

If you download Shared Materials, to the extent permitted by law:

1. your use of Shared Materials is at your own risk;
2. UPDAT excludes all liability to you and any third party in respect of your use of Shared Materials; and
3. it is your responsibility to assess (and if necessary, obtain professional advice on) the suitability of Shared Materials for your purposes and any modifications required to meet those purposes

10. Confidentiality

1. In this Agreement, Confidential Information of a party means information of a confidential nature including information about its business, operations, strategy, administration, technology, affairs, clients, customers, employees, contractors or suppliers, but does not include any Shared Materials, or any other information which is in the public domain other than through a breach of confidence.
2. Each party (Recipient) must keep confidential and not disclose to any third party Confidential Information of the other party, with the exception that a Recipient may disclose such Confidential Information:
   
   1. to:
      
      1. a third party with the prior written consent of the other party; and
      2. the Recipient’s, or affiliates or subsidiaries of the Recipient’s, officers, agents, professional advisers, employees, contractors, subcontractors, auditors and insurers; and provided that such recipients are subject to confidentiality obligations no less stringent than under this Agreement in relation to that Confidential Information; and
   2. where the Recipient is legally compelled to do so by any government or any governmental, administrative, regulatory, fiscal or judicial body, department, commission, authority, tribunal, or agency, provided that it first uses commercially reasonable efforts to give the other party written notice prior to disclosure if permitted by law.
3. Each party must only use Confidential Information of the other party for the purpose for which it was disclosed in connection with this Agreement.

11. Privacy

1. In this section, Personal Information has the meaning given under the Laws of Malta, or the meaning given to any similar term under other applicable privacy or data protection laws that is used to describe information relating to an individual.
2. UPDAT will take reasonable steps to ensure that Personal Information within Your Data is secure from unauthorised access, use or disclosure and will treat any Personal Information collected from you in accordance with the UPDAT Privacy Policy.
3. You are responsible for ensuring that you have obtained all individual consents required for UPDAT to provide the Services in respect of any Personal Information contained within Your Data, including from your End Users.
4. Where (i) the EU General Data Protection Regulation 2016/679 (“GDPR“) and/or (ii) the laws of other states and territories that create and regulate substantially similar concepts and legal principles as are contained in the GDPR apply to any of Your Data, the terms of Appendix 1 (Data Protection Compliance) and Appendix 2 (Data Processing Agreement) will apply.
5. Other than as expressly noted in this section (11), you acknowledge that:
   
   1. it is your responsibility to satisfy yourself that your use of the Services will allow you to meet any legal obligations applicable to you in respect of Your Data, and UPDAT disclaims all liability for your non-compliance with any such laws or standards arising from your use of the Services.

12. Orders

To use the Services you must complete an Order by either:

1. completing the online order page (Online Order) located on the Site which contains details of:
   
   1. the Services being ordered;
   2. the applicable fees (Fees);
   3. the number of paid End User Accounts that will form part of your organisation in respect of Subscription Services (if applicable);
   4. the applicable billing details, and the currency in which you will be billed; and
   5. if applicable, details of any products made available by UPDAT in the future you wish to order; or
2. execute a paper-based quote or order form (Quote/Order Form) provided by UPDAT which sets out the relevant information in section (12)(a).

13. Billing and Payment

1. You must pay all Fees for the Services in accordance with the rates and currency set out in the applicable Order(s). Other than where expressly provided for under this Agreement, all Fees are non-refundable, non-cancellable and non-creditable.
2. You will be billed the Fees in accordance with the Order as follows:
   
   1. for Subscription Services, you must elect one of the following billing cycle options:
      
      1. a Monthly Plan, in which case you will be billed the applicable Fees monthly in advance; or
      2. an Annual Plan, in which case you will be billed the applicable Fees annually in advance; or
   2. for Services other than Subscription Services, you will be billed the applicable Fees in accordance with the payment milestones specified in your Order, or if none are specified, in advance upon submitting the relevant Order. Services other than Subscription Services may be charged on a “fixed-fee” or “time and materials” basis, as specified in the relevant Order.
3. Your Order, and any other amounts owing to UPDAT will be billed using one of the following methods (as specified in your Order):
   
   1. by direct debit of your credit card or debit card (Direct Debit), in which case you authorise UPDAT to debit you in the month prior to the commencement of the annual or monthly billing cycle (as applicable);
   2. by issuing an invoice in accordance with the billing cycle or payment milestones specified in your Order (Invoiced Payments). You must pay any Invoiced Payment within thirty (30) calendar days after the date of invoice; or
   3. by such other forms of payment that UPDAT makes available on the Site, which may be subject to additional terms and conditions.
4. If you dispute any invoice or charge that UPDAT has billed you (acting reasonably and in good faith) you must notify UPDAT of the dispute without unreasonable delay.
5. You are responsible for any duties, customs fees, or taxes (other than UPDAT’s income tax) associated with the supply of the Services or any other goods or services provided by UPDAT to you, including any VAT or other applicable sales tax, and any related penalties or interest (Taxes), and you will pay UPDAT for the Services without any withholding for Taxes. If UPDAT is required to collect or pay Taxes, the Taxes will be invoiced to you. You must provide UPDAT with any information UPDAT reasonably requests to determine whether UPDAT is obliged to collect Taxes from you, including your relevant Tax identification number.

14. Warranties and Limitation on Liability

1. UPDAT warrants that:
   
   1. Subscription Services (other than No-Charge Services) will conform in all material respects with the applicable Service Description for the duration of the Subscription Term; and
   2. UPDAT will use commercially reasonable efforts to prevent introduction of viruses, Trojan horses or similar harmful materials (Malicious Code) into the Services. To avoid doubt, UPDAT is not responsible for any Malicious Code introduced by third parties, or by you or your End Users.
      Provided that you notify UPDAT in writing of any non-compliance under this section (14)(a) promptly after becoming aware of such non-compliance, UPDAT will use commercially reasonable endeavours to correct the non-compliance within a reasonable period. If UPDAT has not remedied the non-compliance by the date that is forty-five (45) days after your written notice, either party may terminate the affected Services.
      THIS SECTION (14)(a) CONSTITUTES YOUR EXCLUSIVE RIGHTS AND REMEDIES, AND UPDAT’S SOLE LIABILITY, IN CONNECTION WITH THE WARRANTIES IN THIS SECTION (15)(a). YOU MAY HAVE OTHER STATUTORY RIGHTS, BUT THE DURATION OF WARRANTIES REQUIRED BY STATUTE, IF ANY, WILL BE LIMITED TO THE SHORTEST PERIOD PERMITTED BY LAW.
2. Except as expressly stated in this Agreement or required under any applicable law, the Services and any other goods or services provided by UPDAT to you are provided on an “as is” basis, and UPDAT does not make any representation or warranty (express or implied) in respect of the Services or any other goods or services provided by UPDAT to you, including, without limitation, any implied warranty of merchantability, of fitness for a particular purpose, that operation of the Services will be uninterrupted or error free, that all defects will be corrected, or that UPDAT will maintain Your Data without loss or corruption.
3. To the maximum extent permitted by law, in no event will UPDAT be liable to you or any third party in connection with this Agreement, whether in contract, tort, equity, statute or otherwise for:
   
   1. your misuse of the Services, acts or omissions of your personnel;
   2. Service outage or interruption, or any damage or losses, arising from networks or websites outside of UPDAT’s control;
   3.  any injury, damage to property, or loss to any person in relation to your use of the Services;
   4. subject to section (11), breach of any law applicable to your business activities, including but not limited to any work health and safety or food safety law, in connection with your use of the Services; or
   5. loss of profits, loss of revenue, loss of anticipated savings, loss of use, loss or corruption of data, costs of delay or procurement of substitute or replacement goods and services, business interruption, failure of security mechanisms, loss of goodwill, and any other form of indirect, incidental, special or consequential or punitive damages
4. To the maximum extent permitted by law, in no event will either party’s aggregate liability for any claims in connection with this Agreement exceed the total Fees actually paid by you under this Agreement during the twelve month period immediately prior to the event giving rise to the liability.

15. IP Indemnity

1. Subject to section (15)(c), UPDAT will defend you against any third party claim alleging that the Subscription Services infringes any copyright or any patent (a “Claim”), and will indemnify you against any damages and costs finally awarded by a court of competent jurisdiction or any settlement amounts agreed in writing by UPDAT, provided that you provide UPDAT:
   
   1. prompt written notice of any such claim;
   2. the exclusive right to control and direct the investigation, defence, or settlement of such claim; and
   3. all reasonably necessary cooperation and assistance in the defence and investigation of the Claim at UPDAT’s expense.
2. In the event of a Claim, UPDAT may, in its sole discretion:
   
   1. In the event of a Claim, UPDAT may, in its sole discretion:
   2. replace the Subscription Services with a similar service with materially equivalent functionality; or
   3. terminate your Order in respect of the Subscription Services affected by the Claim and refund any prepaid, unused Fees in respect of the terminated Subscription Services.
3. The indemnity obligation in this section (15) will not apply to the extent that any Claim arises:
   
   1. in connection with your use of No-Charge Services;
   2. as a result of misuse of the Subscription Service or use of the Subscription Service with any third party data (including any Shared Materials), or in combination with any Third Party Products other than that for which the Subscription Services were designed or provided;
   3. as a result of modification to the Service made by any party other than UPDAT or its subcontractors; or
   4. in connection with circumstances covered by your indemnification obligations under section (8)(d).
4. THIS SECTION (15) CONSTITUTES YOUR EXCLUSIVE RIGHTS AND REMEDIES, AND UPDAT’S SOLE LIABILITY, FOR ANY INFRINGEMENT OF INTELLECTUAL PROPERTY RIGHTS IN CONNECTION WITH ANY SUBSCRIPTION SERVICES.

16. Term and Renewal

1. This Agreement commences on the Commencement Date and expires when all Subscription Terms have expired, and all other Orders have been completed, unless otherwise terminated in accordance with this Agreement (Term).
2. Unless otherwise set out in the relevant Order, each Subscription Term will automatically renew for periods equal to the initial Subscription Term at the then-current rates unless:
   
   1. you elect not to renew your Subscription Term by providing written notice to UPDAT at least 30 days prior to the expiry of the then-current Subscription Term, in which case your subscription will expire at the end of the then-current Subscription Term; or
   2. UPDAT provides you notice that the Subscription Term will not renew at any time prior to the expiry of the then-current Subscription Term, in which case your subscription will expire at the end of the then-current Subscription Term.
3. execute a paper-based quote or order form (Quote/Order Form) provided by UPDAT which sets out the relevant information in section (12)(a).

17. Termination and Suspension

1. You may terminate Subscription Services at any time by following the online process specified on the Site for cancelling your Subscription Term. If you choose to terminate this Agreement in accordance with this clause, you will not be entitled to any credits or refunds as a result of such termination.
2. Either party may terminate this Agreement in whole or part, including any particular Order(s), immediately upon providing notice to the other party if:
   
   1. the other party is in material breach of this Agreement and does not cure the breach within thirty (30) days after written notice of the breach; or
   2. if the other party ceases to operate, has an administrator appointed, enters a deed of company arrangement or other form of administration involving one or more of its creditors, is subject to an order that it be wound up, declared bankrupt, or that a liquidator or receiver be appointed, or otherwise becomes insolvent or is unable to meet its financial obligations.
3. UPDAT may suspend the Services (including any of Your Accounts) immediately without providing you notice, or terminate this Agreement in whole or part, including any particular Order(s), immediately upon notice to you, if:
   
   1. you are in material breach of this Agreement more than two times during the Term notwithstanding any cure of such breaches;
   2. you have failed to pay any Fees within sixty (60) days after the relevant due date;
   3. you infringe UPDAT’s Intellectual Property Rights; or
   4. your use of the Services breaches any applicable law or any of the UPDAT Policies.
4. If UPDAT suspends your use of the Services pursuant to its rights under this Agreement:
   
   1. UPDAT will continue to charge you Fees during the suspension period and you must pay any outstanding Fees prior to UPDAT resuming the provision of the Services; and
   2. UPDAT may, in its sole discretion, refuse to resume the provision of the Services until it is satisfied that you have cured the breach which caused the suspension to UPDAT’s reasonable satisfaction.

18. Consequences of Termination

1. Upon the date that this Agreement or any Order expires or is terminated, then:
   
   1. subject to any further access to the Subscription Services granted by UPDAT under section (18)(b)(ii), you and your End Users must cease all access and use of the relevant Subscription Services, Your Modifications and any Shared Materials;
   2. if the Agreement or any Order is terminated:
      
      1. by you for UPDAT’s breach, then UPDAT will refund any prepaid, unused Fees that relate to the terminated Subscription Services; or
      2. by UPDAT for your breach, then you must pay to UPDAT any and all outstanding Fees due for the remaining duration of any Subscription Term, which will become immediately due and payable upon termination;
   3. you must delete any software or other materials that UPDAT has provided to you, or made accessible for download by you, for use in connection with the Services (including any Shared Materials) from any Devices; and
   4. you must return, or if requested by UPDAT, destroy all of UPDAT’s Confidential Information in your possession or control and provide written certification to UPDAT that you have done so.
2. Within thirty (30) days after the effective date of expiry or termination of this Agreement, you must notify UPDAT if you would like Your Data returned to you or deleted. If you notify UPDAT that you elect to have Your Data:
   
   1. deleted (or fail to provide UPDAT notice of your election), then UPDAT will delete Your Data by removing pointers to it on UPDAT’s active and replication servers and overwriting it over time; or
   2. returned, UPDAT will, at your election, use commercially reasonable endeavours to deliver Your Data to you, or provide you access to the relevant Subscription Service (other than a No-Charge Service) to access Your Data for a period of up to 30 days following the date of termination or expiry provided that you continue to pay UPDAT the then-current rates for the applicable Subscription Services in respect of that period.
3. The following provisions will survive any termination or expiration of this Agreement: sections (8)(c), (8)(d), (9), (10), (13), (14), (15), (18), (20) and any other sections which by intent or meaning have validity beyond termination or expiration of this Agreement.

19. Amendments

UPDAT may update or modify the terms of this Agreement from time to time, including the UPDAT Policies and any other referenced documents (including the Service Descriptions) to respond to changes in UPDAT’s products, services, business or as required by law, by giving notice to you. If an update or modification to the terms of this Agreement materially reduces your rights, you may terminate this Agreement upon providing notice to UPDAT within 30 days after the date of UPDAT’s notice to you under this section, with such termination to be effective on the date of your notice or the effective date of the update or modification, whichever is later.

20. General

1. Unless otherwise agreed in your Order, this Agreement is governed by the laws of Malta and the parties agree to submit to the exclusive jurisdiction of the courts in Malta.
2. If any provision of this Agreement is held to be invalid, illegal, or unenforceable that provision shall be deemed omitted to the extent that it is invalid, illegal, or unenforceable and the remainder of this Agreement will be construed in a manner as to give greatest effect to the original intention of this Agreement.
3. The failure of either party to exercise any right provided in this Agreement in any instance will not be deemed to be a waiver of such right.
4. Except where an exclusive remedy is specified in this Agreement, the exercise by either party of any remedy, including termination, will be without prejudice to any other remedies it may have under this Agreement, by law, or otherwise.
5. Other than in respect of an obligation to pay any Fee or other amount, neither party will be liable for non-performance or inadequate performance to the extent caused by a condition (for example, natural disaster, act of war or terrorism, pandemic, riot, labour condition, governmental action, power interruption, telecommunication, data and internet disturbance) that was beyond the party’s reasonable control (Force Majeure Event).
6. Your use of any website or software that is not provided by UPDAT to access or download the Services will be governed by the terms and conditions applicable to that website or software. UPDAT is not responsible for any consequences resulting from the use of such website or software, including but not limited to any damage to your property, including your Device, or the transfer of any computer virus or similar malicious code, except to the extent such consequences are caused by the Service.
7. Any notices to you may either be posted on the Site or UPDAT Platform, or given in writing (which may be by email) to the address last notified by you to UPDAT. Any notices to UPDAT, and any questions, concerns or complaints relating to the Services must be in writing and addressed to:
   
   1. [email protected], if the inquiry is related to privacy or your Personal Information;
   2. [email protected], if the inquiry is related to support or billing; or
   3. [email protected], if the inquiry is related to any legal enquiries.
8. You agree to use your commercially reasonable endeavours to resolve any dispute arising out of or relating to this Agreement with UPDAT prior to resorting to any external dispute resolution process or court proceedings.
9. This Agreement, and any rights granted hereunder, must not be transferred or assigned by either party (assigning party) without the prior express written consent of the other party, except:
   
   1. to a third party participating in a merger with, or acquisition of the assigning party; or
   2. in respect of UPDAT, to any of UPDAT’s affiliates or subsidiaries.
10. This Agreement contains the entire understanding between the parties regarding the subject matter of this Agreement. To avoid doubt, resellers of the Services are not authorised to modify the terms of this Agreement or make any representations, undertakings or other legally binding commitments on behalf of UPDAT.

Appendix 1 (GDPR – Data Protection Compliance)

1. In this Appendix and in Appendix 2 (GDPR – Data Processing Agreement):
   
   1. Customer Personal Data means any personal data which UPDAT (or its sub-processors) processes on your behalf as a processor in the course of providing Services
   2. Data Protection Laws means the data protection laws of Malta, EU Data Protection Laws and the laws of other states and territories that create and regulate substantially similar concepts and legal principles as are contained in the EU Data Protection Laws in relation to the processing of personal data.
   3. EU Data Protection Laws means, the GDPR and any national laws which implement or supplement or replace the same from time to time.
   4. Model Clauses means contractual clauses that have been approved for use by the relevant supervisory authorities under applicable Maltese and EU Data Protection Laws to enable the lawful transfer of personal data to a country or organisation that would otherwise not be regarded as having adequate safeguards for personal data (which as at the date of this Agreement include the controller to processor terms approved by Commission Decision C(2010)593).
   5. Security Incident means a breach of UPDAT’s security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, Customer Personal Data.
   6. personal data, consent, controller, processor, data subject and processing mean those concepts, roles and activities as defined in the applicable EU Data Protection Laws.
2. UPDAT is the controller in respect of personal data, such as account registration details, that we collect directly from users of the Services (End Users) and users of No-Charge Services, and which we use for the purposes of our business.
3. You are the controller and we are the processor in respect of any other personal data (including within Your Modifications) that is uploaded by End Users and/or users of No-Charge Services including data, templates, information, content, code, video, images or other material of any type (Materials), or which is provided by your administrators (see Section 5 above).
4. To the extent that the Services and/or Non-Charge Services comprise the processing of personal data where we are the processor and you are the controller:
   
   1. you will comply with the requirements of the Data Protection Laws as the same apply to you as controller of the personal data; and
   2. the provisions of Appendix 2 (Data Processing Agreement) to these Terms shall apply
5. UPDAT will make available our Privacy Policy at our website and where you provide us with personal data in connection with the Agreement where we will act as the controller (for example where you provide contact details for use in administering the Agreement), you agree to ensure that these individuals are provided with a copy of our Privacy Policy. Where we are a processor and not a controller, it is your responsibility to ensure that in accordance with relevant Data Protection Laws:
   
   1. There is a lawful basis for the collection and processing of personal data; and
   2. You have provided an appropriate privacy policy to the End Users and other data subjects.

Appendix 2 (GDPR – Data Processing Agreement)

General

The provisions of this Appendix form part of this Agreement to the extent that section (11)(d) of the General Terms applies.

Details of Data Processing

1. Subject matter: The subject matter of the data processing under this Data Processing Agreement is the processing of Customer Personal Data in connection with the performance of the Agreement
2. Duration: As between you and UPDAT the duration of the data processing under this Data Processing Agreement is determined by you, subject to the other provisions of the Agreement.
3. Purpose: The purpose of the data processing under this Data Processing Agreement is the provision of the Services under the Agreement.
4. Nature of the processing: data hosting, storage and such other services as are described in the Agreement.
5. Type of Data: Customer Personal Data uploaded to the Services under your accounts.
6. Categories of data subjects: The data subjects may include your customers, employees, suppliers and end-users.

Terms of Data Processing

1. Where UPDAT acts as processor of personal data on your behalf, UPDAT shall:
   
   1. process personal data only on your reasonable documented instructions unless required to do so by law; in such a case, UPDAT shall inform you of that legal requirement before processing, unless that law prohibits such information on important grounds of public interest. You acknowledge and agree that your final and completion instructions regarding the processing of Customer Personal Data are set out in this Agreement. Any additional or alternate instructions must be agreed in writing by the parties (and UPDAT will be entitled to charge a reasonable fee to cover any costs incurred in complying with them);
   2. ensure that persons authorised to process the personal data on our behalf have committed themselves to confidentiality obligations or are under an appropriate statutory obligation of confidentiality;
   3. implement appropriate organisational and technical measures to ensure a level of security for the personal data which is appropriate to the risks to individuals that may result from the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to the personal data. The measures that we consider appropriate are more fully described in UPDAT’s Architecture and Security document (a copy of which is available on request). This document outlines:
      
      1. our architecture and infrastructure through which Services and No-Charge Services are provided;
      2. security controls employed by us and our service providers in protecting personal data; and
      3. security controls employed by our support channels which handle personal data.
   4. not engage another processor without your prior specific or general written authorisation. You agree to UPDAT appointing the processors listed at https://updat.com.mt /privacy-policy/ and grant UPDAT general authorisation to appoint additional processors. We shall impose obligations on any processor that we appoint on your behalf that are equivalent to the terms set out in this Appendix 2. We shall remain liable for the performance of these processors;
   5. taking into account the nature of the processing, assist the controller by appropriate technical and organisational measures, insofar as this is possible, for the fulfilment of the controller’s obligation to respond to requests for exercising the data subject’s rights laid down in Chapter III of the EU General Data Protection Regulation 2016/679, provided that this assistance will be provided by us at your cost on a time and materials basis;
   6. UPDAT will (a) notify you of a Security Incident without undue delay after becoming aware of the Security Incident, and b) take reasonable steps to mitigate the effects and to minimise any damage resulting from the Security Incident. To reasonably assist you in relation to any personal data breach notifications you are required to make under the GDPR, UPDAT will include in the notification such information about the Security Incident as UPDAT is reasonably able to disclose to you, taking into account the nature of the Services, the information available to UPDAT, and any restrictions on disclosing the information, such as confidentiality;
   7. at the choice of the controller, delete or return all the personal data to the controller after the end of the provision of services relating to processing, and delete existing copies save that UPDAT shall be entitled to retain Customer Personal Data where required by Maltese and EU law or the national law of an EU member state or another applicable law, or where such data is required for UPDAT’s internal record keeping or where it is necessary for use in any legal proceedings or the deletion could cause any liability to UPDAT; You must notify us of Personal Data that you wish to have returned or deleted within 30 days following the effective date of termination; and
   8. make available to the controller all information reasonably necessary to demonstrate compliance with the obligations laid down in Article 28 (processor) of the EU General Data Protection Regulation 2016/679 and allow for and contribute to audits, including inspections, conducted by the controller or another auditor mandated by the controller (in each case at the controller’s cost). Such assistance shall be provided at your cost. The timing, scope and duration of any audit shall be mutually agreed by the parties. You shall not be entitled to carry out audits more than once in any 12 month period, other than where a data security incident has taken place, you shall be entitled to carry out an additional audit within 30 days of UPDAT notifying you of such security incident. You shall ensure that any third party auditor appointed by you is (i) not a competitor of UPDAT; and (ii) is committed to appropriate confidentiality obligations. You and/or any third-party auditor shall comply with UPDAT’s standard policies and procedures when accessing UPDAT’s premises or systems.
2. You acknowledge that in the performance of the Services UPDAT may require to transfer Customer Personal Data outside the EEA. Where any such transfer takes place:
   
   1. the transfer shall take effect upon and subject to the terms of the Model Clauses (Processor) and the parties each agree to comply with those terms;
   2. the “data exporter” for the purposes of the Model Clauses (Processor) shall be deemed to mean you and the “data importer” shall mean the Safety Culture;
   3. Appendix 1 of the Model Clauses (Processor) shall be deemed to be populated by the details as set out under https://updat.com.mt/privacy-policy and
   4. Appendix 2 of the Model Clauses (Processor) shall be deemed to be populated by the details set out under https://updat.com.mt/privacy-policy
3. For the avoidance of doubt, UPDAT shall also be entitled to process data (including personal data) obtained in the course of the Services to carry out statistical analysis, manage its business (including its staff and contractors), develop and improve its services, comply with its own legal obligations and deal with legal claims. UPDAT shall act as the controller for the purposes of these data processing activities.
4. UPDAT must:
   
   1. process personal data only on documented instructions from the controller, including with regard to transfers of personal data to a third country or an international organisation, unless required to do so by European Union or the national law of an EU member state to which the processor is subject; in such a case, the processor must inform the controller of that legal requirement before processing, unless that law prohibits such information on important grounds of public interest;
   2. ensure that persons authorised to process the personal data have committed themselves to confidentiality or are under an appropriate statutory obligation of confidentiality;
   3. respect the conditions for engaging another processor referred to in paragraphs 2 and 4 of Article 28 (processor) of the EU General Data Protection Regulation 2016/679;
   4. taking into account the nature of the processing, assist the controller by appropriate technical and organisational measures, insofar as this is possible, for the fulfilment of the controller’s obligation to respond to requests for exercising the data subject’s rights laid down in Chapter III of the EU General Data Protection Regulation 2016/679;
   5. assist the controller in ensuring compliance with the obligations pursuant to Articles 32 to 36 of the EU General Data Protection Regulation 2016/679 taking into account the nature of the processing and the information available to the processor;
   6. at the choice of the controller, delete or return all the personal data to the controller after the end of the provision of services relating to processing, and delete existing copies unless EU law or the national law of an EU member state or another applicable law to which the processor is subject requires storage of the personal data; and
   7. make available to the controller all information necessary to demonstrate compliance with the obligations laid down in Article 28 (processor) of the EU General Data Protection Regulation 2016/679 and allow for and contribute to audits, including inspections, conducted by the controller or another auditor mandated by the controller (in each case at the controller’s cost).