Cyber Security Agreement Terms
BACKUP AND DISASTER RECOVERY AGREEMENT TERMS
Term. This Agreement between Client and THINKGARD is effective upon the date signed by the Client, shall remain in force for a period of 5 year(s), and be reviewed yearly to address any necessary adjustments or modifications. Should adjustments or modifications be required that affect the monthly fees paid for the services rendered under this Agreement, said fee adjustment will be negotiated and agreed-to between the Client and THINKGARD in writing. Absent such a written adjustment, the Agreement automatically renews for a subsequent one-year term beginning on the day immediately following the end of the Initial Term unless either party gives the other thirty (30) day’s prior written notice of its intent not to renew this Agreement. This Agreement cannot be automatically renewed more than five (5) times.
This Agreement may be terminated by the Client upon ninety (90) day’s writtennotice if THINKGARD:
Fails to substantially complete or satisfy its obligations under this Agreement and does not cure any identified failure within ninety (90) days of receipt of written notice of said failure from the Client;
Breaches any material term or condition of this Agreement and fails to remedy such breach within ninety (90) days of receipt of written notice of such a breach from the Client;
Terminates or suspends its business operations, unless it is succeeded by a permitted assignee under this Agreement.
If either party terminates this Agreement, THINKGARD will assist Client in the orderly termination of services, including timely transfer of the services to another designated provider. Client agrees to pay THINKGARD the actual costs of rendering such assistance. Actual costs could include but are not limited to:Training, data transfer, license transfers or equipment de-installation. If Client terminates this Agreement without cause, Client agrees to pay THINKGARD a termination fee equal to seventy five percent (75%) of remaining Agreement value.
Client agrees to allow THINKGARD to assign, delegate, subcontract services to third party competent contractors approved by THINKGARD.
Services Provided An on-site Network Attached Storage (NAS) unit that acts as a local storage device and stand-by server in the event of server and/or workstation failure. (a) Incremental backups done on the NAS as frequently as once an hour by default. (b) Secure Remote (Off-site) Storage provided at two (2) secure data centers. (c) Day-to- day data restoration of files, file folders, emails or email stores, SQL databases, and SharePoint. (c) Full data recovery from secure data centers with the most recent information stored offsite - in the event of total catastrophe, where the on-site server and NAS are lost. (d) Full management, monitoring, and testing of the NAS and remote storage.
Security All data is fully encrypted during transmits off-site and while stored off-site.All data is stored off-site, in encrypted form, on multiple servers in two (2) highly secure data center facilities. (a) Each file is encrypted using 256-bit AES and SSL key-based encryption technology. 256-bit AES encrypted data cannot be read without the corresponding keys – a feature designed to prohibit the misuse of the encrypted data. (b) The on-site NAS unit communicates with off-site remote servers using SSL (Secure Socket Layers) technology. As a result, the online backup of data is encrypted twice. It is encrypted at all times using the 256-bit AES encryption, and it is encrypted again while it’s being sent over the Internet. (c) Data stored off-site remains encrypted at all times.
Data Deduplication and Compression Data deduplication and compression occurs prior to data storage and transmit using state-of-the-art technology. This ensures that backups are completed in a shorter timeframe, less storage space is used on the on-site NAS and at the off-site data centers, and needed bandwidth to transfer data off-site remains manageable.
Backup Frequency Servers can be backed up as frequently as once an hour by default.Retention policies can be customized to create as many archived versions of data and full recovery points as needed.Off-site backup frequency is continuous by default, and may be customized to meet Internet bandwidth limitations. Off-site backup frequency is ultimately dependent upon total data size, data changes, and available Internet bandwidth.
Smart Data Transport Data transmission can be configured to minimize Internet bandwidth consumption. The on-site NAS and propriety off-site data transfer system leverages advanced bandwidth throttling to schedule Internet bandwidth used depending on the time of day, customized for each day of the week.This allows bandwidth to be limited during business hours to maintain network functionality and maximize bandwidth during off-peak hours to efficiently transfer data off-site.
Remote Storage provided at two high availability Data Centers in Pennsylvania and Utah Highly redundant storage in multiple redundant cluster nodes at two (2) redundant bi-coastal data centers. (a) Connectivity provided by multiple providers with automatic failover capabilities. (b) Facilities power is supplemented with both battery backup and diesel generation capabilities. (c) Full physical security at each facility including global biometric authentic-cation access methodology to track all authenticated data center personnel and prohibit the entry of any unauthorized persons. (e) Fire suppression and environ-mental control provided.
Remote Storage and Base Remote Backup Image Creation (a) Your data is stored (in encrypted form) in two (2) secure off-site data centers, located in Pennsylvania and Utah. (b) The initial backup will be sent via a SATA II drive to the primary remote storage facility. There is an approximate two-week turnaround time to seed the initial backup off-site. Incremental backups will occur during the off-site seeding process and will collapse into the main backup once the off-site transfer is complete.
Recovery Time Objective (RTO) THINKGARD will log all retrieval activities from the Client. (a) THINKGARD will attempt to resolve access, backup, or retrieval problems over the phone on first call within 24-hours of the first request. THINKGARD will restore a file, file folder, email or an entire mailbox, as needed, upon Client’s call to the THINKGARD help desk (b) In a disaster, where Client loses its entire office, THINKGARD will have a new NAS imaged, with the most current backup information (usually, the previous day’s data). The new NAS will be shipped out via next-business day air transportation to a location of your choice. When the NAS arrives, it will be ready for use as a virtual server. (c) The NAS can also be used to perform a bare metal restore to dissimilar hardware, which means that when a new server arrives, the NAS can be used to restore the most current data to the new server(s) and/or workstation(s), regardless of hardware.
Off-Site Virtualization In a disaster where Client loses its physical servers and NAS, servers and/or workstations may be virtualized off-site. (a) Servers can be virtualized in both off-site data centers. (b) Public IP and/or VPN access will be given to connect to remote virtual machines. Virtual machines can also be accessed using VNC and/or RDP.
Ownership of the Data The backup data being stored on the NAS and at the Data Center remains the sole property of the Client. If the Client chooses to terminate services, THINKGARD will assist Client in the orderly termination of services. This could involve copying the backup image to an external drive, which can be synchronized with the data on the NAS. The Client agrees to pay THINKGARD the actual costs of rendering such assistance.
Catastrophe Service In the event of a catastrophe, fees for the “Disaster Recovery Service” are covered in monthly Agreement
Interference The Client shall not, directly or indirectly, during the term of this Agreement and for twelve (12) months following its termination, induce or influence any employee of THINKGARD or any other person or entity to terminate their relationship with THINKGARD.
Warranty THINKGARD warrants that THINKGARD’s work will be performed in accordance with reasonable and customary practices prevailing at the time for its business. (a) As long as the monthly fees are current, the NAS unit shall be fully warranted and no additional charges will be incurred for hardware failure. Firmware and software updates are also included (please note, however, that the NAS units cannot be modified in any way or the hardware warranty(ies) and THINKGARD’s warranties under this Agreement, shall be voided. This includes adding software applications to the NAS itself, adding memory and/or hard drives, etc.) (c) NAS replacement parts will be shipped next business day air transportation and prepaid by THINKGARD.
Confidentiality Each party shall treat the information received from the other party that is designated as confidential ("Confidential Information") as a trade secret and strictly confidential. THINKGARD designates the Deliverables and all information relating to the Deliverables as confidential. Both parties shall: (i) restrict disclosure of Confidential Information to employees and agents solely on a "need to know" basis; (ii) advise employees and agents of their confidentiality obligations; (iii) use commercially reasonable means to comply with the confidentiality obligations of this Agreement; and (iv) notify the other of any unauthorized possession or use of that party’s Confidential Information as soon as practicable after receiving notice of same. Notwithstanding the foregoing, neither party shall be obligated to preserve the confidentiality of any information which: (i) was previously known; (ii) is a matter of public knowledge; (iii) was or is independently developed; (iv) is released for disclosure with written consent; or (v) is received from a third party to whom the information was disclosed without restriction.
Equipment and Facilities Client agrees that THINKGARD may utilize certain items of Their equipment and may gain access to certain parts of The Client's facilities. Facility access may be denied for any reason at any time, however if access to facilities is denied, The Client understands that THINKGARD may be unable to perform their duties adequately and if such a situation should exist, THINKGARD will be held harmless.
Passwords THINKGARD acknowledges that it must have remote access to the backup appliance to perform their duties under this Agreement. Backup data will always be encrypted and not accessible to anyone who does not have the password. If the encryption password is lost, the backup data will be inaccessible.
No Third Party Beneficiary Client shall not subcontract, assign, subrogate or transfer any interest, obligation or right under this Agreement without prior written consent from ThinkGard, and any such attempt shall be null and void. Except that a board of a governing authority cannot bind their successors in office to contracts beyond their term of office and extension beyond its term is voidable by the successor Board.
Dispute Resolution This Agreement shall be governed by the state and Federal laws applicable to the State of Alabama, U.S.A.
Force Majeure & Malicious Acts THINKGARD shall not be liable for any loss, damage or failure due to causes beyond its control, including strikes, riots, earthquakes, epidemics, wars, fires, floods, weather, power failure, telecommunications and/or internet interruptions, the failure or closure of a financial institution, computer malfunctions, acts of God or any other failure, interruption or error not directly caused, or reasonably anticipated, by THINKGARD.
Taxes. Client shall be solely responsible for any taxes or similar charges arising out of this Agreement, including all applicable Federal, State or local sales taxes, customs, duties, use taxes, value-added taxes, excise charges or brokerage fees. Client shall also be solely responsible for assessing and remitting payment for any such items to the appropriate authorities.
Warranty of Representative Capacity The Client warrants that its undersigned representative has the authority and capacity to bind Client to the terms and conditions of this Agreement and understands that THINKGARD has reasonably relied upon such warranty and promises as an inducement to enter into this Agreement.
SeverabilityIf a court or quasi-judicial body subsequently determines that one or more of the provisions of this Agreement is unlawful, then the provisions deemed unlawful, and only those provisions, shall be rendered void and shall be considered severed from the other terms and conditions of this Agreement.
Additional Documents The Parties agree to cooperate to the extent possible and execute any and all supplementary documents and to take all additional actions which may become necessary or appropriate to give full force and effect to the basic terms and intent of this Agreement.
Remedy Upon Client’s Payment Default:Client agrees that in the event it defaults on its payment obligations under this Agreement, THINKGARD shall: a) To the extent provided by law have the right to pursue any and all available legal remedies to collect said sums, including through the immediate filing of an action in a court of law Alabama and/or the federal jurisdiction which includes said County of Shelby.
Understanding The undersigned have read and understood each and every provision of this Agreement and agree that, at a minimum, prior to executing this Agreement, they were each given sufficient time and the opportunity to present the Agreement to an attorney for clarification of the meaning and function of each and every provision.
Integrated Agreement This Agreement embodies the entire understanding of the Parties and all of the terms and conditions with respect to the matters discussed in this Agreement and that the terms are contractual and are not mere recitals.The Parties agree this Agreement supersedes and annuls any and all other or former Agreements, contracts, promises or representations, whether written or oral, expressed or implied, and it may not be altered, superseded or otherwise modified except in a writing signed by the party to be charged.
Immigration By signing this contract, the contracting parties affirm, for the duration of the Agreement, that they will not violate federal immigration law or knowingly employ, hire for employment, or continue to employ an unauthorized alien within the State of Alabama.
Terms By signing the ThinkGard Proposal, Client agrees to pricing and services terms indicated on proposal pricing pages.