Standard Terms & Conditions

SCHEDULE: STANDARD TERMS AND CONDITIONS 1 DEFINITIONS

Agreement” This agreement for the supply of Deliverables to the Client, comprising the Specific Conditions and these Standard Terms and Conditions.

Client” The organisation specified in the Specific Conditions. “Commencement Date” The commencement date of this Agreement as specified in the Specific Conditions.

Data Controller” As defined in the DP Act. “Data Processor” As defined in the DP Act.

Derived Materials” Any dataset, analysis, report or other output which the Client produces using one or more Deliverables or any RFA Data, other data or material within a Deliverable.

DP Act” The Data Protection Act 2018 or any subsequent Data Protection Legislation which amends or replaces the Data Protection Act 2018.

RFA” Red Flag Alert Technology Group.

RFA Data” Data of which RFA is the Data Controller which is supplied to the Client under the terms of the Agreement unless as specified otherwise within the Data Processing / Sharing Agreements (based on the requirements of the project and any relevant master / servant relationship).

Insolvency Event” (i) a winding up petition is presented or an application is made for the appointment of a provisional liquidator or an administrator or a receiver, or a notice of intention to appoint an administrator is filed at court, or a provisional liquidator or an administrator or an administrative receiver or a receiver, is appointed, or a scheme of arrangement or a voluntary arrangement is proposed, or any moratorium comes into effect;
(ii) a shareholders’ meeting is convened for the purpose of considering a resolution to wind up (except for a members’ voluntary liquidation exclusively for the purposes of a bona fide solvent reconstruction or amalgamation and where the resulting entity agrees to be bound by, or assumes, the obligations of such insolvent party under this Agreement) a resolution to wind up is passed or a winding up order is made;
(iii) a party to this Agreement is unable to pay its debts as they fall due within the meaning of section 123 of the Insolvency Act 1986; or
(iv) an encumbrancer takes possession of, or a receiver, administrative receiver or similar officer is appointed over, the whole or any part of a party’s business or assets or any other similar process in any relevant jurisdiction which has a similar or analogous effect.

Licence End Date” As specified in the Specific Conditions.

Parties” RFA and the Client.

Payment” The payment(s) to be made by the Client to RFA as specified in condition 11 of the Specific Conditions (SOW).

Permitted Purposes” The purposes for which the Client is authorised to use the Deliverables as specified in the Specific Conditions.

Personal Data” As defined in the DP Act, provided that for the purposes of this Agreement it shall also be interpreted in accordance with clause 6.2 and condition 13 of the Specific Conditions.

Quality Assurance Process” The current quality assurance process applied by RFA (which includes any relevant audit requirement as specified within the Terms and Conditions) at the time at which the Deliverables are produced and provided to the Client.

Specific Conditions” The term relates either to the Statement of Work and /or the Order Form both of which provide the details of the Deliverables to be supplied to the Client which form part of the main agreement to which these Standard Terms and Conditions are the Schedule. References in this Agreement to “conditions” are to the numbered conditions within the Specific Conditions.

Standard Terms and Conditions” The terms and conditions for supply of the Deliverables to the Client which are set out in this Schedule to the Specific Conditions. References in this Agreement to “clauses” are to the numbered clauses within the Standard Terms and Conditions.

Term” The period between the Commencement Date and the later of:
1. The date on which the final Deliverable is delivered to the Client; or
2. The latest Licence End Date specified in the Specific Conditions

Termination Date” The Licence End Date or any earlier date on which termination takes effect if the Agreement is terminated in accordance with clause 9 and 10.

Working Day” Any day which is not a Saturday, a Sunday or a public holiday or bank holiday in England or Wales.

2 DURATION

2.1 Any Agreement incorporating all of the Terms shall commence on the Commencement Date and end on the expiry of the Term, subject to any decided upon earlier termination in accordance with clause 10 (the earlier of these dates being the “Termination Date”).

3 PAYMENT

3.1 As a price for the provision of the Deliverables in accordance with this Agreement and the licence and use of the Deliverables and Derivative Materials within the Permitted Purposes, the Client must pay to RFA the Payment mentioned in condition 11 of the Specific Conditions (plus VAT). If condition 11 of the Specific Conditions states that the Payment will be made in instalments, the Client must pay these on the basis and frequency specified in that condition 11.

3.2 All payments made by the Client under this Agreement shall be paid by the Client within 30 days of the date of the invoice for the Payment or the relevant instalment.

4 SUPPLY OF DELIVERABLES

4.1 RFA will provide the Deliverables to the Client on or after the dates mentioned in Condition 14 of the Specific Conditions. RFA will not be liable for any delays in the supply of Deliverables caused by causes beyond RFA’s control.

4.2 RFA shall provide all Deliverables to the Client in the format and to the specification specified in the Specific Conditions, provided that RFA reserves the right, at its sole discretion, to change the specification and/or provide data in RFA’s standard format if such changes are deemed necessary as a result of any Quality Assurance Process.

4.3 RFA shall notify the Client as soon as is reasonably practical of any decision taken to alter the specification or format of any Deliverables as a result of the Quality Assurance Process.

4.4 The Client acknowledges that the third parties contributing data to RFA determine the content of RFA Data. The Client further acknowledges and accepts that the RFA Data to be delivered under this Agreement will be the data held by RFA at the date of signature of this Agreement for the fields mentioned in condition 12 of the Specific Conditions:

4.4.1 It is the Client’s obligation to ensure that the Deliverables are fully described within the Specific Conditions and are appropriate and sufficient to meet its requirements. There will be no refund or other remedy available to the Client if any component of the Deliverables does not meet the Client’s expectations or needs, or if the Client does not use any of the data, materials, or services included in the Deliverables, provided that the Deliverables have been provided as described in the Specific Conditions.

4.4.3 The Client is required to conduct its own Legitimate Interest Assessment and / or Data Protection Impact Assessment in line with its legal obligations. Such documents may at times be subject to any audit conducted by or on behalf of RFA with reasonable notice.

5 INTELLECTUAL PROPERTY RIGHTS

5.1 Red Flag Technology Group Ltd owns and retains all intellectual property rights in the Deliverables to the extent that they constitute or contain RFA Data, as well as all intellectual property rights in any database including any RFA Data compiled by RFA. The Client agrees that RFA Data and related databases are protected by the Copyright Rights in Databases Regulations 1997. (see appendix 1)

5.2 In exchange for the Client making the Payment to RFA as specified in clause 3 and subject to this Agreement, RFA grants the Client a non-exclusive, non-transferable licence to receive and use the RFA Data in the Deliverables as specified in the Specific Conditions for the Permitted Purposes during the relevant Licence Period.

5.3 To the extent that RFA is the author of any Deliverables, it hereby asserts its and/or RFA’s right to be identified as the author of such materials in accordance with Section 78(2) of the Copyright, Designs and Patents Act 1988, where the Deliverable or any part thereof is reproduced in its original form.

5.4 In relation to the content of any Deliverable not covered by clause 5.1, RFA acknowledges the Client’s right to use and reproduce the Deliverable for the Permitted Purposes in exchange for the Client making the Payment to RFA in accordance with clause 3 and subject to clause 5.3 and the remainder of this Agreement, subject to the limitations in clause 6 of these Standard Terms and Conditions and conditions 13 and 14 below of these Terms and Conditions.

6 DATA PROTECTION AND DATA SECURITY – GENERAL CONDITIONS

Please refer to the Data Processing Addendum (Controller) which defines the responsibilities and obligations placed upon the Parties and which may be found at @REDFLAGALERT

6.1 Each party recognises the importance of appropriately managing data security and risks associated with data use, both to protect the rights of individual data subjects and to avoid reputational, relationship, and commercial risks to RFA arising from any perceived breach or inadequacy in the protection and security of data collected by RFA, which could impede RFA and their customers’ ability to access data in the future.

6.2 Each party agrees that where condition 13 of the Specific Conditions identifies any Deliverable or RFA Data within any Deliverable as Personal Data, such Deliverable or RFA Data shall be treated as Personal Data as defined in the DP Act and as subject to this clause 6, regardless of whether either party believes that identification of any particular individual from that Data by the Client or any other person is possible or likely. The term “Personal Data” must be interpreted accordingly in this Agreement.

6.3 Each party agrees that in connection with the provision or use of the Deliverables (as appropriate) it will at all times:

6.3.1 comply with the DP Act including without limitation (to the extent relevant) the obligations as to registration as a Data Controller and the data protection principles set out in the DP Act;

6.3.2 fully co-operate with each other to enable the other party to comply with the DP Act.

6.4 In particular and, without prejudice to the generality of clause 6.3, the Client shall:

6.4.1. fully co-operate with RFA as reasonably required to ensure RFA’s compliance with the DP Act;

6.4.2. in connection with any Personal Data or Sensitive Personal Data within the Deliverables, notify RFA immediately if it receives any of the following, and in any event assist RFA in complying with or responding to:

6.4.2.1 requests for subject access from data subjects

6.4.2.2 an information notice, or any other notice (including in particular any deregistration, enforcement or transfer prohibition notice) served on the Client by the Information Commissioner

6.4.2.3 any complaints from data subjects; and

6.4.2.4 any investigation of any breach or alleged breach of the DP Act.

6.4.3 ensure that any RFA Data it holds is kept strictly confidential and secure, and that appropriate technical and organisational information security and processing procedures are established and maintained. This is to ensure that all Data provided in accordance with this Agreement is adequately protected against any unlawful or unauthorised processing, including the disposal or destruction of Data or equipment on which Data is stored or accessed. In order to ensure the security of the RFA Data, the Client will limit access to Personal Data or Sensitive Personal Data to a small number of expressly authorised people for the Permitted Purposes who have obtained adequate data protection and security training.

6.4.4 Without limiting the generality of clause 6.4.3, where the Client completes an information security questionnaire or provides any other written information regarding its information security arrangements at RFA’s request prior to entering into this Agreement, the Client must promptly notify RFA of any changes to the matters covered by the questionnaire or other written information that materially alter the nature or scope of the systems and arrangements for data security. Subject to the results of the questionnaire, the RFA will require the Client to remedy any detected inadequacies within a reasonable time frame (with or without the aid of the RFA) in order to satisfy any audit / questionnaire requirements:

6.4.4.1 RFA shall maintain an audit program to help ensure compliance with the obligations set out in this DPA and shall make available to its Clients information to demonstrate compliance with the obligations set out in this DPA as set forth in this section.

6.4.4.2 Data Protection Impact Assessment. Where identified from the audit, RFA shall provide the client at cost any and all assistance needed to fulfil Client’s obligation under Data Protection Laws and Regulations and to carry out a data protection impact assessment / legitimate interest assessment related to Client’s use of the Services, to the extent the Client does not otherwise have access to the relevant information, and to the extent such information is available to RFA.

6.4.5 promptly report to RFA any circumstance that it becomes aware of which:

6.4.5.1 mean or may mean that clause 6.3.1 or 6.4.3 has not been complied with

6.4.5.2 cause or may cause any party to breach the DP Act as a result of processing carried out in connection with this Agreement; or

6.4.5.3 mean or may mean that there has been unauthorised processing of personal data in connection with this Agreement

7 INVESTIGATION OF A POTENTIAL BREACH

7.1 The Client shall provide such evidence of its compliance with the obligations under clause 6 and conditions 15 and 16 of these Terms and Conditions as RFA may reasonably request.

7.2 Without limiting the generality of clause 7.1, where the Client reports a matter to RFA under clause 6.4.5 or RFA has reasonable grounds to believe that the Client has or may have breached clause 6 or conditions 13 or 14 of these Terms and Conditions, the Client shall immediately provide all reasonable co-operation to RFA to enable RFA to determine as far as possible whether the Client has or may have breached clause 6:

7.2.1 whether such a breach has taken place, the scope of any breach and the cause of any breach; and

7.2.2 action which is appropriate for RFA or the Client to take to remedy or mitigate the impact of any such breach.

7.3 Reasonable co-operation under clause 7.2 shall include but not be limited to the provision of documents and information and provision of access to personnel, premises and systems on request within reasonable timescales specified by RFA.

7.4 Without limiting RFA’s rights under clause 10.1, if RFA Services investigates a potential breach under this clause 7 and reasonably determines that a breach of clause 6 or conditions 15 or 16 of the Specific Conditions has occurred, the Client must promptly take any reasonable steps that RFA specifies to the Client as necessary to remedy or mitigate the impact of the breach.

8 CONFIDENTIALITY AND FREEDOM OF INFORMATION

8.1 In this clause 8, “Confidential Information” refers to secret or confidential commercial, financial, marketing, technical, or other information, including, but not limited to, know-how, trade secrets, operations, plans, intentions, working methods, designs, market opportunities, transactions, affairs, and/or business of the parties and/or their customers, suppliers, or clients, and other information in any form or medium, whether disclosed orally or in writing. “Confidential” denotes that the information is not publicly available, either in its entirety or in the precise arrangement or assembly of its components. The parties shall seek to appropriately identify and label information which each considers to be confidential, but their failure to do so will not in itself mean such information is not Confidential Information.

8.2 Subject to articles 8.3 and 8.4, each party must retain and ensure that all Confidential Information belonging to the other disclosed or obtained as a result of the parties’ relationship under this Agreement be kept secret and confidential. Except for the purposes of the proper performance of this Agreement or with the prior written approval of the other party, neither party shall use nor disclose the same. When disclosure is given to an employee, consultant, or agent, it is subject to the same requirements as set forth in this article. Each party shall ensure that any such employee, consultant, or agent enters into an information security agreement with the other that includes duties similar to those set forth in this section 8. Each party is expected to use all reasonable endeavours to ensure that any such employee, consultant or agent complies with such obligations. Each party shall be responsible to the other in respect of any disclosure or use of such Confidential Information by a person to whom disclosure is made.

8.3 The obligations of confidentiality and other obligations in this clause 8 shall not extend to any matter which the relevant party can show:

8.3.1 is lawfully in, or has become lawfully part of, the public domain other than as a result of a breach of the obligations of confidentiality under this Agreement; or

8.3.2 was independently disclosed to a party to this Agreement by a third party, which, in that receiving party’s reasonable opinion, was legally entitled to disclose the same; or

8.3.3 is required to be disclosed under any applicable law, including a valid request under the Freedom of Information Act 2000, the Freedom of Information (Scotland) Act 2002, the Environmental Information Regulations 2004 or the Environmental Information (Scotland) Regulations 2004, or by order of a court or governmental or regulatory body or authority of competent jurisdiction; or

8.3.4 was known to the receiving party before the information was disclosed to it by the disclosing party.

8.4 This clause applies if the Client is a public authority to which the Environmental Information Regulations 2004, the Environmental Information (Scotland) Regulations 2004, the Freedom of Information Act 2000 or the Freedom of Information (Scotland) Act 2002 applies. If the Client receives a request for disclosure of information under any of this legislation which relates to information about this Agreement or any information which has been provided to the Client by RFA pursuant to this Agreement (whether within a Deliverable or otherwise) the Client shall notify RFA of the request and the Client’s proposed response to the request (including the date on which the Client intends to send its response to the request) within a reasonable period after receipt of the request and before any disclosure is made in response to the request.

9. LIABILITY, WARRANTY AND INDEMNITIES

9.1 Each party warrants and undertakes that it has the capacity and full legal authority to enter into this Agreement, that it has been signed by its duly authorised representative, that the making of this Agreement does not conflict with any of its existing obligations, and that once signed, this Agreement shall constitute its legal, valid, and binding obligations.

9.2 RFA warrants and undertakes that the Quality Assurance Process has been completed with respect to the RFA Data.

9.3 RFA makes no promise as to the quality or correctness of the Deliverables, subject to Article 9.2. RFA accepts no responsibility for any inferences or conclusions drawn by the Client or, any third party based on the Deliverables.

9.4 The Client promises and undertakes on an ongoing basis that it will comply with the provisions of the DP Act insofar as such provisions apply to it in relation to this Agreement, and that it will ensure that the provisions of the DP Act and the terms of this Agreement are observed by its employees, agents, and contractors.

9.5 Without prejudice to the generality of clause 9.4 and conditions 13 and 13 of these Terms and Conditions, the Client promises and undertakes on a continuing basis that:

9.5.1 it shall use the Deliverables, Derived Materials and RFA Data only in accordance with the Data Protection Legislation

9.5.2 in particular, and without limiting the extent of article 9.5.1, where the Permitted Purposes entails linking RFA Data to data from any other source, there is a legal basis for this processing of the other data, and it will not violate the DP Act or any other duty of confidentiality

9.5.3 where the Client has provided information about its arrangements to ensure security of information at RFA’s request prior to entering into this Agreement, that such information is and continues to be correct and accurate

9.5.4 it shall use the Deliverables, Derived Materials and RFA Data only in accordance with the Permitted Purposes as agreed.

9.5.5 it has complied with any advice, undertaking or enforcement notice issued to it by the Information Commissioner following:

9.5.5.1 any audit by the Information Commissioner; or

9.5.5.2 any notification of a data security breach or any other breach of the data protection legislation by the Client;

9.5.6 it will not make or permit or pursue any analyses which allow the identification of individuals or, which permit or enable any other person to identify individuals

9.6 Subject to section 9.7, the Client shall indemnify and keep RFA indemnified against all damages, fees, and expenses incurred by RFA as a result of the Client’s breach of this Agreement.

9.7 Subject to clause 9.9:

9.7.1 RFA has no obligations to the Client other than those specifically stated in this Agreement, whether in contract, tort, violation of statutory duty, or otherwise.;

9.7.2 RFA accepts no liability (however caused) for any loss of profit, business, contracts, revenues, increased costs or expenses, or any indirect or consequential loss occurring under this Agreement or otherwise in connection with any Deliverable provided by RFA to the Client.

9.7.3 the maximum liability of RFA to the Client for any loss or damage of any kind arising from this Agreement shall not in any event exceed the lesser of:

9.8.3.1 where the full Payment is less than £10,000: 50% of the Payment and where the full Payment is more than £10,000: the sum of £5,000; and

9.8.3.2 50% of the aggregate amount actually received by RFA from the Client under this Agreement.

9.8 Neither party excludes or limits its liability to the other party for:

9.9.1 fraud or fraudulent misrepresentation;

9.9.2 death or personal injury caused by negligence;

9.9.3 a breach of any obligations implied by section 12 of the Sale of Goods Act 1979 or section 2 of the Supply of Goods and Services Act 1982 or subsequent legislation which replaces these provisions; or

9.9.4 any matter for which it would be unlawful for the parties to exclude liability.

9.9 Without limiting RFA’s other rights or remedies, the Client acknowledges and agrees that monetary damages would be an inadequate remedy for any breach of this Agreement’s provisions, and RFA shall be entitled to injunction, specific performance, and other equitable relief for any threatened or actual breach of this Agreement’s provisions by the Client.

9.10 The Client shall always maintain adequate insurance coverage for its liabilities and potential liabilities under this Agreement, including professional indemnity cover, employer’s liability cover, and public liability cover, to the extent that these are relevant and appropriate in light of the Client’s activities and the Permitted Purposes. RFA may legitimately request that the Client supply RFA with evidence of compliance with this paragraph 9.11.

10 TERMINATION

10.1 RFA may without liability terminate this Agreement immediately by written notice to the Client if:

10.1.1 RFA determines, in its own absolute discretion, that the Client is in material breach of any of its obligations under this Agreement. For the avoidance of doubt, any breach of clauses 3, 6.2 to 6.4, 7.2 to 7.4 or 8.2 or conditions 13 and 14 of these Terms and Conditions will always be a material breach; or

10.1.2 RFA finds, in its sole discretion, that the Client is or has acted in a manner that is or has been seriously averse to RFA’s goodwill and reputation, or to the harm of RFA’s relationship with external institutions, regulators, or representative organisations.; or

10.1.3 RFA is unable to supply the Services to the Client within days of the Commencement Date; or

10.1.4 an Insolvency Event occurs in relation to the Client; or

10.1.5 the Client ceases, or threatens to cease, to carry out business; or

10.1.6 RFA has a reasonable belief that any of the events listed in clauses 10.1.1 to RFA will occur if RFA is in significant violation of its duties to the Client under this Agreement.

10.3 Clauses 3, 5, 6, 7, 8, 9, 11 and this clause 10 and conditions 13 and 14 of these Terms and Conditions shall survive termination expiration of this Agreement.

10.4 Termination shall be without prejudice to the parties’ rights accrued up to the Termination Date, provided that all payments due from the Client to RFA shall become immediately payable upon the Termination Date.

11 NOTICES

11.1 Any notice to be given pursuant to this Agreement:

11.1.1 shall be in writing; and

11.1.2 shall be delivered by hand or sent by first class post, recorded delivery or by commercial courier to the party due to receive such notice at its address set out in the SOW or such other address or addressee as any party may notify to the other from time to time:

11.1.3  In the absence of evidence of earlier receipt any such notice shall be deemed to have been given or received:

11.1.3.1 if delivered by hand, when delivered; or

11.1.3.2 on the second business day following the day of sending if sent by post or recorded delivery; or

11.1.3.3 on the date and at the time that the courier’s delivery receipt is signed if sent by commercial courier.

12 FORCE MAJEURE

12.1 RFA shall not be considered in breach of this Agreement or otherwise liable to the Client for any failure to perform any obligation to which it is subject under this Agreement to the extent that such failure is prevented from being performed by any event or circumstance beyond its reasonable control (“an Event of Force Majeure”).

When an Event of Force Majeure happens or arises, RFA shall notify the Client as soon as possible, and the time for RFA’s performance of the relevant obligation shall be assumed to be prolonged by the duration of the Event of Force Majeure.

13 USE OF DELIVERABLES AND DERIVED MATERIALS: GENERAL PROVISIONS:

This Condition sets out the important rules which apply to your use of RFA Data. Please read them carefully in full. It is particularly important that you understand the fundamental conditions on use of data relating to individuals.

In summary, these are: RFA Data relating to individuals must:

  • never be shared with anyone else who is not permitted to process the data under this Agreement;

  • never be used to make decisions or enable any decisions to be made about an individual contrary to the intended purpose within this Agreement;

  • never be used to contact an individual or enable them to be contacted for any reason or purpose whatsoever contrary to the intended purpose within this Agreement;

  • only be processed if it is necessary for the Permitted Uses set out within this Agreement;

13.1 For the avoidance of doubt, references in this condition and in the Permitted Purposes to the use of Deliverables or Derived Materials include the use or reproduction of any part thereof and the use or reproduction of any RFA Data within Deliverables and Derived Materials. “Use” includes any action which would constitute “processing” under the DP Act.

13.2 The Client shall produce Derived Materials only as provided for in the Permitted Purposes. This includes the use of RFA Data to produce Derived Material.

13.3 The Client shall not at any time link the RFA Data to any other data unless specifically agreed by RFA.

13.4 Where a review date is specified by the specified date the Client must carry out a review to determine whether RFA Data within the relevant Deliverables is still required for the Permitted Purposes. The Client must retain a record of the review and its determination as to whether retention of the Data is required. Such a record should constitute the relevant part of any Legitimate Interest Assessment.

13.5 Where the contract comes to an end and that RFA’s Data within that Deliverable is no longer required for the Permitted Purposes; or where the Client otherwise determines that the RFA Data within a Deliverable is no longer required for the Permitted Purposes; or where the Client’s licence to use the Deliverable is otherwise terminated through termination of this Agreement; where any of these conditions apply:

13.5.1 The Client shall destroy or procure the destruction of all RFA Data provided within the Deliverable. “Destroy” means permanently destroy all hard and electronic copies of such Data and permanently expunge the Data from all computers, file or document management systems and networks within the control of the Client or any third parties to whom the Data has been passed within the Permitted Purposes.

13.6 The Client shall not use, reproduce, pass on, publish, permit the use by or otherwise make available to any third party (on a commercial basis or otherwise) the Deliverables or any part thereof including any RFA Data or any Derived Materials, save:

13.6.1 as expressly provided for within the Permitted Purposes in relation to the relevant data fields or types of Derived Material;

13.6.2 as required by law; or

13.6.3 with RFA’s explicit prior written consent. For the avoidance of doubt, “publication” shall include both publication in hard copy form and inclusion of material on an internet website, intranet, extranet or other method of accessing information electronically.

13.7 The Client shall inform RFA immediately if it considers that, or it becomes aware of any circumstances which mean or may mean that, the Deliverables, Derived Materials or any RFA Data have been used otherwise than in accordance with this agreement and the Permitted Purposes.

13.8 RFA Data within the Deliverables shall not be transferred out of or processed outside the United Kingdom without the prior explicit consent of RFA.

14 PERMITTED PURPOSES

This clause states the Permitted Purposes i.e. the purposes for which the Deliverables and Derived Materials may be used. These permissions are subject to the restrictions set out in this Agreement. If the Client is in any doubt as to what is permitted, they must contact RFA to request clarification and/or permission for any use beyond these terms.

14.1 Permission for use of the Deliverables and Derived Materials, including RFA Data, is only granted as set out below.

14.2.1 Where RFA Data is specified in the Specific Terms as being required to be treated as Personal Data, these permissions are also limited by the Data Protection Act 2018. In the event of any doubt as to its meaning this condition shall be interpreted restrictively in line with the requirements of the DPA 2018 and applicable requirements under GDPR.

14.2.2 The Permitted Purposes being defined in the Specific Terms as agreed.

14.2.3 Where for the purpose of the agreed project in the Specific Terms, the customer shall abide by those reasonable usage requirements as indicated. The Data Provided is subject to usage limits, including the quantities specified in Statement of Work.

14.2.4 Where the customer exceeds the usage limit as indicated in the Specific Terms, RFA may work with the customer to seek to reduce usage so that it conforms to that limit. If, notwithstanding our efforts, the customer is unable or unwilling to abide by a contractual usage limit, RFA will execute an Order Form for additional quantities of the applicable Services or Content promptly upon request, and/ or pay any invoice for excess usage.

14.2 The Customer shall take reasonable steps to ensure the reliability of any employee, agent or contractor who may have access to RFA’s Data, ensuring in each case that access is strictly limited to those individuals who need to know / access the relevant Data, as strictly necessary for the purposes of this Principal Agreement, the Specific Terms and to comply with Applicable Laws ensuring that all such individuals are subject to confidentiality undertakings or professional or statutory obligations of confidentiality.

15 INDEMNITY

15.1 Warranty and Indemnification. RFA represents and warrants that (i) it has the requisite skills, experience, knowledge and expertise to perform the Services described in each Statement of Work; (ii) the Services and Deliverables in the form provided by RFA do not infringe upon any copyright, trademark, trade secret or other Intellectual Property Rights of any third party; that (iii) it will comply with all applicable laws, including privacy and data protection laws.

15.2 RFA shall indemnify and hold the Client harmless against all liability imposed or claimed, including legal’ fees and other legal expenses, arising directly or indirectly from any breach, act or failure of RFA or its employees or subcontractors, including all claims relating to the injury or death of any person or damage to any property.

16 GENERAL CONDITIONS AND REQUIREMENTS

16.1 This Agreement comprises the Specific Conditions and the Standard Terms and Conditions. Neither the Specific Conditions nor the Standard Terms and Conditions are to be interpreted or applied separately from the other.

16.2 This Agreement including the Specific Terms and Terms and Conditions shall form the entire agreement between the parties in relation to its subject matter. It supersedes any prior written or oral agreement between them in relation to its subject matter and shall not be superseded subsequently by any communication by one party.

16.3 This Agreement comprises RFA’s Acceptable Use Policy @REDFLAGALERT. www.redflagalert.com | 49 Peter Street, Manchester, M2 3NG

16.4 The parties confirm that they did not enter into this Agreement based on any representations not expressly incorporated into it. Each party irrevocably and unconditionally waives any right it may have to seek damages and/or terminate this Agreement due to a breach of any warranty not expressly stated in this Agreement or a misrepresentation not expressly stated in this Agreement, unless such misrepresentation was made fraudulently.

16.5 The Client shall not be entitled to sub-licence any of the rights granted to it nor to sub-contract any of the obligations imposed on it by RFA under this Agreement.

16.6 If, for any reason, any part of this Agreement is held to be or becomes illegal, void, or otherwise unenforceable under any applicable law, the parties shall negotiate in good faith to amend such provision so that, as amended, it is legal, valid, and enforceable and, to the greatest extent possible, achieves the parties’ original intention. The other terms of this Agreement’s validity and/or enforceability are not altered or hindered in any manner because of such omission.

17. GOVERNING LAW

17.1 This Agreement shall be governed by and construed in accordance with English Law and, the Client submits to the exclusive jurisdiction of the English Courts.

APPENDIX 1

Databases are protected in two ways:
1. under the law of copyright and the specific rules that apply in relation to databases; and
2. under the UK Copyright and Rights in Databases Regulations 1997.

Copyright

Databases are treated as a class of literary works and may therefore receive copyright protection for the selection and/or arrangement of the contents provided that they were recorded in some medium and were the “author’s own intellectual creation”. A database will only be original if “by reason of the selection or arrangement of the contents of the database the database constitutes the author’s own intellectual creation”.

Pursuant to UK law, copyright in a database lasts for 70 years from the end of the calendar year in which the author of the database dies. The copyright owner is the creator of the database, therefore businesses need to exercise caution when engaging a contractor to create a database for it. The contractor is likely to be the owner of copyright in the database and if a business wants to own the copyright it must enter into an agreement with the contractor which contains an assignment of copyright.

The principles of infringement of database copyright are the same as those for other types of copyright work.

Database right

If a set of data comes within the definition of a database, it will qualify for protection in its own right under the Databases Regulations if there has been a “substantial investment” in obtaining, verifying or presenting the contents of the database. Investment covers “financial, human or technical” investment and substantial is interpreted in “terms of quantity or quality or a combination of both”.

In contrast to copyright, the maker of a database is the first owner, with the maker defined as the person who “takes the initiative in obtaining, verifying or presenting the contents of a database and assumes the risk of investing in that obtaining, verification or presentation”.

Database right lasts for 15 years from the end of the calendar year in which the making of the database was completed. Although this is shorter than the duration of copyright, if a “substantial change” to the contents of a database which constitutes a “substantial new investment”, the amended database will qualify for a new 15-year term. In effect, this means that an indefinite term of protection is available for the many databases that are continually updated.

A database right is infringed if a person extracts or re-utilises all or a substantial part of the contents of the database without the owner’s permission. In addition, the repeated and systematic extraction or re-utilisation of insubstantial parts of the contents of the database may also amount to the extraction or the re-utilisation of a substantial part of those contents.