Updated On: December 17, 2020
This Hosted Software Agreement (“Agreement”) is entered into on the current date as captured on the IDentity Get Started web page (“Effective Date”), by and between:
IDmission LLC, a Delaware limited liability company (hereinafter referred to as “IDmission”).
and
Company as entered on the IDentity Get Started web page (hereinafter referred to as “Customer”).
IDmission and Customer are hereinafter also referred to as "Parties" collectively and "Party" individually.
WHEREAS:
A. IDmission has developed Software Application(s) (as defined below) that run on its proprietary Software Platform (as defined below) which it wishes to licence to Customer pursuant to the terms and conditions of this Agreement;IDmission software consists of the following components:
System of engagement via an SDK (IDentity) coupled to a platform on the cloud (ADA)
In consideration of the foregoing recitals, the covenants and agreements set forth herein, and for other good and valuable consideration, the legal sufficiency and receipt of which are hereby acknowledged, the Parties agree as follows:
3.2 Any professional services, such as custom development, are outside the scope of this Agreement. If the Parties desire to contract for such professional services, such professional services shall be provided under a separate agreement.
3.3 Customer shall be responsible for the Customer Agents’ compliance with this Agreement and shall be solely responsible for the Customer Content, except for modifications controlled by IDmission or the Software. Customer shall not (a) use the Software to store or transmit infringing, libellous-, or otherwise unlawful or tortious material, or to store or transmit material in violation of third-party privacy rights, (b) interfere with or disrupt the integrity or performance of the Software or Customer Content contained therein, or (c) attempt to gain unauthorized access to the Software or its related systems or networks. Customer will use commercially reasonable efforts to prevent unauthorized access to, or use of, the Software or Customer Content.
4. FEES
4.1 Customer agrees to pay IDmission the fees (”Fees”) specified on the IDmission Website for the IDentity Service offering. Except as otherwise set forth herein, fees are non-cancellable and non-refundable. Customer shall pay all undisputed charges set forth in an invoice issued by IDmission in accordance with this Agreement as charged through their enrolled payment method. In the event Customer disputes any amount charged on such invoice, Customer shall pay any undisputed amounts in accordance with the applicable payment terms and send a disputed amount notice (setting forth the amount in dispute and the reasons for any such dispute) to IDmission within ten (10) days following receipt of such an invoice (the “Dispute Period”). The parties shall use commercially reasonable efforts to resolve any such dispute. If Customer does not dispute the applicable invoice during the Dispute Period, any such dispute shall be deemed waived. Any payment not received from Customer through the enrolled payment method will be considered a Customer’s failure to pay Fees in a timely manner and may result in suspension of Customer 's ability to access the Software until payment is made, as further described in Section 4.3.
4.2 If IDmission has the legal obligation to pay or collect taxes for which Customer is responsible, including but not limited to, sales, use, transfer, privilege, excise, and all other taxes and duties that are levied or imposed by reason of performance of IDmission under this Agreement, the appropriate amount shall be invoiced to and paid by Customer, unless Customer provides IDmission with a valid tax exemption certificate authorized by the appropriate taxing authority.
4.3 If any amount owed by Customer is thirty (30) days or more overdue, IDmission may, without limiting its other rights and remedies, suspend access to the Software until such amounts are paid in full provided, however, that no suspension shall take effect unless IDmission has given Customer at least ten (10) business days prior written notice that it intends to suspend Customer 's account because it is overdue. Any failure by Customer to pay amounts thirty (30) days or more overdue shall be deemed a material breach of this Agreement.
5.1 The term of this Agreement does not expire and will remain in effect until Customer deactivates their services through the IDentity Portal. Customer may use and access the Software during the Term.
6.1 A Party may terminate this Agreement at any time for any reason.
6.2 Upon termination of this Agreement, the rights and licenses granted hereunder will automatically terminate, and Customer shall cease all access and use of the Software. If the Agreement is terminated based on Customer’s uncured material breach, Customer shall pay any unpaid fees covering the remainder of the Term after the effective date of such termination. Termination of this Agreement shall not limit the Parties from pursuing any other remedies available to it, including injunctive relief.
6.3 Upon termination of this Agreement for any reason or no reason, IDmission shall cooperate fully with Customer to facilitate a smooth transition of the Customer Content from IDmission to Customer and/or Customer’s designated replacement provider(s) as requested by Customer (“Transition Services”). IDmission shall perform the Transition Services at Customer’s expense, as directed by Customer and in a manner that will cause minimal interruption to Two’s business operations. In the course of the provision of such Transition Services by IDmission, Customer shall continue to pay, on a pro-rata basis (based on the contract price for the year immediately preceding termination), the charges for the Software.
7.1 Subject to the license rights as set forth herein, as between IDmission and Customer, all right, title, and interest in and to the Software, IDmission’s Confidential Information, and Documentation, including, without limitation, all modifications, derivative works, enhancements, and IP Rights therein and thereto, shall belong solely to IDmission and/or its applicable licensors. To the extent that Customer, by operation of law, is deemed to have any rights in or to the Software, IDmission’s Confidential Information, or Documentation, Customer shall, and hereby does, exclusively and irrevocably assign, transfer and otherwise convey to IDmission all of its right, title, and interest in and to the Software, IDmission’s Confidential Information, or Documentation, including without limitation all IP Rights pertaining thereto.
7.2 Customer exclusively owns all right, title and interest in and to the Customer Content, including, without limitation, all modifications, enhancements, and IP Rights therein and thereto. In the event of termination or expiration of this Agreement, within thirty (30) days of such termination or expiration, IDmission shall return to the Customer all Customer Content; at no charge to Customer, in a flat file format or in such other customary format as mutually agreed upon by the Parties, and destroy or permanently erase the Customer Content from the Software.
7.3 IDmission shall have a royalty-free, non-exclusive, worldwide, transferable, sub-licensable, irrevocable, perpetual license to use or incorporate into the Software any suggestions, enhancement requests, recommendations or other feedback (“Suggestions”) provided by Customer relating to the Software.
8.1 As used herein, “Confidential Information” means all confidential and proprietary information of a Party (“Disclosing Party”) disclosed to the other Party (“Receiving Party”), whether orally or in writing, that (a) is designated as confidential; or (b) reasonably should be understood to be confidential given the nature of the information and the circumstances of disclosure, including the terms and conditions of this Agreement (including pricing), business and marketing plans, technology, financial and technical information, product designs, business processes, non-public information concerning the Software, and the Customer Content. Confidential Information shall not include any information that: (i) is or becomes generally known to the public without breach of any obligation owed to the Disclosing Party; (ii) was known to the Receiving Party prior to its disclosure by the Disclosing Party without breach of any obligation owed to the Disclosing Party; (iii) was independently developed by the Receiving Party without breach of any obligation owed to the Disclosing Party; or (iv) is received from a third party without breach of any obligation owed to the Disclosing Party.
8.2 Confidential Information shall not be used for any purpose other than the purposes of this Agreement, nor shall it be disclosed to anyone other than to the Receiving Party’s employees or its legal counsel, agents or consultants rendering services related to the subject matter of this Agreement (collectively, “Representatives”) who are subject to appropriate confidentiality policies or are bound by appropriate confidentiality agreements with terms at least as protective as the terms set forth in this Section 8 and who have a need to know the Confidential Information. The Receiving Party shall be responsible for any violation of the confidentiality provisions set forth in this Section 8 that is caused by the acts or omissions of its Representatives. As between the Receiving Party and the Disclosing Party, the Confidential Information of the Disclosing Party shall be owned solely and exclusively by the Disclosing Party. Each party will use at least the same degree of care to avoid disclosure of the other party’s Confidential Information as it uses with respect to its own Confidential Information, but in no event shall less than reasonable care be used. The parties agree that the terms and conditions of this Agreement shall constitute the Confidential Information of both parties.
8.3 If the Receiving Party is compelled by law to disclose Confidential Information of the Disclosing Party, it shall provide the Disclosing Party with prior notice of such compelled disclosure (to the extent legally permitted) and reasonable assistance, at Disclosing Party's cost, so that the Disclosing Party may seek a protective order or other appropriate remedy and/or waive the Receiving Party’s compliance with the terms of this Agreement. If such protective order or other remedy is not obtained, or if the Disclosing Party waives the Receiving Party’s compliance with the provisions hereof, the compelled party agrees to furnish only that portion of the Confidential Information of the Disclosing Party which it reasonably determines it is legally required to so furnish and, at the request of the Disclosing Party, to use reasonable efforts to obtain assurance that confidential treatment will be accorded such Confidential Information, it being understood that such reasonable efforts shall be at the cost and expense of the Disclosing Party.
8.4 If the Receiving Party discloses or uses (or threatens to disclose or use) any Confidential Information of the Disclosing Party in breach of confidentiality protections hereunder, the Disclosing Party shall have the right, in addition to any other remedies available to it, to seek injunctive relief to enjoin such acts, it being specifically acknowledged by the parties that any other available remedies are inadequate.
9.1 Each Party represents, warrants and covenants that: (a) it has the requisite corporate power and authority to enter into, and perform its obligations under, this Agreement, and that there are no claims by any Governmental Authority pending or, to that Party’s knowledge, threatened against or affecting such Party before any court or administrative body or arbitration tribunal that might affect the ability of such Party to meet and carry out its obligations under this Agreement; and (b) it will not transmit to the other Party any Malicious Code.
9.2 IDmission represents, warrants and covenants that: (a) IDmission has all rights necessary to grant all licenses and rights granted herein and to fulfill its obligations under this Agreement, including all rights required to provide the Software that must be obtained from any third parties; (b) the Software does not and will not contain any third party IP Rights or derivative works thereof not owned in their entirety or properly licensed by IDmission; (c) the Software does not and will not infringe or otherwise violate any U.S. patent rights or any non-patent-based IP Rights of any third party, and IDmission is not aware of any facts upon which such a claim for infringement could be based; and (d) IDmission has not previously granted and will not grant any rights in the Software to any third party that are inconsistent with the rights granted to Customer herein.
9.3 IDmission represents warrants and covenants that the Software shall perform in a good and workmanlike manner in accordance with industry standards, and shall conform to the Documentation. IDmission’s liability for breach of this warranty shall be the replacement or modification of the Software that does not conform to the Documentation. When replacement of Software is not possible, IDmission’s entire, cumulative liability shall be limited to that portion of the Fees paid during the period the Software does not conform to the Documentation.
9.4 Customer represents, warrants and covenants that: (a) Customer has all necessary rights to use the Customer Content with the Software; (b) the Customer Content and Customer’s use thereof does not and will not infringe or otherwise violate any proprietary rights of any third party; and (c) the Customer Content and Customer’s use thereof complies with all applicable Laws, including those regarding the collection, use, and storage of personally identifiable information.
9.5 EXCEPT FOR THE WARRANTIES, COVENANTS OR OTHER OBLIGATIONS EXPRESSLY SET FORTH IN THIS AGREEMENT (INCLUDING, WITHOUT LIMITATION, ANY SERVICE LEVEL AGREEMENT PROVIDED FOR UNDER THIS AGREEMENT), IDMISSION, ON THE ONE HAND, AND CUSTOMER, ON THE OTHER HAND, EACH DISCLAIM ALL WARRANTIES, WHETHER EXPRESS OR IMPLIED, WRITTEN OR ORAL, STATUTORY OR OTHERWISE, WITH RESPECT TO THIS AGREEMENT, INCLUDING, WITHOUT LIMITATION, ANY WARRANTY OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE, OR REPRESENTATIONS OF TITLE AND NON-INFRINGEMENT.
10.1 Subject to the terms and conditions of this Agreement, IDmission shall defend, indemnify and hold Customer harmless against any loss, damage or costs (including reasonable attorneys' fees) incurred in connection with claims, demands, suits, or proceedings made or brought against Customer by a third party alleging that the Software or any portion thereof infringes, violates or constitutes a wrongful use of any third party’s U.S. patent rights or any third party’s non-patent-based IP Rights (“Infringement Claim”).
10.2 Notwithstanding the provisions of Section 10.1, IDmission shall have no liability for any Infringement Claim to the extent such liability is the result of (a) modifications to the Software by anyone other than IDmission or its agents; (b) the use or combination of the Software with any other item not provided by IDmission where in the absence of such use or combination, the Software alone would not have given rise to the Infringement Claim; or (c) Customer’s continued use of an infringing version of the Software when the then current version of the Software has been modified to be non-infringing.
10.3 Subject to the terms and conditions of this Agreement, Customer shall defend, indemnify and hold IDmission harmless against any loss, damage or costs (including reasonable attorneys' fees) incurred in connection with claims, demands, suits, or proceedings made or brought against IDmission by a third party alleging that the Customer Content, infringes, violates or constitutes a wrongful use of any third party’s IP Rights.
10.4 The indemnified Party (“Indemnitee”) will (a) promptly notify the indemnifying Party (“Indemnitor”) of any indemnified claim or action; (b) give Indemnitor sole control of the defense and settlement of the claim or action (provided that the Indemnitee may participate in such defense at its own expense); and (c) at Indemnitor’s expense, cooperate with Indemnitor in connection with such defense or settlement of any such claim or action. Indemnitor shall not, without the prior written consent of Indemnitee, acquiesce to any judgment or enter into any settlement that adversely affects Indemnitee’s rights or interests or settle any claim or action if such settlement arises from or is part of any criminal action, suit or proceeding or contains a stipulation to or admission or acknowledgement of any liability or wrongdoing (whether in contract, tort or otherwise) on the part of Indemnitee. Any failure on the part of Indemnitee to promptly notify Indemnitor of an indemnified claim or action shall relieve Indemnitor of its obligations hereunder only to the extent that such obligations are prejudiced by such delay.
10.5 If, as a result of an Infringement Claim or a threatened Infringement Claim, Customer’s use of the Software (in whole or in part) is enjoined, then in addition to IDmission’ obligations under Section 10.1, IDmission shall, at its sole option and expense, do one or more of the following: (a) obtain Customer the right to use the Software without any additional cost to Customer; or (b) modify the Software so that such become non-infringing without a material decrease in functionality. If the foregoing options are not reasonably practicable, IDmission may terminate this Agreement and refund to Customer all prepaid fees for the remainder of its Term after the date of termination. This Section 10 represents IDmission’ entire obligation and Customer 's exclusive remedy regarding any third party intellectual property claims.
11.1 EXCEPT WITH RESPECT TO (i) THE INDEMNIFICATION OBLIGATIONS UNDER SECTION 10, (ii) CUSTOMER’S BREACH OF ITS OBLIGATIONS UNDER SECTION 3.3; AND (iii) BREACHES OF THE CONFIDENTIALITY OBLIGATIONS OF SECTION 8: (a) NEITHER IDMISSION, ON THE ONE HAND, NOR CUSTOMER, ON THE OTHER HAND, SHALL BE LIABLE TO THE OTHER FOR ANY SPECIAL, INDIRECT, INCIDENTAL, PUNITIVE, EXEMPLARY OR CONSEQUENTIAL DAMAGES, EVEN IF SUCH PARTY WAS AWARE OF OR WAS NOTIFIED OF THE POSSIBILITY OF SUCH DAMAGES; IN EACH CASE, IRRESPECTIVE OF WHETHER THE BASIS OF THE LIABILITY IS BREACH OF CONTRACT, TORT (INCLUDING NEGLIGENCE AND STRICT LIABILITY), STATUTES, OR ANY OTHER LEGAL THEORY, AND (b) THE AGGREGATE LIABILITY OF IDMISSION TO CUSTOMER FOR CLAIMS RELATING TO THIS AGREEMENT OR THE SOFTWARE, WHETHER FOR BREACH OF CONTRACT OR IN TORT OR UNDER ANY OTHER THEORY OF LIABILITY, SHALL BE LIMITED TO THE AMOUNT ACTUALLY PAID BY CUSTOMER TO IDMISSION HEREUNDER DURING THE TWELVE (12) MONTH PERIOD IMMEDIATELY BEFORE THE CLAIM WHICH GAVE RISE TO THE LIABILITY. THE LIMITATIONS SET FORTH IN THIS SECTION 11 SHALL APPLY NOTWITHSTANDING THE FAILURE OF THE ESSENTIAL PURPOSE OF ANY LIMITED REMEDY. THE FOREGOING LIMITATIONS SHALL NOT APPLY TO DAMAGES ARISING FROM A PARTY'S GROSS NEGLIGENCE OR WILFUL MISCONDUCT RELATED TO ACTIONS UNDER THIS AGREEMENT.
In the event that any dispute arises between the Parties in connection with this Agreement, the construction of any provision of this Agreement or the rights, duties or liabilities of the Parties hereto under this Agreement, the Parties shall conduct negotiations in good faith to solve such dispute. If mutual resolution cannot be reached within sixty (60) days after the commencement of such negotiations, the dispute shall be referred to an Arbitrator appointed under Arbitration and Conciliation Act, 1996.. The arbitration shall be conducted before a panel of three (3) arbitrators, one (1) of whom shall be selected by each of the Parties and the other selected by the two (2) arbitrators so appointed. Each Party may be represented by legal counsel and may examine witnesses at any oral hearing of evidence. The arbitrators shall issue a written opinion stating their findings of fact and conclusions of law on which the decision is based. The arbitration proceedings shall be conducted in English. Any award made in such arbitration will be final and binding on the Parties. The Arbitrators and the Parties shall strive to conclude the Arbitration proceedings, including the passing of award, within sixty (60) days from the day of the first sitting of the Arbitration proceedings. Notwithstanding the preceding provisions of this Section, a Party may seek injunctive relief under Section 8.4 above.
13. GOVERNING LAW
13.1 This Agreement will be governed by and construed in accordance with the laws of courts at Colorado, USA without regard for any conflict of law principle that might otherwise permit the application of the law of some other jurisdiction. THE PARTIES EXPRESSLY OPT OUT OF THE UNITED NATIONS CONVENTION ON CONTRACTS FOR THE INTERNATIONAL SALE OF GOODS.
14.1 All notices and communications to IDmission shall be directed to:
IDmission, LLC
8445 Baseline Road
Boulder, CO 80303
Attn: Ashim Banerjee
14.2 All notices and communications to Customer will be directed to the email address and business address enrolled.
14.3 All notices given in writing shall be effective when either served by personal delivery or by certified or registered mail. To be effective, all such notices shall be addressed to the contact persons of the parties at their respective addresses as set forth above, or to such other addresses as either Party may later specify by written notice.
14.4 Notwithstanding the above provisions regarding notices by personal delivery, postal delivery, and electronic transmission, an electronic mail message sent by one Party to the other shall be deemed to constitute an effective notice hereunder only if (1) the electronic mail message notice prominently states that it is being given under this Agreement and requests an e-mail response acknowledging receipt; and (2) the responding electronic e-mail message (a) clearly refers to the specific e-mail message to which it is responding, and (b) includes a copy of such text of such message. Further, to be effective, all such notices shall be addressed to the contact persons of the Parties at their respective e-mail addresses as set forth above, or to such other e-mail address as either Party may later specify by written notice.
15.1 The Parties shall not assign this Agreement or any right or interest under this Agreement, nor delegate any work or obligation to be performed under this Agreement, without the other Party’s prior written consent, provided that a Party may assign this Agreement without the consent of the other Party to any successor in interest, whether through a merger, purchase of a controlling interest of such Party’s outstanding voting equity interests or a purchase of all, or substantially all, of such Party’s assets, or other business combination. Any attempted assignment or delegation in contravention of this Section shall be void and ineffective.
16. FORCE MAJEURE
16.1 Neither Party shall be in breach of any obligation under this Agreement to the extent it is delayed in the performance of, or is unable to perform (whether partially or fully), such obligations as a result of the occurrence of any unforeseeable act or event that prevents the affected Party from performing its obligations under this Agreement or complying with any conditions required by the other Party under this Agreement, if such act or event is beyond the reasonable control of and not the fault of the affected Party and such Party has been unable to avoid such act or event by the exercise of prudent foresight and due diligence (“Force Majeure”). For clarity, in no event shall a Force Majeure excuse Customer of its obligation to pay the Fees.
16.2 The Party claiming the benefit of Force Majeure shall give notice to the other Party of the occurrence of an event of Force Majeure as soon as reasonably practicable and in any case within seven (7) days from the date on which such Party knew of the occurrence of an event of Force Majeure. The affected Party shall also forthwith provide notice to the other Party upon cessation of the relevant event of Force Majeure.
16.3 Each Party shall make all reasonable commercially available endeavours to mitigate any delay or interruption to any part of the performance of this Agreement as a result of the occurrence of an event of Force Majeure.
17.1 This Agreement, including any Schedules and documents referred to in this Agreement or attached hereto, constitutes the entire and exclusive statement with respect to its subject matter and supersedes any and all oral or written representations, understandings, or agreements relating thereto. This Agreement may be modified, supplemented or changed only by an agreement in writing which makes specific reference to this Agreement and which is signed by authorized representatives of both Parties. No waiver regarding any breach of this Agreement shall constitute a waiver of any other breach. Any delay by a Party in exercising in any respect any right provided for in this Agreement, shall not be deemed a waiver of the subject right or any further right under this Agreement.
17.2 If any portion of this Agreement is rendered invalid or otherwise unenforceable under applicable Laws or by a Governmental Authority with jurisdiction over the Parties, then the remainder of this Agreement will continue in full force unless such continuance will deprive one of the Parties of a material benefit hereunder or frustrate the main purpose(s) of this Agreement. Further, if any provision of this Agreement is declared or found to be illegal, unenforceable, or void, the Parties shall negotiate in good faith to agree upon a substitute provision that is legal and enforceable and is as nearly as possible consistent with the intentions underlying the original provision.
17.3 This Agreement shall be binding on and inure to the benefit of the Parties and their respective successors and permitted assigns. Nothing in this Agreement, expressed or implied, is intended or shall be construed to confer upon any entity, other than the Parties, and their respective successors and permitted assigns, any remedy or claim by reason of this Agreement, and any such remedies or claims shall be for the exclusive benefit of the Parties.
17.4 The Parties are independent contractors and nothing contained in this Agreement shall be construed to create or constitute a partnership, joint venture, or employment relationship between the Parties. Neither Party has any right or authority to incur, assume or create, in writing or otherwise, any warranty, liability or other obligation of any kind, express or implied, in the name of or on behalf of the other Party.
17.5 Except as expressly provided otherwise in this Agreement, in addition to any remedies provided in this Agreement, the Parties shall have all remedies provided at law or in equity. The rights and remedies provided in this Agreement or otherwise under law or in equity shall be cumulative and the exercise of any particular right or remedy shall not preclude the exercise of any other rights or remedies in addition to, or as an alternative of, such right or remedy, except as expressly provided otherwise in this Agreement.
17.6 The rights and obligations of the Parties set forth in the following Sections, and any other provisions hereof that by their nature are intended to survive, shall survive the expiration or termination of this Agreement for any reason whatsoever: 3.3, 7, 8, 10, 11, 12, 13, and 17.
17.7 This Agreement may be executed in two or more counterparts, each of which shall be deemed an original and all of which shall constitute one instrument.
By accepting the Terms of Use during enrolment, the Parties hereto have duly executed this Agreement effective as of the day and year enrolment was completed.
Schedule A - Service Level Agreement
IDmission will use commercially reasonable efforts to ensure that the Software works in accordance with the agreed functionality/description and conforms to this Service Level Agreement. Support will be provided hereunder during the Term.
All problems will fall under 1 of the 3 priority categories as explained below.
Priority 1 – Critical Problems
The Software is completely unavailable. This can happen for several different reasons including, but not limited to, client application failure, server failure etc. Some guidelines for this Priority level are:
Priority 2 – Significant Problems
The Software is are available but is experiencing problems periodically. Some guidelines for this Priority level are:
Priority 3 – Inconvenient Problems
Problem happens often enough to be recognised as something that needs to be resolved quickly but not one that is causing Customer extended or frequent down times. Some guidelines for this Priority level are:
Customer can contact IDmission by e-mail during 24x7 hours to obtain the Support Services set forth in this Schedule A. The IDmission contact information is listed as follows:
Email: support@idmission.com
Support can also be obtained through the Support option through the IDentity web portal.
Server Uptime
IDmission will provide 99.9% uptime for the Software Platform. This excludes any outages due to preventive maintenance.
Preventative Maintenance
IDmission will be conduct preventive maintenance at regular intervals. Maintenance is generally scheduled on the weekends (Saturday evening EST) during off hours to minimize impact. This will include checking the health of the IDmission servers and any connections between the IDmission servers and Customer that may be required for the solution.
Most preventive maintenance will not impact Customer. If any problem is detected for which a service outage is necessary, in IDmission’s reasonable discretion, to rectify the detected problem, IDmission will give 48 hours notice before undertaking any planned maintenance.
Once the Service is restored, IDmission will inform Customer promptly.
Response Times
IDmission will offer the following commitment for Problem Response:
Priority Category |
SLA – Standard Support |
Priority 1 |
Response in 30 min |
Priority 2 |
Response in 4 hours |
Priority 3 |
Response in 2 business days |
IDmission offers a Problem Resolution SLA to Customer, as well as an escalation path:
Priority 1 – Critical Problems
Agreed SLA – 90% of cases resolved within 6 hours. 100% of cases resolved within 2 working days
Priority 2 – Significant Problems
Agreed SLA – 90% of cases resolved within 1 working day. 100% of cases resolved within 2 working days.
Priority 3 – Inconvenient Problem
Agreed SLA – Notified bugs will be cleared by next regularly scheduled release.
4. Disaster Recovery
IDmission uses AmazonEC2 as our cloud infrastructure – Amazon Elastic Compute
Cloud (Amazon EC2) provides scalable computing capacity in the Amazon Web
Services (AWS) cloud.
All IDmission applications use different zones inside the AWS region. AWS zones
are different buildings within an AWS region. This allows our applications to continue
to work even if one AWS zone is down for any reason.
Multi-zone configuration is not restricted to Applications but is done for the database
and load balancers. This ensures the complete IDmission Infrastructure will work
without impact if one zone is down. This provides us with a Disaster Proof solution
through AWS.
IDmission also takes regular back-ups of our applications and databases. This
allows us to recover in the event of a DB crash or corruption of data. The IDmission
team can quickly recover by launching another instance of the application or DB
using the backup to continue operations.
Our load balance infrastructure helps us to launch instances and stop instances as
per our load requirements. Applications, servers and DBs are monitored using
Nagios for all load requirements. Appropriate actions related to loads are taken as
required.
The following document identifies all of the Disaster Recovery processes and
procedures that AWS supports for IDmission:
Updated On: December 17, 2020
IDmission LLC (“IDmission”) is concerned about privacy issues and respects the privacy of our users. This Privacy Policy (“Policy”) describes our privacy practices concerning information collected in connection with IDmission’s IDentity Solution, including self-service registration, and all associated validation, enrollment and verification services available through the IDentity SDK Toolkit (the “Services”). A separate policy describes our privacy practices in connection with our online website, located at http://www.idmission.com/company/privacy-policy/ . .
IDmission makes the Services available to third parties for integration into those third parties’ websites, applications, and online services. IDmission collects, uses, and discloses individual users’ information only as directed by these third parties and, accordingly, IDmission is a mere processor of user information with respect to the Services and not a controller. Further, some features of the Services may be disabled or altered by the data controller, or the controller may require IDmission to collect, use, disclose, or otherwise process data in ways that differ from those described below. Thus, to fully understand how your information will be handled when you use the Services, you must review not just this Policy, but also the privacy policy of the third party with whom you are dealing directly (the “Third-Party Data Controller”).
Notwithstanding the above, IDmission may process certain individual users’ information in anonymized form for its own purposes.
IDmission is headquartered in the United States at 1830 17th St, Suite 100, Boulder, CO, 80302.
What personal and other information IDmission collects about you
IDmission collects “personal information” about users of the Services. “Personal information” is information such as name, email address, or identification card image, which refers to an identified or identifiable person. IDmission processes personal information on behalf of the Third-Party Data Controller. For its own purposes, IDmission processes only anonymized information. “Anonymized information” is information which does not relate to an identified or identifiable person or is rendered anonymous in such a manner that the person is no longer identifiable.
Personal information. IDmission collects a wide range of personal information through the Services. This information varies depending on the IDentity application and the Third-Party Data Controller in question, but may include such information as name, physical address, email address, telephone number, social security number, driver’s license number, state or national ID card number, passport number, other ID card number, credit or debit card number, CVV, expiration date, and/or date of birth. In some cases, IDmission may collect a visually scanned or photographed image of your face and/or your identification card, driver’s license, passport, utility bill, bank account statement, or credit/debit card. This image may include your photograph and other information from the imaged document, such as your eye color, weight, height, and organ donor status.
Facial Biometrics. If you agree to use our Facial Biometric Service, IDmission will collect an image of your face that you provide through a mobile app and a photo or scan of your face as it appears on an identification document. IDmission will use facial recognition technology only for the purpose of verifying your identity as the person who appears on the identification document. IDmission may share the facial scans with the IDmission customer through which you used IDmission’s identity verification service. IDmission will retain your facial recognition information, including the photo of your face and photo or scan of your identification document, for the amount of time requested by the IDmission customer through which you used IDmission’s identity verification service. In no event will IDmission store your facial recognition information after IDmission ceases to have a customer relationship with the customer through which you used IDmission’s identity verification service.
Fingerprint Biometrics. If you agree to use our Fingerprint Biometric Service, IDmission will collect images of your fingerprints that you provide through a mobile app or integrated fingerprint capture device. IDmission will use biometric enrollment and verification technology only for the purpose of verifying your identity as the person who has enrolled. IDmission may share the fingerprint images with the IDmission customer through which you used IDmission’s identity verification service. IDmission will retain your fingerprint images, for the amount of time requested by the IDmission customer through which you used IDmission’s identity verification service. In no event will IDmission store your fingerprint information after IDmission ceases to have a customer relationship with the customer through which you used IDmission’s identity verification service.
Voice Biometrics. If you agree to use our Voice Biometric Service, IDmission will collect a recording of your voice that you provide through a mobile app. IDmission will use biometric enrollment and verification technology only for the purpose of verifying your identity as the person who has enrolled. IDmission may share the voice recording with the IDmission customer through which you used IDmission’s identity verification service. IDmission will retain your voice recording, for the amount of time requested by the IDmission customer through which you used IDmission’s identity verification service. In no event will IDmission store your voice information after IDmission ceases to have a customer relationship with the customer through which you used IDmission’s identity verification service.
Data provided by third parties. We may receive personal or anonymized information about you from the Third-Party Data Controller that integrates the Services into its website, application, or other online service. This information includes a unique ID, selected by the Third-Party Data Controller, that uniquely identifies you in the third party’s database. For additional information, review the privacy policy of the Third-Party Data Controller.
At the direction of the Third-Party Data Controller, IDmission also might obtain information about you from other third parties, such as consumer reporting agencies and fraud-prevention services.
Cookies and other tracking data. When you use the Services, we automatically receive and record certain information from your computer (or other device) and/or your web browser. This may include such information as the third-party website or application into which the Services are integrated, the date and time that you use the Services, your IP address and domain name, your software and hardware attributes (including operating system, device model, and hashed device fingerprint information), and your general geographic location ( e.g. , your city, state, or metropolitan region). We will process such data only as instructed by the Third-Party Data Controller.
We also use cookies in connection with the Services. For further information please refer to the section entitled “Cookies” below.
Cookies
What are cookies? Cookies are small files that are stored on your computer or other device by your web browser. A cookie allows IDmission to recognize whether you have used the Services before and may store user preferences and other information.
How are cookies used? For example, cookies can be used to collect information about your use of the Services during your current session and over time, your computer or other device’s operating system and browser type, your Internet service provider, your domain name and IP address, and your general geographic location. We process personal information generated by cookies only as instructed by the Third-Party Data Controller.
How do you avoid cookies? If you are concerned about having cookies on your computer or device, you can set your browser to refuse all cookies or to indicate when a cookie is being set, allowing you to decide whether to accept it. You can also delete cookies from your computer. However, if you choose to block or delete cookies, certain features of the Services may not operate correctly.
How IDmission uses the personal and anonymized information that we collect
In general, IDmission uses the personal and anonymized information that we collect in connection with the Services as discussed in this section of the Policy.
Personal information is used by IDmission only as directed by the Third-Party Data Controller that integrates the Services into its website, application, or other online service. Subject to the privacy policy of the Third-Party Data Controller, we use your personal information as follows on behalf of the Third-Party Data Controller:
IDmission may use your personal information to provide the Services. For example, we might use your credit card information or ID card information to populate an online form, or to verify your identity in connection with your use of another online service. We also may use your personal information to fulfill the terms of any agreement between us and the Third-Party Data Controller; to complete a transaction that you initiate; to deliver account information, notifications, and similar operational communications; and to comply with legal and/or regulatory requirements.
Anonymized information that we collect in connection with the Services is used by IDmission for its own purposes to perform analytics and research concerning the Services.
How IDmission shares personal and anonymized information with third parties
In general, IDmission shares the personal and anonymized information that we collect in connection with the Services as discussed below.
However, IDmission shares personal information only as directed by the Third-Party Data Controller, and thus the following language is subject to the privacy policy of the Third-Party Data Controller.
Third-Party Data Controller. We share the personal and pseudonymized information that we collect on behalf of a particular Third-Party Data Controller with that Third-Party Data Controller.
IDmission service providers. IDmission also uses third-party service providers to help us deliver, manage, and improve the Services. These service providers may collect and/or use your personal information or anonymized information to assist us in achieving the purposes discussed above in the section entitled “How we use the personal and non-personal information that we collect.” For example, we use a third party to help us translate the information contained in scanned images of identification cards.
We also may share your personal information with other third parties when necessary to fulfill your requests for services; to complete a transaction that you initiate; or to meet the terms of any agreement that you have with us or our partners.
Analytics providers. We partner with certain other third parties to collect anonymized information and engage in analysis, auditing, research, and reporting.
Legal purposes. We also may use or share your personal information with third parties when we have reason to believe that doing so is necessary:
Aggregated information. From time to time, IDmission may also share anonymized and aggregated information about users of the Services, such as by publishing a report on trends in the usage of the Services.
Security
IDmission uses commercially reasonable physical, electronic, and procedural safeguards to protect your personal information against loss or unauthorized access, use, modification, or deletion. Among other things, IDmission encrypts sensitive information both in transit and at rest. IDmission is PCI Level 3 compliant and regularly conducts security audits, vulnerability scans, and penetration tests to ensure compliance with security best practices and standards. However, no security program is foolproof, and thus we cannot guarantee the absolute security of your personal or other information. Moreover, we cannot guarantee the safety of your information when in the possession of other parties, such as the Third-Party Data Controller.
Reviewing and updating your information
IDmission will grant you access to your personal information as directed by the Third-Party Data Controller that integrates the Services into its website, application, or online service. IDmission also will retain your personal information as directed by the Third-Party Data Controller and, accordingly, we may retain your personal information for as short as a few minutes or as long as five years.
Thus, if you want to learn more about the personal information that IDmission has about you, or you would like to submit a request to update or change that information, please contact the Third-Party Data Controller. You also may reach us by email at support@idmission.com .
Changes to this Policy
Technology and the Internet are rapidly changing. IDmission therefore is likely to make changes to the Services in the future and as a consequence will need to revise this Policy to reflect those changes. When we revise the Policy, IDmission will post the new Policy on the IDmission website’s home page ( www.idmission.com ) and also on the IDentity Service website ( https://identity.idmission.com ), so you should review that page periodically. If we make a material change to the Policy, you will be provided with appropriate notice. If we maintain your email address, we also may email you a copy of the revised Policy at your most recently provided email address. It is therefore important that you update your email address if it changes.
Questions or comments
If you have any questions or comments regarding our Policy, please email us at: support@idmission.com