Security & Customer Data
AwareX will use commercially reasonable efforts to maintain administrative, physical, and technical safeguards to protect the Customer’s Data and Personal Information. Safeguards will include, but are not limited to, measures preventing unauthorized physical or remote access to the Server, monitoring of remote access attempts, and use of ﬁrewalls and appropriate software for the purposes of providing security, all of which are to be made in AwareX’s sole discretion.
AwareX will use industry standard encryption techniques for any data transmissions by the Server. These techniques include, but are not limited to, secure socket layer (SSL), transport layer security (TLS) and secure shell (SSH). Use of this service by the Customer will be over HTTPS protocol and AwareX will provide the Customer with the required third-party veriﬁed SSL certiﬁcate.
Customer will be responsible for ensuring encryption keys required for use with the awareX Subscription Service are stored securely. AwareX will not retain this private information on behalf of the customer.
The Software includes certain optional interfaces with third-party applications or use of external communications such as email or SMS that either does not use any encryption or for which the data encryption is deﬁned by the third-party interface. Use of these features is at sole discretion and risk of the Customer.
AwareX acknowledges and agrees that in the course of its engagement by the Customer, AwareX may receive or have access to Personal Information. AwareX shall comply with the terms and conditions set forth in this Agreement in its collection, receipt, transmission, storage, disposal, use and disclosure of such Personal Information and be responsible for the unauthorized collection, receipt, transmission, access, storage, disposal, use and disclosure of Personal Information under its control or in its possession. AwareX agrees and covenants that it shall:
- Keep and maintain all Personal Information in strict confidence, using such degree of care as is appropriate to avoid unauthorized access, use or disclosure
- Not access Personal information in violation of law, and
- Use and disclose Personal Information solely and exclusively for the purposes for which the Personal Information is provided or accessed pursuant to the terms and conditions of this Agreement, and not use, sell, rent, transfer, distribute, or otherwise disclose or make available Personal Information for AwareX’s own purposes or for the benefit of anyone other than Customer, in each case, without Customer’s prior written consent.
AwareX will ensure Customer Data is backed up each day, with the exception of ephemeral data that is confined to volatile memory or in transit on a network connection. AwareX does not provide any warranty on the time of day for when the backup will occur, and Customer accepts all risks associated therewith.
Customer must provide AwareX access to its Apple Developer and iTunes accounts and Google Play Developer console for use specifically associated with provision of the awareX solution. AwareX will treat such accounts as private Customer information. Customer will not hold AwareX liable for errors made while performing activities on behalf of the Customer on these systems.