Terms and Conditions for the Supply of Service

The Customer’s attention is particularly drawn to the provisions of clause 11.

1. INTERPRETATION
   1. Definitions. In these Conditions, the following definitions apply:

      “Business Day”	a day (other than a Saturday, Sunday or public holiday) when banks in London are open for business.
      “Charges”	the charges payable by the Customer for the supply of the Services in accordance with clause 5.
      “Commencement Date”	has the meaning set out in clause 2.2.
      “Conditions”	these terms and conditions as amended from time to time in accordance with clause 14.8.
      “Contract”	the contract between the Supplier and the Customer for the supply of Services in accordance with these Conditions.
      “Customer”	the person or firm who purchases Services from the Supplier
      “Customer Personal Data”	to be interpreted in accordance with the Personal Data Processing Schedule.
      “Deliverables”	the deliverables set out in the Order produced by the Supplier for the Customer.
      “Hosting Provider”	the specialist company, CWCS, who the Supplier uses for hosting its customers’ websites.
      “Intellectual Property Rights”	all patents, rights to inventions, utility models, copyright and related rights, trademarks, service marks, trade, business and domain names, rights in trade dress or get-up, rights in goodwill or to sue for passing off, unfair competition rights, rights in designs, rights in computer software, database right, topography rights, moral rights, rights in confidential information (including know-how and trade secrets) and any other intellectual property rights, in each case whether registered or unregistered and including all applications for and renewals or extensions of such rights, and all similar or equivalent rights or forms of protection in any part of the world.
      “Order”	the Customer’s written acceptance of the Supplier’s quotation.
      “Personal Data Processing Schedule”	means the personal data processing schedule annexed to these Conditions.
      “Services”	the services, including the Deliverables, supplied by the Supplier to the Customer as set out in the Specification and including any digital based services such as web design and development, content management systems, email markets, social media branding, search engine optimisation work, hosting etc.)
      “Specification”	the description or specification of the Services provided in writing by the Supplier to the Customer.
      “Supplier”	Miramar Communications Limited registered in England and Wales with company number 6546290.
      “Supplier Materials”	has the meaning set out in clause 4.1.6

   2.  Construction. In these Conditions, the following rules apply:
      1. a person includes a natural person, corporate or unincorporated body (whether or not having separate legal personality);
      2. a reference to a party includes its personal representatives, successors or permitted assigns;
      3. a reference to a statute or statutory provision is a reference to such statute or statutory provision as amended or re-enacted. A reference to a statute or statutory provision includes any subordinate legislation made under that statute or statutory provision, as amended or re-enacted;
      4. any phrase introduced by the terms including, include, in particular or any similar expression, shall be construed as illustrative and shall not limit the sense of the words preceding those terms; and
      5. a reference to writing or written includes faxes and e-mails.
2. BASIS OF CONTRACT
   1. The Order constitutes an offer by the Customer to purchase Services in accordance with these Conditions.
   2. The Order shall only be deemed to be accepted when the Supplier issues written acceptance of the Order at which point and on which date the Contract shall come into existence (Commencement Date).
   3. The Contract constitutes the entire agreement between the parties and supersedes and extinguishes all previous agreements, promises, assurances, warranties, representations and understandings between them, whether written or oral, relating to its subject matter. The Customer acknowledges that it has not relied on any statement, promise, assurance, warranty or representation made or given by or on behalf of the Supplier (whether made innocently or negligently) which is not set out in the Contract. Each party agrees that it shall have no claim for innocent or negligent misrepresentation or negligent misstatement based on any statement in this Contract.
   4. Any samples, drawings, descriptive matter or advertising issued by the Supplier, and any descriptions or illustrations contained in the Supplier’s catalogues or brochures, are issued or published for the sole purpose of giving an approximate idea of the Services described in them. They shall not form part of the Contract or have any contractual force.
   5. These Conditions apply to the Contract to the exclusion of any other terms that the Customer seeks to impose or incorporate, or which are implied by law, trade, custom, practice or course of dealing.
   6. Any quotation given by the Supplier shall not constitute an offer, and is only valid for a period of 30 Business Days from its date of issue.
   7. If twelve (12) months lapses from the previous occasion that the Supplier has provided Services to the Customer on a particular project (but not due to the Supplier’s fault or a Force Majeure Event (as defined in clause 13.1)), the Customer acknowledges and agrees that the supply of Services shall be deemed completed in respect of such particular project, and any outstanding monies shall be paid in full to the Supplier.
3.  SUPPLY OF SERVICES
   1. The Supplier shall supply the Services to the Customer in accordance with the Specification in all material respects.
   2. The Supplier shall use all reasonable endeavours to meet any performance dates specified in the Order, but any such dates shall be estimates only and time shall not be of the essence for performance of the Services.
   3. The Supplier shall have the right to make any changes to the Services which are necessary to comply with any applicable law or safety requirement, or which do not materially affect the nature or quality of the Services, and the Supplier shall notify the Customer in any such event.
   4. The Supplier warrants to the Customer that the Services will be provided using reasonable care and skill.
   5. Any warranties that may apply to Deliverables shall not extend beyond the final signoff by the Customer of such Deliverables (which shall denote final acceptance) and the Supplier shall invoice the Customer for any outstanding sums due. If the Customer wishes to extend a warranty period for a Deliverable it shall request that the Supplier enters into a support and maintenance agreement, such terms to be agreed by the parties.
   6. The Supplier shall not reference or publish the Customer or any of the Deliverables without the prior written consent of the Customer and for the purposes of this clause, reference or publish shall mean words or images in any media including on social media platforms such as Facebook and Twitter, blogs, or other means of self-publication as may be relevant from time to time.
4. CUSTOMER’S OBLIGATIONS
   1. The Customer shall:
      1. ensure that the terms of the Order and any information it provides in the Specification are complete and accurate;
      2. co-operate with the Supplier in all matters relating to the Services;
      3. provide the Supplier, its employees, agents, consultants and subcontractors, with access to the Customer’s premises, office accommodation and other facilities as reasonably required by the Supplier;
      4. provide the Supplier with such information and materials as the Supplier may reasonably require in order to supply the Services, and ensure that such information is accurate in all material respects;
      5. obtain and maintain all necessary licences, permissions and consents which may be required before the date on which the Services are to start; and
      6. keep and maintain all materials, equipment, documents and other property of the Supplier (Supplier Materials) at the Customer’s premises in safe custody at its own risk, maintain the Supplier Materials in good condition until returned to the Supplier, and not dispose of or use the Supplier Materials other than in accordance with the Supplier’s written instructions or authorisation.
   2. If the Supplier’s performance of any of its obligations under the Contract is prevented or delayed by any act or omission by the Customer or failure by the Customer to perform any relevant obligation (Customer Default):
      1. the Supplier shall without limiting its other rights or remedies have the right to suspend performance of the Services until the Customer remedies the Customer Default, and to rely on the Customer Default to relieve it from the performance of any of its obligations to the extent the Customer Default prevents or delays the Supplier’s performance of any of its obligations;
      2. the Supplier shall not be liable for any costs or losses sustained or incurred by the Customer arising directly or indirectly from the Supplier’s failure or delay to perform any of its obligations as set out in this clause 4.2; and
      3. the Customer shall reimburse the Supplier on written demand for any costs or losses sustained or incurred by the Supplier arising directly or indirectly from the Customer Default.
5. CHARGES AND PAYMENT
   1. The Supplier shall invoice the Customer on completion of the Services unless otherwise agreed in this Contract or in writing.
   2. The Customer shall pay each invoice submitted by the Supplier:
      1. within 30 days of the date of the invoice; and
      2. in full and in cleared funds to a bank account nominated in writing by the Supplier, and time for payment shall be of the essence of the Contract.
   3. All amounts payable by the Customer under the Contract are exclusive of amounts in respect of value added tax chargeable for the time being (VAT). Where any taxable supply for VAT purposes is made under the Contract by the Supplier to the Customer, the Customer shall, on receipt of a valid VAT invoice from the Supplier, pay to the Supplier such additional amounts in respect of VAT as are chargeable on the supply of the Services at the same time as payment is due for the supply of the Services.
   4. Without limiting any other right or remedy of the Supplier, if the Customer fails to make any payment due to the Supplier under the Contract by the due date for payment (Due Date), the Supplier shall have the right to charge interest on the overdue amount at the rate of 5% per cent per annum above the then current TSB plc base rate accruing on a daily basis from the Due Date until the date of actual payment of the overdue amount, whether before or after judgment, and compounding quarterly.
   5. The Customer shall pay all amounts due under the Contract in full without any deduction or withholding except as required by law and the Customer shall not be entitled to assert any credit, set-off or counterclaim against the Supplier in order to justify withholding payment of any such amount in whole or in part. The Supplier may, without limiting its other rights or remedies, set off any amount owing to it by the Customer against any amount payable by the Supplier to the Customer.
6. HOSTING
   1. The Supplier shall use a dedicated web server hosted by the Hosting Provider for all of the Customer’s live sites.
   2. The Supplier shall submit a separate annual price for the hosting and associated technical support for the Customer’s websites yearly in advance. Invoices shall be raised approximately one (1) month prior to the Commencement Date.
   3. The Supplier will use its reasonable endeavours (in co-operation with the Hosting Provider) to rectify the cause of any disruption in the hosting service of the Customer’s website and to minimise the duration of such disruption
   4. The Supplier shall not be liable to the Customer for any downtime that may occur with the hosting of the Customer’s website.
   5. If the Customer wishes to move their website and/or SQL Server Database to another web server supported by another party, then the Supplier will cooperate fully, subject to all outstanding amounts being paid up in full, in advance, along with a negotiated fee for support.
   6. If the Customer requires assistance with remedying a situation with their website that is not a technical fault caused by the Supplier or the Hosting Provider, the time expended by the Supplier will be charged at an additional cost to the Customer.
   7. Support requests can be made directly to the Supplier weekdays 9am – 5:30pm (excluding bank holidays) and requests will be acknowledged and dealt with as quickly as possible.
   8. The Supplier shall offer to the Customer third party services such as those offered by Google to enhance the performance of their websites. The Supplier may include in quotations the setup and maintenance of such third-party services. The Supplier shall not be liable to the Customer for any interruption, non-performance, or cancellation of the provision by third parties of any such services.
   9. The Supplier shall design websites to perform well with search engines of Google and Bing and will recommend additional optimisation techniques to the Customer should they wish to achieve high rankings.
   10. The Supplier accepts no responsibility or liability to the Customer for the rankings achieved or how such rankings may vary over time if the Customer chooses not to request or undertake additional optimisation work.
   11. The Supplier will ensure that the Specification works as intended for a maximum time period of three (3) months. In the event that the Customer reports that some part of the Specification is not functioning correctly then the Supplier will investigate this and take corrective action at no expense to the customer. For correcting performance actions after three (3) months, the Customer will be charged.
   12. After two (2) years, the Supplier shall review the Customer’s website project after which updates and upgrades with cost estimates may be proposed to the Customer.
   13. If the Customer reports an issue which relates to a matter that falls inside of the Specification then the Supplier will investigate this and email the Customer a report and, if appropriate, a price to carry out the extra work involved to resolve the issue. If the Customer reports an issue which relates to a matter that falls outside of the Specification then the Supplier will investigate this at the prevailing hourly rate of its digital director upon prior agreement of the Customer.
   14. The Supplier shall not have any liability to the Customer for the performance of a website, database or any other entity/service developed/setup for the Customer by anyone other than the Supplier.
7. RAW VIDEO FOOTAGE
   1. RAW video footage will be stored on the Supplier’s servers for one (1) year from project completion. At this point a transfer to the Customer’s services shall be offered, if this option is not required the files will be deleted from the Supplier’s servers. Project final output files will continue to be stored and backed-up.
8. CUSTOMER PERSONAL DATA AND DATA PROCESSING
   1. The Customer shall have sole responsibility for the accuracy, quality, integrity, reliability and appropriateness of all the Customer Personal Data provided by the Customer to the Supplier during the course of the Contract.
   2. For the purposes of this Contract, the Supplier will process Customer Personal Data which constitutes Personal Data, on behalf of the Customer, in accordance with the terms and conditions of the Personal Data Processing Schedule (“Personal Data” having the meaning set out therein).
9. INTELLECTUAL PROPERTY RIGHTS
   1. All Intellectual Property Rights in the Deliverables or arising out of or in connection with the Services shall be owned by the Supplier. On payment of the Charges, the Supplier hereby assigns to the Customer all existing and future Intellectual Property Rights arising in the Deliverables or from the Services to the Customer and agrees to promptly execute all documents and do all acts as may, in the opinion of the Customer, be necessary to give effect to this clause.
   2. The Customer acknowledges that, in respect of any third party Intellectual Property Rights, the Customer’s use of any such Intellectual Property Rights is conditional on the Supplier obtaining a written licence from the relevant licensor on such terms as will entitle the Supplier to license such rights to the Customer.
   3. All Supplier Materials are the exclusive property of the Supplier.
10. CONFIDENTIALITY
    1. A party (Receiving Party) shall keep in strict confidence all technical or commercial know-how, specifications, inventions, processes or initiatives which are of a confidential nature and have been disclosed to the Receiving Party by the other party (Disclosing Party), its employees, agents or subcontractors, and any other confidential information concerning the Disclosing Party’s business or its products or its services which the Receiving Party may obtain. The Receiving Party shall restrict disclosure of such confidential information to such of its employees, agents or subcontractors as need to know it for the purpose of discharging the Receiving Party’s obligations under the Contract, and shall ensure that such employees, agents or subcontractors are subject to obligations of confidentiality corresponding to those which bind the Receiving Party.
    2. The restriction in clause 9.1 does not apply to any use or disclosure authorised by the Disclosing Party or required by law; or any information which is already in, or comes into, the public domain otherwise than through the Disclosing Party’s unauthorised disclosure.
    3. this clause 10 shall survive termination of the Contract.
11. LIMITATION OF LIABILITY: THE CUSTOMER’S ATTENTION IS PARTICULARLY DRAWN TO THIS CLAUSE
    1. Nothing in these Conditions shall limit or exclude the Supplier’s liability for:
       1. death or personal injury caused by its negligence, or the negligence of its employees, agents or subcontractors;
       2. fraud or fraudulent misrepresentation; or
       3. breach of the terms implied by section 2 of the Supply of Goods and Services Act 1982 (title and quiet possession).
    2. Subject to clause 11.1:
       1. the Supplier shall under no circumstances whatever be liable to the Customer, whether in contract, tort (including negligence), breach of statutory duty, or otherwise, for any loss of profit, loss of sales or business, loss of agreements or contracts, loss of anticipated savings, loss of or damage to goodwill, or any indirect or consequential loss arising under or in connection with the Contract; and
       2. the Supplier’s total liability to the Customer in respect of all other losses arising under or in connection with the Contract, whether in contract, tort (including negligence), breach of statutory duty, or otherwise, shall in no circumstances exceed 50% of the price to be paid by the Customer under the Contract.
    3. Except as set out in these Conditions, all warranties, conditions and other terms implied by statute or common law are, to the fullest extent permitted by law, excluded from the Contract.
    4. This clause 11 shall survive termination of the Contract.
12. TERMINATION
    1. Without limiting its other rights or remedies, each party may terminate the Contract with immediate effect by giving written notice to the other party if:
       1. the other party commits a material breach of the Contract and (if such a breach is remediable) fails to remedy that breach within 14 days of that party being notified in writing of the breach;
       2. the other party suspends, or threatens to suspend, payment of its debts or is unable to pay its debts as they fall due or admits inability to pay its debts or (being a company) is deemed unable to pay its debts within the meaning of section 123 of the Insolvency Act 1986 or (being an individual) is deemed either unable to pay its debts or as having no reasonable prospect of so doing, in either case, within the meaning of section 268 of the Insolvency Act 1986 or (being a partnership) has any partner to whom any of the foregoing apply;
       3. the other party commences negotiations with all or any class of its creditors with a view to rescheduling any of its debts, or makes a proposal for or enters into any compromise or arrangement with its creditors other than (where a company) for the sole purpose of a scheme for a solvent amalgamation of that other party with one or more other companies or the solvent reconstruction of that other party;
       4. a petition is filed, a notice is given, a resolution is passed, or an order is made, for or in connection with the winding up of that other party (being a company) other than for the sole purpose of a scheme for a solvent amalgamation of that other party with one or more other companies or the solvent reconstruction of that other party;
       5. the other party (being an individual) is the subject of a bankruptcy petition or order;
       6. a creditor or encumbrancer of the other party attaches or takes possession of, or a distress, execution, sequestration or other such process is levied or enforced on or sued against, the whole or any part of its assets and such attachment or process is not discharged within 14 days;
       7. an application is made to court, or an order is made, for the appointment of an administrator or if a notice of intention to appoint an administrator is given or if an administrator is appointed over the other party (being a company);
       8. a floating charge holder over the assets of that other party (being a company) has become entitled to appoint or has appointed an administrative receiver;
       9. a person becomes entitled to appoint a receiver over the assets of the other party or a receiver is appointed over the assets of the other party;
       10. any event occurs or proceeding is taken with respect to the other party in any jurisdiction to which it is subject that has an effect equivalent or similar to any of the events mentioned in clause 11.1.2 to clause 11.1.9 (inclusive);
       11. the other party suspends or ceases, or threatens to suspend or cease, to carry on all or a substantial part of its business; or
       12. the other party (being an individual) dies or, by reason of illness or incapacity (whether mental or physical), is incapable of managing his own affairs or becomes a patient under any mental health legislation.
    2. Without limiting its other rights or remedies, the Supplier may terminate or suspend all further works under the Contract with immediate effect by giving written notice to the Customer if the Customer fails to pay any amount due under this Contract on the due date for payment. If the Customer does not pay a hosting subscription invoice within 30 days of the due date, then the Supplier reserves the right to turn off any website hosting until such time as the invoice is paid in full.
    3. Without limiting its other rights or remedies, each party shall have the right to terminate the Contract by giving the other party one month’s written notice.
    4. Without limiting its other rights or remedies, the Supplier shall have the right to suspend provision of the Services under the Contract or any other contract between the Customer and the Supplier if the Customer becomes subject to any of the events listed in clause 12.1.2 to clause 12.1.12 or the Supplier reasonably believes that the Customer is about to become subject to any of them, or if the Customer fails to pay any amount due under this Contract on the due date for payment.
13. CONSEQUENCES OF TERMINATION (On termination of the Contract for any reason)
    1. . the Customer shall immediately pay to the Supplier all of the Supplier’s outstanding unpaid invoices and interest and, in respect of Services supplied but for which no invoice has been submitted, the Supplier shall submit an invoice, which shall be payable by the Customer immediately on receipt;
    2. the Customer shall return all of the Supplier Materials and any Deliverables which have not been fully paid for. If the Customer fails to do so, then the Supplier may enter the Customer’s premises and take possession of them. Until they have been returned, the Customer shall be solely responsible for their safe keeping and will not use them for any purpose not connected with this Contract;
    3. the accrued rights, remedies, obligations and liabilities of the parties as at expiry or termination shall not be affected, including the right to claim damages in respect of any breach of the Contract which existed at or before the date of termination or expiry; and
    4. clauses which expressly or by implication have effect after termination shall continue in full force and effect.
14. GENERAL
    1. Force majeure:
       1. For the purposes of this Contract, Force Majeure Event means an event beyond the reasonable control of the Supplier including but not limited to strikes, lock-outs or other industrial disputes (whether involving the workforce of the Supplier or any other party), failure of a utility service or transport network, act of God, war, riot, civil commotion, malicious damage, compliance with any law or governmental order, rule, regulation or direction, accident, breakdown of plant or machinery, fire, flood, storm or default of suppliers or subcontractors.
       2. The Supplier shall not be liable to the Customer as a result of any delay or failure to perform its obligations under this Contract as a result of a Force Majeure Event.
       3. If the Force Majeure Event prevents the Supplier from providing any of the Services for more than one week, the Supplier shall, without limiting its other rights or remedies, have the right to terminate this Contract immediately by giving written notice to the Customer.
    2. Assignment and subcontracting:
       1. The Supplier may at any time assign, transfer, charge, subcontract or deal in any other manner with all or any of its rights under the Contract and may subcontract or delegate in any manner any or all of its obligations under the Contract to any third party or agent.
       2. The Customer shall not, without the prior written consent of the Supplier, assign, transfer, charge, subcontract or deal in any other manner with all or any of its rights or obligations under the Contract.
    3. Notices:
       1. . Any notice or other communication required to be given to a party under or in connection with this Contract shall be in writing and shall be delivered to the other party personally or sent by prepaid first-class post, recorded delivery or by commercial courier, at its registered office (if a company) or (in any other case) its principal place of business, or sent by fax to the other party’s main fax number.
       2. Any notice or other communication shall be deemed to have been duly received if delivered personally, when left at the address referred to above or, if sent by pre-paid first-class post or recorded delivery, at 9:00 am on the Business Day after posting, or if delivered by commercial courier, on the date and at the time that the courier’s delivery receipt is signed, or if sent by fax, on the next Business Day after transmission.
       3. This clause 14.3 shall not apply to the service of any proceedings or other documents in any legal action. For the purposes of this clause, “writing” shall not include e-mails and for the avoidance of doubt notice given under this Contract shall not be validly served if sent by e-mail.
    4. Waiver:
       1. A waiver of any right under the Contract is only effective if it is in writing and shall not be deemed to be a waiver of any subsequent breach or default. No failure or delay by a party in exercising any right or remedy under the Contract or by law shall constitute a waiver of that or any other right or remedy, nor preclude or restrict its further exercise. No single or partial exercise of such right or remedy shall preclude or restrict the further exercise of that or any other right or remedy.
       2. Unless specifically provided otherwise, rights arising under the Contract are cumulative and do not exclude rights provided by law.
    5. . Severance:
       1. If a court or any other competent authority finds that any provision of the Contract (or part of any provision) is invalid, illegal or unenforceable, that provision or part-provision shall, to the extent required, be deemed deleted, and the validity and enforceability of the other provisions of the Contract shall not be affected.
       2. If any invalid, unenforceable or illegal provision of the Contract would be valid, enforceable and legal if some part of it were deleted, the provision shall apply with the minimum modification necessary to make it legal, valid and enforceable.
       3. No partnership: Nothing in the Contract is intended to, or shall be deemed to, constitute a partnership or joint venture of any kind between any of the parties, nor constitute any party the agent of another party for any purpose. No party shall have authority to act as agent for, or to bind, the other party in any way.
    6. Third parties: A person who is not a party to the Contract shall not have any rights under or in connection with it.
    7. Variation: Except as set out in these Conditions, any variation, including the introduction of any additional terms and conditions, to the Contract, shall only be binding when agreed in writing and signed by the Supplier.
    8. Governing law and jurisdiction: This Contract, and any dispute or claim arising out of or in connection with it or its subject matter or formation (including non-contractual disputes or claims), shall be governed by, and construed in accordance with, English law, and the parties irrevocably submit to the exclusive jurisdiction of the courts of England and Wales.

PERSONAL DATA PROCESSING SCHEDULE

1. Definitions
   1. In this Personal Data Processing Schedule (the Schedule) the following words and expressions shall have the following meanings unless the context otherwise requires:

      “Appropriate Technical and Organisational Measures”	shall be interpreted in accordance with the Privacy Laws.
      “Customer Personal Data”	means any Personal Data the Processing of which is subject to Privacy Laws, that is controlled by the Customer and its employees (where applicable) which the Supplier Processes in the course of providing the Services under the Conditions, wherever the Processing takes place.
      “Data Controller”	shall be interpreted in accordance with the Privacy Laws.
      “Data Processor”	shall be interpreted in accordance with the Privacy Laws.
      “Data Subject”	shall be interpreted in accordance with the Privacy Laws.
      “EU Data Protection Law”	means all applicable EU data protection and privacy laws, including: (i) prior to 25 May 2018, the EU Data Protection Directive 95/46/EC and, on and after 25 May 2018, the General Data Protection Regulation 2016/679; (ii) the Privacy and Electronic Communications Directive 2002/58/EC; and (iii) any other European Union or EU Member State laws made under or pursuant to (i) or (ii), in each case as such laws may be amended or superseded from time to time.
      “GDPR”	means the General Data Protection Regulation (EU) 2016/679.
      “Personal Data”	shall be interpreted in accordance with the Privacy Laws.
      “Privacy Laws”	means applicable laws serving to ensure the protection of Personal Data (including in connection with the Processing of Personal Data), and the protection of the rights and freedoms (in particular, their right to privacy) of Data Subjects relating to their Personal Data, including EU Data Protection Law and UK Data Protection Law, in each case as such laws may be amended or superseded from time to time.
      “Processing”	shall be interpreted in accordance with the Privacy Laws (and “Process” shall be construed accordingly).
      “UK Data Protection Law”	means all applicable UK data protection and privacy laws including any UK law which replaces EU Data Protection Law, or which implements or transposes EU Data Protection Law into UK law.

2. Data Protection
   1. The Supplier agrees, in relation to the Customer Personal Data, that the Customer is the Data Controller (and therefore controls what happens to the Customer Personal Data) and the Supplier is the Data Processor.
   2. The subject-matter and the duration of the Processing, the nature and purpose of the Processing, the type of Personal Data and the categories of Data Subjects are as follows:
      1. Subject matter of the Processing: Marketing and communication.
      2. Duration of the Processing: For the duration of the Contract and until the Customer Personal Data is deleted in accordance with clause 2.4.6 of this Schedule.
      3. Nature and purpose of the Processing: Marketing and communication of new and existing products, solutions and services.
      4. Categories of Data Subjects: Existing and potential clients for the Customer, the Customer’s partners, the Customer’s staff, the Customer’s tenants and the Customer’s potential tenants.
      5. Types of Personal Data: Full name, title, contact details (generally business contact details, including address and email) and online behavioural analytics data.
   3. The Supplier acknowledges and agrees that nothing in this agreement relieves the Supplier from its responsibilities and liabilities under the Privacy Laws.
   4. When the Supplier Processes Customer Personal Data in the course of providing the Services, the Supplier will:
      1. process the Customer Personal Data only in accordance with written instructions from the Customer, including with regard to transfers of Customer Personal Data to a third country or international organisation except where required to do so by law. If the Supplier is required by law to Process the Customer Personal Data for any other purpose, the Supplier will inform the Customer of this requirement before the Processing, unless that law prohibits this on important grounds of public interest;
      2. take reasonable steps to ensure the reliability and competence of the Supplier personnel who have access to the Customer Personal Data;
      3. ensure that the personnel required to Process the Customer Personal Data:
         1. (a) are informed of the confidential nature of the Customer Personal Data;
         2. (b) are subject to appropriate obligations of confidentiality; and
         3. (c) do not publish, disclose or divulge any of the Customer Personal Data to any third party unless directed in writing to do so by the Customer;
      4. implement and maintain Appropriate Technical and Organisational Measures to protect the Customer Personal Data against unauthorised or unlawful processing and against accidental loss, destruction, damage, theft, alteration or disclosure;
      5. taking into account the nature of the Processing, assist the Customer:
         1. (a) by taking Appropriate Technical and Organisational Measures and in so far as it is possible, in fulfilling the Customer’s obligations to respond to requests from Data Subjects exercising their rights; and
         2. (b) in ensuring compliance with the obligations pursuant to Articles 32 to 36 of the GDPR or equivalent provisions in the Privacy Laws;
      6. no later than 12 months of the expiry or termination of the Contract, delete all the Customer Personal Data (unless the Supplier is required to retain it by law). The Supplier will at all times access data via the Customer’s online tools and will not retain it. If the Customer requires the Supplier to delete the Customer Personal Data in any other circumstances, the Supplier may make a reasonable charge for doing so;
      7. make available to the Customer all information necessary to demonstrate its compliance with its obligations in this agreement and allow the Customer and its auditors or authorised agents to conduct audits and inspections during the term of the Contract (and provide reasonable assistance in connection therewith) for the purpose of verifying that the Supplier is Processing Customer Personal Data in accordance with the Supplier’s obligations under this Schedule, the Contract and applicable Privacy Laws; and
      8. not give access to or transfer any Customer Personal Data to any third party (including any group companies or sub-contractors) without the prior written consent of the Customer. Where the Customer does consent to the Supplier engaging a sub-contractor to carry out any part of the Services, the Supplier must ensure the reliability and competence of the third party, its employees and agents who may have access to the Customer Personal Data and must include in any contract with the third party, provisions in favour of the Customer which are equivalent to those in this clause 2 and as are required by applicable Privacy Laws. For the avoidance of doubt, where a third party fails to fulfil its obligations under any sub-processing agreement or any applicable Privacy Laws, the Supplier will remain fully liable to the Customer for the fulfilment of the Supplier’s obligations under this Schedule and the Contract.
   5. The Supplier shall notify the Customer immediately if, in the Supplier’s opinion, an instruction for the Processing of Customer Personal Data given by the Customer infringes applicable Privacy Laws.
   6. The Supplier shall communicate any claims or requests in respect of the Customer Personal Data (including requests from Data Subjects exercising their rights) without delay to the Customer to enable the Customer to respond in accordance with applicable Privacy Laws.
   7. If the Supplier becomes aware of any accidental, unauthorised or unlawful destruction, loss, alteration, or disclosure of, or access to any Customer Personal Data that the Supplier Processes when providing the Services (a “Personal Data Breach”), the Supplier will:
      1. notify the Customer within 48 hours;
      2. provide the Customer (as soon as possible) with a detailed description of the Data Breach, the type of Customer Personal Data that was the subject of the Data Breach and the identity of each affected person, as soon as such information can be collected or otherwise becomes available (as well as periodic updates to this information and any other information the Customer may reasonably request relating to the Data Breach); and
      3. not release or publish any filing, communication, notice, press release, or report concerning the Data Breach without the Customer’s prior written approval (except where required to do so by law).
   8. If, pursuant to Article 28(7) or Article 28(8) of the GDPR, the Information Commissioner adopts standard contractual clauses for the matters referred to in Article 28(3) and Article 28(4) of the GDPR and the Customer notifies the Supplier that it wishes to incorporate any element of any such standard contractual clauses into the Schedule, the Supplier will agree to the changes as reasonably required by the Customer to achieve this.
   9. The parties agree that, in the event of the Supplier being required to assist the Customer in sending bulk emails during the Customer’s marketing campaign, it may, if the Customer does not have its own email distribution software, engage the services of its sub-contractor, Campaign Monitor or its sub-processors, to assist with this. Campaign Monitor (or its sub-processors) will store Customer Personal Data within and outside the European Economic Area. The Supplier will ensure that any processing of Customer Personal Data is subject to such arrangements as are necessary to ensure that any Customer Personal Data transferred to data processors established in third countries meets the adequacy requirements of the European Commission or as are required under privacy laws applicable in the UK.