SDS Encryption Service Terms and Conditions for Google Workspace

These General Terms and Conditions constitute all of the contractual conditions governing the subscription (the "Subscription") binding, on the one hand, Stormshield, a simplified limited company with capital of €2,793,881.60, having its registered office at 2-10 rue Marceau, 92130 Issy-les-Moulineaux, France and, on the other hand, the Customer. Stormshield and the Customer may hereinafter be referred to separately as a “Party” and jointly as the “Parties”.

By using our services, you agree to these terms and agree to review our privacy policy. If you do not agree to these Terms and Privacy Policy, you should not use our Services.

Definitions

SDS Encryption Service for Google Workspace: means the Stormshield Data Security encryption service allowing you to ensure the confidentiality of your data in the Google Workspace ecosystem.

Administrator: means the contact person at the Customer, in charge of activating the Service for all Users and responsible for reporting incidents, defined in the commercial proposal, by the Customer.

Customer: means the person or entity that has subscribed to the SDS encryption service for Google Workspace. The customer must provide Stormshield, as part of the commercial proposal, with the number of users for which it wishes to activate the Service, as well as the contact details of its Administrator (surname, first name, email and telephone).

User: means the person using the Service, identified by a unique identifier.

Client side encryption or CSE: means the encryption method developed by Google for its collaborative applications in Google Workspace such as Drive, Docs, Sheets and Slides. This option is available in the “Enterprise” edition of Google Workspace.

Documents: means Stormshield documentation which, as an Administrator, you will need to access for the service activation link as well as new features.

TAC: Technical Assistance Center

Service

SDS Encryption Service for Google Workspace is an enterprise data protection service, managed within the Google Workspace ecosystem.
Google Workspace is Google's suite of cloud-based applications for professionals. For more information, refer to the google docs.

The Customer decides that this service will be used by a number of Users. This number is defined in advance by the Customer, as part of the commercial proposal.

The Administrator (communicated by the Customer) is responsible for centrally activating the Service for all Users.

The activation of the Google Workspace encryption service (CSE) is done in the Google admin console for a population identified via the email address, a group or an organizational unit. This technology is only available for the Chrome browser.

In any case, the person who manages the allocation of CSE licenses at the Customer agrees to restrict access and use of the Service to authorized personnel only. They must also ensure, by their own means, that all Users comply with these General Terms and Conditions.

If a User were to leave the company, the Customer must ensure that they have implemented the necessary means to recover their encrypted data (see section Reversibility of these General Terms and Conditions below). They must also ensure that the User in question has indeed been removed from their authentication solution.

They can also inquire with Google about account delegation based on authentication and access authorization.

Setup & Initialization

Detailed steps can be founded in the Google documentation, here.

Changes to Terms

We reserve the right to modify these Terms and Conditions at any time. We will inform the Administrator designated in the commercial proposal, by email as soon as possible.

Service Changes

Stormshield may need to update the functionalities of the Service according to Google's technological developments or market demand, in particular by adding or deleting one or more functionalities.

Stormshield cannot be held responsible for any deletion or modification of functionalities provided by Google.

Any functional development falling within the initial scope could have an impact on the price, which could increase. If this is the case, Stormshield undertakes to inform the Customers concerned as soon as possible. The new pricing will always apply on the anniversary date, thus giving Customers the choice of whether or not to renew their subscription.

In the event of deletion or modification of essential features of the Service, Stormshield will inform the Customer as soon as they become aware of it. The Customer will then be free not to renew their contract on the anniversary date or to contact their Stormshield sales representative.

Technical support (TAC)

In the trial offer, technical support is not accessible.

For companies that have subscribed to the Service, access to Stormshield technical support is only available to the Administrator defined in advance by the Customer.

For the Administrator, the submission of a request to technical support must be done via the incident manager found in the private area MyStormshield.eu, Technical support menu – Report an incident/Track an incident.

This tool is the point of entry and monitoring of incidents opened solely by the Administrator, with the TAC Stormshield.

Conditions of access to technical support

As part of the SDS Encryption Service for Google Workspace, the incident will be handled by SDS Level 1 Support.

Telephone access

In order to be able to ensure a quality service, it is recommended to use this mode of communication only for the follow-up of incidents previously created through the website MyStormshield.eu.

Phone: +33 (0) 9 69 329 129

These channels are reserved for the Administrator and not for the Users of the Service.

What information is needed?

The opening of an incident with the TAC requires the provision of administrative information as well as the technical elements necessary to access the problem encountered. The list is available in the incident creation form on MyStormshield.eu via the Technical support/Report an incident menu. The quality of the diagnosis will depend heavily on the relevance of the information attached.

In order to facilitate the follow-up, it is important to refer to only one problem per incident.

What is the severity of the incident?

The severity level is defined by Stormshield support.

SEV1 / Critical Severity: The main activity of the company is severely impacted by a malfunction and there is no workaround.
SEV2 / Major Severity: The main activity of the company is partially impacted by a malfunction and there is no workaround.
SEV3 / Minor Severity: An incident that does not impact the main activity of the company is encountered.
SEV4 / Information: You want information or prepare for a future installation.

What are the turnaround times?

The support period begins when the incident is assigned to a member of technical support, on working days (excluding weekends and public holidays) and during working hours described below.

SEV1: Stormshield undertakes to contact you within 4 working hours (8 am to 7 pm Paris time).
SEV2: Stormshield undertakes to contact you within 8 working hours (8am-7pm Paris time).
SEV3: Stormshield undertakes to contact you within 24 working hours (8 am to 7 pm Paris time).
SEV4: Stormshield undertakes to contact you within 72 working hours (8am-7pm Paris time)

Service Level Agreement

The definitions below apply to the Stormshield Data Security service level agreement for Google Workspace.

Unplanned service interruption: The duration of the service interruption is defined as the period from the notification of the start of the incident, either by the Administrator or via Stormshield monitoring procedures, until the effective restoration of the service. This restoration will be communicated by email to the Administrator(s) who reported the incident. Service status is also available by following this link.
Planned service interruption: The duration of planned service interruption for maintenance cannot exceed 10 hours per month. In this specific case, we undertake inform you at least 1 week in advance.

A planned outage is not considered an unplanned outage.

The following are also not considered as unplanned service interruptions:

Performance problems or possible slowness
Problems related to Services covered by Google Workspace
Any Google Workspace feature in beta
Any network problem or any other external problem beyond the control of Stormshield.
Issues with the identity provider you choose to sign in to
Services covered by Stormshield Data Security: The KACLS service (Key Access Control List Service) which covers the encryption and decryption actions of a Drive, Docs, Sheets or Slides document. This is the encryption/decryption of the encryption key and not the access to one of these documents.
Percentage of monthly availability:

Availability is calculated as follows:

Total hours for the period – Planned service interruption hours – Unplanned service interruption hours	x 100
The total hours for the period -Planned service interruption hours

Service Credits:

Service credits are calculated on a monthly basis. During this period, the rate of unavailability may give rise to the granting of service credits, the value of which may not exceed 50% of one month of service. For a subscription paid annually, one month of service is equivalent to one-twelfth of the amount of the annual subscription.

Service credits are limited to each one-month period and therefore cannot be accumulated from month to the next.

Stormshield Data Security offers a monthly service availability of 98%, excluding planned service interruptions. This service availability applies to all Users who have subscribed to the Stormshield Data Security encryption service for Google Workspace.

Furthermore, Stormshield will not be bound by any availability commitment towards the Users and Administrator of the Service of the test offer.

Corrective maintenance

Corrective maintenance includes:

Providing diagnostic services to assess any failure, defect or malfunction of the encryption service for Google Workspace;
Delivery of any features, upgrades, patches or packages that may be required to correct any failure, defect or malfunction of the Encryption Service for Google Workspace; and or
Providing other services to correct or work around any outages, defects or malfunctions of the Encryption Service for Google Workspace.
However, Corrective Maintenance does not include services necessary to correct or remove a failure, defect or malfunction caused by:
Inappropriate use of the Encryption Service for Google Workspace by the User and the Administrator and/or resulting from third-party products used by the latter;
Gross negligence of the User and the Administrator such as for example, misuse of the service
Any modification or alteration made to the configuration of the Encryption Service for Google Workspace by the User without the prior authorization of Stormshield.

Subcontracting

Subject to the more specific provisions on the subcontracting of personal data contained in the Subcontracting Agreement, Stormshield will be free to subcontract all or part of the Services to any third party of its choice, which the Customer accepts without reservation. Nevertheless, Stormshield remains liable to the Client for the performance of its obligations by the subcontractors.

Warranties

Throughout the duration of the Subscription, Stormshield undertakes to make its best efforts to offer the Customer all the corresponding updates necessary to ensure a level of security that complies with the standards of the profession. For this, the Customer undertakes to report to Stormshield any problem that they may encounter or notice when using the Software.

Stormshield does not provide any guarantee on the proper functioning of features not officially supported by Google or on access to the service.

Stormshield does not provide any guarantee concerning the suitability of the Software to the specific needs of the Customer, nor its compatibility with any computer program running in parallel. As such, it is up to the Client to assess his specific needs, to assess the suitability of the Software with regard to those needs and to ensure that they have the necessary skills to use the Software and a compatible IT environment.

By accepting the General Terms and Conditions, the Customer acknowledges having received all the necessary information in this regard.

The Stormshield guarantee does not cover the consequences of:

Any use of the SDS Encryption Service for Google Workspace by the Customer that does not comply with the Google Documentation or these Terms and Conditions;
Any failure or malfunction of the operating system used by the Customer;
Any changes made by the Customer to the Encryption Service for Google Workspace or to the Terms and Conditions of the Service set forth in the Documentation;
Any negligence or lack of diligence on the part of the Customer or its personnel in the routine maintenance and management of equipment used in the use of the Encryption Service for Google Workspace;
Any act committed by a third party or resulting from a case of Force Majeure;
Any vulnerability contained in the Service of which Stormshield could legitimately justify that it was not aware;
Any loss or inaccessibility of the user's Google account
Any changes to the features provided by Google

User rights

Stormshield grants the Customer a Subscription allowing a number of Users (defined in the commercial proposal) to use the Service as part of their professional duties; this Subscription excludes any sharing of license, produced and sold to a single and unique firm, non-assignable and non-transferable for the entire duration of the Subscription.

The Customer expressly acknowledges that they are entering into these Terms and Conditions under the following circumstances:

The Customer is aware of the essential functional characteristics of the Encryption Service for Google Workspace;
The Customer agrees that the Encryption Service for Google Workspace is not error-free;
Stormshield has given the Customer the above guarantees regarding the use of the Encryption Service for Google Workspace.

The Client undertakes to:

Pay the Royalties under the conditions provided for in the commercial proposal;
Cooperate in good faith with Stormshield in the execution of the general Terms and Conditions;
And, use the Stormshield Data Security encryption service for Google Workspace in accordance with the Terms and Conditions set out in this document.

In particular, the Customer will be responsible for:

The management, administration and control of the Service;
Adopting emergency procedures adapted to its own needs and procedures for restarting, saving and recovering data.

Intellectual property

The Service remains in all circumstances the exclusive property of Stormshield, which is its sole owner and/or holds all the rights necessary to market it and authorize its use.

Consequently, the Customer may not pledge them, assign them, lend them or give access to them, whether for a consideration or free of charge. Furthermore, the Customer undertakes to inform Stormshield of any infringement of Stormshield's intellectual property rights of which it becomes aware.

Stormshield guarantees that the Service does not infringe any intellectual property rights or any other proprietary rights of third parties.

In the event that the Service is, or becomes, in Stormshield's opinion, the subject of a complaint by a third party, Stormshield may decide, as it sees fit:

to ensure that the Customer is authorized to continue to use it, or
to modify it so that it no longer infringes any right, or
to replace it with an adapted service, functionally equivalent, compatible and not infringing any rights.

Force majeure

Neither Party shall be liable to the other Party for the non-performance or delay in performance of its obligations under the Subscription when this is due to the occurrence of a case of force majeure. resulting from any unavoidable and unforeseeable event or circumstance on its part.

By force majeure, we mean the events defined as such by the case law of the Court of Cassation, as well as any modification of the regulations or any judicial or administrative decision preventing Stormshield from carrying out its activity.

Throughout the duration of the Subscription, any event of force majeure, as defined above, will suspend the obligations under the Subscription as long as the event or the circumstances persist.

Responsibility

Stormshield shall in no event be liable for any indirect or unforeseeable damage resulting from the use of the Service by the Customer. It is expressly agreed between the Parties that indirect damage means any financial damage, loss of activity, loss of profit, loss of data, loss of orders or loss of customers, as well as any legal action brought against the Customer. by a third party.

In the event that Stormshield's liability is engaged under the Subscription, the right to compensation for the direct damage suffered by the Customer will be limited, all causes and damages combined:

Per contractual year, 50% of the amount paid to Stormshield by the Customer for the year during which the claim occurred;

Reversibility

To be able to recover your encrypted data, Google offers solutions allowing:

To export all your encrypted data: support.google.com/a/answer/100458
To decrypt all your files: support.google.com/a/answer/11019500

Thus, your data will not be lost if one of your employees leaves your company or if you decide to terminate your contract.

Contract renewal

The contract concluded between the Parties, within the commercial proposal, is for a period of 1 year, not automatically renewable. The customer will be contacted by Stormshield before the anniversary date of their contract in order to conclude or not the renewal of the latter.

In the event of non-renewal of the contract, the Customer will have taken the necessary measures to recover their data.

Contact us

If you have any questions or concerns about our privacy policy, please email dpo@stormshield.eu.

Last update: 12/07/2022