WithSecure™ Elements Vulnerability Management

IMPORTANT – Before installing or using WithSecure Elements Vulnerability Management, carefully read the following legal terms (“Terms”). By selecting the accepting option, or by installing, copying or using WithSecure Elements Vulnerability Management, You’re agreeing to these Terms on behalf of Your organization (“You”), and You agree You have read these Terms, understand them and agree to be legally bound by them. If You do not agree to all of the terms, do not install, use or copy WithSecure Elements Vulnerability Management.

Scope

These Terms cover the WithSecure Elements Vulnerability Management and security scanning solution developed by WithSecure and any services, tools or portals based on and/or directly related thereto, including any adjustments to them in the form of updates/upgrades and/or customer-specific adjustments and any related documentation (“WithSecure Elements Vulnerability Management”).

License grant

Subject to these Terms and the payment of applicable license / subscription fees, WithSecure grants You a non-exclusive, non-transferable right to use the specified WithSecure Elements Vulnerability Management version, for a specified time period, as separately agreed between You and WithSecure or its distributors. WithSecure and its licensors reserve any and all rights not expressly granted to You.

Additionally, upon Your request and WithSecure’s approval, WithSecure may grant You a limited, non-exclusive, non-transferable right to evaluate WithSecure Elements Vulnerability Management for non-commercial purposes. You must purchase a license / subscription to WithSecure Elements Vulnerability Management to continue to use WithSecure Elements Vulnerability Management commercially after the evaluation period ends.

You as the licensee may use WithSecure Elements Vulnerability Management:

• for Your internal operations and internal security purposes to seek and assess information technology vulnerabilities for Your own networks, websites, applications and/or systems;
• to provide services to third parties to seek and assess information technology vulnerabilities on such third party’s networks, websites, applications and/or systems, provided that You’re authorized to do this and have received all required consents from such third parties;
• to permit a third party to administer and/or use WithSecure Elements Vulnerability Management on Your behalf to perform security services for Your business as specified in section 3 below.

Third party use and access

You as the licensee may permit a third party to administer WithSecure Elements Vulnerability Management and/or use WithSecure Elements Vulnerability Management to perform security services for Your business, provided that i) any such third party use or administration is for Your sole benefit and on Your behalf, and ii) You are legally responsible and liable for such third party’s use of WithSecure Elements Vulnerability Management including any obligations arising from such use and any breach by such third party of these Terms. Upon 30 days’ notice, WithSecure may withdraw its consent to the use of any third party. No other access to, use, copying, disclosure or distribution of WithSecure Elements Vulnerability Management by third parties is permitted.

You agree to use commercially reasonable efforts to ensure that no unauthorized parties have access to or use WithSecure Elements Vulnerability Management and that no unauthorized copy, disclosure or distribution of WithSecure Elements Vulnerability Management, in whole or in part, in any form is made by You or any third party. You agree to notify WithSecure promptly of any unauthorized access to, use, copying, disclosure or distribution of WithSecure Elements Vulnerability Management. You acknowledge that WithSecure Elements Vulnerability Management contains valuable confidential information and trade secrets of WithSecure and/or its licensors.

License restrictions

You are not allowed to:

• access, use, copy, exploit, disclose or distribute WithSecure Elements Vulnerability Management except as expressly set out in these Terms;
• demonstrate, sell, offer to sell, distribute or transfer WithSecure Elements Vulnerability Management or any portion thereof to any third party;
• use WithSecure Elements Vulnerability Management or any portion thereof to implement any product or service to operate on or in connection with WithSecure Elements Vulnerability Management for any other purpose than for which WithSecure Elements Vulnerability Management is provided;
• create derivative works based upon WithSecure Elements Vulnerability Management or any portion thereof;
• decompile, disassemble, reverse engineer, or otherwise attempt to derive, obtain or modify the source code of WithSecure Elements Vulnerability Management;
  use WithSecure Elements Vulnerability Management if You are, or You work for, a competitor of WithSecure’s in the software security industry;
• sublicense any of the rights granted to You in these Terms.

Intellectual property

WithSecure and its licensors retain all right, title, and interest in WithSecure Elements Vulnerability Management as well as any tools provided by WithSecure. Except as expressly set forth in section 2, nothing in these Terms shall be construed as conferring on You any express or implied license, option to license, or other right to any confidential information, technology, software or intellectual property rights embodied in WithSecure Elements Vulnerability Management. All intellectual property rights pertaining to WithSecure Elements Vulnerability Management shall be and remain the property of WithSecure and/or its licensors. You acknowledge that WithSecure may freely use any suggestions, comments or other feedback about WithSecure Elements Vulnerability Management.

Warranty

TO THE FULLEST EXTENT PERMITTED BY LAW, WITHSECURE AND ITS AFFILIATES, SUPPLIERS AND DISTRIBUTORS MAKE NO WARRANTIES, EITHER EXPRESS OR IMPLIED, ABOUT WITHSECURE ELEMENTS VULNERABILITY MANAGEMENT. WITHSECURE ELEMENTS VULNERABILITY MANAGEMENT IS PROVIDED “AS IS”. WITHSECURE DOES NOT GUARANTEE THE COMPLETENESS OR ACCURACY OF THE RESULTS OR THAT WITHSECURE ELEMENTS VULNERABILITY MANAGEMENT WILL FIND ALL SECURITY VULNERABILITIES. WITHSECURE ALSO DISCLAIMS ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT.

No oral or written information or instructions given by WithSecure, its dealers, distributors, agents, or employees shall create a warranty and You may not rely on any such information or instructions. Some jurisdictions don’t allow the disclaimers in this paragraph, so they may not apply to You.

WithSecure’s liability

IN NO EVENT AND UNDER NO LEGAL THEORY, INCLUDING BUT NOT LIMITED TO TORT OR CONTRACT, SHALL WITHSECURE, ITS EMPLOYEES, ITS LICENSORS, ITS DISTRIBUTORS OR ITS SUPPLIERS BE LIABLE TO YOU FOR ANY SPECIAL, CONSEQUENTIAL, INCIDENTAL OR INDIRECT DAMAGES, INCLUDING, BUT NOT LIMITED TO, LOSS OF REVENUE OR PROFIT, LOST OR DAMAGED DATA, FILES OR DEVICES, APPLICATION FAILURE OR MALFUNCTION, NETWORK IMPAIRMENT, OR OTHER COMMERCIAL OR ECONOMIC LOSS, ARISING OUT OF THE USE OF, OR INABILITY TO USE, WITHSECURE ELEMENTS VULNERABILITY MANAGEMENT, EVEN IF WITHSECURE HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

WITHSECURE’S, ITS LICENSORS’ OR ITS DISTRIBUTORS’ MAXIMUM AGGREGATE LIABILITY TO YOU FOR ACTUAL DAMAGES FOR ANY CAUSE WHATSOEVER SHALL IN NO EVENT EXCEED THE TOTAL AMOUNTS PAID BY YOU FOR WITHSECURE ELEMENTS VULNERABILITY MANAGEMENT FOR A PERIOD OF SIX (6) MONTHS IMMEDIATELY PRECEDING THE EVENT CAUSING THE LIABILITY.

Some jurisdictions do not allow the limitation or exclusion of liability for incidental or consequential damages so the above limitation or exclusion may not apply to You or may apply to You only in part. WithSecure is acting also on behalf of its employees, distributors, licensors, suppliers and affiliates to disclaim, exclude and restrict obligations, warranties, and liability as provided in these Terms, but in no other respects and for no other purpose.

Your responsibility

You are solely responsible and assume the entire risk and liability for Your use of WithSecure Elements Vulnerability Management and Your actions based on the results provided by WithSecure Elements Vulnerability Management.

Notwithstanding anything to the contrary set out in these Terms, You shall defend, indemnify and hold WithSecure, its subsidiaries, and their employees harmless from damages, liabilities, costs and expenses (including reasonable attorneys’ fees) incurred by WithSecure, its subsidiaries, or their employees in relation to claims and actions arising out of or relating to Your use of WithSecure Elements Vulnerability Management and/or the services You provide to third parties through Your use of WithSecure Elements Vulnerability Management.

Confidentiality

“Confidential Information” shall mean WithSecure Elements Vulnerability Management and all other information disclosed to You that WithSecure characterizes as confidential at the time of its disclosure either in writing or orally, or that, given the nature of the information or the circumstances surrounding its disclosure, reasonably should be considered as confidential, except for information which You can demonstrate: (a) is previously rightfully known to You without restriction on disclosure; (b) is or becomes, from no act or failure to act on Your part, generally known in the relevant industry or public domain; (c) is disclosed to You by a third party as a matter of right and without restriction on disclosure; or (d) is independently developed by You without access to the Confidential Information. You shall use Your best efforts to preserve and protect the confidentiality of the Confidential Information at all times. You shall not disclose, disseminate or otherwise publish or communicate Confidential Information to any person, firm, corporation or other third party without the prior written consent WithSecure. You shall not use any Confidential Information other than in the course of the activities permitted hereunder. You shall notify WithSecure in writing immediately upon discovery of any unauthorized use or disclosure of Confidential Information or any other breach of these Terms, and will cooperate with WithSecure in every reasonable way to regain possession of Confidential Information and prevent any further unauthorized use.

General

SUITABILITY. WithSecure Elements Vulnerability Management is subject to certain functional restrictions, such as purpose of use and certain technical requirements including but not limited to operating system, storage space, geographical location or network connectivity, as informed by WithSecure or its distributor from time to time. You hereby acknowledge and confirm that You have checked its suitability for Your own requirements before using WithSecure Elements Vulnerability Management.

AVAILABILITY. You are informed and hereby accept that all or part of WithSecure Elements Vulnerability Management may be temporarily unavailable / nonoperational for repairs, updates/upgrades, maintenance or for reasons beyond WithSecure’s reasonable control (force majeure). WithSecure, its licensors or its distributors shall not be held liable for the consequences of such interruptions and shall undertake to restore the availability / operation of WithSecure Elements Vulnerability Management as rapidly as reasonably possible, depending on the technical constraints encountered.

CHANGES. WithSecure reserve the right to modify features or functionality of WithSecure Elements Vulnerability Management from time to time. Such changes may include adding new features or dropping existing features. WithSecure reserve the right to end the maintenance and support for certain versions or for certain operation systems of WithSecure Elements Vulnerability Management in accordance to its product life cycle practices. This may lead to WithSecure Elements Vulnerability Management becoming inoperable. Continuing to use a discontinued version is not recommended and such use is entirely at Your own responsibility. As WithSecure Elements Vulnerability Management is likely to evolve and change during Your subscription, WithSecure may need to revise these Terms in connection of updates/upgrades and the revised Terms shall automatically apply to the corresponding versions of WithSecure Elements Vulnerability Management distributed with the revised Terms. If any part of these Terms is found void and unenforceable, it will not affect the validity of rest of the Terms, which shall remain valid and enforceable.

ADDITIONAL TERMS. WithSecure Elements Vulnerability Management may contain web applications or web portals. The use of such sites may be subject to additional terms. You agree to review such sites for additional terms of use and only use such sites accordingly. Such sites may also be those of WithSecure’s distributor or of other third parties. WithSecure have no liability whatsoever on any third party sites.

OPEN SOURCE LICENSES. To the extent any component of WithSecure Elements Vulnerability Management is made available to You under an open source license, list of applicable open source licenses are available in the product user interface and the provisions of that license may expressly override some of these Terms.

TERMINATION. Your license / subscription to WithSecure Elements Vulnerability Management will end immediately without notice if You are in breach of any of these Terms. Where WithSecure observes that You are using WithSecure Elements Vulnerability Management in breach of these Terms or its intended purpose, WithSecure reserves the right i) not to renew Your license / subscription, ii) limit Your use of WithSecure Elements Vulnerability Management and/or part thereof, and/or iii) terminate Your license / subscription. Such termination shall not give rise to any claims for compensation or otherwise by You. The Terms on restrictions on use shall survive any termination. In the event of termination of Your license / subscription, and irrespective of the reason hereto, You shall immediately i) discontinue all use of WithSecure Elements Vulnerability Management, and ii) delete any such copies of WithSecure Elements Vulnerability Management, that may be installed on Your own IT environment.

EXPORT RESTRICTIONS. You acknowledge and agree that WithSecure Elements Vulnerability Management may be subject to restrictions and controls imposed by national laws and regulations, including but not limited to European Union export regulations or the United States Export Administration Act (collectively “Export Rules”). You agree and certify that neither WithSecure Elements Vulnerability Management nor any direct product thereof is being or will be acquired, shipped, transferred, or re-exported, directly or indirectly, into any country for which such export is prohibited under the Export Rules and the regulations thereunder, nor will it be used for any purpose prohibited by the same. By using WithSecure Elements Vulnerability Management, You are acknowledging and agreeing to the foregoing, and You are representing and warranting that You will comply with the Export Rules when either exporting or re-exporting or importing WithSecure Elements Vulnerability Management or any underlying information technology. Further, You represent and warrant that You are not a national of any US embargoed country, or a party listed in the U.S. Table of Denial Orders or U.S. Treasury Department’s list of Specially Designated Nationals.

GOVERNING LAW AND DISPUTES. These Terms are governed by the laws of Finland. With the sole exception of any application for injunctive relief, any dispute, controversy or claim arising out of or relating these Terms, or the breach, termination or validity thereof shall be finally settled by arbitration in accordance with the Arbitration Rules of the Finland Chamber of Commerce by one arbitrator. The place of arbitration is Helsinki, Finland and the language of arbitration is English.

If you have any questions on these Terms or if you would like to contact WithSecure for any other reason, please write to WithSecure Corporation, PL24, FI-00181 Helsinki, Finland, e-mail: helsinki@withsecure.com, or call: +358 9 2520 0700.