PLEASE READ THESE CUSTOMER TERMS OF SERVICE CAREFULLY.
This is a contract between you (the Customer) and us (SMB ISAO). It describes the services we will provide to you, how we will work together, and other aspects of our business relationship. It is a legal document so some of the language is necessarily “legalese”, but we have tried to make it as readable as possible. These terms are so important that we cannot provide our products and services to you unless you agree to them. By using the Subscription Service or receiving the Consulting Services, you are agreeing to these terms.
We periodically update these terms. If you have an active CyberSafe subscription, we will let you know when we do via an email or in-app notification.
IMPORTANT: PLEASE READ THE TERMS AND CONDITIONS OF THESE SERVICE TERMS (AS DEFINED BELOW) CAREFULLY BEFORE USING THE SERVICES (AS DEFINED BELOW).
The SMB ISAO/CyberSafe Service Terms and Conditions (the "Service Terms") are a legally binding agreement between SMB ISAO, Inc. and its successors and assigns. (“SMB ISAO,” "CyberSafe," "we," "our," or "us") and you ("you," "your," or "yours"), and describe the terms under which you agree to use the SMB ISAO’s CyberSafe for Business solution, including any applicable Service Guarantee and Insurance (the "Protection Programs"), cyber threat alerts, CISA compliance and any other service or product which may be made available to you by us for which you have registered or enrolled or have been registered or enrolled by an authorized third party (collectively the "Services" and individually a "Service"). “Subscription Service” or “Service” means our web-based solution that is subscribed to, and developed, operated, and maintained by us, accessible via https://smbisao.com, //www.cybersafeforbusiness.com or another designated URL, and add-on products to our platform. In these Service Terms we may use the term "Member" which refers to a customer that is enrolled in one of our fee-based Services. Collectively we will use the term "Customer or Member" when referring to Members or Users.
IF YOU DO NOT AGREE TO THESE SERVICE TERMS, YOU MUST NOT ENROLL OR REGISTER FOR ANY OF THE SERVICES OR OTHERWISE USE THE SERVICES.
DEPENDING ON YOUR OFFER, YOUR MEMBERSHIP MAY HAVE AN INTRODUCTORY OR SPECIAL OFFER. AFTER THE INTRODUCTORY OFFER EXPIRES, YOUR MEMBERSHIP WILL AUTOMATICALLY RENEW AT THE APPLICABLE PRICE SET FORTH IN YOUR AGREEMENT UNTIL CANCELLED BY YOU. OUR PRICES, INCLUDING ANY RENEWAL PRICE, ARE SUBJECT TO CHANGE, HOWEVER WE WILL NOTIFY YOU IN ADVANCE. PLEASE NOTE THAT FOR ALL SERVICES OR FEATURES WHICH REQUIRE AN E-MAIL ADDRESS, INCLUDING BUT NOT LIMITED TO ANY ALERTS DELIVERED VIA E-MAIL, YOU MUST KEEP YOUR EMAIL ADDRESS UP TO DATE FOR PURPOSES OF RECEIVING SUBSCRIPTION NOTIFICATIONS AND YOU HEREBY WAIVE YOUR TO RIGHT TO RECEIVE SUCH NOTICES IF YOU DO NOT PROVIDE A VALID EMAIL ADDRESS.
IF YOU WISH TO CANCEL OR TERMINATE YOUR SUBSCRIPTION TO THE SERVICES, PROTECTION PROGRAMS, AND/OR CREDIT SERVICES AND TRANSACTED DIRECTLY WITH SMB ISAO, YOU MUST CONTACT US AT firstname.lastname@example.org OR CALL 1‑805-530-7357.
IF YOU HAVE TRANSACTED FOR SERVICES VIA A THIRD PARTY, YOU MUST TERMINATE THE SERVICES DIRECTLY WITH THAT THIRD PARTY IN ACCORDANCE WITH THAT THIRD PARTY'S INSTRUCTIONS.
YOUR USE OF THE SERVICES CONSTITUTES YOUR ACCEPTANCE OF THESE SERVICE TERMS. WE MAY MODIFY, UPDATE, ADD OR REMOVE PROVISIONS OF THESE SERVICE TERMS AT ANY TIME BY POSTING THOSE CHANGES ON OUR SITE. UNLESS YOU HAVE OTHERWISE AFFIRMATIVELY AGREED TO SUCH CHANGES, YOUR CONTINUED USE OF THE SERVICES AFTER SUCH POSTING SHALL CONSTITUTE YOUR ACCEPTANCE OF ANY SUCH CHANGE(S) TO THESE SERVICE TERMS. IF YOU DO NOT AGREE WITH ANY OF THE UPDATED SERVICES TERMS YOU MUST STOP USING THE SERVICES.
In order to enroll in and receive one or more Services, you must provide us with the full and accurate enrollment Information that we require for the applicable Services (collectively, "Enrollment Information"). You agree to keep all Enrollment Information updated and accurate. In the event we do not receive all the required Enrollment Information during your Enrollment Process, you agree that we may, in our sole discretion, use our database, the database of our affiliates, or other resources to attempt to complete the required Enrollment Information on your behalf. If we are unable to obtain the required Enrollment Information or you fail to authenticate your identity as may be required, the Services for which you have enrolled may be limited or unavailable.
Upon completion of the Enrollment Process, and payment to us of any fees owed, you will become eligible to receive the Services for which you have enrolled.
As a Member enrolled in a qualifying Reimbursement Protection Coverage Program(s), should you become a victim of a data breach you may be covered for certain losses in accordance with the Master Insurance Policy, which can be found at www.royalgroupservices.com/nadsrpgdbpii.
SMB ISAO is not providing insurance directly. SMB ISAO is facilitating access to membership into the Risk Purchasing Group (RPG) insurance coverage. Membership in the RPG confers insured status for SMB ISAO customers. You understand SMB ISAO’s limited role in marketing membership cyber insurance and agree to work directly with RPG.
All claims and disputes are handled solely by the insurance carrier. Your benefits will be subject to all of the terms, conditions, and exclusions of the RPG coverage plan, even if they are not mentioned in SMB ISAO marketing materials, or this agreement. Your entitlement to benefits under the Master Policy will terminate upon termination of your enrollment in any SMB ISAO Membership Program.
A complete copy of the Master Policy at
Information sharing with and among SMB ISAO Members is for a “cybersecurity purpose”, in conformity with the cybersecurity purpose of the Cybersecurity Information Sharing Act (CISA) of 2015. The nature of data shared for a cybersecurity purpose includes “cyber threat indicators”, “indicators of compromise”, “routing data”, “anomaly data”, and data having relevance to cybersecurity. The aggregation of this data and the correlation of the data with a repository of malicious cyberattack history by SMB ISAO affords improved situational awareness, which is shared back with Members to help improve cyber resilience. The “privacy scrub” function of SMB ISAO further ensures that Members only share data that is relevant for a cybersecurity purpose, and that a Member benefits from the legal protections afforded under CISA. The Information Sharing practices, procedures, terms and conditions of the SMB ISAO are designed for a cybersecurity purpose and to help Members have greater situational awareness and CISA protections.
We reserve the right to modify, add to, discontinue, and/or retire any Service and/or any feature of a Service at any time. We may also modify the terms and conditions that apply to the features and your use of the Services. We shall make reasonable attempts to provide you with notice of such modifications by posting them on the Site. We have no obligation to provide direct notice of any such changes. We reserve the right to define eligibility criteria for the Services, and make changes to those criteria at any time.
Unless you have otherwise affirmatively agreed to such changes, by continuing to use the Service(s) and Site after any such changes or modifications to the Service(s) become effective, you agree to be bound by the revised terms. If you object to such change, your sole remedy shall be to terminate and/or cancel the Service.
Members must ensure that access to SMB ISAO online portal is restricted to their respective personnel designated to SMB ISAO as authorized to access the online portal, and further must be limited to personnel responsible in their duties to the Member in the areas of information security, cybersecurity or personnel security.
Members that share cybersecurity incident information agree to further share the incident data with other SMB ISAO members to enable those other members to improve cybersecurity. SMB ISAO will ensure that a “privacy scrub” is conducted prior to sharing Member’s information, however, Members are encouraged to conduct a “privacy scrub” of all information submitted as well. The data or information may be shared anonymously or by name as authorized in the incident report. Information provided may also be shared by SMB ISAO with DHS unless expressly prohibited by the member in the incident report submitted.
SMB ISAO may, with the permission of any originating source, disseminate information of a critical nature considered relevant for immediate distribution. Members may not disseminate such information and must protect that information except as described under paragraph (1).
Members remain subject to these Terms and Conditions with respect to protecting information and commercialization use restrictions despite termination of their membership.
No license to any software is granted by this Agreement. The SMB ISAO Products are protected by intellectual property laws. The SMB ISAO Products belong to and are the property of us. We retain all right, title and interest (including all copyright, trademark, patent, trade secrets and all other intellectual property rights) in our Services, our websites (including the Data) as well as our trademarks, service marks, designs, logos, URLs, and trade names that are displayed in connection with our Services. You agree not to copy, rent, lease, sell, distribute, or create derivative works based on the SMB ISAO Content, or the SMB ISAO Products in whole or in part, by any means, except as expressly authorized in writing by us. SMB ISAO and CyberSafe for Business, the SMB ISAO and CyberSafe for Business logos, and other marks that we use from time to time are our trademarks and you may not use them without our prior written permission, except as otherwise set forth in this Agreement.
We control and operate the Services from our headquarters in the United States of America and the content and features may not be appropriate or available for use in other locations. If you use the Services outside the United States of America, you are responsible for following applicable local laws. By using the Services, you represent and warrant that (i) you are not located in a country that is subject to a U.S. Government embargo, or that has been designated by the U.S. Government as a "terrorist supporting" country; and (ii) you are not listed on any U.S. Government list of prohibited or restricted parties.
TO THE EXTENT PERMITTED BY APPLICABLE LAW, SMB ISAO, OUR AFFILIATES, OUR RESPECTIVE LICENSORS, LICENSEES, AND SERVICE PROVIDERS SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, EXTRAORDINARY, EXEMPLARY OR PUNITIVE DAMAGES, OR ANY OTHER DAMAGES WHATSOEVER (HOWEVER ARISING), ARISING OUT OF, RELATING TO OR RESULTING FROM YOUR USE OR INABILITY TO USE OR ACCESS THE SERVICES, INCLUDING BUT NOT LIMITED TO DAMAGES FOR LOSS OF PROFITS, GOODWILL, DATA, OR OTHER INTANGIBLE LOSSES (EVEN IF WE HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. WITHOUT LIMITING THE FOREGOING LIMITATION OF LIABILITY, IN THE EVENT WE ARE FOUND LIABLE FOR DAMAGES TO YOU IN A COMPETENT LEGAL PROCEEDING OUR AGGREGATE LIABILITY FOR ALL CLAIMS ARISING OUT OF OR RELATED TO THESE SERVICE TERMS IS LIMITED TO THE LESSER OF (a) ONE THOUSAND U.S. DOLLARS ($1,000) OR (b) THE AMOUNTS PAID TO US FOR THE SERVICES THAT ARE THE BASIS OF THE CLAIM IN THE TWELVE (12) MONTHS PRECEDING THE DATE OF THE CLAIM. SOME JURISDICTIONS DO NOT ALLOW CERTAIN LIMITATIONS ON LIABILITY. ONLY LIMITATIONS THAT ARE LAWFUL IN THE APPLICABLE JURISDICTION WILL APPLY TO YOU AND OUR LIABILITY WILL BE LIMITED TO THE MAXIMUM EXTENT PERMITTED BY LAW.
These Service Terms and any Services provided hereunder will be governed by the laws of the State of Colorado, without regard to any laws that would direct the choice of another state's laws and, where applicable, will be governed by the federal laws of the United States.
You will indemnify and hold SMB ISAO (and our officers, directors, agents, subsidiaries, joint ventures, licensees, employees, and third-party partners) harmless from any claim or demand, including reasonable attorneys' fees, made by any third party due to or arising out of your breach of these Service Terms, or your violation of any law or regulation, or the rights of any third party.
Neither these Service Terms, nor any rights hereunder, may be assigned by operation of law or otherwise, in whole or in part, by you without our prior written permission. Any purported assignment without such permission shall be void. Any waiver of our rights under these Service Terms must be in writing, signed by SMB ISAO, and any such waiver shall not operate as a waiver of any future breach of these Service Terms. In the event any portion of these Service Terms is found to be illegal or unenforceable, such portion shall be severed from these Service Terms, and the remaining terms shall be separately enforced. Your use of the Services shall at all times comply with all applicable laws, rules, and regulations. These Service Terms, and all documents incorporated into these Service Terms by reference, are the entire agreement between the parties with respect to this subject matter, and supersede any and all prior or contemporaneous or additional communications, negotiations, or agreements with respect thereto. Our failure to enforce any of these Service Terms is not a waiver of such term or right. The proprietary rights, disclaimer of warranties, representations made by you, indemnities, limitations of liability and general provisions shall survive any termination of these Service Terms. These Service Terms are solely and exclusively between you and SMB ISAO and you acknowledge and agree that (i) no third party, including a third-party partner of SMB ISAO is a party to these Service Terms, and (ii) no third party, including any third-party partner of SMB ISAO has any obligations or duties to you under these Service Terms.