Terms and Conditions
TERMS AND CONDITIONS
These Terms and Conditions (the “Terms”) are effective upon execution of an Order Form or a click-through web order form referencing these Terms (each an “Order Form” and together with these Terms, the “Agreement”), by and between Monte Carlo Data, Inc., a Delaware corporation (“Monte Carlo”) and the party named as Customer in the Order Form. This Agreement governs Customer’s access to and use of the Services offered by Monte Carlo and described on the applicable Order Form.
- The Service.
- 1.1 Subscriptions. Monte Carlo and Customer may enter into one or more Order Forms referencing these Terms, pursuant to which Customer may purchase a subscription to access and use the Service, subject to this Agreement (a “Subscription”), solely for Customer’s internal business purposes. The Services are subject to modification from time to time at Monte Carlo’s sole discretion, provided that such modifications shall not result in a material degradation to the features or functions of the Service.
- 1.2 Authorized Users. An “Authorized User” is a person who the Customer, or a person with admin access on a Customer’s account, has invited to join Customer’s account on the Service, either via the interface of the Service or via a request to Monte Carlo. Authorized Users may be employees, contractors or agents of Customer. Customer is responsible for all actions by Authorized Users on Customer’s account.
- 1.3 Restrictions. Customer shall not (i) license, sublicense, sell, resell, use as a service bureau, or otherwise use the Service for a third party’s benefit unless authorized by Monte Carlo; (ii) transfer, assign (except as provided in this Agreement), distribute or otherwise commercially exploit the Service; (iii) modify or make derivative works based upon the Service; (iv) create Internet “links” to the Service or “frame” or “mirror” any content on any other server or wireless or Internet-based device; (v) reverse engineer or decompile the Service; (vi) interfere with or make use of the Service in any manner not consistent with the documentation regarding the Service; (vii) upload Customer Data to the Service that contain any Malicious Code or programming routines, macros, or other elements that may damage, surreptitiously intercept or expropriate any system, data, or personal information; or (viii) access the Service for purposes of monitoring its availability, penetration or security testing, or any benchmarking or competitive purposes.
- 1.4 Third Party Services. The Service operates on or with or using integrations and/or other services operated or provided by third parties (“Third Party Services”), including such integrations listed on an applicable order form. Monte Carlo is not responsible for the operation of any Third Party Services nor the availability or operation of the Service to the extent such availability and operation is dependent upon Third Party Services. Customer is responsible for procuring any and all rights necessary for it to access Third Party Services and for complying with any applicable terms or conditions thereof. Monte Carlo does not operate or control in any way any information, software, products or services available on such Third Party Services. Monte Carlo does not make any representations or warranties with respect to Third Party Services or any third party providers. Any exchange of data or other interaction between Customer and a third party provider is solely between Customer and such third party provider and is governed by such third party’s terms and conditions.
- Billing and Payments.
- 2.1 Fees. Fees for the Service are described in an associated Order Form or invoice. Any renewal fees will be based on Monte Carlo’s then-current fees, unless otherwise stated in an Order Form. All fees due are payable in U.S. Dollars unless otherwise stated on an Order Form. Monte Carlo’s fees are exclusive of all taxes, levies, or duties imposed by taxing authorities, and Customer shall be responsible for payment of all applicable sales, use, excise, transfer, and other transaction taxes, levies or duties related to the purchase of the Services, excluding only United States (federal or state) taxes based solely on Monte Carlo’s income.
- 2.2 Billing and Payment. Monte Carlo issues invoices for the Service on or about the start of the Service Term described in the Order Form, and annually thereafter upon renewal, if applicable. Fees for the Service shall be paid annually in advance. Unless otherwise stated on an Order Form or statement of work, fees for the Service are due within 30 days from the invoice date. Customer is responsible for providing complete and accurate billing and contact information and notifying Monte Carlo of any changes to such information. All payment obligations are non-cancelable, and all amounts paid are nonrefundable, except as expressly set forth in this Agreement.
- Intellectual Property Rights & Restrictions.
- 3.1 Monte Carlo Intellectual Property. Monte Carlo shall retain all intellectual property rights in the Service, including any and all derivatives, changes and improvements thereto, and Customer agrees that it obtains no intellectual property rights or licenses by these Terms except those expressly granted herein. Customer agrees that it shall (i) not attempt to infiltrate, hack, reverse engineer, decompile, or disassemble the Service; (ii) not represent that it possess any proprietary interest in the Service; (iii) not directly or indirectly, take any action to contest Monte Carlo’s intellectual property rights or infringe them in any way; and (iv) except as specifically permitted hereunder, not use the name, trademarks, trade-names, and logos of Monte Carlo.
- 3.2 Customer Intellectual Property. Customer retains all right, title, and interest in and to all data, information, files or other materials and content that Customer makes available to Monte Carlo in connection with Customer’s use of the Service (the “Customer Data”). Customer grants to Monte Carlo the necessary licenses and rights to Customer Data solely as necessary for Monte Carlo to provide the Service to Customer. Monte Carlo will not use or access any Customer Data except as necessary to provide the Service.
- 3.3 Monte Carlo Platform Data. In the course of providing the Service, Monte Carlo may collect statistical data and performance information, analytics, meta-data or similar information, generated through instrumentation and logging systems, regarding the operation of the Service, including Customer’s use of the Service (the “Platform Data”). Nothing in these Terms shall restrict Monte Carlo’s right to collect Platform Data or to use it for any internal business purpose, provided however, that (i) Platform Data will not include any Customer Data, and (ii) Monte Carlo will not disclose Platform Data to any third party in a manner that allows such third party to identify Customer or any Authorized User, other than Monte Carlo’s employees, agents or service providers who are subject to obligations of confidentiality with respect to such Platform Data.
- 3.4 Feedback. Customer may, from time to time, provide Monte Carlo with ideas, suggestions, feedback, recommendations or improvements pertaining to the Service (collectively, “Feedback”). Customer hereby grants Monte Carlo a non-exclusive, perpetual, irrevocable, royalty-free license to use all Feedback for any purpose. Feedback is provided to Monte Carlo on an “as-is” basis without warranties of any kind.
- Privacy and Security.
- 4.1 Security. Monte Carlo has implemented and will maintain reasonable and appropriate security measures based upon industry practices and feedback from third-party audits. Appropriate security measures include Monte Carlo’s current security and compliance information and practices, which are described in Exhibit A attached hereto. Monte Carlo may, from time to time, update these security measures but will not materially reduce them during the term of the Agreement.
- 4.2 Account Security. Login credentials cannot be shared or used by more than one individual authorized user. Customer will notify Monte Carlo immediately if Customer believes that an unauthorized third party has accessed Customer’s account on the Service, or that an Authorized User’s account credentials or Customer Data have been compromised.
- 5.1 Confidential Information. “Confidential Information” shall mean all information of a party disclosed to the other party, regardless of the form of disclosure, that is designated as confidential or that reasonably should be understood to be confidential given the nature of the information and the circumstances of disclosure, including without limitation and without the need to designate as confidential (i) with respect to Customer, the Customer Data, but not the Platform Data, and (ii) with respect to Monte Carlo, the pricing terms offered to Customer by Monte Carlo.
- 5.2 Nondisclosure. Each party (each a “Receiving Party”) agrees that (i) it shall use and reproduce the Confidential Information of the other party (the “Disclosing Party”) only for purposes of exercising its rights and performing its obligations under these Terms and only to the extent necessary for such purposes and (ii) it shall restrict disclosure of such Confidential Information to the Receiving Party’s employees, consultants, service providers or advisors who have a need to know and who are bound by obligations of confidentiality and nonuse at least as protective of such information as these Terms, and shall not otherwise disclose such Confidential Information to any third party without the prior written approval of the Disclosing Party. The Receiving Party will exercise at least the same degree of care used to restrict disclosure and use of its own information of like importance, but not less than reasonable care. Notwithstanding the foregoing, it shall not be a breach of these Terms for the Receiving Party to disclose Confidential Information if compelled to do so under law, in a judicial or other governmental investigation or proceeding, provided that, to the extent permitted by law, the Receiving Party has given the Disclosing Party prior notice and reasonable assistance to permit the Disclosing Party a reasonable opportunity to object to and/or limit the judicial or governmental requirement to disclosure.
- 5.3 Exceptions. Notwithstanding anything to the contrary herein, neither party shall be liable for using or disclosing information that such party can prove: (i) was publicly known at the time it was disclosed or has become publicly known through no fault of the Receiving Party; (ii) was known to the Receiving Party, without restriction, at the time of disclosure, as demonstrated by files in existence at the time of disclosure; (iii) is disclosed with the prior written approval of the Disclosing Party; (iv) was independently developed by the Receiving Party without any use of the Confidential Information, as demonstrated by files created at the time of such independent development; (v) becomes known to the Receiving Party, without restriction, from a source other than the Disclosing Party without breach of these Terms by the Receiving Party and otherwise not in violation of the Disclosing Party’s rights; or (vi) is disclosed generally to third parties by the Disclosing Party without restrictions similar to those contained in these Terms.
- Representations and Warranties.
- 6.1 Customer Representations and Warranties. Customer represents and warrants that Customer owns or has obtained all rights, consents, permissions, or licenses necessary to allow the Service’s access to, or possession, processing, or use of the Customer Data.
- 6.2 Monte Carlo Representations and Warranties. Monte Carlo represents and warrants to Customer that Monte Carlo will provide the Service to Customer in accordance with all applicable laws, rules and regulations.
- 6.3 Mutual Representations and Warranties. Each party represents and warrants that it has the necessary corporate authority to enter into this Agreement, and this Agreement is a valid and binding obligation, enforceable against it, in accordance with its terms.
- 6.4 Disclaimer of Warranties. EXCEPT AS EXPRESSLY SET FORTH IN THIS AGREEMENT, MONTE CARLO PROVIDES THE SERVICE TO CUSTOMER ON AN “AS IS” BASIS, WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTY OF MERCHANTABILITY, NON-INFRINGEMENT OR FITNESS FOR PARTICULAR PURPOSE, WHETHER ALLEGED TO ARISE BY LAW, BY USAGE IN THE TRADE, BY COURSE OF DEALING OR COURSE OF PERFORMANCE. NOTWITHSTANDING ANYTHING TO THE CONTRARY HEREIN, MONTE CARLO DOES NOT WARRANT THAT THE SERVICE WILL BE DELIVERED OR PERFORMED ERROR-FREE OR WITHOUT INTERRUPTION OR THAT CUSTOMER WILL ACHIEVE ANY PARTICULAR BUSINESS RESULTS BY USE OF THE SERVICE.
- 7.1 Indemnities of Customer. Customer shall defend, indemnify and hold harmless Monte Carlo and its officers, directors, consultants, employees, successors and permitted assigns, from and against any losses, damages, costs, liabilities and expenses (including reasonable attorneys’ fees) resulting from any third party claim, demand, action, subpoena, request or attestation (collectively, a “Claim”) arising out of or relating to Monte Carlo’s access to, or possession, processing or use of the Customer Data as is necessary to provide the Service in accordance with this Agreement. THIS SECTION SETS FORTH THE ENTIRE OBLIGATION OF CUSTOMER AND MONTE CARLO’S EXCLUSIVE REMEDY AGAINST CUSTOMER FOR ANY CLAIM UNDER THIS SECTION.
- 7.2 Indemnities of Monte Carlo. Monte Carlo shall defend, indemnify and hold harmless Customer and its officers, directors, consultants, employees, successors and permitted assigns, from and against any losses, damages, costs, liability and expenses (including reasonable attorney’s fees) resulting from any Claim that any software component contained within the Service, in the form made available to Customer, infringes a copyright, registered patent, trademark or other intellectual property right of a third party. The foregoing obligations do not apply with respect to portions or components of the Service (i) not supplied by Monte Carlo, (ii) made in whole or in part in accordance with Customer specifications, (iii) that are modified after delivery by Customer, (iv) combined with other products, processes or materials by Customer where the alleged infringement relates to such combination, (v) where Customer continues allegedly infringing activity after being notified thereof or after being informed of modifications that would have avoided the alleged infringement, or (vi) where Customer’s use of the Service is not in accordance with this Agreement. If, due to a claim of infringement, the Service is held by a court of competent jurisdiction to be or are believed by Monte Carlo to be infringing, Monte Carlo may, at its option and expense (a) replace or modify the Service to be non-infringing, (b) obtain for Customer a license to continue using the Service, or (c) if neither of the foregoing is commercially practicable, terminate this Agreement and Customer’s rights hereunder and provide Customer a refund of any prepaid, unused fees for the Service. THIS SECTION SETS FORTH THE ENTIRE OBLIGATION OF MONTE CARLO AND CUSTOMER’S EXCLUSIVE REMEDY AGAINST MONTE CARLO OR ANY OF ITS SUPPLIERS FOR ANY INFRINGEMENT CLAIM.
- 7.3 Indemnification Procedure. A party seeking indemnification under this Section will: (i) give prompt written notice of such Claim to the other party; (ii) give the other party sole control over the defense and settlement of such claim; and (iii) provide all available information as may be reasonably requested by the other party. No party shall settle any such Claim in a manner that does not unconditionally release the other party without the other party’s written consent, not to be unreasonably withheld or delayed.
- Limitation of Liability.
- 8.1 Exclusion of Damages. IN NO EVENT WILL EITHER PARTY BE LIABLE FOR ANY INDIRECT, INCIDENTAL, CONSEQUENTIAL, SPECIAL, PUNITIVE OR EXEMPLARY DAMAGES, INCLUDING LOST PROFITS, LOSS OF USE, LOSS OF DATA, COST OF PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES, HOWEVER CAUSED, AND ON ANY THEORY OF LIABILITY, WHETHER FOR BREACH OF CONTRACT, TORT (INCLUDING NEGLIGENCE AND STRICT LIABILITY), OR OTHERWISE, WHETHER OR NOT SUCH PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
- 8.2 Maximum Aggregate Liability. EXCEPT FOR (A) A PARTY’S INDEMNIFICATION OBLIGATIONS IN SECTION 7 OF THIS AGREEMENT, (B) A PARTY’S GROSS NEGLIGENCE OR WILLFUL MISCONDUCT OR (C) IN THE CASE OF CUSTOMER, CUSTOMER’S PAYMENT OBLIGATIONS UNDER THIS AGREEMENT, NEITHER PARTY’S MAXIMUM AGGREGATE LIABILITY UNDER, ARISING OUT OF OR RELATING TO THIS AGREEMENT SHALL EXCEED THE TOTAL AMOUNT PAID OR PAYABLE BY CUSTOMER TO MONTE CARLO DURING THE TWELVE MONTHS PRECEDING THE DATE THE LIABILITY FIRST ARISES.
- 8.3 Acknowledgement. THE LIABILITIES LIMITED BY THIS SECTION 8 WILL APPLY WHETHER AN ACTION IS IN CONTRACT OR TORT AND REGARDLESS OF THE THEORY OF LIABILITY AND TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW. HOWEVER, THE LIMITATIONS IN THIS SECTION 8 WILL NOT LIMIT CUSTOMER’S PAYMENT OBLIGATIONS UNDER SECTION 2 OF THIS AGREEMENT AND/OR ANY ORDER FORM.
- Term; Termination.
- 9.1 Term. These Terms shall be effective for so long as there is an Order Form in effect between Customer and Monte Carlo, or until otherwise terminated as provided herein.
- 9.2 Termination for Cause. Either party may terminate these Terms by giving written notice to the other party if: (i) the other party breaches a material provision of these Terms and fails to cure the breach within 30 days after being given written notice thereof; (ii) the other party is judged bankrupt or insolvent, makes a general assignment for the benefit of its creditors, a trustee or receiver is appointed for such party or any petition by or on behalf of such party is filed under any bankruptcy or similar laws.
- 9.3 Effect of Termination. Upon termination or expiration of these Terms for any reason, Customer’s right to access and use the Service shall immediately terminate and Customer will immediately cease use of the Service.
- 9.4 Survival. Section 3 (Intellectual Property Rights & Restrictions), Section 4 (Privacy and Security), Section 5 (Confidentiality), Section 6 (Representations and Warranties), Section 7 (Indemnification), Section 8 (Limitation of Liability) and Section 10 (Miscellaneous) shall survive any expiration or termination of these Terms.
- 10.1 Name and Logo. Customer agrees that Monte Carlo may use Customer’s name and logo on Monte Carlo’s website and in other Monte Carlo promotional materials.
- 10.2 Case Study, Etc... Customer agrees to participate in case studies, webinars, blog posts, tweets, podcasts, whitepapers, press releases, analyst interviews, and analyst reports regarding a topic selected by mutual consent.
- 10.3 Reference. Customer agrees to provide references to industry analysts and prospective customers of Monte Carlo, and to other parties interested in Monte Carlos’s software and services upon Monte Carlo’s request.
- 10.4 Press Release. If requested by Monte Carlo, Customer agrees to participate in a joint press release drafted by Monte Carlo and subject to Customer’s approval. The press release topic will be determined jointly, and will include such topics as the announcement of Customer’s decision to purchase and use the Service and the reason(s) for such decision, and the positive impact of the Service on Customer’s business and customer satisfaction. Press releases would contain one or more quotes from senior Customer management.
- 11. 1 Governing law. These Terms are governed by the laws of the State of California, without regard to its conflict of laws principles, and any dispute arising from these Terms shall be brought exclusively before the state and federal courts in San Francisco, California, and each party irrevocably submits to the jurisdiction of such courts.
- 11. 2 Assignment. This Agreement may not be assigned by either party without the prior written approval of the other party (such approval not to be unreasonably withheld), except in connection with (i) a merger, consolidation, or similar transaction involving (directly or indirectly) a party, (ii) a sale or other disposition of all or substantially all of the assets of a party, or (iii) any other form of combination or reorganization involving (directly or indirectly) such party. Any purported assignment in violation of this section shall be null and void and have no effect. Subject to the foregoing, these Terms will be binding upon, and inure to the benefit of the parties and their respective successors and assigns.
- 11. 3 Order of Precedence. In the event of a conflict between the terms and conditions of these Terms and those of any Order Form, the terms and conditions of these Terms shall control.
- 11. 4 Notices. All notices and other communications hereunder shall be in writing and shall be deemed to have been duly given when sent by email.
- 11. 5 Relationship of Parties. The parties are independent contractors and will have no right to assume or create any obligation or responsibility on behalf of the other party. Neither party shall hold itself out as an agent of the other party. These Terms will not be construed to create or imply any partnership, agency, joint venture or formal business entity of any kind.
- 11. 6 Severability. If any provision of these Terms is held invalid or unenforceable, it shall be replaced with the valid provision that most closely reflects the intent of the Parties and the remaining provisions of the Agreement will remain in full force and effect.
- 11. 7 Complete Agreement. This Agreement is the complete and exclusive statement of the mutual understanding of the parties and supersedes and cancels all previous written and oral agreements, communications and other understandings relating to the subject matter of this Agreement, and that all waivers and modifications must be in a writing signed by both parties, except as otherwise provided herein.
- 11.8 Temporary Suspension. Monte Carlo may temporarily suspend Customer’s access to the Service if Monte Carlo reasonably determines that: (a) Customer’s use of the Service disrupts or creates a security risk to the Service or Monte Carlo systems; (b) Customer is using the Service in violation of any applicable law or regulation or these Terms; or (c) Customer fails to pay fees owed to Monte Carlo in accordance with this Agreement. In the event of any suspension pursuant to this section, Monte Carlo will use commercially reasonable efforts to provide written notice thereof to Customer, and to restore access to the Service as promptly as reasonably practicable.
- 11.9 Force Majeure. Any delay in or failure of performance by either party under this Agreement will not be considered a breach of this Agreement and will be excused to the extent such delay or failure is due to events beyond its reasonable control, such as, without limitation, flood, earthquake, fire, acts of God, military insurrection, civil riot, or labor strikes.
MONTE CARLO CURRENT SECURITY AND COMPLIANCE INFORMATION AND PRACTICES
Below are the highlights of Monte Carlo’s current security and compliance practices.
- Unless otherwise mutually agreed, Monte Carlo does not remove data from Customer’s environment. Monte Carlo only extracts metadata, query logs and aggregated statistics. In particular, no individual records or PII are ever taken out of Customer’s environment.
- Monte Carlo uses read-only access via APIs and/or dedicated service accounts, and allows granular permissions to datasets of Customer’s choice
- Monte Carlo uses a data collector to connect to data warehouses, data lakes and BI tools in order to extract metadata, logs and statistics. The data collector is deployed in Monte Carlo’s secure AWS environment across Monte Carlo’s client base from which it provides its deployment process and customer support. The data collector architecture (depicted below) is designed to optimize security as Monte Carlo interacts with Customer’s data infrastructure.
- Monte Carlo has obtained SOC 2, Type 2 certification for the Service and will provide a copy of its SOC 2, Type 2 certification report upon request
- Monte Carlo does not process PII/PHI and therefore supports HIPAA, PCI, GDPR, CCPA and other compliance frameworks
Security and privacy practices
Monte Carlo implements stringent practices to protect the security of its application, and the data privacy of its customers. The following are some of the elements of Monte Carlo’s security program and system architecture:
- Monte Carlo only collects metadata, logs, and metrics for the sole purpose of identifying data reliability issues.
- Processing is conducted on secure servers hosted on Amazon Web Services. All storage systems are encrypted, and all servers are tightly access controlled and audited. Data is encrypted in-transit at all times.
- In cases where debugging or maintenance work is required, a minimal number of engineers will be permitted to access the data necessary for this purpose. All engineers use encrypted laptops and are required to remove data from their devices when their debugging session is complete. Laptop security policies are enforced using MDM.
- Monte Carlo accesses the Customer environment from a single source IP dedicated to the Customer, allowing the Customer to protect access to its data resources at the network level.
- An annual penetration test is performed to validate Monte Carlo’s posture and identify vulnerabilities.
- Monte Carlo’s service runs on highly available and highly redundant cloud services, mostly on Amazon Web Services.
- Access to all critical systems and production environments is protected using strong passwords and multi-factor authentication. Where possible, SSO is used for centralized access control. Access is reviewed prior to being granted and then periodically thereafter.
Information Monte Carlo collects
The following information may be processed and stored by Monte Carlo’s cloud application:
|Metadata||Names of tables, fields, field types, names and attributes of BI reports/dashboards and other such metadata.||Build a catalog of warehouse, lake and BI objects along with schema information|
|Metrics||Row counts, byte counts, last modification date and other similar table-level metrics||Track freshness, volume and other health metrics|
|Query logs||History of queries, as well as metadata about them (timestamp, user performing the query, errors if any, etc).||Track lineage, usage analytics and query history to help with troubleshooting and prevention use cases.|
|Aggregated, anonymized statistics||Aggregated statistical measures of the data in selected tables, based on opt-in. Statistics may include null rates, distinct values, row counts, percentiles, and other similar metrics.||Track data health and corruption using ML-based anomaly detection as well as customer-provided rules.|