Key Legal Concepts and FAQs

The contractual parties to the Agreement are you and your local Sitecore entity, respectively. The local Sitecore entity is set out in the Order.

Your affiliates may place Orders with other Sitecore entities based on the same terms and conditions, but this will be considered a separate agreement between the parties thereto.

The Agreement documents will have the following order of precedence:

• the Data Processing Addendum;
• the MSTC; and
• the applicable Order.

The wording of the higher order document will take precedence, but where specific exceptions or amendments to the Master Terms or the DPA may be agreed upon in writing by Customer and Sitecore under a particular Order by specifically referencing the language that the parties agree to override or amend.

With an MSTC in place we can enter into Orders from time to time for any new products or services you may wish to purchase. Please note that the commercial terms of each Order must be mutually agreed and the Order signed by both of us, otherwise it does not constitute a binding Order (e.g. a purchase order sent by you does not constitute a binding Order).

Please contact your Sitecore sales account executive if you wish to place an Order. 

All Orders have a minimum commitment period built into the subscription term and cannot be terminated for convenience during that period.

Sitecore’s prices are based on a committed term as set forth in our Order.

The Agreement or an Order may still be terminated due to material breach.

Liability and indemnity provisions are important elements of our Agreement. 

We have adopted a balanced approach to liability and indemnity limiting both your and Sitecore’s risk exposure. For example, we exclude indirect and similar damages for both parties and include a liability cap for direct damages equal to twelve months’ fees (see specific wording), which also applies to both parties. 

Our Agreement also includes relevant indemnities, including, for your benefit, in case a third party claims that you have infringed on their IP rights as a result of using Sitecore’s products or services.

Our pricing and product/service delivery are based on this contractual approach, which reflects our risk profile and vice versa.

We provide SLAs for our SaaS Products and Hosted Services. The SLAs define the level of service you can expect from us as well as an explanation of the metrics by which the services are measured. You can find the Sitecore SLAs here.

Given that all our customers are on the same version of the platform and/or we apply the same standardised services across our business, we cannot modify SLAs for each individual customer, as scaling our operations without uniformity across our customer base would be impossible. 

This policy sets forth what can and cannot be done with our Cloud Products. Much of this is required by underlying service providers of the cloud computing platforms on which our solutions are deployed. As a result, this is required to be accepted by our customers without modification. You can find the Sitecore Usage Policy here.

Sitecore offers product-specific availability in a number of data centers across the globe to give our customers flexibility on where their data is located. Your data (defined as Customer Data in the Agreement) resides in the data center(s) selected by you. Your data within the cloud product will be processed, transferred to and stored wherever you choose to have your data hosted and your data will not be transferred from the data center location chosen by you without your prior consent/instruction.

This is to allow for transfers in situations where you ask us to do so in order to provide the purchased services. If applicable, Sitecore ensures that any such transfer is via adequate transfer mechanisms, and where applicable Sitecore has put in place supplemental technical and organisational measures to ensure an adequate level of protection in the destination country in compliance with applicable law. In the DPA we make reference to the Standard Contractual Clauses as an adequate transfer mechanism to e.g., the United States (for example, if another line of business/affiliate/location is later opened and you desire to make use of a data center in the US).

Sitecore will retain Customer Data in its systems for 30 days (the “Retrieval Period”) after termination of any Order for cloud products and make the Customer Data available for retrieval during such 30-day period.

This means, that you can access and retrieve your data for 30 days after your termination. Further information on how you can retrieve data by Sitecore product offering is available here.

After the Retrieval Period the Customer Data will be deleted (except to the limited extent we are required to keep any data – e.g., to comply with applicable law).

You can also ask Sitecore to destroy Customer Data before the end of the Retrieval Period and we will do so (except to the limited extent we are required to keep any data – e.g., to comply with applicable law).