This Master Service Agreement (this “Agreement”) is entered into by and between Beta Financial Services, Inc. (“Company”) and the customer entity or individual accepting this Agreement (“Customer”). This Agreement shall be effective as of the date of Customerʼs acceptance (the “Effective Date”).
The Company agrees to provide BetaScore.AI (hereafter referred to as “Platform”) by Beta Financial Services as software-as-a-service (SaaS) to the Customer, and also provide for the configuration, maintenance, and support of the Platform.
The Company may perform the services reasonably necessary to allow Customer access to the Services. These implementation services may include configuration, modification, and testing.
The only implementation services Company shall perform are those mentioned above.
The Company shall provide customer support via email at support@betascore.ai. Support shall be available during the hours of 8:00 AM to 6:00 PM Central Time, Monday through Friday, excluding United States federal holidays. The Company shall use commercially reasonable efforts to provide an initial response to support inquiries within two (2) business days of receipt.
This Agreement shall begin on the date of this Agreement (the "Effective Date") and shall continue until otherwise terminated according to the provisions of this Agreement.
The Customer shall pay Company the fees specified in the Companyʼs order form as applicable (the “Fees"). All payments made under this Agreement shall be payable within 15 days following the issuing of an invoice to the Customer.
The Company maintains a formalized information security policy to comply with various regulatory and business requirements. This security policy protects all sensitive and confidential data stored, accessed, or transmitted by our software platform, including its applications, components, infrastructure, and underlying code.
The Company has designed a risk assessment program to assess the organizationʼs enterprise- level risk at least annually or upon significant changes to the environment. This program is designed to identify and assess threats to and vulnerabilities in systems and in service.
The Company takes responsibility for implementing appropriate technical and organizational safeguards to ensure the protection of sensitive information. Employees of the Company are required to read and accept the terms of a confidentiality agreement upon hire that states they are prohibited from disclosing any company data from the systems and system components to which they have access.
The Company maintains strict control access to restrict private information to privileged users. These users are required to abide by their assigned responsibilities related to their elevated access.
The Company has established a Data Handling, Retention, and Disposal Program to manage information in accordance with applicable laws, regulations, policies, and standards. This program establishes a formal data retention schedule and implements a data classification standard to ensure the confidential data is secured.
The Company retains sensitive and confidential data only for as long as necessary to fulfill its purposes unless otherwise required by law or to meet legal and client contractual obligations.
The Company segments its network to prevent direct or unauthorized connections between an external network and its information systems, in particular confidential data in cloud environments.
The Company maintains a vulnerability management program to ensure the confidentiality, integrity, and availability (CIA) of the organizationʼs information systems landscape, which includes all critical system resources. The program includes internal and external scans, penetration testing, and issue remediation for the purposes of identifying, detecting, classifying, prioritizing, remediating, validating, and continuously monitoring vulnerabilities.
The Company conducts independent third-party penetration tests at least annually on any systems with Confidential data or with a critical risk rating to identify security vulnerabilities.
The Company agrees to maintain the confidentiality of all Customer Confidential Information disclosed in connection with this Agreement. “Confidential Information” includes but is not limited to all non-public information, data, documents, business practices, and technical information provided by the Customer, regardless of whether such information is marked as confidential.
The Company agrees to:
These confidentiality obligations will remain in effect during the term of this Agreement and for a period of three (3) years following termination, except for trade secrets, which will remain confidential for as long as they remain trade secrets under applicable law.
The Company is committed to ensuring the availability of the Platform in accordance with industry standards.
The Company shall use commercially reasonable efforts to maintain system availability of 99% uptime in accordance with SOC 2 standards, excluding (a) scheduled maintenance, and (b) outages or disruptions caused by circumstances beyond the Companyʼs reasonable control, including but not limited to force majeure events. The Company shall provide advance notice of any scheduled maintenance that is expected to materially affect system availability.
The Company will maintain redundancy, disaster recovery, and incident response procedures to restore service in the event of disruption and will notify affected customers without undue delay in the event of material service interruptions.
The Company may, from time to time, update, enhance, or otherwise modify the Platform in the ordinary course of development. The Company shall provide release notes in connection with each major version of the Platform. The Company shall provide prior notice to the Customer of any material changes in features or functionality that may reasonably be expected to impact the Customerʼs use of the Platform.
This section shall be used to detail any additional provisions as seen appropriate with the agreement being set forward.
By (i) clicking “I Agree,” checking a box, or otherwise electronically accepting this Agreement through the Platform, or (ii) executing a purchase order, addendum, statement of work, or other contract that references this Agreement and includes a checkbox or similar method of indicating acceptance, the Customer acknowledges that they have read, understood, and agree to be bound by the terms of this Agreement.
If the individual accepting this Agreement is doing so on behalf of a company or other legal entity, such individual represents and warrants that they have the authority to bind such entity to this Agreement.
This Agreement becomes effective on the date of such electronic or written acceptance by the Customer (the “Effective Date”), and no physical signature is required.