Terms of Service

The following Cloud Object Storage Service Terms apply when you purchase Cloud Object Storage services from us. These terms apply in addition to our Terms and Conditions, Acceptable Usage Policy and Privacy Policy. Together, these documents form part of the “Main Agreement” between you and us when you purchase Cloud Object Storage services from us.

By ordering, renewing, using or continuing to use Cloud Object Storage services from eukhost, you agree to these Cloud Object Storage Service Terms.

Where there is any conflict between these Cloud Object Storage Service Terms and our general Terms and Conditions, these Cloud Object Storage Service Terms shall take precedence only in respect of the Cloud Object Storage service.

1. Defined Terms
   
   “Account” means the customer account through which the Cloud Object Storage service is ordered, managed or billed.
   
   “API Credentials” means access keys, secret keys, tokens, passwords or other credentials used to access the Cloud Object Storage service.
   
   “Bucket” means a logical storage container created within the Cloud Object Storage service.
   
   “Cloud Object Storage” or “Service” means the S3-compatible object storage service supplied by eukhost.
   
   “Customer Data” means data, files, objects, metadata, backups, archives or other material uploaded, stored, transmitted or processed through the Cloud Object Storage service by you or on your behalf.
   
   “Infrastructure Provider” means any third-party provider used by eukhost to deliver all or part of the Cloud Object Storage service.
   
   “Object” means an individual file, item or unit of data stored within a Bucket.
   
   “Object Lock” means a feature that may allow Objects to be retained in an immutable state for a defined retention period, where enabled and configured correctly.
   
   “S3-Compatible” means compatible with commonly used S3 API operations, subject to the features and limitations of the Service.
   
   “You”, “Your”, “Client” or “Customer” means the person, company or organisation who purchases or uses Cloud Object Storage services from eukhost.
   
   “We”, “Us” or “eukhost” means eukhost.
2. Service Description
   1. Cloud Object Storage is an S3-compatible object storage service designed for storing objects such as backups, archives, media files, application data, logs and other compatible content.
   2. The Service provides object storage capacity and related access functionality. It is not, unless expressly stated in writing, a managed backup service, managed disaster recovery service, managed archive service or managed compliance service.
   3. The Service may include features such as:
      1. S3-compatible API access.
      2. Bucket creation and management.
      3. Object upload, download and deletion.
      4. Access policies.
      5. Identity and access management.
      6. API credential management.
      7. Encryption in transit.
      8. Server-side encryption.
      9. Object Lock or immutability features where available.
      10. Usage reporting.
      11. Management console access.
   4. Features may vary depending on the package purchased, the selected region, the underlying platform and the technical configuration applied by you.
   5. We may update, replace, remove or modify features of the Service where reasonably necessary for operational, security, supplier, legal or commercial reasons.
3. Third-Party Infrastructure Providers
   1. The Cloud Object Storage service is delivered using infrastructure operated by one or more carefully selected Infrastructure Providers.
   2. eukhost remains your contractual service provider. Infrastructure Providers do not become a party to the agreement between you and eukhost.
   3. Infrastructure Providers may process Customer Data and related technical data only where necessary to deliver, secure, maintain, support or operate the Service.
   4. We may change, replace or add Infrastructure Providers where reasonably necessary for operational, security, compliance, commercial or service improvement reasons.
   5. Where a change to an Infrastructure Provider affects the processing of personal data, our Privacy Policy and relevant data processing documentation will be updated as required.
4. Ordering the Service
   1. The Service is provided subject to acceptance of your order by eukhost.
   2. We may decline an order where:
      1. The requested Service is unavailable.
      2. We cannot verify your identity or payment details.
      3. The proposed use would breach our Terms and Conditions, Acceptable Usage Policy or applicable law.
      4. We reasonably believe the Service may be used for abuse, unlawful activity or activity that may present a security risk.
      5. The requested location, configuration or capacity is not available.
   3. The specification of the Service will be as set out in the order, quotation, service description or product page at the time of purchase.
5. Customer Accounts and Authentication
   1. You are responsible for the security of your Account and any accounts, users, API Credentials, access keys, integrations or applications used to access the Service.
   2. You must:
      1. Keep all passwords and API Credentials secure.
      2. Use strong and unique passwords.
      3. Enable multi-factor authentication where available.
      4. Restrict access to authorised users only.
      5. Ensure permissions are granted on a least privilege basis.
      6. Promptly remove access when users no longer require it.
      7. Rotate or revoke credentials where compromise is suspected.
      8. Notify us promptly if you believe your Account or API Credentials have been compromised.
   3. You are responsible for all activity carried out using your Account or API Credentials, whether authorised by you or not, unless the activity was caused by our breach of these Cloud Object Storage Service Terms.
6. Security Features
   1. The Service may include security features designed to help protect Customer Data, including:
      1. Encryption in transit using TLS.
      2. Server-side encryption.
      3. Identity and access management.
      4. Role based access control.
      5. Bucket policies.
      6. API credential management.
      7. Access logging.
      8. IP address restrictions where available.
      9. Object Lock or retention features where available.
      10. Management console access controls.
      11. Audit or activity logs where available.
   2. You are responsible for enabling, configuring and maintaining security features that are under your control.
   3. Where you disable, misconfigure or fail to use available security controls, eukhost shall not be responsible for loss, disclosure, corruption, deletion or unauthorised access arising from that failure.
7. Customer Responsibilities
   1. You are responsible for:
      1. Ensuring the Service is suitable for your intended purpose.
      2. Configuring Buckets, permissions, access policies and retention settings correctly.
      3. Protecting all API Credentials.
      4. Ensuring your applications interact with the Service securely.
      5. Ensuring your use complies with applicable law.
      6. Ensuring you have the right to store and process Customer Data through the Service.
      7. Classifying data before upload.
      8. Applying appropriate security measures to sensitive data.
      9. Maintaining additional backup copies where appropriate.
      10. Testing restores and recovery processes.
      11. Monitoring your usage, capacity and billing.
      12. Deleting data you no longer require.
      13. Ensuring any end users or customers who use the Service through you comply with these Cloud Object Storage Service Terms.
   2. You acknowledge that incorrect configuration may result in data being exposed, overwritten, deleted, retained longer than intended or made unavailable.
8. Acceptable Use
   1. You must not use the Service to store, transmit, process, distribute or make available:
      1. Unlawful content.
      2. Malware, ransomware, botnets, exploit code or malicious scripts.
      3. Phishing material.
      4. Stolen data.
      5. Content that infringes intellectual property rights.
      6. Content that breaches privacy, confidentiality or data protection rights.
      7. Content used to facilitate fraud, abuse, harassment or illegal activity.
      8. Material prohibited by our Acceptable Usage Policy.
      9. Any content that may damage the reputation, security or operation of eukhost, our customers or our suppliers.
   2. You must not use the Service to attack, scan, overload, disrupt or compromise any system, network, service or account.
   3. We may suspend or restrict the Service where we reasonably believe it is being used in breach of this section.
9. Data Protection and Privacy
   1. Where Customer Data contains personal data, the parties acknowledge that the factual arrangement between them will determine whether eukhost acts as a processor, controller or otherwise under applicable data protection law.
   2. In most cases, where you upload personal data to the Service, you will be the controller and eukhost will act as processor, subject to our Privacy Policy and applicable data processing terms.
   3. You are responsible for ensuring that:
      1. You have a lawful basis for storing personal data in the Service.
      2. You have provided all required privacy information to data subjects.
      3. The data is suitable for storage in the selected region.
      4. The use of the Service complies with UK GDPR, EU GDPR and any other applicable data protection law.
      5. Any special category data or high-risk data is subject to appropriate safeguards.
      6. Any end customer use is covered by appropriate contractual terms.
   4. We will process personal data only as necessary to provide, support, secure and administer the Service, unless otherwise required by law.
   5. Further information about how we process personal data is set out in our Privacy Policy.
10. Data Location
    1. Where region selection is available, Customer Data will be stored in the selected region, subject to the technical operation of the Service.
    2. You are responsible for selecting a region appropriate for your regulatory, contractual and operational requirements.
    3. Metadata, support information, billing records, logs or administrative information may be processed outside the selected storage region where necessary to provide, support, secure, bill or administer the Service, subject to applicable data protection law and our Privacy Policy.
11. Data Ownership
    1. You retain ownership of Customer Data.
    2. We do not claim ownership of Customer Data.
    3. You grant eukhost and our Infrastructure Providers the rights necessary to host, store, transmit, copy, process, secure, support and otherwise operate the Service in accordance with the Main Agreement and these Cloud Object Storage Service Terms.
12. Backup Responsibilities
    1. The Service provides storage capacity. It does not, unless expressly stated in writing, include backup management.
    2. Unless you have purchased a separate managed backup service from eukhost, you remain responsible for:
       1. Selecting what data is backed up.
       2. Configuring backup jobs.
       3. Setting retention periods.
       4. Monitoring backup success.
       5. Verifying backup integrity.
       6. Testing restores.
       7. Ensuring backup data is recoverable.
       8. Ensuring backup schedules meet your recovery point and recovery time requirements.
       9. Maintaining additional copies of important data.
    3. You should not rely on Cloud Object Storage as the only copy of important data.
13. Object Lock, Immutability and Retention
    1. Where Object Lock, immutability or retention features are available, they must be enabled and configured correctly by you or by us under a separately agreed managed service.
    2. You acknowledge that:
       1. Object Lock may prevent deletion or modification of Objects for the configured retention period.
       2. Incorrect retention settings may cause data to be retained longer than intended.
       3. Retention settings may not protect data if they are not enabled correctly.
       4. Some settings may be irreversible for the duration of the retention period.
       5. eukhost is not responsible for Customer misconfiguration of Object Lock, retention, versioning or lifecycle rules.
    3. You are responsible for ensuring any retention settings meet your legal, regulatory and business requirements.
14. Data Availability
    1. The Service is designed to provide resilient object storage. However, no guarantee is given that Customer Data will be continuously available, accessible or retrievable at all times.
    2. Access to Customer Data may be affected by:
       1. Maintenance.
       2. Third-party infrastructure incidents.
       3. Network issues.
       4. Software defects.
       5. Authentication failure.
       6. Customer configuration errors.
       7. Suspension.
       8. Legal or regulatory restrictions.
       9. Force majeure events.
       10. Security incidents.
       11. Failures outside our reasonable control.
    3. You must ensure that your own resilience and backup strategy is appropriate for the importance of your data.
15. Service Levels
    1. Unless a specific written SLA is expressly agreed with you, the Service is provided without a guaranteed uptime, durability or availability commitment.
    2. Any response times or support targets published by eukhost or an Infrastructure Provider are support targets only and do not guarantee continuous access to Customer Data.
    3. Service credits, if any, will only apply where expressly stated in a separate written SLA.
16. Maintenance and Changes
    1. We or our Infrastructure Providers may carry out maintenance, updates, upgrades, security changes or platform changes from time to time.
    2. Where reasonably practical, we will provide advance notice of planned maintenance that may materially affect the Service.
    3. Emergency maintenance may be carried out without notice where necessary to protect security, stability, data integrity or service operation.
    4. We may change technical features, APIs, regions, integrations or management interfaces where required for security, legal, operational or supplier reasons.
17. Support
    1. eukhost provides support for the Service in accordance with the support level purchased.
    2. Support may include:
       1. Account and billing support.
       2. Access assistance.
       3. Basic configuration guidance.
       4. Investigation of service availability issues.
       5. Escalation to Infrastructure Providers where required.
    3. Support does not include, unless expressly agreed:
       1. Writing or debugging Customer applications.
       2. Managing Customer backup software.
       3. Checking Customer backup job success.
       4. Performing restore tests.
       5. Configuring third-party software.
       6. Recovering data deleted due to Customer action.
       7. Forensic investigation of Customer systems.
    4. Certain support requests may require escalation to an Infrastructure Provider. Where this occurs, response and resolution may depend on the Infrastructure Provider’s processes and timescales.
18. Customer Software and Integrations
    1. You are responsible for any software, application, script, appliance, backup platform or integration used to connect to the Service.
    2. This includes responsibility for:
       1. Licensing.
       2. Configuration.
       3. Security.
       4. Compatibility.
       5. Updates.
       6. Monitoring.
       7. Backup job configuration.
       8. Lifecycle rules.
       9. Retention settings.
       10. Restore procedures.
    3. Where the Service is used with third-party software such as backup platforms, archive software or application tools, eukhost does not guarantee compatibility unless expressly stated in writing.
19. Charges and Billing
    1. Charges for the Service will be as set out in the order, quotation, product page or applicable pricing schedule.
    2. Charges may include:
       1. Storage capacity.
       2. Usage.
       3. Data transfer.
       4. API requests.
       5. Region-specific charges.
       6. Support charges.
       7. Excess usage.
       8. Setup fees.
       9. Renewal fees.
       10. Other charges stated at the time of order.
    3. You are responsible for monitoring usage. Usage-based charges may vary month to month.
    4. We may suspend or restrict the Service where invoices are unpaid in accordance with the Main Agreement.
20. Suspension
    1. We may suspend, restrict or disable access to all or part of the Service where:
       1. Payment is overdue.
       2. We reasonably suspect misuse or abuse.
       3. We reasonably suspect compromise of your Account or API Credentials.
       4. Your use breaches these Cloud Object Storage Service Terms, the Main Agreement or the Acceptable Usage Policy.
       5. Your use poses a risk to eukhost, our customers, our suppliers or the Service.
       6. We are required to do so by law, court order, regulator or competent authority.
       7. An Infrastructure Provider suspends or restricts access.
       8. Suspension is necessary to protect security, availability or integrity.
    2. Where reasonably practical, we will notify you of suspension. However, we may suspend without notice where immediate action is required.
    3. Suspension does not remove your obligation to pay charges due.
21. Termination and Cancellation
    1. You may cancel the Service in accordance with the applicable billing terms and cancellation process.
    2. We may terminate the Service in accordance with the Main Agreement or where continued provision of the Service would create legal, security, operational or supplier risk.
    3. On cancellation or termination:
       1. Access to the Service may be suspended or removed.
       2. API Credentials may be disabled.
       3. Customer Data may be deleted after any applicable retention period.
       4. You remain responsible for retrieving any required data before cancellation.
       5. Charges already incurred remain payable.
22. Data Retention and Deletion
    1. You are responsible for deleting Customer Data you no longer require.
    2. Following cancellation, termination or expiry of the Service, Customer Data may be retained for a limited period before deletion, depending on the technical operation of the Service and our retention procedures.
    3. After deletion, Customer Data may not be recoverable.
    4. Where Object Lock, immutability, legal hold, versioning or retention features have been enabled, deletion may not be possible until the applicable retention period has expired.
    5. You must ensure that data has been retrieved before cancelling the Service.
23. Data Loss and Recovery
    1. You acknowledge that no storage platform can be guaranteed to be immune from data loss, corruption, deletion or unavailability.
    2. To the maximum extent permitted by law, eukhost shall not be liable for data loss, corruption, deletion, unavailability or failed recovery caused by:
       1. Customer configuration errors.
       2. Deleted Buckets or Objects.
       3. Compromised API Credentials.
       4. Failure to enable security controls.
       5. Failure to enable Object Lock or versioning correctly.
       6. Lifecycle or retention rules configured by the Customer.
       7. Unsupported software or integrations.
       8. Failure to maintain additional copies.
       9. Failure to test restores.
       10. Acts or omissions of third parties outside our reasonable control.
    3. Nothing in these Cloud Object Storage Service Terms limits liability where such limitation is prohibited by law.
24. Confidentiality
    1. We will treat Customer Data as confidential and will not access, inspect, disclose or use Customer Data except where necessary:
       1. To provide the Service.
       2. To provide support requested by you.
       3. To investigate abuse or security issues.
       4. To comply with law.
       5. To protect the Service, eukhost, our customers or our suppliers.
       6. As otherwise permitted under the Main Agreement.
    2. You are responsible for ensuring that your own users and customers treat access to the Service and Customer Data appropriately.
25. Compliance
    1. You are responsible for determining whether the Service is suitable for your compliance requirements.
    2. This includes requirements relating to:
       1. Data protection.
       2. Financial records.
       3. Healthcare data.
       4. Regulated data.
       5. Export controls.
       6. Sector-specific rules.
       7. Retention obligations.
       8. Audit obligations.
       9. Data residency.
       10. Encryption requirements.
    3. We may provide information about the Service to assist your assessment, but you remain responsible for your own compliance decisions.
26. Liability
    1. The liability provisions in the Main Agreement apply to the Service.
    2. Without limiting those provisions, eukhost shall not be liable for:
       1. Customer configuration errors.
       2. Customer failure to protect credentials.
       3. Accidental deletion by the Customer.
       4. Customer failure to maintain suitable backups.
       5. Customer failure to test restores.
       6. Customer use of unsupported software.
       7. Customer failure to comply with applicable law.
       8. Loss caused by third-party systems outside our reasonable control.
       9. Indirect, consequential or economic loss, except where such limitation is prohibited by law.
27. Changes to Infrastructure Providers
    1. We may change the Infrastructure Provider used to deliver the Service where reasonably necessary.
    2. Where a change materially affects data protection, location, security or service operation, we will take reasonable steps to update relevant customer-facing information and provide notice where required by law or contract.
    3. Your continued use of the Service after such change will constitute acceptance of the continued provision of the Service using the updated Infrastructure Provider, unless you cancel the Service in accordance with the applicable cancellation terms.
28. Changes to These Service Terms
    1. We may update these Cloud Object Storage Service Terms from time to time.
    2. Changes may be made to reflect:
       1. Changes in law.
       2. Changes in supplier terms.
       3. Changes in the Service.
       4. Changes in security requirements.
       5. Changes in data protection requirements.
       6. Operational improvements.
       7. Clarification of existing wording.
    3. Where changes materially affect your rights or obligations, we will provide notice in accordance with the Main Agreement.

If you would like to get in touch with us, please write to us at the address listed in our Terms and Conditions or contact us through the eukhost client area.