LAUNCHPAD® APPLICATION PROVIDER AGREEMENT
Effective Date: 10/6/25 Last Updated: 10/6/25
BY CLICKING THE ACCEPTANCE BUTTON ON THE LAUNCHPAD SUBSCRIPTION PAGE, YOU EXPRESSLY AGREE TO AND CONSENT TO BE BOUND BY ALL OF THE TERMS AND CONDITIONS SET FORTH BELOW, INCLUDING EXHIBITS A (SECURITY STANDARDS) AND B (END USER SUBSCRIPTION AGREEMENT TERMS AND CONDITIONS) INCORPORATED BY REFERENCE (THIS “AGREEMENT”). THIS AGREEMENT FORMS A BINDING LEGAL AGREEMENT BETWEEN PEGASYSTEMS INC. (“PEGA”) AND THE ENTITY LISTED AS THE “APPLICATION PROVIDER” ON THE REGISTRATION PAGE (THE “PROVIDER”). BY CLICKING THE ACCEPTANCE BUTTON, YOU EXPRESSLY AGREE THAT YOU ARE AUTHORIZED TO BIND THE PROVIDER TO THE TERMS AND CONDITIONS OF THIS AGREEMENT.
Introduction.
• Pega and Provider desire to enter into an arrangement to allow Provider to use Launchpad to develop and commercialize an application or applications (each a “Provider Application”) according to the terms of the applicable Order and this Agreement.
• Pega will host and make Launchpad available to Provider.
• Provider will make their Provider Application(s) available to Subscribers and provide support to the Subscribers.
• Provider shall pay Pega according to the terms set forth on the applicable Order(s).
1. Definitions.
“Acceptable Use Policy” means the current Pega acceptable use policy as published from time to time at https://www.pega.com/acceptable-use
“Business Contact Data” means business contact information (the names, titles and roles, business phone and facsimile numbers, business office and email addresses) of Provider’s, Subscriber’s, or Pega’s employees and contractors.
“Confidential Information” means all non-public information provided by or on behalf of a party to the other party unique to the disclosing party’s business, including but not limited to Launchpad and the Documentation.
“Corrupt Act” means any act of seeking, authorizing, offering, promising or granting a financial or other benefit (including a payment, loan, gift or transfer of anything of value) for the purpose of inducing a private person or public official to perform his or her duties dishonestly or in breach of his or her professional, legal or contractual obligations and/or to obtain or retain business for Pega and or Subscriber in an undue or dishonest manner.
“Documentation” means the specifications and operating guides associated with Launchpad as published from time to time on Pega’s web site at: https://docs.pega.com/bundle/launchpad-subscription-documentation/page/launchpad/launchpad-pega-launchpad-subscription-documentation.html
“End User Subscription Agreement” means the contract between Provider and its Subscriber(s) that authorizes the Subscriber to access and use the Provider Application(s), which governs the use of such Provider Application(s) and which contains at a minimum the term list on Exhibit B.
“Error” means a defect in Launchpad that prevents it from functioning in substantial conformity with the Documentation.
“Generative AI” refers to the technology and algorithms utilizing a large language model to generate new text, code, or any other form of content in response to an input or prompt.
“Intellectual Property Right” means any patent, copyright, trade name, trademark, trade secret, know-how, or any other intellectual property right or proprietary right whether registered or unregistered, and whether now known or hereafter recognized in any jurisdiction.
“Launchpad Unit” means the usage-based metric for measuring the workload executed by Launchpad to create and power the Provider Application(s). The workload on Launchpad applications is based on the amount of computing resources and time it takes to complete a task, process, or outcome through development and application interactions.
“Launchpad Subscription Page” means the order webpage where Provider completes the purchase of a Launchpad subscription from Pega.
“LLM Terms” means the terms published at the following links for the respective LLMs, as updated from time to time: Microsoft (Microsoft Terms), AWS (AWS Terms), Anthropic (Anthropic Terms) and Google (Google Gemini Terms and Google Gemini API Terms).
“Order” means the terms of the Launchpad Subscription Page accepted by Provider to receive Launchpad from Pega.
“Pega GenAI™” or “Pega GenAI” refers to features and capabilities that utilize Generative AI and are made available by Pega as part of Launchpad. For purposes of the Agreement and any Order, Launchpad shall, as applicable, include Pega GenAI.
“Launchpad” shall mean the Pega-proprietary as-a-service application development platform for Provider’s use in building and delivering the Provider Application(s), including any enhancements, upgrades, updates, modifications, or other releases made available by Pega under this Agreement.
“Launchpad DPA” means the Data Processing Addendum, available at the following link: https://www.pega.com/launchpad/dpa
“Pega Marks” means Pega’s trade names, trademarks and logos associated with Launchpad.
“PII” means any Provider or Subscriber Data or other information relating to any identified or identifiable natural person, or otherwise regulated under data privacy laws applicable to Pega, that is transferred, processed or stored by Launchpad by or on behalf of Provider or Subscriber.
“Provider Responsibilities” are the obligations of the Provider to follow best practices and guidance from Pega to ensure the configuration of the Provider Application(s) are secure, performant and stable. For further information see Launchpad Provider Guide: https://docs.pega.com/bundle/launchpad-subscription-documentation/page/launchpad/launchpad-provider-responsibilities-pega-launchpad.html
"RuleSet" is a named collection of configuration records created using Launchpad.
“Subscriber” means any third-party customer that is granted by Provider the right to access and use Provider Application(s).
“Subscriber Data” means any information received from or on behalf of Provider or Subscriber that is stored, transferred, or processed by Launchpad or Provider Application(s).
2. Provider Rights and Responsibilities.
(a) Provider Designation. Subject to the terms and conditions set forth in this Agreement, Pega grants Provider non-exclusive rights to deliver the Provider Application(s) to Subscribers, and Provider accepts such appointment. Provider is not authorized to distribute the Provider Application(s) without Pega’s express prior written consent. Provider shall have full discretion to set its own prices for Subscriber subscriptions to any Provider Application.
(b) Provider Application. The Provider Application(s) shall at all times materially conform to the description set forth in the applicable Order. Pega reserves the right to review the Provider Application(s) at any time during the term of this Agreement to verify that it continues to conform to the description in the applicable Order.
(c) New Services and Modifications. Pega may, at any time, add new functionality or services which may be included as part of Launchpad in its sole discretion. Pega may also modify Launchpad in its sole discretion.
(d) Subcontractors. Provider may use subcontractors to assist Provider in creating, supporting, or delivering the Provider Application(s) on behalf of Provider, provided that Provider will require each such subcontractor to sign a written agreement no less protective of Pega and its suppliers than the terms and conditions of this Agreement, and Provider shall be responsible for all acts or omissions of any such subcontractor regarding Launchpad, the Documentation and any Confidential Information provided by Pega, and Provider shall indemnify and hold Pega harmless from and against any liabilities, losses, damages, claims, demands, costs and expenses (including reasonable attorneys’ fees) resulting from any such acts or omissions of any such subcontractor.
3. Access; Initial Validation; Security Tests.
(a) Access. Pega will email to Provider a URL to allow Provider to access Launchpad. Launchpad shall be deemed irrevocably accepted upon delivery of such URL.
(e) Initial Validation. Prior to any Provider Application launch, Provider will test and will provide Pega with the opportunity to test and approve in writing such Provider Application.
(b) Security Testing. Prior to any distribution by Provider of the Provider Application(s), Pega may conduct a security evaluation of the Provider Application(s), which may include a qualitative assessment involving review of a completed questionnaire, an interview with appropriate Provider personnel, and/or security testing. Pega may periodically conduct such security evaluations throughout the term of this Agreement. Pega conducts such security evaluations for its own benefit and Provider may not rely on or promote the Provider Application’s successful passage of such evaluation. Security testing may include remote application-level security testing of the Provider Application(s), and network-level security testing including a vulnerability threat assessment. Pega may conduct such testing itself or through a third party. Pega will provide reasonable notice to Provider before starting such testing. Pega will also cooperate reasonably with Provider to minimize the effects of such testing on Provider’s business and operations. Provider agrees to cooperate reasonably with such testing. Any nonpublic information to which Pega obtains access during such security testing will be considered Confidential Information of Provider.
4. Pega Services.
(f) Hosting. Pega will host or engage one or more third-party hosting services providers to host Launchpad, and Pega will provide Provider with access to Launchpad and their Provider Application(s), which Providers can make available to Subscribers, all in accordance with the terms of this Agreement, the Order(s) and the Documentation.
(a) Maintenance and Technical Support. Provider will provide helpdesk and first-line technical support to its Subscribers. Provider will be supported with Launchpad as defined in the ‘Service Availability and Support for Launchpad’ section of the Documentation. Subscribers will not have access to Launchpad support tools. Pega may implement updates to Launchpad at its sole discretion on a case-by-case basis.
5. License Grants; Ownership.
(a) Provider Access. Subject to the terms and conditions of this Agreement, Pega grants to Provider a non-exclusive, non-transferable, fee-bearing license to access and use Launchpad in accordance with this Agreement, the Documentation and the Order(s).
(b) Subscriber Access. Subject to the terms and conditions of this Agreement, Pega grants to Provider a non-exclusive, non-transferable, fee-bearing license to grant Subscribers a non-exclusive, limited right to access Launchpad for the sole purpose of using Provider Application(s). All use of Provider Application(s) by Subscribers shall be subject to the Subscriber’s acceptance of the terms and conditions of the Provider’s End User Subscription Agreement which shall include the terms and conditions set forth in Exhibit B and any other terms and conditions necessary for Provider to comply with its obligations under this Agreement. Provider agrees to update its End User Subscription Agreement to reflect any additional or different terms and conditions which may be provided by Pega to Provider from time to time. If any Subscriber fails to perform any material obligation with respect to the End User Subscription Agreement, Provider shall promptly notify Pega and cooperate with Pega to protect and enforce Pega’s rights and title with respect to Launchpad.
(c) Restrictions.
i. Provider’s use of Launchpad and the Documentation will comply with the terms and conditions of this Agreement and the Acceptable Use Policy.
ii. Provider shall not: (a) distribute, transfer, sell, license or otherwise make available Launchpad; (b) customize, modify, enhance, create derivative works of, or otherwise exploit Launchpad or the Documentation other than as expressly permitted by this Agreement or as approved by Pega in writing on a case-by-case basis; or (c) use the functionality of Launchpad for its own internal business operations unless otherwise set forth in a specific Order.
iii. Provider will not, and will not cause or permit, Subscribers or others to, rent, sell, lease, lend, convey, redistribute, sublicense or otherwise provide any third party with access to or use of Launchpad or the Documentation, except as expressly permitted by this Agreement.
iv. Provider agrees that except as may be expressly permitted by applicable law, Provider will not cause or permit the reverse engineering, translation, or disassembly of Launchpad. Provider shall not remove, obscure, or alter any Pega or other proprietary rights notice affixed to or contained within Launchpad.
v. Provider will not, and will not cause or permit Subscribers or others to, (a) damage, disrupt or impede the operation of, or gain unauthorized access to or use of Launchpad; (b) circumvent, disable or modify any security mechanisms used by Pega; (c) use any robot, spider, site search/retrieval application or other device to retrieve or index any content or data included in Launchpad/Provider Application(s) or to collect information on other users; or (d) introduce to Launchpad or Provider Application(s) any viruses, worms, defects, Trojan horse, time bombs, or other programming that may damage, detrimentally interfere with, surreptitiously intercept or expropriate any system, data or other personal information.
vi. Provider will not publish or disseminate any results of benchmark or other testing run on Launchpad or Provider Application(s) without Pega’s prior written approval.
(d) Intellectual Property Protection. Provider will immediately bring to the attention of Pega via written notice any improper or wrongful use of Launchpad, Provider Application(s), the Documentation, the Pega Marks, or any other Intellectual Property Rights of Pega of which Provider becomes aware. Provider shall not adopt, use or attempt to register any trademarks or trade names that are confusingly similar to the Pega Marks or in such a way as to create combination marks with the Pega Marks. Provider shall not use any Pega Marks in any manner that could disparage, tarnish, or otherwise damage Pega’s reputation or brand. Any use of Pega Marks shall comply with trademark guidelines found at https://www.pega.com/about/media-resources/trademark-guidelines. Provider represents and warrants that it shall not use or combine any open-source software or third-party software with or in conjunction with Launchpad that would require Pega to make any of its software publicly available under any open-source license or other third-party license.
(e) Press Releases. All press and media releases by Provider referencing Launchpad must be approved in writing by Pega prior to the release thereof.
(f) Ownership.
i. Launchpad and Documentation are licensed, not sold to Provider. As between the parties, all right, title, and interest in and to any Intellectual Property Rights in or related to Launchpad and the Documentation shall at all times remain with Pega and its licensors. All rights not expressly granted under this Section 5 are reserved to Pega. For the avoidance of doubt, and subject to Pega’s Intellectual Property Rights set forth above, Pega shall have no rights in or to the specific Rulesets that Provider develops as part of the Provider Application built on Launchpad.
ii. If and to the extent that Provider acquires any ownership interest in or to any technology or Intellectual Property Rights in or related to Launchpad or the Documentation, Provider assigns all such interests and rights to Pega.
6. Use of Pega GenAI
(a) As part of Launchpad, Pega will provide Provider with a license to use Pega GenAI to develop, test or use Pega GenAI within the scope of the Provider Application. Provider’s use of Pega GenAI shall be in accordance with the Documentation and Acceptable Use Policy and the terms of this Agreement and the applicable Order.
(b) Provider acknowledges that certain reports and certifications provided by Pega may not be applicable to Pega GenAI. For a listing of available reports and certifications applicable to Pega GenAI, please refer to the detail provided in the Pega Trust Center (www.pega.com/trust).
(c) Pega GenAI utilizes prompts inputted by an end user. To use Pega GenAI, Provider must ensure prompts are appropriate and do not violate the Acceptable Use Policy or this Agreement. Provider shall not, and shall ensure end users do not, override any protections put in place by Pega.
(d) Provider acknowledges that, as of the Effective Date (as defined in Section 13), Pega GenAI utilizes third-party large language models (“LLM”). Provider’s use of Pega GenAI shall comply at all times with the LLM Terms.
(e) If Provider uses Pega GenAI Connect to build custom functionality, Provider shall provide sufficient detail of such custom functionality to Pega upon request to Pega. If Pega determines that such custom functionality is not an appropriate use of Pega GenAI, then Provider shall alter or no longer use such custom functionality. Pega may limit or turn off access to Pega GenAI for any non-appropriate use in Pega’s discretion.
(f) Provider’s use of Pega GenAI will comply with the terms of this Agreement, the Documentation, and Acceptable Use Policy.
(g) Pega does not own results from Provider’s use of Pega GenAI. Provider understands and acknowledges that Generative AI systems, including Pega GenAI, may produce similar responses to similar prompts or queries from multiple individuals, and that Provider’s rights in results may not be enforceable against third parties.
(h) Pega and its third-party providers own all right, title and interest to Pega GenAI.
(i) Provider acknowledges that Generative AI, including Pega GenAI, may produce odd, incorrect, inaccurate, or unintended results and such results may be offensive or discriminatory. Provider is responsible for their use of any results produced by Generative AI, including Pega GenAI.
(j) Provider shall be responsible for any use of Generative AI by Provider if such use involves an API key to access such Generative AI obtained by Provider.
7. Subscriber Data and Security
(a) Provider represents and warrants that it has complied, and will throughout the term of Provider’s use of Launchpad and Provider Application(s) comply, with all applicable data privacy laws and regulations in relation to Subscriber Data, including, without limitation, that it has provided any necessary notices and obtained any necessary consents relating to Provider’s collection and use in relation to Launchpad and Provider Application(s) of such Subscriber Data.
(a) During the term of this Agreement, Pega will conform with the Security Standards describing Pega’s information and physical security program (attached as Exhibit A to this Agreement).
(b) During the term of Provider’s use of Launchpad, each party will comply with its respective obligations set forth in the Provider Responsibilities, which are incorporated by reference.
(c) To the extent the Provider’s use of Launchpad involves the processing by Pega of Subscriber Data which includes PII on Provider’s behalf, the Launchpad DPA is incorporated by reference. If Provider or Subscriber will include in Subscriber Data any PII then Provider will identify the categories of data subjects and the types of data to be processed to facilitate each party’s compliance with its respective obligations under applicable laws. If Provider has not yet defined the categories of data subjects or types of data to be processed, Provider agrees to provide such information in writing to Pegasystems prior to using Pega Launchpad to process such data. Provider will update Pegasystems in writing if there are any changes to the categories of data subjects and the types of data to be processed during the Term.
(d) Pega and Provider agree that each party may store, access, and process the other party’s Business Contact Data for the purpose of performing any obligations under this Agreement. Each party may share the other party’s Business Contact Data with its contractors, partners, assignees and others acting on such party’s behalf under this Agreement.
8. Fees; Payment.
(a) Fees. Provider agrees to pay Pega the fees for Launchpad as set forth in the applicable Order (the “Fees”). Provider shall have full discretion to set its own prices for Subscriber subscriptions to any Provider Application.
(b) Payment. All Fee amounts are due and payable in accordance with the terms in the applicable Order. All overdue amounts shall bear interest at the rate of 0.667% per month or the maximum legal rate, if less. Payments shall be in U.S. dollars. Pega reserves the right to suspend service entirely should Provider be more than thirty (30) days past due on any payment. Provider’s payment to Pega is not contingent on Provider’s receipt of payment from its Subscriber. Each Order will be non-cancelable and non-refundable, except to the extent expressly provided in this Agreement or such Order or under applicable law.
(c) Payment Method. Provider may remit payment for the Fees via (i) ACH payment, (ii) credit or debit card or (iii) any other payment method approved in writing by Pega. Provider authorizes Pega to automatically initiate an ACH debit or credit card transaction, as may be elected by Provider on the Order, for the full amount of Fees due on a monthly basis. In the event such a payment fails for any reason (including but not limited to a dispute or chargeback), Provider authorizes Pega to collect all such Fees due via any other payment method indicated on the Order.
(d) Taxes. Unless otherwise provided in the applicable Order, the fees do not include any governmental excise, sales, use, personal property, value-added, income or ad-valor taxes, levies, duties or fees of any type or amount (collectively, the “Taxes”). Any and all such Taxes payable in connection with the sale or delivery of Launchpad or any other Pega or Provider products or services shall be in addition to such fees and prices and shall be the sole responsibility of the Provider. If Provider is required to deduct or withhold any Taxes from any payment due to Pega, then (i) the amount payable to Pega shall be increased as necessary so that after making all required deductions (including deductions applicable to additional sums payable under this Section 8(c)), Pega receives an amount equal to the amount it would have received had no such deductions been made, (ii) Provider shall make such deductions, (iii) Provider shall pay the full amount deducted to the relevant governmental authority in accordance with applicable law, and (iv) Provider shall promptly provide Pega satisfactory evidence of such payment upon request. Provider shall indemnify and hold Pega harmless from and against any such Taxes.
9. Limited Warranties and Representations.
(a) Limited Launchpad Warranty. Pega represents and warrants to Provider that Launchpad will operate substantially in accordance with the Documentation during the term of the Order(s). If there is any failure of this warranty which can be replicated or verified, Pega will, at its election, either promptly repair Launchpad to resolve such failure or terminate Launchpad and provide a refund for any pre-paid unused fees for the remaining portion of the then current term of any Order(s) to which the breach relates. These remedies will be Provider’s exclusive remedy for any failures of these warranties. To invoke the remedies described in this Section 9(a), Provider must provide written notice to Pega within the applicable warranty period, expressly outlining the nature of the alleged failure or breach. Pega will have no obligation to undertake correction of errors or performance degradation caused by (i) modification of Launchpad by Provider or any third party; (ii) the Provider Application(s); or (iii) the combination or use of Launchpad furnished hereunder with materials or services not furnished by Pega (including the Provider Application). No disruptive or corrupting software that would damage, disable or compromise the security of a Provider Application will be intentionally or knowingly introduced into Launchpad by Pega or its employees.
(b) Disclaimer of Warranties. EXCEPT AS SET FORTH IN SECTION 9(a) ABOVE, LAUNCHPAD AND ANY OTHER SERVICES PROVIDED BY PEGA ARE PROVIDED “AS IS,” AND PEGA DISCLAIMS ANY AND ALL OTHER WARRANTIES, EXPRESS OR IMPLIED, WITH REGARD THERETO, INCLUDING BUT NOT LIMITED TO ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE AND NON-INFRINGEMENT. PEGA FURTHER DISCLAIMS ANY WARRANTY THAT LAUNCHPAD WILL MEET PROVIDER’S OR ANY SUBSCRIBER’S REQUIREMENTS, WILL OPERATE IN ALL THE COMBINATIONS WHICH MAY BE SELECTED FOR USE BY PROVIDER OR ANY SUBSCRIBER, OR THAT THE OPERATION OF LAUNCHPAD WILL BE ERROR FREE OR UNINTERRUPTED OR THAT ALL ERRORS WILL BE CORRECTED OR REPAIRED.
(c) No Warranty Pass Through. Provider shall not be entitled to make or pass through any warranties to any third parties regarding Launchpad. Provider shall be responsible for all representations and warranties it makes to Subscribers regarding the Provider Application(s). Provider indemnifies and holds Pega harmless from and against any liabilities, losses, damages, costs and expenses, including attorneys’ fees and costs, incurred by Pega resulting from any claims based on or related to any representation or warranty made by Provider regarding Launchpad or the Provider Application(s) that was not specifically authorized in writing by Pega.
10. Limitation of Liability.
(a) Each party will have unlimited liability to the other party under this Agreement for actual, direct damages arising out of, or related to:
i. a party’s obligation to indemnify the other party for third party claims under Section 11 of this Agreement (including related reasonable attorneys’ fees and court costs); or
ii. a breach of a party’s confidentiality obligations under Section 12 of this Agreement or a party’s infringement or misappropriation of the other party’s intellectual property rights.
(b) Notwithstanding anything to the contrary in Section 10(a)(ii) or elsewhere in this Agreement, Pega’s liability for damages related to Subscriber Data shall be limited to actual direct damages in the amount of up to two times the fees received by Pega from Provider in the prior twelve (12) months in connection with the Order under which such damages arose, or to which such damages relate.
(c) Each party’s liability for all other claims or damages arising under, or related to, this Agreement (regardless of the type of damages, and whether for breach of contract, breach of warranty, tort or otherwise) will be limited to the amount of fees received by Pega from Provider in the prior twelve (12) months in connection with the Order(s) under which such damages arose, or to which such damages relate (except any claim by Pega for payments owed by Provider will be limited to the amount owed plus any additional amounts owed for use that exceeds the Scope of Use described in the Order(s)).
11. Indemnification.
(a) Pega Indemnity.
i. Pega will indemnify and defend Provider against any third-party claim that Launchpad infringes any United States, Australian, Canadian or European Union trademark, copyright, trade secret or patent (“IPR”). In the event Launchpad is found to be infringing or if Pega deems it advisable as the result of a claim or threatened claim, Pega will, in its reasonable discretion (a) procure for Provider the right to continue using Launchpad; (b) replace or modify Launchpad so that it becomes non-infringing; or (c) if (a) and (b) are not reasonably practicable as determined by Pega in its discretion, terminate this Agreement as to the infringing Launchpad service. These remedies will be Provider’s sole remedy for any IPR infringement claim.
ii. Pega shall have no liability for any claim of infringement based on or arising from (a) use of any version other than the latest version of Launchpad made available to Provider, to the extent the infringement would have been avoided by use of such version; (b) modification of Launchpad by Provider or any third party; (c) misuse of the Provider Application or Launchpad by Subscribers; (d) the Provider Application(s) or (e) the combination or use of the Launchpad furnished hereunder with materials or services not furnished by Pega (including the Provider Application), to the extent such infringement would have been avoided by use of Launchpad alone (the “Excluded Activities”).
iii. PEGA OBLIGATIONS IN THIS SECTION 11(a) SHALL BE ITS SOLE AND EXCLUSIVE LIABILITY TO PROVIDER, AND PROVIDER’S SOLE AND EXCLUSIVE REMEDY, WITH RESPECT TO ANY CLAIM OF INFRINGEMENT OF INTELLECTUAL PROPERTY RIGHTS INVOLVING LAUNCHPAD.
(b) Provider Indemnity. Provider shall indemnify, defend and hold Pega, its officers, directors, employees, shareholders and agents harmless from and against any and all liabilities, losses, damages, claims, demands, costs and expenses (including reasonable attorneys’ fees) incurred or suffered by Pega as the result of (i) any material breach of this Agreement by Provider; (ii) any acts, omissions or breaches of any other agreements or commitments by Provider, including any agreements relating to the Provider Applications and Provider’s services; (iii) any claim against Pega, including from any Subscriber, related to the Provider Application(s) or any Provider services; (iv) any claim against Pega that the Provider Application(s) or any Provider services infringes any patent, trademark, copyright, trade secret or other third-party intellectual property rights; or (v) the Excluded Activities.
(c) In asserting any claim for indemnification, the relevant party must provide prompt written notice describing the claim and cooperate fully with the indemnifying party. The indemnifying party will be entitled to control any proceedings or litigation for which it is indemnifying the other party, except that the indemnifying party will not, without the other party’s prior written consent (not to be unreasonably withheld), enter into any settlement that would require the other party to take any action, or refrain from taking any action, other than permitting the indemnifying party to pay money damages on its behalf.
12. Confidentiality.
(a) Each party agrees that any Confidential Information is the exclusive proprietary property of the disclosing party or its licensors and may include trade secrets and other highly confidential information.
(b) Each party agrees to receive and hold any Confidential Information supplied by the other party in confidence and agrees:
i. not to disclose or publish any such Confidential Information to third parties except as provided in Section 12(c)(iii);
ii. not to use any such Confidential Information except for those purposes specifically authorized by the disclosing party;
iii. to disclose such Confidential Information only to those of its officers, directors, agents, subprocessors and employees who have a need to know, have been advised of the confidential nature of the Confidential Information, and who are under obligations of confidentiality to the receiving party; and
iv. to follow the other party’s reasonable on-site security procedures.
(c) The above confidentiality provisions will not apply to information that:
i. is in the public domain at the time of its disclosure;
ii. is disclosed with the prior written consent of the disclosing party;
iii. becomes known to the receiving party from a source other than the disclosing party, provided such source is legally entitled to have and disclose the information; or
iv. is independently developed by a receiving party without use of the Confidential Information of the disclosing party, as demonstrated by written records of such receiving party.
(d) In the event that a receiving party is required by a court of law or by a governmental, regulatory or administrative agency, body or tribunal to disclose any of the Confidential Information of a disclosing party, the receiving party shall (i) provide the disclosing party with prompt prior written notice of such requirement so that the disclosing party may seek appropriate relief to prevent or limit such disclosure, and (ii) furnish only that portion of the Confidential Information which is legally required to be furnished or disclosed.
(e) If, in connection with Launchpad, Provider communicates suggestions for improvements to Launchpad, Provider assigns to Pega all of its right, title and interest (including all intellectual property rights) in such suggestions for improvements and Pega will own all right, title, and interest in and to the same and shall be entitled use the same without restriction.
13. Term and Termination.
(a) Term. This Agreement shall begin on the date when Provider clicks the acceptance button to these terms and conditions (“Effective Date”) and, unless earlier terminated in accordance with this Agreement, shall remain in place while any Order remains in effect.
(b) Termination Rights.
i. Upon any material breach of this Agreement that is not cured during a thirty (30) day period following written notice thereof from the non-breaching party to the other party, the non-breaching party may, on five (5) days’ written notice and without prejudice to any of its other rights and remedies, terminate this Agreement.
ii. Pega may terminate this Agreement on ten (10) days’ written notice, if Provider sells all or substantially all of its stock or assets to, or merges with or into another corporation or entity in which the surviving entity is, a direct competitor of Pega, as determined by Pega in its sole but reasonable discretion.
(c) Effects of Termination. Upon the effective date of any expiration or termination of this Agreement, regardless of cause, (i) all of Provider’s rights to market and access the Provider Application(s) and for Subscribers to access the Provider Application(s) shall immediately and automatically cease (unless and to the extent otherwise agreed by Pega in writing); and (ii) Provider shall immediately return to Pega, or at Pega’s request, destroy, without the retention of copies in any media, Documentation, marketing materials, Confidential Information and any other property of Pega in Provider’s possession or under its control, including any possession by any employee, consultant, agent or representative of Provider. Upon termination of the Agreement or any Order (other than for termination due to Pega’s breach of the Agreement), the payment obligation for all fees for the full applicable term will be paid to Pega at the time of termination of this Agreement or the Order.
(d) Survival. Notwithstanding any termination or expiration of this Agreement, the provisions of Sections 5(c) (Restrictions), 5(d) (Intellectual Property Protection), 5(f) (Ownership), 8 (Fees; Payment), 9(b) (Disclaimer of Warranties), 9(c) (No Warranty Pass Through), 10 (Limitation of Liability), 11 (Indemnification), 12 (Confidentiality), 13(c) (Effects of Termination), 13(d) (Survival), and 14 (General), shall survive any expiration or termination of this Agreement.
14. General
(a) Force Majeure. Neither party will be responsible for any failure or delay of performance, other than for an obligation to pay money, due to causes beyond its reasonable control, including, without limitation, acts of God or nature; pandemics; labor disputes; sovereign acts of any federal, state or foreign government; or shortage of materials (each, a “Force Majeure Event”).
(b) Independent Contractors. Pega and Provider are independent contractors and will so represent themselves in all regards. Neither party may bind the other in any way. Nothing in this Agreement will be construed to make either party the agent or legal representative of the other or to make the parties partner or joint venturers.
(c) Assignment. Provider may not assign this Agreement or the rights and licenses granted to Provider hereunder, whether by operation of law or otherwise, without the prior written consent of Pega, which consent will not be unreasonably withheld. Any purported assignment in contravention of this section is null and void and shall be deemed a material breach of this Agreement. A transfer of a controlling interest in the equity of Provider shall be deemed an assignment for purposes of this subsection. Pega may freely assign this Agreement without notice to or the consent of Provider. Subject to the foregoing, this Agreement will bind and inure to the benefit of any successors or assigns.
(d) Anti-Corruption. Pega and Provider each represent and warrant to the other: (i) that it is aware of all anti-corruption legislation that applies to this Agreement and in particular the US Foreign Corrupt Practices Act 1977 and the U.K. Bribery Act 2010; (ii) it has implemented rules and procedures that enable it to comply with this legislation and adapt to any future amendments thereto; (iii) it has implemented appropriate rules, systems, procedures and controls for preventing the commission of Corrupt Acts, either by itself or its staff, and for ensuring that any evidence or suspicion of the commission of a Corrupt Act will be thoroughly investigated and unless prohibited by confidentiality or law, reported to the other party; (iv) its records relating to its business, including accounting documents, are maintained and kept so as to ensure their accuracy and integrity; and (v) it has not made or offered or received or been offered any illegal or improper bribe, kickback, payment, gift, or thing of value from any of the other party’s employees or agents in connection with this Agreement (reasonable gifts and entertainment provided in the ordinary course of business do not violate the above restriction). If either party learns of any violation of the above restrictions, it will use reasonable efforts to promptly notify the other party at the address for notices in above.
(e) Export Compliance. The export and re-export of Launchpad (including, for the avoidance of doubt, any Provider Application) is subject to the export control and sanctions laws, regulations, and orders of the United States, including but not limited to the Export Administration Regulations (“EAR”), International Traffic in Arms Regulations (“ITAR”), and regulations and orders administered by the Treasury Department’s Office of Foreign Assets Control (“OFAC”) (collectively, “Export Control Laws”). Provider agrees that it will not export, reexport, or transfer Launchpad to, allow access to Launchpad by, or use Launchpad in connection with transactions or dealings involving, persons (a) on lists of sanctioned or restricted parties maintained by the U.S. government, including but not limited to OFAC, the Commerce Department, or the State Department or (b) operating, organized, or resident in countries or territories that are the target of U.S. sanctions (currently, Cuba, Iran, Syria, North Korea, the Crimea region of Ukraine, and the so-called Donetsk People’s Republic and so-called Luhansk People’s Republic regions of Ukraine). Further, Provider agrees that it will not export, reexport, or transfer Launchpad to any party, allow a party to access to Launchpad, or otherwise use Launchpad in violation of Export Control Laws. The export and re-export of Launchpad may also be subject to export and import controls under the laws and regulations of other countries. Provider agrees, at all times, to comply fully with the Export Control Laws and the local export and import controls of other countries.
(f) U.S. Government Contracts. This subsection applies when Launchpad is acquired directly or indirectly by or on behalf of the United States Government: Launchpad is a commercial product, licensed on the open market; developed entirely at private expense; and without the use of any U.S. Government funds. Use, duplication or disclosure by the U.S. Government is subject to restrictions as set forth in subparagraph (c) of the Commercial Computer Software Restricted Rights clause at FAR 52.227-19. Use, duplication and disclosure by DOD agencies is subject solely to the terms of this Agreement as stated in DFARS 227.7202.
(g) Cooperation; Usage and Distribution Validation. Pega and Provider agree that each will execute and deliver documents, including confirmations to Pega’s auditors, and take such other actions as may reasonably be requested to achieve the transactions contemplated by this Agreement. Pega, at its sole expense, reserves the right, upon reasonable prior notice and without interfering with Provider’s business activities, to validate (i) Provider’s usage and distribution of Launchpad, and each Subscriber’s usage of Provider Application(s), including without limitation having reasonable access to system generated files from Subscribers and the Provider Application(s), and (ii) Provider’s compliance under this Agreement sufficient to show all related financial treatment and accounting for related transactions. Provider agrees to maintain sufficient, written records during the term of this Agreement and for at least three (3) years after the expiration of this Agreement to permit Pega to validate the items in (i) and (ii) above. Pega shall not have access to any of Provider’s trade secrets, proprietary tools, methodologies, or any components of Provider’s fixed sums, rates, mark-up, or internal cost information, and Provider shall be entitled to withhold or redact materials relating to such items or information.
(h) Notices. Any notices under this Agreement will be in writing and sent by certified mail, return receipt requested, or by a nationally or internationally recognized overnight delivery service, to the business address stated in this Agreement or to such other address as such party may have specified to the other in writing.
Provider: Address provided by Provider in the Launchpad Subscription Page
Pega: Pegasystems Inc.
225 Wyman St.
Waltham, MA 02451 USA
Attention: Chief Legal Officer
(i) No Waiver. Neither a failure of a party to exercise any power or right under this Agreement, nor a custom or practice of the parties with regard to the terms or performance under this Agreement, will constitute a waiver of the rights of such party to demand full compliance with the terms of this Agreement.
(j) Entire Agreement. This Agreement, its Exhibits and the Order(s) constitute the entire understanding of the parties and supersedes all previous agreements, statements and understandings from or between the parties regarding the subject matter of this Agreement. This Agreement also supersedes any conflicting language contained in any applicable past or future purchase order(s) regarding the subject matter of this Agreement. In the event of any conflict between the terms of this Agreement and the terms of any Order, the terms of the applicable Order will control.
(k) Amendments. Pega may, at any time, in its sole discretion, amend this Agreement, upon notice to Provider. Any such updates or changes to this Agreement will, unless otherwise expressly specified by Pega, be effective immediately upon [the amended Agreement being posted at Launchpad.io/terms-and-conditions. Should Provider not wish to agree to the terms and conditions of the amended Agreement, Provider’s sole recourse is to terminate this Agreement upon written notice to Pega. Provider’s continued use of Launchpad following any such amendment will constitute Provider’s acceptance of the amended terms and conditions of this Agreement.
(l) Enforceability. If any portion of this Agreement is declared by a court of competent jurisdiction to be overbroad or unenforceable, the remainder of this Agreement will be valid and enforceable to the fullest extent permitted.
(m) Counterparts. This Agreement may be signed in counterparts, including facsimile or PDF counterparts or electronic signatures, each of which will be a legally binding method of execution of this Agreement.
(n) Governing Law. This Agreement shall be governed by the laws of the Commonwealth of Massachusetts, excluding its conflicts of laws provisions.
EXHIBIT A
SECURITY STANDARDS
1. Security Practices & Review
1.1. Pega shall maintain an information and physical security program for the protection of Provider and Subscriber personal information and confidential information in environments and on equipment controlled by Pega (the “Pega Security Program”).
1.2. Pega regularly re-evaluates and updates the Pega Security Program as the industry evolves, new technologies emerge, or new threats are identified. Upon request, Pega will maintain and make available on at least an annual basis, a reasonable information security questionnaire completed with answers concerning Pega Security Program specific to the services provided under the applicable Order.
1.3. The Pega Security Program consists of the following:
1. Physical Access
Pega maintains physical security standards designed to prohibit unauthorized physical access to Pega facilities and equipment. This is accomplished by the following practices:
• physical access to locations is limited to Pega employees, subcontractors and authorized visitors;
• Pega employees, subcontractors and authorized visitors are issued identification cards that must be worn while on premises;
• monitoring access to Pega facilities, including restricted areas and equipment within Pega facilities;
• all access to the data centers where Subscriber personal data is hosted is logged, monitored, and tracked; and
• data centers are secured with alarm systems and video cameras.
2. Access Control and Administration
Pega maintains the following standards for access control and administration in environments and on equipment controlled by Pega or Pega contractors.
• administrator accounts are only be used for the purpose of performing administrative activities;
• each account with administrative privileges must be traceable to a uniquely-identifiable individual;
• all access to computers and servers must be authenticated and within the scope of an employee’s job function;
• initial passwords must be changed by the user on first use;
• the display and printing of passwords must be masked, suppressed, or otherwise obscured such that unauthorized parties will not be able to observe or subsequently recover them;
• passwords must be uniquely identifiable to an individual;
• passwords must be encrypted when transmitted or stored;
• password complexity should never be less than three (3) out of four (4) character classes and must have character class choices such as upper-case letters, lower case letters, numeric digits, or special characters;
• passwords must not contain three (3) or more identical consecutive characters;
• password length must be configured to be at least twelve (12) characters;
• passwords shall expire between ninety (90) and one hundred eighty (180) days depending on its length; twelve (12) characters – ninety (90) days, sixteen (16) characters – one hundred thirty-five (135) days, twenty plus (20+) characters – one hundred eighty (180) days;
• automatic time-out of access to computers and servers if left idle with the requirement for password authentication for re-access; and
• per Pega policy, accounts must be set to lockout after six (6) erroneous failed login attempts.
3. Virus Scanning and Logging
• Computers and servers have commercially reasonable up-to-date versions of system security software which may include host firewall, anti-virus protection and up-to-date patches and virus definitions. Such software is configured to scan for and promptly remove or fix identified findings.
• Pega maintains logs of various components of the infrastructure and an intrusion detection system to monitor, detect, and report misuse patterns, suspicious activities, unauthorized users, and other actual and threatened security risks.
4. Encryption
• Pega encrypts all data in transit over public networks.
• Data originating from or residing within Pega networks is encrypted at rest.
2. Pega Personnel
2.1. Employees and contractors are required by policy to be trained on Pega’s privacy and security policies and made aware of their responsibilities regarding privacy and security practices.
2.2. Pega employees and contractors are contractually bound to maintain the confidence of Provider and Subscriber personal information or confidential information and comply with applicable Pega policies, standards or requirements in relation to the processing of Provider and Subscriber personal information. Failure to comply with those policies, standards or requirements will be subject to investigation which may result in disciplinary action up to and including termination of employment or engagement by Pega and legal action as appropriate.
1. Security Breach Notification and Security Incident Management
1.1. Pega will notify Provider within twenty-four (24) hours of becoming aware of a confirmed Security Incident. A “Security Incident” means the unauthorized access to or use of Provider or Subscriber information on environments or equipment controlled by Pega affecting the confidentiality, availability and integrity of such Provider or Subscriber confidential information. Pega will provide Provider with updates on the status of the Security Incident until the matter has been remediated. The reports will include, without limitation, a description of the Security Incident, actions taken and remediation plans.
• Notice of a Security Incident shall be sent via email to the security contacts that Provider designates.
• Similarly, if Provider becomes aware of a Security Incident that affects the Services, Provider shall, without undue delay, notify Pega of such and inform Pega of the scope of the Security Incident. Such notice from Provider to Pega should be provided to: [email protected] and/or 1-617-866-6800.
3.2 Proportionate to acts or omissions of Pega resulting in a Security Incident, and subject to terms and limitations set forth in the Agreement, Pega agrees to pay reasonable costs for: (i) required notice to individuals affected by the Security Incident; and (ii) credit monitoring service for twelve (12) months for affected data subjects, except to the extent applicable law specifies a longer period for applicable credit monitoring services, in which case such longer period shall then apply.
3.3 Pega will, at the request and cost of the Provider:
• Provide reasonable assistance to the Provider in notifying a Security Incident to the supervisory authority competent under the privacy laws applicable to the Provider; and
• Provide reasonable assistance to the Provider in communicating a Security Incident to data subjects in cases where the Security Incident is likely to result in a high risk to the rights and freedoms of individuals.
EXHIBIT B
END USER SUBSCRIPTION AGREEMENT TERMS AND CONDITIONS
Every End User Subscription Agreement shall include contractual provisions which:
1. Restrict the Subscriber's use of Provider Application(s) to use only within the scope of the applicable Order and only in object code form, and state that such usage rights do not transfer any ownership interest in Launchpad or Provider Application(s), and that the End User Subscription Agreement is terminable for uncured material breach. Except for the usage rights granted, all right title and interest in and to Launchpad and any derivatives, modifications and enhancements remain with Pega.
2. Prohibit any assignment, timesharing or rental of Provider Application(s), or its use by any third party other than the Subscriber. The Launchpad provided to Provider hereunder shall extend solely to Subscribers for their internal business use of Provider Application(s), and not for outsourcing or third-party processing as provided by the Agreement.
3. Prohibit any reverse engineering, disassembly, recompilation, modification, or duplication (except for routine back-up purposes) of Launchpad or Provider Application(s).
4. Disclaim the Subscriber’s right to assert claims for damages against, or recover damages from, Pega arising from the Subscriber’s use of Launchpad or Provider Application(s) by clearly stating that Provider is the party whom any claim or recovery by the Subscriber should be asserted against.
5. Require the Subscriber, at the termination of its End User Subscription Agreement, to immediately discontinue use of Launchpad and Provider Application(s) and immediately return to Provider all copies of any documentation provided pursuant to an End User Subscription Agreement or otherwise.
6. Prohibit publication or dissemination by the Subscriber of any results of benchmark or other testing run on Launchpad or Provider Application(s) without Pega’s prior written approval.
7. Require the Subscriber to maintain the non-public and proprietary character of Launchpad and Provider Application(s).
8. Require the Subscriber to comply fully with all applicable laws and regulations (including relevant export U.S. restrictions, regulations to assure that Launchpad is not, directly or indirectly, provisioned or exported in violation of U.S. law, and all relevant anti-corruption legislation).
9. Require the Subscriber to not use shared User IDs, or aggregating technologies such as concentrators, multiplexers, gateways or edge servers, to avoid or reduce the counting of individuals that use Launchpad or Provider Application(s).
10. Reserve the right to validate Subscriber’s usage of Provider Application(s) and its compliance under the terms of this Exhibit B, including audit and other usage validation rights, including having access to system generated files from Subscriber applications.
11. Disclaim Pega’s liability for any direct, indirect, incidental, special, punitive, or consequential, (including any loss of profits, revenue, use, or data, arising from the use of Launchpad or Provider Application(s)).
12. Disclaim any warranties, express or implied, from Pega to the Subscriber, including, without limitation, implied warranties of merchantability, fitness for a particular purpose, title, or non-infringement.
13. Require Subscriber to comply, throughout Subscriber’s use of the Provider Application(s), with all applicable data privacy laws and regulations in relation to Subscriber Data, including, without limitation, to provide any necessary notices and obtain any necessary consents relating to Subscriber’s collection and use in relation to Launchpad or Provider Application(s) of such Subscriber Data.
14. To the extent the Subscriber’s use of the Provider Application(s) involves the processing by Pega of Subscriber Data which includes PII on Subscriber’s behalf, require that a DPA including sufficient data privacy protections be incorporated by reference.
15. Reserve Pega’s right to store, access, and process the Subscriber’s Business Contact Data for the purpose of performing any obligations under this Agreement, and Pega’s right to share Subscriber’s Business Contact Data with its contractors, partners, assignees and others acting on Pega’s behalf under this Agreement.