SSL Certificate Services Agreement
Please read this agreement carefully, as it contains important information regarding your legal rights and remedies.
This Certificate Services Agreement (this “Agreement”) is entered into by and between Hiya Digital Private Limited, and you, and is made effective as of the date of electronic acceptance. This Agreement sets forth the terms and conditions of your use of the various SSL and code signing certificate services (“Services”) that we offer. Your electronic acceptance of this Agreement signifies that you have read, understand, acknowledge and agree to be bound by this Agreement, which incorporates by reference all of (i) our Universal Terms of Service Agreement, (ii) all relevant agreements, statements, practices and forms set forth in our Certificate Services Repository, and (ii) any plan limits, product disclaimers or other restrictions presented to you on the web security or certificates landing page of the Hiya Digital Private Limited website (this “Site”).
The terms “we”, “us” or “our” shall refer to Hiya Digital Private Limited. The terms “you”, “your”, “User” or “customer” shall refer to any individual or entity who accepts this Agreement and/or uses the Services. Unless otherwise specifically provided in this Agreement, nothing in this Agreement shall be deemed to confer any third-party rights or benefits.
You acknowledge and agree that (i) Hiya Digital Private Limited, in its sole and absolute discretion, may change or modify this Agreement, and any policies or agreements which are incorporated herein, at any time, and such changes or modifications shall be effective immediately upon posting to this Site, and (ii) your use of this Site or the Services found at this Site after such changes or modifications have been made shall constitute your acceptance of this Agreement. If you do not agree to be bound by this Agreement, do not use (or continue to use) this Site or the Services found at this Site. In addition, Hiya Digital Private Limited may occasionally notify you of changes or modifications to this Agreement by email. It is therefore very important that you keep your customer account profile information, including your email address, current and up to date. Hiya Digital Private Limited assumes no liability or responsibility for your failure to receive an email notification if such failure results from an inaccurate or out-of-date email address.
You agree to adhere to following respective brand / product Terms and Conditions, available at respective website, and that are incorporated herein and made a part of this Agreement by reference.
The SSL Store Terms at https://www.thesslstore.in/termsandconditions.aspx
Comodo SSL Certificates Terms at https://ssl.comodo.com/terms.php
Symantec / DigiCert SSL Certificates Terms at https://www.websecurity.symantec.com/legal/terms
GeoTrust SSL Certificate Terms at https://www.geotrust.com/resources/repository/legal/
Thawte SSL Certificate Terms at https://www.thawte.com/repository/
Rapid SSL Certificate Terms at https://www.rapidssl.com/legal/index.html & https://www.rapidssl.com/resources/pdfs/RapidSSL_Subscriber_Agmt_v2.0.pdf
2. DESCRIPTION OF SERVICES
We offer various “web security” services, including SSL and code signing certificates services. Each of these are further described below and are governed by individual agreements with a specific set of terms and conditions referenced and incorporated herein, as well as various practice and policy statements that govern the services generally. All Services are governed by our Certification Policy and Certification Practice Statement. To the extent applicable, Services may also be subject to terms and conditions of our SSL Certificate Service Relying Party Agreement.
SSL Certificates. Any SSL certificate you purchase from us or our partners or affiliates is subject to and is intended for its specific use as described in the SSL Certificate Service Subscriber Agreement, or, if an extended validation certificate, by the terms the Extended Validation Certificate Service Subscriber Agreement. For Premium (EV) certificates, there is an extensive vetting process that starts with an in-depth application that will require you to provide details about your business, such as registration number, incorporation or registration agent and any relevant jurisdiction information.
If you are using an SSL certificate on a website hosted by us, we will generate and securely store a corresponding private key. For security reasons, at no time will we release your private key, even per your request. If you wish to export your SSL certificate for use on any other hosting provider server, request a re-key of the SSL certificate – your current SSL certificate will become invalid and we will issue a new certificate for use on your other hosting provider server.
SSL Certificates Term. A new regulatory introduced by CAB Forum in July 2017 requires that all SSL certificates issued on or after March 1, 2018 be no more than 27 months validity. As such, you will have to re-validate and re-issue certificates that are longer than 2 years as long as the SSL certificate has an active subscription.
You will validate, issue/re-issue and install/reinstall the certificate every one/two years depending on duration of you subscribing required certificate. We will notify you when to take action via the product dashboard and email.
Code Signing Certificates. Any Code Signing certificate you purchase from us or our partners or affiliates is subject to and is intended for its specific use as described in the Code Signing Certificate Service Subscriber Agreement. After you purchase a Code Signing Certificate, you need to take all reasonable measures necessary to maintain sole control of, keep confidential, and properly protect at all times Your Private Key that corresponds to the Public Key to be included in the requested Certificate(s) (and any associated activation data or device – e.g. password or token) and ensure that, at a minimum, the Private Key is stored on a USB token that is physically separate from the device that hosts the code signing function until a signing session is begun. Provide a certificate signing request (CSR) from the computer that is signing the code. Be sure to request the certificate using the computer and the account (typically Administrator) you will use to sign the code. Requesting the certificate creates a private key on the computer that you must associate with the code signing certificate when you install it. Depending on the use of the certificate, you can create the CSR automatically, or you can use a tool like OpenSSL to generate the CSR. After you submit your request, we verify the company information you supplied. The Registration Authority (RA) might contact you to provide additional information, if required. You can monitor the validation process through your account. Once the Code Signing Certificate is issued, we’ll send you an email with a link to download and install the certificate file and any associated intermediate certificates.
3. TITLES AND HEADINGS; INDEPENDENT COVENANTS; SEVERABILITY
The titles and headings of this Agreement are for convenience and ease of reference only and shall not be utilized in any way to construe or interpret the agreement of the parties as otherwise set forth herein. Each covenant and agreement in this Agreement shall be construed for all purposes to be a separate and independent covenant or agreement. If a court of competent jurisdiction holds any provision (or portion of a provision) of this Agreement to be illegal, invalid, or otherwise unenforceable, the remaining provisions (or portions of provisions) of this Agreement shall not be affected thereby and shall be found to be valid and enforceable to the fullest extent permitted by law.
4. DEFINITIONS; CONFLICTS
Capitalized terms used but not defined herein shall have the meanings ascribed to them in the Universal Terms of Service Agreement. In the event there is a conflict between the provisions of this Agreement and the provisions of the Universal Terms of Service Agreement, the provisions of this Agreement shall control.