Last Revised: 4/12/2020
PLEASE READ THIS AGREEMENT CAREFULLY, AS IT CONTAINS IMPORTANT INFORMATION REGARDING YOUR LEGAL RIGHTS AND REMEDIES
This Certificate Services Agreement (this “Agreement”) is entered into by and between Heart Internet Limited, ("Heart"), and you, and is made effective as of the date you purchase the Services. This Agreement sets forth the terms and conditions of your use of the various SSL and code signing certificate services (“Services”) that we offer. Your electronic acceptance of this Agreement signifies that you have read, understand, acknowledge and agree to be bound by this Agreement, which incorporates by reference all of (i) theHeart Internet Ltd Terms and Conditions, (ii) all relevant agreements, statements, practices and forms set forth in our Certificate Services Repository, and (ii) any plan limits, product disclaimers or other restrictions presented to you on the security landing page of the Heart website (this “Site”).
The terms “we”, “us” or “our” shall refer to Heart. The terms “you”, “your”, “User” or “customer” shall refer to any individual or entity who accepts this Agreement and/or uses the Services. Unless otherwise specifically provided in this Agreement, nothing in this Agreement shall be deemed to confer any third-party rights or benefits.
You acknowledge and agree that (i) Heart, in its sole and absolute discretion, may change or modify this Agreement, and any policies or agreements which are incorporated herein, at any time, and such changes or modifications shall be effective immediately upon posting to this Site, and (ii) your use of this Site or the Services found at this Site after such changes or modifications have been made (as indicated by the “Last Revised” date at the top of this page) shall constitute your acceptance of this Agreement as last revised. If you do not agree to be bound by this Agreement as last revised, do not use (or continue to use) this Site or the Services found at this Site. In addition, Heart may occasionally notify you of changes or modifications to this Agreement by email. It is therefore very important that you keep your customer account (“Customer Account”) information, including your email address, current. Heart assumes no liability or responsibility for your failure to receive an email notification if such failure results from an inaccurate or out-of-date email address.
2. DESCRIPTION OF SERVICES
We offer various “web security” services, including SSL and code signing certificates services. Each of these are further described below and are governed by individual agreements with a specific set of terms and conditions referenced and incorporated herein, as well as various practice and policy statements that govern the services generally. All Services are governed by our Certification Policy and Certification Practice Statement. To the extent applicable, Services may also be subject to terms and conditions of our SSL Certificate Service Relying Party Agreement.
SSL Certificates. Any SSL certificate you purchase from us or our affiliates is subject to and is intended for its specific use as described in the SSL Certificate Service Subscriber Agreement, or, if an extended validation certificate, by the terms the Extended Validation Certificate Service Subscriber Agreement. For Premium (EV) certificates, there is an extensive vetting process that starts with an in-depth application that will require you to provide details about your business, such as registration number, incorporation or registration agent and any relevant jurisdiction information.
SSL Certificates Term. A new regulation introduced by a Certification Authority (an entity authorised to create, sign, distribute, and revoke certificates, as well as distributing certificate status information and providing a repository where certificates and certificate status information is stored) /Browser Forum requires that all SSL certificates issued on or after September 1, 2020 be valid for no more than 398 days.
When you purchase a SSL certificate, your subscription period begins on the date of purchase for 12 (twelve) months and is shown as the “Subscription Period” in Your Control Panel. Your SSL certificate is only valid from the date that your certificate is issued, and is shown as the “Current Certificate Validity Period” in Your Control Panel.
Code Signing Certificates. Any Code Signing certificate you purchase from us or our affiliates is subject to and is intended for its specific use as described in the Code Signing Certificate Service Subscriber Agreement. After you purchase a Code Signing Certificate, you need to take all reasonable measures necessary to maintain sole control of, keep confidential, and properly protect at all times Your Private Key (as defined in the Code Signing Certificate Service Subscriber Agreement) that corresponds to the Public Key (as defined in the Code Signing Certificate Service Subscriber Agreement) to be included in the requested Certificate(s) (and any associated activation data or device – e.g. password or token) and ensure that, at a minimum, the Private Key is stored on a USB token that is physically separate from the device that hosts the code signing function until a signing session is begun and provide a certificate signing request (CSR) from the computer that is signing the code. Be sure to request the certificate using the computer and the account (typically Administrator) you will use to sign the code. Requesting the certificate creates a private key on the computer that you must associate with the code signing certificate when you install it. Depending on the use of the certificate, you can create the CSR automatically, or you can use a tool like OpenSSL to generate the CSR. After you submit your request, we verify the company information you supplied. The Registration Authority (RA) might contact you to provide additional information, if required. You can monitor the validation process through your account. Once the Code Signing Certificate is issued, we'll send you an email with a link to download and install the certificate file and any associated intermediate certificates.
3. APPLICANT REPRESENTATIVE
4. TITLES AND HEADINGS; INDEPENDENT COVENANTS; SEVERABILITY
The titles and headings of this Agreement are for convenience and ease of reference only and shall not be utilized in any way to construe or interpret the agreement of the parties as otherwise set forth herein. Each covenant and agreement in this Agreement shall be construed for all purposes to be a separate and independent covenant or agreement. If a court of competent jurisdiction holds any provision (or portion of a provision) of this Agreement to be illegal, invalid, or otherwise unenforceable, the remaining provisions (or portions of provisions) of this Agreement shall not be affected thereby and shall be found to be valid and enforceable to the fullest extent permitted by law.
5. DEFINITIONS; CONFLICTS
Capitalized terms used but not defined herein shall have the meanings ascribed to them in the General Terms and Conditions. In the event there is a conflict between the provisions of this Agreement and the provisions of the Heart Internet Ltd Terms and Conditions, the provisions of this Agreement shall control.