This PRODUCTS AND SERVICES AGREEMENT (this “Agreement”) is incorporated by reference into the fully executed GPTW Order Form or GPTW Statement of Work (collectively, the “Principal Agreement“) between: (i) GPTW acting on its own behalf and as agent for each GPTW Affiliate (also referred as “Service Provider”); and (ii) Company acting on its own behalf and possibly as agent for each Company Affiliate (also referred as “Infosys”). GPTW and Company are each a “Party” and, collectively, the “Parties” to this Agreement.
WHEREAS, GPTW provides products and services assessing workplace culture, performance, certification, and accreditation to assist companies and organizations in evaluating and improving their workplaces; and
WHEREAS, Company wishes to engage GPTW to perform the Services (defined below) pursuant to the terms of this Agreement.
NOW, THEREFORE, in consideration of the promises and the mutual covenants contained herein and for other good and valuable consideration, the Parties hereto agree as follows:
GENERAL TERMS AND CONDITIONS
Capitalized terms not defined in this Section 1 have the meaning ascribed to them where used in the Agreement.
1.1 “Affiliate” means GPTW wholly-owned and majority-owned subsidiaries and Great Place to Work Institute, Inc. licensees with no ownership interest by GPTW.
1.2 “Aggregate Data” means (a) the Company-specific information, data, and content contained in any report(s) delivered by GPTW to Company pursuant to this Agreement; and (b) any other aggregated data that is derived from the Raw Data and that is delivered by GPTW to Company pursuant to this Agreement. For the avoidance of doubt, Aggregate Data does not include any Raw Data or Company Data.
1.3 “Assessment” means any assessment conducted by GPTW as part of the Services pursuant to which GPTW uses its tools and methodologies to assess and measure work place culture (including, but not limited to, use of Trust Index Survey, Culture Audit, Culture Brief, Trust Model and Methodology).
1.4 “Company Affiliate” means Company wholly-owned and majority-owned subsidiaries.
1.5 “Company Data” means Company’s proprietary data and information that Company provides to GPTW so that GPTW may, as part of the Services, conduct an Assessment (e.g., demographic and corporate information necessary to distribute the Survey to participants such as email address, employee ID, and other personally identifying information) and the data provided by Company to GPTW for the Culture Audit or Culture Brief). For the avoidance of doubt, Company Data does not include either Aggregate Data or Raw Data.
1.6 “Company Personal Data” means any Personal Data Processed by a Processor on behalf of Company pursuant to or in connection with the Principal Agreement.
1.7 “Consent” of the Data Subject means any freely given, specific, informed and unambiguous indication of the Data Subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of Personal Data relating to him or her.
1.8 “Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data.
1.9 “Data” means the Raw Data and the Aggregate Data.
1.10 “Data Protection Laws” means the European Union (EU) 2016 General Data Protection Regulation (GDPR), the California Consumer Protection Act of 2018 AB 375 (CCPA), and the Data Protection Laws of all other country, state, or regulating bodies.
1.11 “Fees” means the fees to be paid by Company to GPTW as set forth in this Agreement, including in the applicable Principal Agreement.
1.12 “GDPR” means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (General Data Protection Regulation).
1.13 “GPTW Intellectual Property” means (a) all copyrightable works owned by GPTW (including without limitation books, articles, brochures, Surveys, Trust Index Surveys, Culture Audits, Culture Briefs, Trust Model and Methodology, the form and structure of reports, and other materials, tools and methodologies), whether or not the copyrights in such works have been registered in the U.S. or any other jurisdiction; (b) all confidential information and material belonging to GPTW; (c) all GPTW names, service marks, icons, and logos; (d) all GPTW Materials; (e) the Data; (f) the Services; and (g) the Software.
1.14 “GPTW Materials” means all techniques, algorithms and methods or rights thereto owned by, or licensed to, GPTW during the term of this Agreement and employed by GPTW in connection with the Services provided to Company.
1.15 “Initial Term” has the meaning set forth in Section 9.1.
1.16 “Intellectual Property Rights” means patent rights (including, without limitation, patent applications and disclosures), copyrights, trade secrets, moral rights, know-how, and any other intellectual property rights recognized in any country or jurisdiction in the world.
1.17 “Late Payments” has the meaning set forth in Section 3.2
1.18 “Personal Data” means any information relating to an identified or identifiable natural person (‘Data Subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. For purposes of this Agreement, Personal Data excludes information provided by an individual directly to GPTW so long as GPTW was not collecting such information on behalf of Company or in furtherance of completing transactions as required pursuant to this Agreement.
1.19 “Personal Data Breach” means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.
1.20 “Pre-existing IPR” has the meaning set forth in Section 5.1.
1.21 “Processing” means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. The nature and purpose as well as the subject matter and duration of the Processing of the Company Personal Data is to collect Company employee survey data for processing and archiving scientific and historical research purposes and statistical purposes assessing workplace culture, performance, and accreditation to assist organizations in evaluating and improving their workplaces.
1.22 “Processor” means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
1.23 “Raw Data” means the confidential and anonymous responses received by GPTW from Company and Company’s employees in connection with, among other things, the Trust Index Survey(s) and/or Culture Audit(s), Culture Brief(s), focus groups, and one-to-one interviews administered by GPTW pursuant to this Agreement. For the avoidance of doubt, Raw Data does not include any Aggregate Data or Company Data.
1.24 “Software” means any software owned or licensed by GPTW and used by GPTW to provide the Services.
1.25 “Services” means the services that GPTW will perform for Company as described in the applicable Principal Agreement.
1.26 “Subprocessor” means any person (including any third party and any GPTW Affiliate, but excluding an employee of GPTW or any of its sub-contractors) appointed by or on behalf of GPTW or any GPTW Affiliate to Process Company Personal Data on behalf of Company in connection with the Principal Agreement.
1.27 “Supervisory Authority” means an independent public authority which is established by a Member State pursuant to Article 51 of the GDPR.
1.28 “Survey” means the web-based Company employee engagement survey consisting of GPTW’s standard survey questions and additional questions as requested by Company.
1.29 “Term” has the meaning set forth in Section 10.1.
2. COMPANY OBLIGATIONS
2.1 Cooperation and Assistance. As a condition to GPTW’s performance hereunder, Company will at all times: (a) provide GPTW with good faith cooperation and access to such information, facilities, and equipment as may be reasonably required by GPTW in order to provide the Services, including, but not limited to, providing Company Data; (b) provide such personnel assistance, as may be reasonably requested by GPTW from time to time; and (c) comply with its obligations under this Agreement.
2.2 Telecommunications and Internet Services. Company acknowledges and agrees that Company’s and Company’s users’ use of the Assessment portion of the Services is dependent upon access to telecommunications and Internet services. Company and Company’s users will be solely responsible for acquiring and maintaining all telecommunications and Internet services and other hardware and software required to access and use the Assessment portion of the Services, including, without limitation, all costs, fees, expenses, and taxes of any kind related to the foregoing.
3.1 Fees. In consideration for GPTW performing the Services, Company will pay to GPTW the Fees in the amounts and in accordance with the terms set forth in the Principal Agreement.
3.2 Taxes: To the extent applicable, Company shall pay GST or other similar transaction taxes incurred as a result of services provided to Company under this Agreement, upon receipt of a valid tax invoice from GPTW. For avoidance of doubt, franchise and privilege taxes, taxes based upon the income or gross receipts of GPTW or employment taxes for GPTW’s personnel shall be borne by GPTW. GPTW shall pay all collected taxes to the appropriate taxing authority. If Company has tax-exempt status, Company shall provide written evidence of such status to GPTW to sustain exemption from such taxes. Company shall make payment to GPTW after deduction of tax at source (TDS) as required by applicable tax laws. In case if any tax is deducted at source by Company as per applicable tax laws, a certificate as prescribed by law will be issued to GPTW for the amount of tax withheld. Company and GPTW shall reasonably co-operate with each other in seeking waiver or reducing any applicable transaction taxes and/or withholding taxes and in order to avail such beneficial claims, exchange with each other all necessary and relevant documents.
2 Invoices and Payment.
(a) Company will pay to GPTW the full amount of undisputed Fees according to the Payment Terms set forth in the Principal Agreement and sent by invoice to the Company. GPTW reserves the right to cease performance of the Services to Company if payment(s) is not made on time. An additional fee may need to be paid before the Services are reinstated.
(b) GPTW will email invoices to the primary Company contact specified in the Principal Agreement. Further invoice requirements with respect to payment due dates are specified in the Principal Agreement. Payment remittance options will be set forth in the invoice and will include payment by check or wire, or payment online.
3.3 Credits for Future Services.If at any time GPTW issues a credit for future services to Company, Company must use the credits within twelve (12) months of the credit being issued.
4. OWNERSHIP AND USE OF DATA
4.1 Company Data.
(a) As between GPTW and Company, the Company Data, and all Intellectual Property Rights therein or relating thereto, are and will remain the exclusive property of Company or its licensors.
(b) GPTW will use Company Data solely to perform the Services under the scope of this Agreement and in a manner that is compatible with the purposes for which such Company Data is furnished to GPTW or subsequently authorized to be used, and GPTW will ensure that any Personal Information included in Company Data is properly maintained and protected in accordance with Section 7.
4.2 Aggregate Data and Raw Data.
(a) As between GPTW and Company, the Raw Data and the Aggregate Data, and all Intellectual Property Rights therein or relating thereto, are and will remain the exclusive property of GPTW.
(b) The Raw Data will not be provided to Company by GPTW to protect the confidentiality of Company respondents. Company may use Aggregate Data solely as described in Section 5.3.
(c) GPTW covenants to use the Aggregate Data solely for the purposes of GPTW, including without limitation for benchmarking, creation of best practices, statistical analysis, and other R&D purposes. GPTW will not share Aggregate Data with any third parties without receiving prior written permission from Company.
(d) To protect the confidentiality of Company respondents, GPTW will not report on Assessment results in which fewer than five (5) people in a Company demographic group have responded.
5. TREATMENT OF INTELLECTUAL PROPERTY
5.1 Notwithstanding any provision of this Agreement to the contrary, (a) all Intellectual Property Rights belonging to a Party, sub-contractor or third party prior to the Effective Date, or created other than in connection with GPTW’s provision of the Services (“Pre-existing IPR”) will remain with, and vested in, that Party, sub-contractor or third party (as applicable) and will not be assigned hereunder, and (b) all Intellectual Property Rights in all enhancements and modifications to, or derivative works of, any Pre-existing IPR made by either Party will be with, and vest in, the owner of the relevant Pre-existing IPR.
5.2 As between GPTW and Company, the GPTW Intellectual Property, and all Intellectual Property Rights therein or relating thereto (except for limited rights granted to Company and Company’s users herein), are and will remain the exclusive property of GPTW or its licensors. Company is not acquiring any rights to any GPTW Intellectual Property. Any use of GPTW Intellectual Property other than as expressly described in this Agreement requires prior written approval from GPTW.
5.3 Without GPTW’s prior written approval, which may be withheld in GPTW’s sole discretion, Company will not use or re-use any GPTW Intellectual Property in any manner other than pursuant to its receipt of the Services during the Term (including in any surveying conducted either in-house or with another vendor outside of the scope of this Agreement). Reports provided by GPTW to Company may be distributed internally by Company, but any external distribution requires prior written approval from GPTW which will not be unreasonably withheld.
5.4 Each Party will not infringe or misappropriate the Intellectual Property Rights of the other Party or of any third party while performing its obligations under this Agreement.
5.5 Each Party acknowledges and agrees that the other Party’s Intellectual Property is the valuable property of the other Party. Each Party will safeguard and protect the Intellectual Property that it receives. Each Party will not alter or modify or permit others to alter or modify the other Party’s Intellectual Property without the prior written approval of the other Party. As examples only, and in no way as any limitation of this provision, no text may be revised nor may any mark or logo be altered, distorted or modified in any way.
5.6 In the event a Party becomes aware of any infringement or unauthorized use of the other Party’s Intellectual Property by that Party, its personnel or by any third party, that Party will immediately notify the other Party of such infringement or unauthorized use. If such infringement or unauthorized use is by that Party or its personnel, that Party immediately will cease such infringement or unauthorized use; if such infringement or unauthorized use is by a third party, that Party will cooperate with the other Party in causing the third party to cease such infringement or unauthorized use.
6.1 All information provided by Company to GPTW or otherwise obtained by GPTW as a receiving Party relating to the business or operations of Company or its clients or any person, firm, company or organization associated with Company, will be treated by GPTW as confidential, and GPTW will not disclose the same to third parties without the prior written consent of Company. The Parties acknowledge and agree that the confidential information of Company does not include the Raw Data and the Aggregate Data, which will be confidential information of GPTW.
6.2 In the event that Company as a receiving Party has access to any confidential information and/or material belonging to GPTW (including GPTW Intellectual Property), whether such access is intended or inadvertent, then Company will treat such information and/or material as confidential and will not disclose such information and/or material to third parties without the prior written consent of GPTW.
6.3 The confidentiality provisions set forth herein will not apply to confidential information which (a) is in or enters the public domain other than by acts or omissions of the receiving Party, (b) is obtained by the receiving Party from a third party who obtained it lawfully without obligation of confidentiality, (c) is or has been independently generated by the receiving Party as evidenced in written documents, or (d) is properly disclosed by the receiving Party pursuant to a statutory obligation, the order of a court of competent jurisdiction or that of a competent regulated body that requires the disclosure of confidential information or material belonging to the other Party, provided that the receiving Party will before disclosure notify the other Party, unless such notice is prohibited, so that steps may be taken to attempt to quash or limit any disclosure.
6.4 The foregoing obligations as to confidentiality will apply retrospectively, from the point of first contact between Company and GPTW regarding the Services and will remain in full force and effect notwithstanding any termination of this Agreement.
7. DATA SECURITY
7.1 The GPTW analytical survey platform named Emprising is hosted by the cloud provider Microsoft Azure. GPTW contracts with Azure to maintain the highest level of Data Security and Data Privacy global compliance at all times. This legal protection is passed along to all GPTW clients though the warranties in the Products and Services Agreement for the entire term of our engagement as detailed below. The Azure audit reports and other resource documentation as well as the Azure Compliance Manager Tool used by GPTW to comply with the GDPR and other privacy laws are found at the following URLs: https://servicetrust.microsoft.com/ and other compliance offerings: https://www.microsoft.com/en-us/trustcenter/compliance/complianceofferings. A general article about Azure compliance is here: https://www.communicationsquare.com/news/everything-about-gdpr-compliance-in-microsoft-cloud/ and a blog here: https://azure.microsoft.com/en-us/blog/protecting-privacy-in-microsoft-azure-gdpr-azure-policy-updates/ There are some country specific compliance resources as well. For example, compliance in Germany is addressed at the following URL: https://servicetrust.microsoft.com/ViewPage/GermanComplianceResourcesV3.
7.2 GPTW provides the highest standard of legal protection by warranting to our clients that during the entire term of the engagement, GPTW will comply with the following industry standards: CPA-audited financial statements, Service Organization Controls (SOC) Report 2 under the Statement on Standards for Attestation Engagements (SSAE) 18 as well as with the International Organization for Standardization (ISO) 27001:2013 and ISO 9001:2015 and the National Institute of Standards and Technology (NIST 2015) cybersecurity framework. If applicable, GPTW also complies with the Payment Card Industry Data Security Standard (PCI DSS). GPTW also provides these warranties and representations for the GPTW Network even though it does not support Emprising. The Emprising survey questions and responses never touch the GPTW Network. Any communication between Emprising hosted on Azure and the GPTW Network is strictly limited to an end-to-end secure VPN connection using IPSec protocol. Accordingly, GPTW considers the third-party financial and security audits of the GPTW Network to be for “restricted use” and confidential and does not release them to any company. There are several reasons for this policy. First, a “restricted use” provision is recited in every valid SOC 2 Report. Second, the audits are static in time and may not cover the entire term of the company’s engagement. Third, the audits provide no legal protection to a company. Fourth, a company having possession of these audits places itself at serious risk for no benefit, e.g. should there be a GPTW security breach, any company in possession of these audits would be a primary litigation target and would have to prove that company’s possession of the audits did not cause the GPTW breach. Instead, GPTW provides the highest standard of legal protection by warranting to all GPTW clients that during the entire term of the engagement GPTW will comply with the industry standards listed in Section 7.1 above.
7.3 GPTW maintains a full-time Chief Data Protection Officer (CDPO) and staff to ensure compliance with these industry standards. The CDPO reports directly to the CEO of GPTW.
7.4 GPTW agrees to comply with and implement the information security controls set forth in the Schedule A of this Agreement.
8. DATA PRIVACY
8.2 In connection with the Services, GPTW may receive, process and store Personal Data in the United States or other jurisdictions. Personal Information received by GPTW will be protected by GPTW as described in the Section above. In the event that consent of any individual is required to be obtained before transfer of Personal Information to GPTW, Company is responsible for obtaining the consent of any affected individual. Said consent needs to be freely given, specific, informed, unambiguous and given by a statement or clear affirmative action.
8.3 As advised in the GDPR, GPTW maintains a full-time Chief Data Protection Officer (CDPO) and staff to ensure compliance with all Data Protection Laws. The CDPO reports directly to the CEO of GPTW. GPTW also employs full-time Certified Information Privacy Practitioner (CIPP) and staff who are certified under by the International Association of Privacy Professionals at www.iapp.org whose credentials are accredited by the American National Standards Institute (ANSI) under the International Organization for Standardization (ISO) standard 17024:2012.
8.4 Data Subject’s Rights. Taking into account the nature of the Processing, GPTW and each GPTW Affiliate shall assist Company to respond to requests to exercise Data Subject rights under any Data Protection Laws. GPTW shall promptly notify Company if any Processor receives a request from a Data Subject under any Data Protection Law in respect of Company Personal Data. GPTW shall ensure that the Processor does not respond to that request except on the documented instructions of Company or as required by any Data Protection Law to which the Processor is subject, in which case GPTW shall to the extent permitted by any Data Protection Law inform Company of that legal requirement before Processor responds to the request. The nature and purpose as well as the subject matter and duration of the Processing of the Company Personal Data is to collect Company employee survey data for processing and archiving scientific and historical research purposes and statistical purposes assessing workplace culture, performance, and accreditation to assist organizations in evaluating and improving their workplaces. The types and categories of Company Personal Data to be processed are found in the demographic section and Trust Index questions of the survey.
8.5 Rights to Audits, Inspections, Data Protection Impact Assessments, and Prior Consultations. GPTW and each GPTW Affiliate shall make available to Company or its external auditors on request all information necessary to contribute to audits, inspections. data protection impact assessments, and prior consultations by Company in relation to the Processing of the Company Personal Data by the Processor to meet the requirements of any Data Protection Law. GPTW shall immediately inform Company if, in its opinion, an instruction pursuant to this Section infringes any Data Protection Law. Company undertaking an audit, inspection, data protection impact assessment, or prior consultation under this Section shall give GPTW or the relevant GPTW Affiliate reasonable notice and shall make (and ensure that each of its mandated auditors makes) reasonable endeavors to avoid causing any damage, injury or disruption to the Processor’s premises, equipment, personnel and business while Company’s personnel are on those premises in the course of such an audit, inspection, data protection impact assessment, or prior consultation. A Processor need not give access to its premises pursuant to this Section: (i) to any individual unless he or she produces reasonable evidence of identity and authority; (ii) outside normal business hours at those premises; or (iii) for the purposes of more than one audit, inspection, data impact assessment, or prior consultation in respect of each Processor in any calendar year, except if Company is so required by a Supervisory Authority or any similar regulatory authority responsible for the enforcement of Data Protection Laws in any country.
8.7 Deletion of Company Personal Data. Upon termination of the GPTW processing of Company Personal Data, regardless of cause, GPTW shall, in accordance with Company’s instructions, either (i) transfer all Personal Data to Company in such manner, on such medium and in such format that complies with Company’s reasonable instructions; or (ii) permanently delete and erase the Personal Data. Upon transferring or deleting, depending on the applicability thereof, the Processor shall ensure that the data cannot be recovered.
8.8 Subprocessors. GPTW may contract with one or more Subprocessors under the same terms provided in this Agreement. GPTW shall give Company prior written notice of the appointment of any new Subprocessor, including full details of the Processing to be undertaken by the Subprocessor. Within five (5) business days after the receipt of that notice, Company may notify GPTW in writing of any objections (on reasonable grounds) to the proposed appointment. GPTW will remain responsible and liable for the actions of any Subprocessors. Further, GPTW is fully liable to Company and its Affiliates for the obligations of its subprocessors, as if such obligation was the responsibility or liability of the GPTW itself, under this Agreement and/or the Applicable Data Protection Laws. GPTW thus undertakes to, without limitation, reimburse Company in the event of any loss or expenses that are caused to Company due to any breach of contract or Applicable Data Protection Laws by a subprocessor.
8.9 Personal Data Breach. GPTW shall notify Company without undue delay and in no case more than 72 hours upon a Processor becoming aware of a Personal Data Breach affecting Company Personal Data. Company shall be provided with sufficient information to allow Company to meet any obligations to report or inform Data Subjects of the Personal Data Breach under the Data Protection Laws. GPTW shall co-operate with Company and take such reasonable commercial steps as are directed by Company to assist in the investigation, mitigation and remediation of each such Personal Data Breach. In the event of Personal Data Breach by GPTW, upon Company’s request, at GPTW’s cost, GPTW shall provide Customer with reasonable cooperation and assistance to fulfil Customer’s obligation under the GDPR to notify a Personal Data Breach to the Supervisory Authority and to communicate on a Personal Data Breach to the Data Subject, and make reasonable efforts to identify the cause of the breach and to remediate such breach, insofar as this obligation relates to the Services in scope of this Agreement
9. ADDITIONAL REPRESENTATIONS AND WARRANTIES OF GPTW
9.1 Compliance with HIPAA, Gramm-Leach-Biley, etc. In carrying out its duties and obligations under this Agreement, GPTW shall follow and adhere to all applicable federal and state laws, including, but not limited to the Civil Rights Act of 1964, the Rehabilitation Act of 1973, Title IX of the Education Amendments of 1972, the Age Discrimination Act of 1975, the Americans with Disabilities Act, the Social Security Act, the Federal Acquisition Streamlining Act of 1994, the Federal Acquisition Regulations, the Health Insurance Portability and Accountability Act and the Gramm-Leach-Biley Act. GPTW acknowledges that the submission of false claims and statements in connection with the provision of Services under this Agreement is prohibited, and that such actions are sanctionable.
9.2 Compliance with Federal Healthcare Programs. GPTW represents and warrants that neither it, nor any of its contractors or employees who will furnish goods or services under the Agreement, directors or officers, or any person with an ownership interest in Supplier of five percent (5%) or more, is or ever has been: (i) debarred, suspended or excluded from participation in Medicare, Medicaid, the State Children’s Health Insurance Program (SCHIP) or any other federal health care program; (ii) convicted of a criminal offense related to the delivery of items or services under the Medicare or Medicaid program; (iii) had any disciplinary action taken against any professional license or certification held in any state or U.S. territory, including disciplinary action, board consent order, suspension, revocation, or voluntary surrender of a license or certification; or (iv) debarred or suspended from participation in procurement or non-procurement activities by any federal agency (collectively, “Sanctioned Persons”). In order to ensure that no payments from the Company are made to Sanctioned Persons, GPTW shall screen all employees and contractors who will furnish goods or services under the Agreement to determine whether they have been excluded from participation in Medicare, Medicaid, the Children’s Health Insurance Program and/or any federal health care programs.
9.3 Compliance with Federal Healthcare and Procurement Programs. GPTW affirms that neither it nor any of its employees, affiliates or agents is an Ineligible Person and that to the best of its knowledge it is not party to a contract with any Ineligible Person. An Ineligible Person is an individual or entity who/which (i) currently is excluded, debarred, suspended or otherwise ineligible to participate in any federal healthcare and/or procurement or non-procurement programs (like Medicare and Medicaid) and/or (ii) has been convicted of a criminal offense that falls within the range of activities described in 42 U.S.C. §1320a-7(a), but who has not yet been excluded, debarred suspended or otherwise declared ineligible. This shall be an ongoing representation and warranty during the term of the Agreement, and GPTW shall immediately notify Company of any change in the status of the representation and warranty set forth in this section. Any breach of this section shall give Company the right to terminate this Agreement immediately for cause.
9.4 Compliance with Immigration Laws. GPTW represents and warrants to Company that GPTW, to the best of its knowledge, shall not employ any individual to perform Services who is not legally authorized to work in the United States in the capacity indicated. GPTW certifies that, to the best of its knowledge, all employees who shall provide Services to Company under this Agreement are legally authorized to be and to work in the United States in the capacity in which they are working under this Agreement and will provide written documentation to support such certification. Should an employee’s legal status change during the Term, GPTW shall notify Company and promptly remove such employee from Company and from performing Services hereunder. GPTW shall indemnify and hold Company harmless from any claim and/or from any legal action made against or involving Company related to its alleged failure to comply with its obligations under this Section.
9.5 Compliance with United States Code Title 42. Until the expiration of four (4) years after this Agreement’s termination for any reason, GPTW, in accordance with Section 1395x(V)(1)(I) of Title 42 United States Code, shall make available upon written request of Company, the U.S. Secretary of the United States Department of Health and Human Services, the Comptroller General of the United States General Accounting Office or any of their duly authorized representatives, a copy of this Agreement and such books, documents and records that the aforesaid parties determine necessary to verify the nature and extent of the costs of the services and/or supplies provided by GPTW hereunder. Should GPTW perform any of its duties hereunder through a subcontract with a value or cost of Ten Thousand Dollars ($10,000) or more over a twelve (12) month period with a related organization, such agreement shall require that until expiration of four (4) years after the furnishing of such services and/or supplies pursuant to such subcontract, the related organization similarly shall make available to the above parties all applicable contracts and all books, documents and records that they determine necessary to verify such costs’ nature and extent.
9.6 GPTW Transparency Report for Data Transfers Outside the EU. On July 16, 2020 the Court of Justice of the EU issued a Decision invalidating the use of the Privacy Shield as a means to transfer personal data from the EU to the US. The Decision did not invalidate the Privacy Shield itself and GPTW continues to comply with its requirements. The Decision affirmed the use of the 2010 Standard Contractual Clauses (SCC) as a means of transferring personal data from the EU to the US if the Company performs a two part “assessment” of GPTW. First, GPTW must inform Company if it is unable to comply with the SCC, which GPTW so warrants. Second, GPTW has put in place what is referred to in the Court decision as “supplementary measures.” GPTW has incorporated all of the SCC into this Agreement and will execute a separate SCC if desired. One of the supplementary measures implemented by GPTW is a Transparency Report. Initially pursuant to an agreement with the U.S. Department of Justice and later Section 604 of the 2015 USA Freedom Act, a number of tech companies have published statistics in “Transparency Reports” about the production orders received from national security and law enforcement authorities. Providers are allowed to disclose aggregated statistics about the number of requests received pursuant to various criminal and national security authorities, but given the non-disclosure orders that generally accompany FISA and National Security Letters, disclosures are limited to a preset number of data points and the use of general ranges of numbers (“bands”). Since its incorporation as a business and through the date of this Agreement, GPTW has never received or been notified of a National Security Letter, an order under the Foreign Intelligence Surveillance Act, or any other classified request for user information pursuant to the national security laws of the United States or any other country.” Such a declaration further bolsters the proposition that reliance on SCC can ensure adequate protection for EU citizen data, despite the existence of EO 12333, PPD 28 and FISA Section 702.
9.7 GPTW warrants to Company that the Services will be performed: (i) in a professional and workman like manner and otherwise in accordance with prevailing industry standards; (ii) by personnel that have the requisite skills, expertise, experience and training necessary to perform such Services; and (iii) in accordance with the requirements of the Principal Agreement and all applicable present and future laws, regulations, ordinances, orders, decrees and requirements applicable to performance of the Services. GPTW warrants and represents that it will make commercially reasonable efforts to ensure that no Software or Data shall include and/or cause the Company’s data and/or computer system to become infected by any virus or any other type of malware. In addition, GPTW shall implement anti-virus and anti-hacking software to protect the Company’s data and/or its computer systems.
10. TERM AND TERMINATION
10.1 Term. This Agreement will commence on the Effective Date and will continue for the period stated in the Principal Agreement, (the “Initial Term”), unless terminated earlier as provided in this Agreement. The Initial Term and any renewal periods are collectively, (the “Term”).
10.2 Termination for Cause. Either Party may terminate this Agreement upon written notice if the other Party materially breaches this Agreement and fails to correct the breach within thirty (30) days following written notice specifying the breach.
10.3 Termination without cause. This Agreement and any or all Principal Agreements may be terminated by Company , in whole or in part, upon giving (thirty) 30 days’ prior written notice without cause, provided GPTW must complete all Services described in any Principal Agreement or under this Agreement unless otherwise agreed by Company.
10.3 Rights and Obligations Upon Expiration or Termination. Upon expiration or termination of this Agreement, Company’s and Company’s users’ right to access and use the Services (and any GPTW Intellectual Property) will immediately terminate, Company and its users will immediately cease all use of the Services (and any GPTW Intellectual Property) except for the Aggregate Data received in reports which may continue to be used internally at the Company, and each Party will return and make no further use of any confidential information, materials, or other items (and all copies thereof) belonging to the other Party no later than ten (10) days after the effective date of the expiration or termination of this Agreement.
10.4 Survival. The rights and obligations of GPTW and Company contained in Sections 3 (Fees), 4 (Ownership), 5 (Intellectual Property), 6 (Confidentiality), 7 (Data Protection), 8 (Data Privacy), 11 (Indemnification), 12 (Limitation of Liability), and 13 (General) will survive any expiration or termination of this Agreement.
11.1 GPTW will release, defend, hold harmless and indemnify the Company and its employees, officers, directors, shareholders, agents, representatives, successors and assigns, from and against any and all claims, demands, causes of action, losses, damages, liabilities, costs and expenses, including reasonable attorneys’ fees and costs, arising out of, resulting from or pertaining to (a) any negligent or wrongful act or omission of, or violation of law by GPTW, or any of its employees, officers, directors, representatives or affiliates; (b) a breach of any warranty or agreement made by GPTW herein; (c) infringement of copyright, patent, trademark, trade name, trade secret or other proprietary or intellectual property right of any third party by the Services, Software and/or any materials delivered under this Agreement by GPTW; (d) breach of confidentiality and/or data privacy or security obligations under this Agreement, by GPTW; (e) claim that GPTW is not an independent contractor, any claim alleging Company is a joint employer of GPTW’s employees, and any claim by GPTW’s employees with respect to wages, benefits or any other employment related claims; and/or (f) breach of employment laws, visa and immigration laws applicable to GPTW.
11.2 The indemnified Party will promptly notify the indemnifying Party of any claim subject to indemnification, tender to the indemnifying Party control over the defense and settlement of the claim and render reasonable assistance to the indemnifying Party with respect to such defense and settlement.
12. LIMITATION OF LIABILITY
12.1 If A Party should become entitled to claim damages from the other Party for any reason in connection with this Agreement (including without limitation, for breach of contract, breach of warranty, negligence or other tort claim), the other Party will be liable only for the amount of the other Party’s actual direct damages up to the amount that Company paid GPTW for the Services that are the subject of the claim. In no event will the other Party’s aggregate liability to the Party for all claims arising under or relating to this Agreement exceed the amount of twelve (12) months’ worth of Fees paid by Company to GPTW under this Agreement. These limits are the maximum liability for which the other Party is responsible.
12.2 In no event will either Party be liable for: (a) any damages arising out of or related to the failure of the other Party or its affiliates or personnel to perform their responsibilities; and/or (b) any lost profits, loss of business, loss of data, loss of use, lost savings or other consequential, special, incidental, indirect, exemplary or punitive damages, even if either Party has been advised of the possibility of such damages.
12.3 The limitations of liability contained in Sections 12.1 and 12.2 shall not apply to liabilities arising from: (a) a Party’s gross negligence, fraud, violation of law, or misrepresentation; (b) a GPTW’s indemnity obligations; or (c) claims covered by a Party’s insurance; (d) violation of law BY GPTW; and/or (e) breach of GPTW’s confidentiality, data protection or data security obligations under this Agreement.
13.1 Supplemental Charges for Work Not Quoted in the GPTW Order Form. In an effort of complete transparency and ease of doing business with GPTW at the lowest possible price to the Company, there is link to the GPTW External Security Policy on the bottom of the GPTW US website. In that Policy are found all the answers for filling out Company security surveys or registering GPTW as a Company vendor or the like. Company agrees that if it requires GPTW to fill out a Company security survey, registration, or the like, it will be invoiced for this additional work at $650/hr.
13.2 Waiver. It is understood and agreed that no failure or delay by either Party in exercising any right, power or privilege hereunder in any one or more instances or to insist on strict compliance with the performance of this Agreement or to take advantage of any respective rights will operate as a waiver thereof or the relinquishment of such rights in other instances but the same will continue and remain in full force and effect nor will any single or partial exercise thereof preclude any other or further exercise thereof or the exercise of any right, power or privilege hereunder.
13.3 Notices. All notices hereunder shall be in writing and delivered personally, by traceable courier (such as UPS) or by certified US mail, return receipt requested to the Party at the address set forth in the Principal Agreement. All such notices are deemed effective upon receipt or refusal of delivery.
13.4 Assignment. This Agreement may not be voluntarily or by operation of law assigned or transferred in whole or part, or in any other manner transferred by GPTW without the prior written consent of Company, but GPTW may use subcontractors in assisting GPTW in providing the Services; provided that subcontractors sign an agreement with GPTW with at least terms as limiting as those in this Agreement. Any attempt to assign or transfer this Agreement other than in conformance with this Section will be of no effect and considered null and void.
13.5 Independent Contractor.
(a) GPTW is an independent contractor and nothing herein will be construed to the contrary. GPTW will not assume or create any obligations or responsibilities express or implied, on behalf of or in the name of Company, or bind Company in any manner or thing whatsoever without Company’s written consent. GPTW will use GPTW’s own tools and instruments in providing the Services. GPTW will supply all necessary labor to render Services under this Agreement and may use subcontractors in doing so. GPTW will be solely responsible for the direction and control of GPTW’s agents, employees, representatives and subcontractors, including decisions regarding hiring, firing, supervision, assignment and the setting of wages and working conditions. Company will neither have nor exercise disciplinary control or authority over GPTW or GPTW’s agents, employees, representatives or subcontractors.
(b) No agent, employee, representative or subcontractor of GPTW will be or be deemed to be the employee, agent, representative or subcontractor of Company. None of the employer-paid benefits provided by Company to its own employees, including but not limited to workers’ compensation insurance and unemployment insurance, are available from Company to GPTW or to GPTW’s employees, agents, representatives or subcontractors. GPTW agrees to provide workers’ compensation insurance for any person utilized by GPTW to perform services under this Agreement and to pay all applicable social security taxes, unemployment compensation taxes, income taxes and other employer taxes and contributions required by any federal, state or local law with respect to GPTW or to persons utilized by GPTW to perform services under this Agreement.
13.6 Severability. If any provision of this Agreement is deemed to be invalid or unenforceable by a court of competent jurisdiction, the same will be deemed severable from the remainder of this Agreement and the Parties agree to renegotiate such provision in good faith, in order to maintain the economic position enjoyed by each Party as close as possible to that under the provision rendered unenforceable. In the event that the Parties cannot reach a mutually agreeable and enforceable replacement for such provision, then (i) such provision will be excluded from this Agreement, (ii) the balance of the Agreement will be interpreted as if such provision were so excluded and (iii) the balance of the Agreement will be enforceable in accordance with its terms.
13.7 Amendments. Once executed, this Agreement, and any attachments to this Agreement, may be modified only through the execution of a written instrument signed by the Parties.
13.8 Use of Names/Logo. Company may request permission for the use of the GPTW logo, and in doing so, should request to fill out and complete the “Use of Great Place to Work® Institute Materials Consent Agreement” (the “GPTW Material Consent Form”) downloadable at www.greatplacetowork.com/images/GPTW-Material-Consent-Form.doc. Company understands that it is subject to all rules and guidelines set forth in the GPTW Material Consent Form, the GPTW Intellectual Property Usage Policy at www.greatplacetowork.com/Intellectual-Property-Usage-Policy, the GPTW Brand Identity Policy at www.greatplacetowork.com/Brand-Identity-Policy and the GPTW Brand Usage Guide at brand.greatplacetowork.com/en/brand-assets/logos/gptw-logo which govern the usage of the Great Place To Work LOGO®. GPTW may include Company’s name on a client list, unless notified otherwise in writing by Company.
13.9 Legal Fees. If any action at law or in equity is necessary to enforce or interpret this Agreement, the prevailing Party will be entitled to reasonable attorneys’ fees, costs and necessary disbursements in addition to any other relief to which such Party may be entitled. It is agreed that GPTW in-house counsel will be billed at $650/hr.
13.10 Insurance. GPTW will provide, pay for, and maintain in full force and effect during the term of the Agreement the insurance outlined herein covering GPTW’s activities, and anyone directly or indirectly engaged by GPTW. GPTW will carry the following insurance coverages during the Term of this Agreement: (i) workers’ compensation insurance in the statutory amount and employer liability insurance with minimum limits of $1,000,000 each accident, $1,000,000 each employee and $1,000,000 annual aggregate; (ii) and errors and omissions (professional liability) insurance for the Services rendered hereunder in the minimum amount of Two Million ($2,000,000) dollars per occurrence and in the annual aggregate; (iii) general liability insurance written on an occurrence basis in the minimum amount of One Million ($1,000,000) dollars per occurrence and Two Million ($2,000,000) dollars in the annual aggregate; and (iv) cyber liability insurance including coverage for network privacy liability with minimum limits of One Million ($1,000,000) dollars per occurrence and in the annual aggregate.
13.11 Force Majeure. Neither Party will be liable, and its performance will be excused, for any delays resulting from circumstances or causes beyond its reasonable control, including without limitation, fire or other casualty, act of God, strike or labor dispute, war, sabotage, terrorism, acts of aggression or other violence provided such Party will have used its commercially reasonable efforts to mitigate its effects and has given prompt written notice to the other Party. The time for the performance will be extended for the period of delay or inability to perform due to such occurrences up to a period of thirty (30) business days at which time the Party unaffected by the Force Majeure event may immediately terminate this Agreement.
13.12 Successors and Assigns. This Agreement and all of the terms and conditions hereof will be binding upon and inure to the benefit of GPTW and Company and their respective successors, transferees, permitted assignees or legal representatives. Any terms of this Agreement containing a reference to GPTW or Company will apply with equal effect to any such successor, permitted assignee, transferee or legal representative of the Party in question.
13.13 Counterparts. This Agreement may be executed in two or more counterparts, each of which will be deemed an original and all of which together will constitute one document.
13.14 Titles and Subtitles. The titles and subtitles used in this Agreement are used for convenience only and are not to be considered in construing or interpreting this Agreement.
13.15 Disputes. If any dispute or disagreement arises between the Parties with respect to the interpretation of any provision of this Agreement, the performance of either Party under this Agreement, or any other matter that is in dispute between the Parties related to this Agreement, then, upon the written request of either Party, the Parties will meet for the purpose of resolving such dispute. The Parties agree to discuss the problem and negotiate in good faith without the necessity of any formal proceedings related thereto. If such efforts are not successful then the Parties shall submit any dispute arising from or related to this Agreement to binding arbitration by a single arbitrator in accordance with the rules of the American Arbitration Association in San Francisco, California, United States. If it is necessary to enforce or interpret this Agreement, the prevailing Party shall be entitled to reasonable attorneys’ fees, costs and necessary disbursements in addition to any other relief to which such Party may be entitled. This Agreement, and all matters collateral thereto, shall be governed by the laws of the United States (including without limitation, U.S. copyright and trademark laws) and the laws of the State of California applicable to contracts entered into and to be performed entirely therein, without regard to any choice of law or conflict of law rules. Notwithstanding the foregoing, either Party will be free at any point to pursue injunctive relief if a Party’s Intellectual Property is being violated by the other Party or its affiliates. For any litigation which may otherwise arise with respect this Agreement, the parties irrevocably and unconditionally submit (i) to the exclusive jurisdiction and venue (and waive any claim of forum non conveniens and any objections as to laying of venue) of the United States District Court for the Northern District of California, or (ii) if such court does not have jurisdiction, to the appropriate State court sitting in Alameda County, California, in connection with any action, suit or proceeding arising out of or relating to this Agreement and the subject matter of this Agreement, whether in contract, tort (including negligence), or any other form of action. THE PARTIES HEREBY UNCONDITIONALLY WAIVE THEIR RESPECTIVE RIGHTS TO A JURY TRIAL OF ANY CLAIM OR CAUSE OF ACTION ARISING UNDER THIS AGREEMENT.
13.16 Remedies. The rights and remedies herein provided will be cumulative and no one of them will be exclusive of any other and will be in addition to any other remedies available at law or in equity.
13.17 No Third-Party Beneficiaries. This Agreement is intended for the sole and exclusive benefit of the signatories and is not intended to benefit any third party (other than as described in Section 10). Only the Parties to this Agreement may enforce it.
13.18 Entire Agreement. This Agreement and the Principal Agreement constitutes the entire understanding between the Parties. All previous representations or undertakings, whether oral or in writing, are superseded by this Agreement.
13.19 Digital Format. The Parties agree that the original of the Agreement, including the signature page, may be imaged and stored in a digital format on a Party’s computer systems and that any printout or other visually readable output which accurately reproduces the original of the Agreement, may be used for any purpose for which the original was intended, including proof of the content of the original writing.
September 14, 2020
ABOUT OUR METHOLOGY
To be eligible for the World’s Best Workplaces list, a company must apply and be named to a minimum of 5 national Best Workplaces lists within our current 58 countries, have 5,000 employees or more worldwide, and at least 40% of the company’s workforce (or 5,000 employees) must be based outside of the home country. Extra points are given based on the number of countries where a company surveys employees with the Great Place to Work Trust Index©, and the percentage of a company’s workforce represented by all Great Place to Work surveys globally. Candidates for the 2017 Worlds Best Workplaces list will have appeared on national workplaces lists published in September 2016 through August 2017.
ABOUT OUR METHOLOGY
The Best Workplaces in Asia List
Great Place to Work® identifies the top organizations that create great workplaces in the Asian and Middle Eastern regions with the publication of the annual Best Workplaces in Asia list. The list recognizes companies in three size categories:
To be considered for inclusion, companies must appear on one or more of our national lists in the region, which includes Greater China (covering China, Hong Kong, Taiwan and Macau), India, Japan, Saudi Arabia, Singapore, South Korea, Sri Lanka and UAE. For the 2021 Asia List, companies ranked on the national list in the Philippines will also be included. Multinational organizations must meet the following requirements:
Multinationals also receive additional credit for their efforts to successfully create an excellent workplace culture in multiple countries in the region. The data used in the calculation of the regional list comes from national lists published in 2019 and early 2020.