AIS Customer Terms of Service

Token provides a service that allows the users of our products and services (“End-Users”) to access and share account information.

  1. Below is the basis of the agreement governing Token’s provision of services to a Customer by way of an application programming interface from which the service can be integrated into, and accessed by, End-Users via a Customer’s Website.
  2. The terms and conditions between Token and an End-User can be found at www.token.io.

The Token Terms of Service is an agreement between Token.io Ltd. (“Token”, “Supplier”) and a Customer that wishes to use Token’s services. The Terms of Service set forth below are the fundamental provisions that will govern a legal relationship between Token and a Customer, but not all the legal provisions. Should you wish to enter into an agreement with us, please email us at legal@token.io and we shall send you the full agreement.

In addition, there are three relevant policies that are linked here, which the Customer needs to be aware of:

Token’s Privacy and Cookie Policy
Token’s PIS Terms of Service
End User Terms of Service

Sections

  1. What are our obligations?
  2. What are your obligations as a Customer of Token?
  3. Security Controls and Processes
  4. Transfer of Account Information
  5. Fees and other provisions
  6. Intellectual Property Rights
  7. Warranties
  8. Data Protection
  9. Termination
  10. Limits of liability
  11. Anti-Bribery
  12. Force majeure
  13. Notices
  14. Waiver
  15. Remedies
  16. Entire agreement
  17. Variation
  18. No partnership or agency
  19. Severance
  20. Alienation
  21. Account Information
  22. Security and Access Controls
  23. Governing law and jurisdiction
  24. Schedule 1: Data Requirements - Account Information

1. What are our obligations?

Subject to the Customer remaining compliant with the terms of this agreement we will grant the Customer a licence for the term in order to:

  1. Integrate the API into the Customer’s website and to enable End-Users to access and interact with the service for the provision of the services agreed with the Customer.
  2. With Token’s consent, use the Token Logo on the Customer website.
  3. Token grants to the Customer a non-exclusive licence to use any associated software for the term.
  4. Token grants to the Customer a non-exclusive licence to use Token’s Intellectual Property Rights in the services for the term, only to the extent necessary for the Customer to enjoy the benefit of the services, as contemplated by this agreement.

Token shall use all reasonable endeavours to make the service available to End-Users and to transmit Account Information to the Customer, and shall give the Customer at least two (2) weeks written notice via email, of any alterations to the API that may affect integrating the service into the Customer’s Website.

Subject to the above:

  1. Token will provide the services in accordance with Good Industry Practice.
  2. Token does not warrant that the use of any software will be uninterrupted or error-free.
  3. Token does not warrant, represent or give any guarantee or commitment that the Account Information obtained by the Customer through the End-User's use of the service will be accurate or complete or meet the Customer's requirements.
  4. Token will not contact the End-Users for any purpose, unless the prior written consent of the Customer has been received.
  5. Token will not use the End-User’s data for any purpose, other than providing the services to the Customer as outlined in this Agreement.
  6. All other conditions, warranties or other terms which might have effect between the parties or be implied or incorporated into this agreement or any collateral contract, whether by statute, common law or otherwise, are hereby excluded, including the implied conditions, warranties or other terms as to satisfactory quality or fitness for purpose.
  7. The Customer and Token have taken all necessary actions and have all requisite power and authority to enter into and perform this agreement.
  8. This agreement constitutes (or shall constitute when executed) valid, legal and binding obligations on the Customer.
  9. The execution and delivery by the Customer of this agreement and compliance with its terms shall not breach or constitute a default.

2. What are your obligations as a Customer of Token?

The Customer shall:

  1. Cooperate with the supplier in all matters relating to the Services.
  2. Appoint a manager for the services who has the authority to support on matters relating to the services (including by signing a Statement of Work and Change Orders). The Customer may replace that person from time to time and shall provide the Customer with reasonable notification if and when it does so.
  3. Provide Token on request adequate records in order for Token to verify the value of the Relevant Transactions.
  4. Obtain and maintain all necessary licences and consents and comply with all relevant legislation as required to enable Token to provide the services as agreed by this agreement, in all cases before the date on which the services are to start.
  5. Keep a complete and accurate record of copying and disclosure of any software and its users, and produce such record to Token on request from time to time.
  6. Notify Token as soon as it becomes aware of any unauthorised use of any software by any person.
  7. Not exceed the licences granted under this agreement, including without limitation in respect of the Maximum Usage and Customer Products, without the prior written consent of the Supplier. If the Customer wishes to exceed the Maximum Usage or to use the services in connection with other products, it shall notify the Supplier, and the parties shall work together to agree commercial and other terms for additional usage to be accommodated. Such additional commercial and other terms of additional usage to be reflected in an amended Statement of Work.
  8. Is exclusively responsible for the supervision, management, backup, security, and control of all aspects of Customer’s information technology systems.
  9. Ensure that the Customer Website shall be free from, and shall not introduce any Malicious Software including by using up-to-date, industry-standard and comprehensive anti-virus software to seek to prevent the introduction of any Malicious Software into the service.
  10. Ensure that API is used only in accordance with the licence terms.
  11. Ensure that the End-Users are aware of Token’s services and agreement with the Customer.
  12. Abide by all relevant Laws and Regulations with respect to its activities under this agreement.

3. Security Controls and Processes

Security is an extremely serious business and Token takes reasonable and practical steps to ensure Customer data is protected in accordance to relevant Privacy Laws.

As a Customer, you will:
only process Account Information in accordance with this agreement.
will inform Token, without delay, as soon as you have been made aware of a security issue relating to the service or the API even if the security issue is a suspicion.
not use the service or API to transfer or receive any malicious programmes or material that is abusive, harassing, indecent, discriminatory, offensive or is in breach Intellectual Property Rights of any third party or would be unlawful.
review all access control procedures if an individual user has left the Customer’s organisation.

4. Transfer of Account Information

The Customer acknowledges that the End-User may revoke their consent to process Account Information at any time and the Supplier shall not be liable to the Customer for failing to provide the Customer with the information requested by the Customer.

Processing of Account Information is subject to the following:
agreement of the End-Users terms of service.
End-User providing the Supplier with the necessary information to process Account Information.
compliance by all parties to the terms and conditions of the agreement.

5. Fees and other provisions

The Customer shall pay fees as agreed in the schedule of fees.

In addition to the Fees, the Customer agrees to pay to the Supplier:

The Supplier will issue an invoice for any Professional Service Fees and any other fees set out in each Statement of Work at regular intervals during the term.
Where the Customer is utilising Software and / or Services that incurs a Transaction Fee, on or before the 10th day of each calendar month, the Customer shall report to the Supplier the following, in respect of the previous calendar month (each a ‘Billing Month’):

The Supplier shall then calculate the Transaction Fee in respect of the Billing Month, and may invoice the Customer for the Transaction Fee at any time.
The Customer shall pay each invoice submitted to it by the Supplier within 30 days of receipt to a bank account nominated in writing by the Supplier from time to time.

All sums payable under this agreement are exclusive of VAT or any relevant local sales taxes, for which the Customer shall be responsible.
Subject to any agreement to the contrary between the parties, the Licence Fees shall remain fixed for the duration of the relevant Statement of Work.

If the Customer fails to make any payment due to the Supplier under this agreement by the due date for payment then, without limiting the Supplier's remedies under this agreement, the Customer shall pay interest on the overdue amount at the rate of 4% per annum above the Bank of England’s base rate (http://www.bankofengland.co.uk/boeapps/iadb/Repo.asp) from time to time. Such interest shall accrue on a daily basis from the due date until actual payment of the overdue amount, whether before or after judgment. The Customer shall pay the interest together with the overdue amount.

6. Intellectual Property Rights

The Customer acknowledges that all Intellectual Property Rights in the services, the Output, any Supplier software and any Maintenance Releases belong and shall belong to the Supplier or the relevant third-party owners (as the case may be), and the Customer shall have no rights in or to the Supplier software or services other than the right to use them in accordance with the terms of this agreement.
The Supplier undertakes at its own expense to defend the Customer or, at its option, settle any claim or action brought against the Customer alleging that the possession or use of any Supplier software or the services (or any part thereof) in accordance with the terms of this agreement infringes the Intellectual Property Rights of a third party (each a ‘Claim’) and shall be responsible for any reasonable losses, damages, costs (including legal fees) and expenses incurred by or awarded against the Customer as a result of or in connection with any such Claim. This clause shall not apply where the Claim in question is attributable to:

If any third party makes a Claim, or notifies an intention to make a Claim against the Customer, the Supplier's obligations are conditional on the Customer:

If any Claim is made, or in the Supplier's reasonable opinion is likely to be made, against the Customer, the Supplier may at its sole option and expense:

This clause constitutes the Customer's exclusive remedy and the Supplier's only liability in respect of Claims.

7. Warranties

The Supplier will provide the services in accordance with good industry practice, but will not warrant that the use of any software or service will be uninterrupted or error free.
All other conditions, warranties or other terms which might have effect between the parties or be implied or incorporated into this agreement or any collateral contract, whether by statute, common law or otherwise, are hereby excluded, including the implied conditions, warranties or other terms as to satisfactory quality or fitness for purpose.

8. Data Protection

Terms and expressions used in this section and not defined in this agreement shall have the meaning provided in the relevant Data Protection Legislation to the processing activities agreed between both parties. It is recommended that this section be read in conjunction with our Privacy Notice available on the Supplier website https://token.io/privacy.

Both parties will comply with their obligations under the relevant Data Protection Legislation and will support that party to comply with its own obligations under Data Protection Legislation.

The Customer acknowledges and agrees that:

  1. The Account Information it receives through use of the API comprises Personal Data relating to the relevant End-User.
  2. They have adequate grounds to process personal data and to contract with the Supplier for such Processing.
  3. They have provided adequate information to each Data Subject in respect of such Processing.
  4. They have implemented effective technical and organisational measures to protect end-users personal data.
  5. They will assist the Supplier in fulfilling their legal obligations to comply with data Subject rights.
  6. They will provide assistance to the Supplier to comply with data breaches, data impact assessments, record keeping and audit responsibilities under all relevant data protection legislation.
  7. They will provide a contact with the Customer’s organisation who is authorised to deal with all enquiries regarding data privacy.
  8. They will not disclose or transfer any Personal Data to a third party located outside of the EEA unless:
  9. the party acting as data controller approves.
  10. the third party has appropriate technical and operational measures in place to protect end users personal data the third party has agreed to the Data Processing Agreement in the contract.
  11. End-users consent to all aspects of the processing.

9. Termination

The agreement will commence or be deemed to commence on the start date and shall continue until terminated by the Customer or Supplier.

Each party may terminate this agreement where the other party has committed a material breach of any term of this agreement which breach is irremediable or (if such breach is remediable) fails to remedy that breach within a period of 30 days after being notified in writing to do so, or is subject to insolvency.
For the purposes of the agreement, a material breach means a breach (including an anticipatory breach) that is serious in the widest sense of having a serious effect on the benefit which the terminating party would otherwise derive from:

Termination or expiry of this agreement shall not affect any rights, remedies, obligations or liabilities of the parties that have accrued up to the date of termination or expiry, including the right to claim damages in respect of any breach of the agreement which existed at or before the date of termination or expiry.

On termination for any reason:

10. Limits of liability

The Supplier shall not in any circumstances have any liability for any losses or damages which may be suffered by the Customer (or any person claiming under or through the Customer), whether the same are suffered directly or indirectly or are immediate or consequential, and whether the same arise in contract, tort (including negligence) or otherwise howsoever, which fall within any of the following categories:

  1. special damage even if the Supplier was aware of the circumstances in which such special damage could arise;
  2. loss of profits;
  3. oss of anticipated savings;
  4. loss of business opportunity;
  5. loss of goodwill;
  6. loss or corruption of data;

provided that this shall not prevent claims for loss of or damage to the Customer's tangible property that fall within the terms or any other claims for direct financial loss that are not excluded;
The total liability of the Supplier, whether in contract, tort (including negligence) or otherwise and whether in connection with this agreement or any collateral contract, shall in no circumstances exceed a sum equal to the Fees paid by the Customer during the 12-month period preceding the date on which the claim arose; and the Customer agrees that, in entering into this agreement, either it did not rely on any representations (whether written or oral) of any kind or of any person other than those expressly set out in this agreement or (if it did rely on any representations, whether written or oral, not expressly set out in this agreement) that it shall have no remedy in respect of such representations and (in either case) the Supplier shall have no liability in any circumstances otherwise than in accordance with the express terms of this agreement.

Exclusions shall apply to the fullest extent permissible at law, but the Supplier does not exclude liability for:

  1. Death or personal injury caused by the negligence of the Supplier, its officers, employees, contractors or agents.
  2. Fraud or fraudulent misrepresentation.
  3. Any other liability which may not be excluded by law.

11. Anti-Bribery

All parties shall ensure compliance to all applicable Anti- Bribery Laws and will:

  1. Implement and maintain adequate training and procedures to support compliance to all applicable anti bribery laws.
  2. Ensure that robust reporting procedures are in place to ensure that compliance issues are escalated to other parties as required by Law.
  3. If requested by the other party and where permitted by law, provide the other party with any reasonable assistance, at the other party's reasonable costs, to enable the other party to perform any activity required by any Authority for the purpose of compliance with any applicable Anti-Bribery Laws to the extent that such compliance relates to or is in connection with its rights and/or obligations under this agreement.
  4. At the other party's reasonable request, confirm in writing that it has complied with its obligations under this clause and provide any information reasonably requested by the other party in support of such compliance.

12. Force majeure

Neither party shall be in breach of this agreement nor liable for delay in performing, or failure to perform, any of its obligations under this agreement if such delay or failure results from events, circumstances or causes beyond its reasonable control. In such circumstances, the affected party shall be entitled to a reasonable extension of the time for performing such obligations. If the period of delay or non-performance continues for 6 weeks, the party not affected may terminate this agreement with immediate effect by giving written notice to the affected party.

13. Notices

Save that day to day “business as usual” communications may be made verbally or by email, any demand, notice or communication (“Notice”) must be in writing and may be given by:

  1. hand;
  2. recorded delivery;
  3. registered post;
  4. registered airmail; or
  5. E-mail, provided that if Notice is given by e-mail, it must be followed by one of the methods listed in clauses 1) to 4) above, and shall not be deemed to have been validly given if it is not followed.

Notices shall be deemed to have been duly served:

  1. If delivered by hand, at the time and date of delivery.
  2. If sent by recorded delivery or registered post, 48 hours from the date of posting (such date as evidenced by postal receipt).
  3. If sent by registered airmail, five days from the date of posting.
  4. If sent in accordance with governing law and jurisdiction, at the time of transmission of the email.

14. Waiver

No failure or delay by a party to exercise any right or remedy provided under this agreement or by law shall constitute a waiver of that or any other right or remedy, nor shall it prevent or restrict the further exercise of that or any other right or remedy. No single or partial exercise of such right or remedy shall prevent or restrict the further exercise of that or any other right or remedy.

15. Remedies

Except as expressly provided in this agreement, the rights and remedies provided under this agreement are in addition to, and not exclusive of any rights or remedies provided by law.

16. Entire agreement

  1. This agreement, any Statement of Work, and the documents annexed as appendices to this agreement or otherwise referred to herein constitute the whole agreement between the parties relating to the subject matter hereof and supersedes all prior agreements, arrangements and understandings between the parties relating to that subject matter.
  2. Each party acknowledges that, in entering into this agreement, it does not rely on any statement, representation, assurance or warranty (whether it was made negligently or innocently) of any person (whether a party to this agreement or not) other than as expressly set out in this agreement.
  3. Nothing in this clause shall limit or exclude any liability for fraud.

17. Variation

No variation of this agreement shall be effective unless it is in writing and signed by the parties (or their authorised representatives).

18. No partnership or agency

Nothing in this agreement is intended to, or shall be deemed to establish any partnership or joint venture between any of the parties, constitute any party the agent of another party, or authorise any party to make or enter into any commitments for or on behalf of any other party. Each party confirms it is acting on its own behalf and not for the benefit of any other person.

19. Severance

If any provision or part-provision of this agreement is or becomes invalid, illegal or unenforceable, it shall be deemed modified to the minimum extent necessary to make it valid, legal and enforceable. If such modification is not possible, the relevant provision or part-provision shall be deemed deleted. Any modification to or deletion of a provision or part-provision under this clause shall not affect the validity and enforceability of the rest of this agreement.

If any provision or part-provision of this agreement is invalid, illegal or unenforceable, the parties shall negotiate in good faith to amend such provision so that, as amended, it is legal, valid and enforceable, and, to the greatest extent possible, achieves the intended commercial result of the original provision.

20. Alienation

The Supplier may at any time assign all or some of its rights and obligations under this agreement to a Holding Company and Subsidiary, provided that it gives prior written notice of such assignment to the Customer.

The Customer shall not assign any of its rights and obligations under this agreement.

The Supplier may subcontract any of its obligations under this agreement to any third party.

21. Account Information

The transfer of Account Information through the API is subject to the following:

  1. The End-User’s agreement to the End-User Terms of Service.
  2. The End-User providing correct and accurate credentials to access the Account Information.
  3. The Customer’s compliance with the terms and conditions of this Agreement.

The Customer acknowledges that an End-User may withdraw any consent it has granted to the Supplier to process Account Information at any time pursuant to the Supplier’s terms, and the Supplier shall not be liable to the Customer to the extent that it is prevented from providing the Customer with Account Information in these circumstances.

22. Security and Access Controls

The Supplier shall use reasonable endeavours to protect Account Information and ensure the End-Users’ privacy in accordance with applicable law.

The Customer:

  1. May only download Account Information pursuant to, and in accordance with, account information requirements.
  2. Shall not access or attempt to access any part or parts of the service and/or API to which it has not been granted access to by the Supplier.
  3. shall notify the Supplier immediately if it becomes aware of any unauthorised access or use of the service and/or API (or any part thereof) or any other actual or potential breach of security in relation to the service and/or API (or any part thereof) and provide such reasonable assistance to the Supplier with regard to abating such access, use or breach as the Supplier shall reasonably request.
  4. Shall be responsible for any third party using the Customer's encryption key.
  5. Shall not share with any third party the Customer's encryption key that could be used to access the service, API and/or any Account Information without the Supplier's prior written consent and shall ensure that such encryption key is only used by the individual(s) nominated to access the same. If such individual(s) cease to act in an authorised capacity on behalf of the Customer for any reason, the Customer shall immediately notify the Supplier and remove the encryption key from such individual(s); and
  6. Shall not use the service or API to transfer or knowingly receive any malicious software or any material or content that is obscene, offensive, abusive, harassing, indecent, defamatory or discriminatory or which infringes the Intellectual Property Rights of any third party or whose transfer by the Customer would otherwise be unlawful, including under all applicable competition laws.

The Customer shall promptly notify the Supplier and change the password(s) it uses to access the service and/or API in the event that any individual user has left the Customer’s organisation.

23. Governing law and jurisdiction

This agreement and any dispute or claim arising out of or in connection with it or its subject matter or formation (including non-contractual disputes or claims) shall be governed by and construed in accordance with the laws of England and Wales.
The parties irrevocably agree that the courts of England and Wales shall have exclusive jurisdiction to settle any dispute or claim that arises out of or in connection with this agreement or its subject matter or formation (including non-contractual disputes or claims).

24. Schedule 1: Data Requirements - Account Information

Account Information shall include, but not be limited to, the following financial and personal information:

Subscribe to our newsletter

Don’t fret, we’re not fans of spam either.


protected by reCAPTCHA: PrivacyTerms