Schedule 3
Cloud Exchange Services
Service Terms
These Service Terms set out the terms and conditions specially applicable to the Cloud Exchange services (“Service” and the term “Services” shall be construed accordingly) to be provided by the Company to the Customer in accordance with the signed Order Form (“Order Form”) (if any). These Service Terms form part of an Agreement (as defined in the SA) regarding the Service.
Unless otherwise defined below, words and expressions in these Service Terms have the same meaning as set out in the SA and the Service Level Agreement, as appropriate.
The Order Form will specify which services and which options will apply.
These Service Terms are strictly limited to the provision of the Services and shall not apply to any other service(s) that may be provided by the Company to the Customer under any other Agreement.
1 Overview
1.1 These Service Terms are only applicable for Service(s) provided by the Company and its Affiliates.
1.2 Except as expressly stated in these Service Terms, all the terms and conditions of the SA are incorporated into these Service Terms by reference, and both Parties agree that they are bound by, and shall observe and comply with, such terms and conditions. If the Services involve provision of services in Mainland China, in order to comply with compliance requirements, the Customer shall procure its End Users in Mainland China to sign simultaneously the required documents with the Company's entity in Mainland China, and sign the "Letter of Network and Information Security Commitment" in Annex 2 of these Service Terms.
2. Service Terms
2.1 Description of products and services
Cloud Exchange is the Company's service for connecting global public clouds through a software-defined network, with physical resources relying on a global backbone network built and operated by the Company.
2.2 Acceptance
2.2.1 The Company shall use its best endeavours to install the Service on each Site in accordance with the Order Form as soon as possible from the Commencement Date, but in any event shall not be later than the Ready for Service Date.
2.2.2 The Customer shall conduct the acceptance test in relation to the Service within 3 days from the Ready for Service Date (the "Acceptance Testing Period") to determine whether the Service complies with the Acceptance Criteria. If:
(a) the Customer notifies the Company in writing within the Acceptance Testing Period that the Service complies with the Acceptance Criteria; or
(b) the Company does not receive any written notice from the Customer on expiry of the Acceptance Testing Period,
then it shall be deemed that (1) the Customer has accepted the Service; and (2) the Company has started to deliver the Service to the Customer from the Ready for Service Date.
2.2.3 If the Customer notifies the Company in writing during the Acceptance Testing Period that the Service does not comply with the Acceptance Criteria:
(a) the Company shall promptly take such reasonable action as is necessary to correct any such non-compliance in relation to the delivery of the Service; and
(b) upon correction of such non-compliance by the Company, the mechanism in terms of Acceptance Testing Period under Clause 2.2 above shall apply.
2.2.4 The Customer's acceptance of the Service shall not be unreasonably withheld or delayed.
3. Charge(s) of the Services
3.1 Cloud Exchange service supports monthly/annual/dynamic billing and other billing methods, and the Customer shall pay the relevant Charge(s) to the Company in accordance with the agreed price and the terms in the relevant Agreement.
3.2 Resource expiration/deletion and handling of outstanding Charge(s)
Unless the Customer has renewed the term of Service before expiry, otherwise the Company has the right to disconnect the network interconnection services provided by the Services after expiration of the term of Service. Upon expiry of the term of Service, the Company has the right to retain the configuration data of the Cloud Exchange service for fifteen (15) days (i.e. these fifteen (15) days shall count from the hour and minute on the day when the said network interconnection service is suspended and ends on the same hour and minute on the fifteenth (15th) day afterwards). If the term of Service has not been renewed at the expiration of the aforesaid fifteen (15) days, then the Company may immediately release the Customer's Cloud Exchange service capacity and delete the Cloud Exchange service configuration data upon expiration of the aforesaid period.
4. Service level agreements
The Company commits to provide the Service to the Customer in accordance with the requirements of the "Cloud Exchange Service Level Agreement" in Annex 1.
5. Service norms
5.1 The Customer understands and agrees that the use of the Service is the result of the Customer's own independent and prudent judgment, and that the Customer shall be responsible for the results of the Customer's own judgment or the Customer's own actions, including but not limited to:
5.1.1 Customer should plan in advance that the VPC network segments, ASNs, and interconnecting IPs of each public cloud resource pool that interconnect with the Cloud Exchange service should not be in conflict, including in duplication, overlapping, etc., and that the corresponding public cloud resources (e.g., VPCs, cloud hosts, etc.) should be activated in advance;
5.1.2 In order that orders can be processed and Service can be provisioned swiftly, Customer should estimate in advance the network bandwidth of each public cloud resource pool site that are to be interconnected using the Cloud Exchange service;
5.1.3 If the Customer uses some other services of the Company while using the Cloud Exchange service, then unless otherwise agreed by both Parties, the Customer shall pay the Charge(s) to the Company for such other services in accordance with the applicable rate and comply with the relevant Service Terms;
5.2 The Company will provide the Cloud Exchange services in accordance with these Service Terms, and the Services only include network bandwidth, ports, and other services within the scope of the Cloud Exchange service.
5.3 Service dependencies and impacts
5.3.1 Under normal circumstances, Customer will need to use other public cloud resource services (e.g., virtual private cloud/cloud host/cloud router, etc.) in conjunction with the Cloud Exchange service and the Customer is required to activate and subscribe to those basic resource services in advance in the relevant public cloud platform, and to pay for such services separately.
5.3.2 Before activating the network interconnection capacity of this Service, basic cloud resource services such as virtual private cloud and cloud hosting will normally need to be activated in advance, accordingly if such basic service that supports this Service is unavailable or is terminated, the use of this Service may also be affected.
6. Annexes
The Parties agree that the Annexes are an integral part of these Service Terms. In the event of any conflict between the Annexes and the body of these Service Terms, the body of these Service Terms shall prevail.
Annex 1 Cloud Exchange Service Level Agreement
Annex 2 Letter of Network and Information Security Commitment
Annex 3 Data Processing Addendum for Cloud Exchange Sales Services
Annex 1 Cloud Exchange Service Level Agreement
Article I. General Provisions
Currently, the service level indicators defined by the Cloud Exchange service include, POP node service availability (Service Availability), delay between POP nodes within the core backbone network (PoP-PoP Latency), and packet loss rate between POP nodes within the core backbone network (PoP-PoP packet loss rate). This service quality index system only involves the performance index between network nodes in the core coverage area of this Service, and does not commit to end-to-end and heterogeneous inter-network service traffic.
Article II. Description of services and commitments
2.1. Definition of business quality indicators
(1) Service Availability of Backbone Network Nodes (Service Availability)
Definition of Backbone Network Node Service Availability Rate Indicator: The cumulative hours of customer access to the Company's Cloud Exchange POP nodes for Cloud Exchange normal service in a billing cycle (usually in units of a natural month or from the starting date of the lease to the end of that natural month), as a percentage of the total hours of the month.
The service availability rate is calculated by the time of service connection. Since the service interface of Cloud Exchange service is not a full segment end-to-end service, the above service availability rate does not directly represent the service availability rate on the customer side, but is only defined as the port availability rate of the customer's access to the Company's POP node. If the availability rate index of the transmission segment between the Customer delivery point and the Company's POP node is required, it will be separately provided by the transmission segment provider according to the specific project.
(2) Average delay within the backbone network (PoP-PoP Latency)
Definition of Average Intra-Backbone Network Delay: The monthly average value of RTD delay of data packets between various gateway nodes in the Company's network during a billing cycle (usually measured in a natural month). The delay value does not include the delay generated by local access segments, customer's internal LAN network, other third-party networks, etc.
The measurement method is as follows: for various packets with packet lengths of 64, 128, and 512 bytes, 100 packets of each size are continuously pinged to derive the delay values under various packet lengths. The inter-node delay is the arithmetic average of the delay under various packet lengths.
Calculation method of monthly average delay: Test every 30 minutes according to the above measurement method, and statistically arithmetic average the test results by natural month.
(3) Packet Loss Rate within the backbone network (Packet Loss Rate)
Definition of Average Packet Loss Rate Indicator within Backbone Network: Statistical average of the percentage average of packets lost during packet transmission between PE nodes of two service areas within the network as a percentage of the total packets sent in a billing cycle (usually in units of one natural month). Packet loss is defined as test packet unresponsive or network delay exceeding 2000ms during the statistical period.
The measurement method is: for packet lengths of 64, 128, and 512 bytes, continuously ping 100 packets of each packet size to obtain the packet loss rate under various packet lengths. The average packet loss rate is the arithmetic mean of the packet loss rates under various packet lengths.
Calculation method of monthly average packet loss rate: Test every 30 minutes according to the above measurement method, and statistically arithmetic average the test results by natural month.
2.2 Criteria for reimbursement of services
(1) POP node service availability
The service availability commitments for POP access nodes are listed below
|
Measured service availability |
Applicable scenarios |
|
99.9% |
Single line, backbone lateral band protection |
|
99.95% |
Dual line, backbone and access side with protection |
|
99.99% |
Top-level, scenario-specific commitments |
The service availability payout criteria for accessing PoP points are divided according to different scenarios .
Refer to the following table for unprotected single line service availability payout rates
|
Monthly service availability % |
Monthly service unavailability duration (For reference only, subject to actual calculations) |
Monthly benefit ratio |
|
≥99.5% |
Not more than 3.6 hours |
inapplicable |
|
< 99.50% and ≥ 99.00% |
More than 3.6 hours but not more than 7.2 hours |
5% |
|
<99.00% and ≥ 98.50% |
More than 8 hours but not more than 10.8 hours |
10% |
|
<98.50% |
Over 10.8 hours |
20% |
Refer to the following table for single line service availability payout rates for backbone sideband protection
|
Monthly service availability % |
Monthly service unavailability duration (For reference only, subject to actual calculations) |
Monthly benefit ratio |
|
≥99.90% |
No more than 44 minutes |
inapplicable |
|
<99.90% and ≥ 99.50% |
More than 44 minutes but not more than 3.6 hours |
5% |
|
< 99.50% and ≥ 99.00% |
More than 3.6 hours but not more than 7.2 hours |
10% |
|
<99.00% |
Over 7.2 hours |
20% |
Refer to the following table for the backbone side with protected two-wire service availability payout rates
|
Monthly service availability % |
Monthly service unavailability duration (For reference only, subject to actual calculations) |
Monthly benefit ratio |
|
≥99.95% |
No more than 22 minutes |
inapplicable |
|
<99.95% and ≥ 99.50% |
More than 22 minutes but not more than 3.6 hours |
5% |
|
< 99.50% and ≥ 99.00% |
More than 3.6 hours but not more than 7.2 hours |
10% |
|
<99.00% |
Over 7.2 hours |
20% |
(2) POP node service availability
If the measured latency within the cloud-connected network exceeds 10% of the committed value (except during scheduled maintenance), the criteria in the following table can be referenced for failure notification
|
Measured delay exceedance range |
network quality |
|
<10.0% |
normalcy |
|
10.1%-20% |
performance degradation |
|
20.1%-30.0% |
Performance deterioration |
|
>30.1% |
Severe performance degradation |
(3) Packet loss rate between nodes within the backbone network
The committed average packet loss rate between nodes in the cloud exchange network is less than or equal to 1% (monthly average statistical value); when the actual average packet loss rate is greater than the commitment of the average packet loss rate, the fault declaration can be made according to the following table
|
Actual average packet loss |
network quality |
|
≦ 1% |
0 |
|
>1% |
performance degradation |
2.3 Circumstances in which compensation does not apply
The Company does not provide compensation for services that are interrupted or unavailable due to the following reasons:
(1) Emergency or regular maintenance;
(2) Interruption of service due to force majeure as specified in the relevant Agreement;
(3) If the level of service is directly or indirectly affected by an act or omission of the Customer, the end user or their authorized persons;
(4) End user-initiated system upgrades or the use or installation of user-side applications;
(5) Suspension or termination of services under the relevant Agreement; and
(6) Service interruptions not caused by failure of power, equipment, facilities, systems or connections of the Company.
2.4 Entry into force of the agreement and others
This Service Level Agreement shall be effective and complied with from the date the Customer applies for Cloud Exchange services. The termination date shall be subject to the termination of the Agreement related to the Services.
For claims incurred due to failure to meet the requirements under this Service Level Agreement, the aggregate monthly compensation ratio shall be capped at 20% of the monthly rental fee of the affected site.
Article III. Maintenance
The Company may suspend service during maintenance or upgrading of its network. In the event of routine, scheduled maintenance, the Company will provide reasonable advance notice to the Customer. For emergency maintenance, the Company will provide as much notice as possible under the circumstances. In all cases, the Company will work with the Customer to minimize disruption of service. Under no circumstances will any planned interruption or routine maintenance be considered a service interruption. Unless otherwise stated in the Service Level Agreement, the Customer is not entitled to any compensation based on such maintenance.
Annex 2 Letter of Network and Information Security Commitment
Letter of Network and Information Security Commitment
《网络及信息安全承诺书》
本单位与贵公司签订《云连接服务合同》或类似合同、订单(以下统称“合同”)使用云连接业务(“业务”)。本单位郑重承诺遵守本承诺书,如有违反本承诺书有关条款的行为,本单位承担由此带来的一切民事、行政和刑事责任。
We have entered into a CloudExchange Service contract or similar contract or order form (together as “Contract”) with you under which certain CloudExchange services (together as “Services”) are provided to us. We promise to abide by this Letter and shall bear all civil, administrative and criminal liabilities arising therefrom if there is any violation of the relevant clauses of this Letter by us.
一、本单位承诺遵守《中华人民共和国网络安全法》《全国人民代表大会常务委员会关于加强网络信息保护的决定》《中华人民共和国电信条例》《中华人民共和国计算机信息系统安全保护条例》《计算机信息网络国际联网安全保护管理办法》《互联网信息服务管理办法》《非经营性互联网信息服务备案管理办法》《移动互联网应用程序信息服务管理规定》《电信和互联网用户个人信息保护规定》和《公共互联网网络安全突发事件应急预案》及有关法律、法规、规章和政策文件规定(“相关规定”)。
1. We warrant to comply with the Network Security Law of the People's Republic of China, the Decision of the Standing Committee of the National People's Congress on Strengthening the Protection of Network Information, the Regulations of the People's Republic of China on Telecommunications, the Regulations of the People's Republic of China on the Protection of Computer Information Systems, the Computer Information Network International Network Security Protection Management Measures, the Internet Information Service Management Measures, the Non-commercial Internet Information Service Filing Management Measures, the Mobile Internet Application Information Service Management Regulations, the Telecommunications and Internet User Personal Information Protection Regulations, the Public Internet Network Security Emergency Response Plan and relevant laws, regulations, rules and policies (together the "Related Regulations").
二、本单位承诺按照相关规定、政府主管部门要求以及合同约定规范使用业务,不得超出合同约定的范围和用途使用业务,具备所从事业务的全部合法必要的资质条件。
2. We warrant to use the Services in accordance with Related Regulations, the requirements of the government authorities and the Contract, and shall not use the Services beyond the scope and purpose agreed in the Contract, and have all the legal and necessary qualifications for the business we engage in.
三、本单位承诺按照用户真实身份信息制度(“实名制”)的要求提供身份信息、使用业务,并保证所提供信息、资料的真实、完整、准确、有效。
3. We warrant to provide identity information and use Services in accordance with the requirements of the user’s true identity information system ("Real Name System"), and to ensure that the information and materials provided are true, complete, accurate and effective.
四、本单位保证不利用网络(包括但不限于固定网、移动网、互联网,下同)从事危害国家安全、泄露国家秘密等违法犯罪活动,不侵犯他人的合法权益。
4. We guarantee not to use the network (including but not limited to fixed network, mobile network, internet, the same as below) to engage in illegal and criminal activities such as endangering national security, leaking state secrets, and not to infringe on the legitimate rights and interests of others.
五、本单位承诺严格按照国家相关法律法规做好本单位网络安全、信息安全管理工作,健全各项网络安全管理制度和落实各项安全保护技术措施,按政府主管部门要求设立信息安全责任人和信息安全审查员,当安全责任人发生变更时及时通知贵公司。否则,导致的一切后果由本单位承担,贵公司有权立即终止合同。
5. We warrant to do a good job in our network and information security management in strict accordance with Related Regulations, to complete various network security management systems and implement various security protection technical measures, and set the positions of the person in charge of information security and information security inspector in accordance with the requirements of government authorities, and shall notify you in time when the person in charge of the information security changes. All the liabilities arising from our breach of the above warranties shall be undertaken by us, and you have the right to terminate the Contract immediately.
六、本单位承诺配合贵公司为公安机关、国家安全机关等政府部门依法维护国家安全和侦查犯罪的活动提供协助,如实提供有关安全保护的信息、资料及数据文件,积极协助查处信息网络违法犯罪行为。
6. We warrant to cooperate with you to provide assistance to public security authorities, national security authorities and other government departments in legally maintaining national security and investigating criminal activities, provide true information, data and files related to security protection, and actively assist in the investigation of information network related illegal and criminal activities.
七、本单位承诺发送信息的真实性、准确性、合法性,承诺发布的内容应严格遵守相关规定,不通过网络制作、复制、查阅和传播有害信息,不得散发传播违法、不健康反动等信息,不得制作、复制、查阅和传播任何含有违反下列要求的内容之一(即“九不准”及“六不许”内容)的信息:
“九不准”,即不准制作、复制、查阅和传播含有以下内容的信息:
1、反对宪法所确定的基本原则的;
2、危害国家安全,泄露国家秘密,颠覆国家政权,破坏国家统一的;
3、损害国家荣誉和利益的;
4、煽动民族仇恨、民族歧视,破坏民族团结的;
5、破坏国家宗教政策,宣扬邪教和封建迷信的;
6、散布谣言,扰乱社会秩序,破坏社会稳定的;
7、散布淫秽、色情、赌博、暴力、凶杀、恐怖或者教唆犯罪的;
8、侮辱或者诽谤他人,侵害他人合法权益的;
9、含有法律法规禁止的其他内容的。
“六不许”,即:
1、决不允许在群众中散布违背党的理论和路线方针政策的意见;
2、决不允许公开发表同中央的决定相违背的言论;
3、决不允许对中央的决策部署阳奉阴违;
4、决不允许编造、传播政治谣言及丑化党和国家形象的言论;
5、决不允许以任何形式泄露党和国家的秘密;
6、决不允许参与各种非法组织和非法活动。
7. We guarantee the authenticity, accuracy, and legality of the information to be sent, and warrant the content to be published shall strictly abide by the Related Regulations, not to make, copy, review and disseminate harmful information through the internet, not to distribute or disseminate illegal, unhealthy information, not to produce, copy, review and disseminate any information that violates one of the following requirements (i.e., Nine Prohibited and Six Not-allowed content).
The Nine Prohibitions means that the production, reproduction, review and dissemination of information containing the following contents are prohibited:
1) Opposing the basic principles established by the state constitution;
2) Endangering national security, leaking state secrets, subverting state power, and undermining national unity;
3) Damage to national honor and interests;
4) Inciting ethnic hatred, ethnic discrimination, and undermining ethnic unity;
5) Undermining the state's religious policies, promoting cults and feudal superstition;
6) Spread rumors, disrupt social order, and undermine social stability;
7) Spreading obscenity, pornography, gambling, violence, murder, terror or instigating crime;
8) Insulting or slandering others, infringing on the legal rights of others;
9) Contains other content prohibited by laws and regulations.
Six Not-allowed means:
1) It is never allowed to disseminate opinions that violate the theory, guidelines, principles and policies of the Communist Party of China (the “Party”) among the people;
2) It is never allowed to publicly publish remarks that are contrary to the decision of the central committee of the Party;
3) It is never allowed to violate the central government's decision-making and deployment;
4) Never allow fabricating or spreading political rumors and speech that defames the image of the Party and the country;
5) Never divulge Party and state secrets in any form;
6) Never allow participation in various illegal organizations and illegal activities.
八、本单位承诺不从事任何危害网络安全、信息安全的活动,包括但不限于:
1、未经允许进入网络或者使用网络资源的;
2、未经允许对网络功能进行删除、修改或者增加的;
3、未经允许对网络中存储或者传输的数据和应用程序进行删除、修改或者增加的;
4、故意制作、传播网络病毒等破坏性程序的;
5、其他危害网络安全的。
8. We warrant not to engage in any activities that endanger network and information security, including but not limited to:
1) Entering the network or using network resources without permission;
2) Delete, modify or add network functions without permission;
3) Delete, modify or add data and applications stored or transmitted on the network without permission;
4) Deliberately making and spreading network viruses and other destructive programs;
5) Other activities endangering network security.
九、本单位使用互联网接入类业务的(包括但不限于电路使用、互联网数据中心、互联网专线、云主机等),承诺遵守以下规定:
(一)具备从事互联网服务的全部合法必要的资质条件,已履行相关规定要求的手续或已取得有关资质证明文件。在签署合同前, 本单位向贵公司提供主体资格文件、资质证明文件的原件供贵公司审核,复印件(加盖公章)供贵公司留存,并保证所提供资料的真实、完整、准确、有效。在合同有效期/服务期限内,如本单位提交的主体资格、资质证明文件所记载内容出现变更,本单位将在完成变更后尽快向贵公司提供最新的文件。前述主体资格文件、资质证明文件包括但不限于营业执照、增值电信业务经营许可证、广告经营许可证、非经营性互联网信息服务备案证明以及贵公司要求提交的其他文件。其中:
1、本单位如从事电子公告、新闻、出版、教育、医疗保健、药品和医疗器械、文化、广播电影电视节目等特殊互联网信息服务,应当根据相关规定经政府主管部门审核同意,履行批准或备案手续,并取得通信主管部门批准或备案文件。
2、本单位如从事非经营性互联网信息服务,应当首先履行互联网备案手续,并按期履行年度审核手续。本单位委托贵公司提供代备案服务的,应当向贵公司提供代备案所需信息并对该等信息进行动态维护和更新,定期向贵公司及通信主管部门报送网站管理所需信息。本单位承诺所提交的所有备案信息真实、完整、准确、有效,当备案信息发生变化时将及时在备案系统中更新,如因未及时更新而导致备案信息不准确,贵公司有权依法采取暂停或终止提供服务、断开网络接入等关闭处理措施。
3、本单位如从事经营性互联网服务,应当取得相应的增值电信业务经营许可证。
4、本单位如从事经营性互联网服务,应当在其网站主页的显著位置标明其经营许可证编号;本单位如从事非经营性互联网服务,本单位网站开通时在主页底部的中央位置标明其备案编号,并在备案编号下方链接工业和信息化部备案管理系统网址,供社会公众查询核对;本单位将按照工业和信息化部备案管理系统的要求,将备案电子验证标识放置在其网站的指定目录下。
(二)如经贵公司许可进入中国电信机房时,应当严格遵守机房的各项管理规定。
(三)根据当地公安局网监分局的要求,在入网后5个工作日内在网上提交备案信息,提交信息后10个工作日内办理备案。
9. We warrant to comply with the following regulations if we use internet access services (including but not limited to circuit use, internet data centers, internet dedicated lines, cloud hosts, etc.):
(1) we have all the legally necessary qualifications to engage in internet services, have fulfilled the procedures required by relevant regulations, or have obtained relevant qualification certification documents. Before signing the Contract, we will provide you with the originals of the main qualification documents and certificates for your review, and the photocopies (with official common seal) for your filing, and ensure that the information provided is true, complete, accurate and effective . During the term of the Contract/service period, if there is a change in the content of the qualification and certificates submitted by us, we will provide the latest documents to you as soon as possible after the change is completed. The aforementioned qualification documents and certificates include but are not limited to business licenses, value-added telecommunications business licenses, advertising business licenses, non-commercial internet information service filing certificates, and other documents required by you. Among them:
i. If we engage in special internet information services such as electronic announcements, news, publishing, education, health care, medicines and medical equipment, culture, radio, film and television programs, etc., we shall be approved by the competent government authorities in accordance with Related Regulations, and perform approval or filing procedures, and obtain approval or filing documents from the competent communications authorities.
ii. If we engage in non-commercial internet information services, we shall first perform internet filing procedures and perform annual review procedures on schedule. If we entrust you to provide filing services, we shall provide you with the information required for filing, maintain and update such information dynamically, and regularly report the information required for website management to you and the telecommunications authorities. we promise that all the filing information submitted is true, complete, accurate, and effective. When the filing information changes, it will be updated in the filing system in a timely manner. If the filing information is inaccurate due to failure to update in time, you have the right to suspend the Services according to law or even terminate the provision of Services, disconnect the network access and take other closure measures.
iii. If we engage in commercial internet services, we shall obtain a corresponding value-added telecommunications license.
iv. If we engage in commercial internet services, we shall indicate our license number in a prominent position on the homepage of our website; If we engage in non-commercial internet services, our filing number should be marked in the center at the bottom of the homepage when our website is launched, and the website link of the filing management system of the Ministry of Industry and Information Technology should be put under the filing number for the public’s check and verification; We shall place the filing electronic verification mark on its website in accordance with the requirements the filing management system of the Ministry of Industry and Information Technology.
2. If we enter your computer room with your permission, we shall strictly abide by the management regulations of the computer room.
3. According to the requirements of the network supervision branch of the local public security bureau, the filing information shall be submitted online within 5 working days after accessing the network, and the filing shall be completed within 10 working days after the information is submitted.
十、本单位承诺在业务使用过程中发生重大安全事故时,立即采取应急措施,保留有关原始记录,在24小时内向有关部门报告并书面通知贵公司。如发生重大安全事故或其他影响网络安全、信息安全的突发事件,贵公司有权采取包括但不限于停止业务等紧急措施,以保证网络安全和信息安全。
10. We warrant to take emergency measures immediately when a major security accident occurs during the use of the Services, keep the relevant original records, report to the relevant authorities within 24 hours and notify you in writing. In the event of major security accidents or other emergencies that affect network and information security, you have the right to take emergency measures including but not limited to suspension of business to ensure network security and information security.
十一、本单位如出现任何违反上述承诺的情况,将依据合同承担违约责任,接受有关政府主管部门的处理(包括但不限于限期整改、公开曝光),并直接承担相应法律责任,造成财产损失的,由本单位直接赔偿。同时,贵单位有权在不通知本单位的情况下暂停、停止业务直至解除合同并不承担任何责任,一切责任后果全部由本单位自行承担。给贵公司造成损失或不良影响的,本单位将负责消除不良影响并赔偿贵公司相应损失。
11. If we violate any of the above warranties, we shall undertake the liabilities for breach of Contract, accept the penalties imposed by the relevant government authorities (including but not limited to remedy within required time limit, public exposure), and directly assume corresponding legal liabilities as well as to compensate for all the property losses thus cased if any. At the same time, you have the right to suspend or terminate the Services without notice or any liability. All liabilities and consequences therefrom shall be borne by ourselves. If you suffer any loss or adverse effects from our breach, we will be liable for eliminating the adverse effects and compensate you fully for the corresponding losses.
十二、如出现任何违反上述承诺的情况引发的投诉、举报,由本单位负责解决并承担责任。当通信主管部门、“12321网络不良与垃圾信息举报受理中心”、中国电信10000热线等各类渠道投诉、举报达到或超过[ 2 ]件/月时,贵公司有权在不通知本单位的情况下立即停止业务。
12. If there is any complaint or report caused by violation of the above warranties, we are responsible for the settlement and shall assume all the liabilities. When complaints and reports from various channels such as the competent communications authorities, 12321 Network Bad and Spam Report Acceptance Center, China Telecom 10000 hotline and other channels reach or exceed [2] pieces/month, you have the right to terminate the Services immediately without notice.
十三、本单位承诺与最终用户参照签订此类《网络及信息安全承诺书》,并督促最终用户履行相应责任。否则,本单位承担连带责任。
13. We warrant and undertake to sign this Letter or similar document with end users (if any), and urge end users to perform corresponding obligations, failing which we shall bear joint and several liabilities.
十四、本承诺书以中英文书写,二者如有任何不一致,概以中文为准。本承诺书经本单位签署后,与合同同时生效。
14. This Letter is drafted in both Chinese and English languages and the Chinese version shall prevail in case of any inconsistency between the 2 versions. This Letter will take effect at the same time as the Contract after being duly executed by us.
承诺单位(盖章)Company Name (Seal):
单位地址Company Address:
联系人姓名Contact Name:
联系人电话Contact Phone Number:
法定代表人、负责人或授权代表签字:
Signature of Legal or Authorized Representative:
日期Date:
Annex 3
Data Processing Addendum for Cloud Exchange Services
This Data Processing Addendum (“Addendum”) is applicable to the Services under relevant Order Form (if any), and forms part of the Agreement (as defined in the SA) for the Services, in addition to the data protection provisions under the SA.
Unless otherwise defined below, words and expressions in these Service Terms have the same meaning as set out in the SA or the Service Terms for the Service, as appropriate.
In this Addendum, the terms of "Controller" and "Processor" shall have the meanings set forth in the Applicable Privacy Laws.
1. Relationship of the Parties
1.1 Controller means Customer, Processor means Company or its Affiliate, Sub-processor means any manufacturer of the Equipment and Company’s Supplied Equipment and any third-party backend service provider who processes the Customer Personal Data.
1.2 Controller hereby appoints Company as its Processor to Process Personal Data as necessary for provision of the Services. Each Party shall comply with the obligations that apply to it under the Applicable Privacy Laws.
1.3. Sub-processors
Company may partner with service providers that act as sub-processors and contract to provide the same level of data protection and information security that Customer can expect from Company. The sub-processors for the Services may be listed in this Addendum or on the Company official website and updated from time to time.
2. Purpose limitation
2.1. Company shall process Controller’s Personal Data as a Processor and strictly in accordance with the documented instructions of Controller (the "Permitted Purpose"), except where otherwise required by Applicable Privacy Laws.
2.2 Company shall not retain, use, or disclose Controller’s Personal Data for any purpose other than for the specific purpose of performing the Services or as otherwise permitted by law or outside the direct business relationship between the Controller and Company.
3. International transfers
Upon Customer’s written instruction, Company may transfer Controller’s Personal Data outside of the European Economic Area ("EEA") and/or the United Kingdom (“UK”) to a recipient who has signed standard contractual clauses approved by the relevant authorities or to a country recognized as providing adequate protection for Personal Data by the European Commission or the UK Secretary of State.
4. Confidentiality of Processing
Company shall ensure that any person that it authorises to process Controller’s Personal Data (an "Authorised Person") shall be subject to a contractual or statutory duty of confidentiality and shall not permit any person to process the Personal Data who is not under such a duty of confidentiality. Company shall ensure that all Authorised Persons process Controller’s Personal Data only as necessary for the Permitted Purpose.
5. Subprocessing
Any sub-processor that Company appoints to Process Controller’s Personal Data shall be required by Company to meet the data protection standards required by this Addendum. Controller agrees that Supplier may use sub-processors. For any sub-processors that are designated by Customer, Customer shall ensure that they meet the data protection standards required by the Applicable Law and Addendum. Company shall not be held liable for such designation if no liability is incurred due to Company.
6. Cooperation and Data Subjects' Rights
6.1 As applicable, Company shall provide and/or ensure the Sub-processor (as the case maybe for the equipment manufacturer and service provider) reasonable and timely assistance to Controller to enable Controller to respond to any request from a Data Subject to exercise any of its rights under Applicable Privacy Laws (including its rights of access, correction, objection, erasure and Data portability, as applicable); and any other correspondence, enquiry or complaint received from a Data Subject, regulator or other third party in connection with the Processing of the Data.
6.2 Data Subject Requests shall be requested by Controller by submitting a formal request in written to Company at dataprotection@chinatelecomglobal.com.
7. Security Incidents
Upon becoming aware of a confirmed Security Incident, Company shall inform Controller without undue delay and shall provide all such timely information and cooperation as Controller may need to fulfil its reporting obligations under Applicable Privacy Laws. Company shall take measures and actions as are necessary to remedy or mitigate the effects of the Security Incident and shall keep Controller informed of developments in connection with the Security Incident.
8. Deletion or Return of Data
Upon termination or expiry of the Agreement, Company shall by itself or ensure that Sub-processor destroys or returns to Controller all Controller’s Personal Data in its possession or control including any such data Company provided to a service provider for Processing. This requirement shall not apply to the extent that Company is required by any law to retain some or all of the Personal Data, in which event Company shall isolate and protect the Personal Data from further Processing except to the extent required by such law.
9. Technical and Organizational Measures
9.1 Company shall maintain comprehensive security policies and procedures considering both industry standards and legal and regulatory requirements to ensure data protection.
9.2 Company shall implement stringent access controls and advanced monitoring capabilities to protect the integrity and confidentiality of data processed.
9.3 Access to data and processing facilities shall be controlled based on the "need to know" principle. The systems shall be managed with a focus on maintaining confidentiality, integrity, and availability, supported by necessary technical safeguards such as encryption.
9.4 Systems shall be configured to generate and store security logs, which are essential for monitoring, auditing, and responding to security incidents within the Service framework. An incident management process shall be maintained to address global roles and responsibilities during incident response phases, ensuring timely reporting and investigation .
9.5 Regular vulnerability assessments shall be conducted with appropriate and timely remediation actions taken to address identified risks. Facility access controls, along with data center technical requirements, shall be maintained to ensure the devices, and information assets integral to Company’s Services.
10. International Data Transfer Compliance
10.1 In any instance where Personal Data is transferred outside its country of origin, each Party shall ensure that such transfers are conducted in full compliance with Applicable Privacy Laws. The Company agrees to provide reasonable and timely assistance to the Customer, upon request, to facilitate the Customer's compliance with its obligations under Applicable Privacy Laws. The Company shall not knowingly perform its obligations under the main Agreement(s) in a manner that would cause the Customer to breach any obligations concerning the Transferred Data.
10.2 For Personal Data subject to GDPR, transferred to jurisdictions outside the European Economic Area (EEA), the Customer shall be deemed the "data exporter," and the Company the "data importer." The transfer shall incorporate by reference the Standard Contractual Clauses outlined in the Commission Implementing Decision (EU) 2021/914 of June 4, 2021. Ireland shall be the agreed governing law and jurisdiction for disputes. The Data Protection Commission of Ireland shall be the competent supervisory authority. In the event of any conflict between the Standard Contractual Clauses and the provisions of this Addendum, the Standard Contractual Clauses shall take precedence.
10.3 Regarding Personal Data governed by the UK GDPR, when transferred to jurisdictions outside the United Kingdom (UK), the Customer shall be regarded as the "data exporter," and the Company as the "data importer." The transfer shall include by reference the approved UK International Data Transfer Addendum to the European Commission’s Standard Contractual Clauses ("UK Addendum"). Any conflict between the terms of the Standard Contractual Clauses and the UK Addendum shall be settled in accordance with the provisions outlined in Sections 10 and 11 of the UK Addendum.
云连接服务协议
版本生效日期:2024-04-16
特别提示:
(“本协议”)系客户与中国电信国际有限公司(“国际公司”,客户与中国电信国际有限公司,合称为“双方”)签订的,关于客户向中国电信国际有限公司购买、由中国电信国际有限公司向客户提供的云连接服务的约定。
客户在订购和使用云连接服务前,敬请认真阅读、充分理解本协议全部内容,包括但不限于免除或者限制中国电信国际有限公司责任的条款、对客户权利进行限制的条款等,该等条款将以加粗字体或其他醒目形式提示。
如果客户对本协议有疑问,请通过本协议载明的方式询问,中国电信国际有限公司将向客户进行解释和说明。如果客户不同意本协议的任何内容或者无法准确理解中国电信国际有限公司的解释,请不要订购或使用中国电信国际有限公司服务。
当客户通过网络页面点击确认、订购或以其他任何方式实际使用中国电信国际有限公司服务,均表示客户已阅读并充分理解本协议之全部内容,同意接受本协议的全部内容,受其约束。如果客户不同意接受本协议,请勿订购和使用中国电信国际有限公司服务。
I.说明
1.客户与中国电信国际有限公司之间的云连接服务受到本协议以及客户已接受中国电信国际有限公司网门户《隐私政策》《使用条款》《服务条款》及不时发布和更新的条款和条件、规则和政策(合称“中国电信国际有限公司服务合同及规则”)的约束。客户接受中国电信国际有限公司服务合同及规则的形式包括但不限于客户在中国电信国际有限公司网门户注册、订购服务时线上点击同意。
2.本协议未约定的事项,以中国电信国际有限公司服务合同及规则为准;本协议与中国电信国际有限公司服务合同及规则就同一事项的约定存在冲突的,以本协议约定为准。
3.本协议由如下各项文件组成:
(1)I.说明;
(2)II.《通用条款和条件》;
(3)III.《专用服务条款》及其附件;
(4)中国电信国际有限公司网门户中(包括但不限于中国电信国际有限公司网门户帮助文档页面中)展示的具体产品/服务的相关服务规则,包括但不限于服务说明、技术规范、使用流程、续订规则、退订规则,以及明确双方关于使用和提供中国电信国际有限公司服务权利义务的其它法律文件;
(5)订单。
上述各文件彼此相互解释、相互补充,如上述文件之间就同一事项的约定、解释出现冲突,应以本条上述排列次序在后的文件所表述的意思为准;当同一顺序的多份文件之间发生内容冲突时,应以文件形成时间较后的为准。当不同产品或服务的《专用服务条款》就同一事项约定、解释不一致时,各产品或服务应分别以其各自的《专用服务条款》为准。客户使用本协议的服务涉及为中华人民共和国境内的最终用户提供服务的,应同时签署本协议的附件《网络及信息安全承诺书》。
4.本协议签订后,如客户就购买的本协议项下服务需要中国电信国际有限公司另行出具书面确认文件的,中国电信国际有限公司向客户提供的订购确认文件仅应客户要求出具,不是订立合同的确认书,不影响本协议、中国电信国际有限公司服务合同及规则的效力,不对双方已确认的订单、本协议、中国电信国际有限公司服务合同及规则构成任何修订与补充,也不对其效力产生任何影响。
II.通用条款和条件
详见:https://www.chinatelecomglobal.com/sc/footer/show/2484
III.专用服务条款
1.产品和服务说明
中国电信国际有限公司根据本协议约定,向客户提供云连接产品服务(“本服务”)。 云连接产品是国际公司通过软件定义网络连接全球公有云的服务,物理资源依靠国际公司搭建和运营的全球骨干网。
2. 验收期
云连接产品服务的验收期为三个自然日。
3. 服务费用
3.1 云连接产品服务支持包月/包年/动态计费等计费方式,客户应当按照订购页面提示及本协议约定价格向国际公司支付服务费用。
3.2 资源到期/删除与欠费处理
用户订购并使用云连接产品后,如果客户拟在服务期限届满后继续使用云连接产品,客户应在服务到期前及时续订和续费。否则,国际公司有权在服务期限届满后中断客户云连接产品提供的网络互通服务。服务期限届满后,国际公司有权保留该云连接产品的配置数据十五(15)日(即网络互通服务被暂停之日的暂停开始时刻至第十五(15日)相同时刻为期限届满);如前述十五(15)日期间届满仍未续订和续费,国际公司有权在前述期间届满时立即释放客户的云连接服务资源,并删除云连接产品配置数据。
4. 服务水平协议
国际公司承诺按照【附件《中国电信国际有限公司云连接产品服务等级协议》】的要求,向客户提供本服务。
5. 服务规范
5.1 客户理解并同意,使用本服务是客户自行独立审慎判断的结果,客户应当对客户自行判断结果或自行操作的行为负责,包括但不限于:
5.1.1 客户应提前规划使用云连接产品互通的各个公有云资源池VPC网段、ASN、互联IP不可冲突,包括重复、重叠等情况,并预先开通相应公有云资源(如:VPC、云主机等);
5.1.2 客户应提前预估预测使用云连接产品互通的各个公有云资源池站点的网络带宽,便于订购云连接产品时可快速下单并开通;
5.1.3 如客户在使用云连接产品服务时同时使用了中国电信国际有限公司其他服务(除非双方另有约定),客户应当按照相应的服务费用标准向国际公司支付服务费用,并遵守相应的服务条款;
5.2 国际公司将按照本协议约定提供云连接产品服务,服务仅包含云连接产品本身范围内的网络带宽、端口等服务。
5.3 产品生效依赖及影响
5.3.1 正常情况下客户使用云连接产品服务时,需使用其它公有云资源服务(如虚拟私有云/云主机/云路由器等),客户仍需在对应公有云平台提前开通、订购这些基础资源类产品,并另行付费。
5.3.2 本服务的网络互通能力实现前通常需先行开通虚拟私有云、云主机等基础云资源类服务,因此,当客户开通本服务时所依赖的基础服务发生可用性问题或服务终止时,可能会引起本服务无法正常使用。
6. 权利
中国电信国际公司有限公司保留随时更新产品附录的权利。如果国际公司更改或修改了产品附录,国际公司将通过公开网络发布或电子邮件向用户提供至少三十日的通知。如用户不同意更改,则用户有权在新产品附录生效日期之前终止受影响的服务。用户在新产品附录生效日期之后继续使用受影响的服务视为用户接受新产品附录并放弃根据本附录终止服务的权利。
7. 附件
双方同意,附件为本协议不可分割的部分。若附件与本协议正文有任何冲突,以本协议正文为准。
附件《中国电信国际有限公司云连接产品服务等级协议》
第一条 总则
目前云连接产品定义的业务水平指标包括,POP节点服务可用率(Service Availability)、核心骨干网内POP节点间时延(PoP-PoP Latency )、核心骨干网内POP节点间丢包率(PoP-PoP packet loss rate)。本业务质量指标体系只涉及中国电信国际有限公司本产品核心覆盖区域的网络节点之间的性能指标,不承诺端到端以及异网间的业务流量。
第二条 服务说明与承诺
2.1.业务质量指标定义
(1)骨干网节点服务可用率(Service Availability)
骨干网节点服务可用率指标定义:在一个计费周期内(通常为一个自然月为单位或从起租日起至该自然月结束),客户接入中国电信国际公司云连接POP节点获取云连接正常服务的累计时长,占当月总时长的百分比。
服务可用率的计算按服务连接的时间统计。因为云连接产品的服务界面并不是全段端到端的服务,以上服务的可用率不直接代表客户侧的服务可用率,而仅定义为客户接入中国电信POP节点端口可用率。如果需要从客户交付点到中国电信POP节点之间的传输段可用率指标,则根据具体项目由传输段提供方另行提供。
(2)骨干网内平均时延(PoP-PoP Latency)
骨干网内平均时延指标定义:在一个计费周期内(通常为一个自然月为单位),数据包在中国电信网内各网关节点间RTD时延的月平均值。时延数值不包括本地接入段、客户内部LAN网络、其他第三方网络等产生的时延。
测量方法为:针对数据包长为64、128、512字节的各种数据包,每种大小的数据包持续Ping测100个包,得出各种数据包长下的时延值。节点间时延为各种数据包长下时延的算术平均值。
月平均时延计算方法:按上述测量方法每隔30分钟测试一次,对测试结果按自然月统计算术平均。
(3)骨干网内丢包率(Packet Loss Rate)
骨干网内平均丢包率指标定义:在一个计费周期内(通常为一个自然月为单位),网内两个业务区域PE节点间数据包传送过程中丢掉的数据包占总发送数据包的百分比平均值的统计平均。丢包定义为测试数据包在统计期内未响应或网络时延超过2000ms。
测量方法为:针对数据包长为64、128、512字节的各种数据包,每种大小的数据包持续Ping测100个包,得出各种数据包长下的丢包率。平均丢包率为各种数据包长下丢包率的算术平均值。
月平均丢包率计算方法:按上述测量方法每隔30分钟测试一次,对测试结果按自然月统计算术平均。
2.2 服务赔付标准
(1)POP节点服务可用率
POP接入节点的服务可用率承诺如下表
|
实测服务可用率 |
适用情景 |
|
99.9% |
单线,骨干侧带保护 |
|
99.95% |
双线,骨干和接入侧带保护 |
|
99.99% |
最高级别,针对特定场景的承诺 |
接入PoP点的服务可用率赔付标准按照不同的场景进行划分 。
无保护的单线服务可用率赔付标准参照下表
|
月服务可用率% |
每月服务不可用持续时间 (仅供参考,以实际计算为准) |
月赔付比例 |
|
≥99.5% |
不超过3.6小时 |
不适用 |
|
<99.50% and ≥ 99.00% |
超过3.6小时,但不超过7.2小时 |
5% |
|
<99.00% and ≥ 98.50% |
超过8小时,但不超过10.8小时 |
10% |
|
<98.50% |
超过10.8小时 |
20% |
骨干侧带保护的单线服务可用率赔付标准参照下表
|
月服务可用率% |
每月服务不可用持续时间 (仅供参考,以实际计算为准) |
月赔付比例 |
|
≥99.90% |
不超过44分钟 |
不适用 |
|
<99.90% and ≥ 99.50% |
超过44分钟,但不超过3.6小时 |
5% |
|
<99.50% and ≥ 99.00% |
超过3.6小时,但不超过7.2小时 |
10% |
|
<99.00% |
超过7.2小时 |
20% |
骨干侧带保护的双线服务可用率赔付标准参照下表
|
月服务可用率% |
每月服务不可用持续时间 (仅供参考,以实际计算为准) |
月赔付比例 |
|
≥99.95% |
不超过22分钟 |
不适用 |
|
<99.95% and ≥ 99.50% |
超过22分钟,但不超过3.6小时 |
5% |
|
<99.50% and ≥ 99.00% |
超过3.6小时,但不超过7.2小时 |
10% |
|
<99.00% |
超过7.2小时 |
20% |
(2)骨干网内平均时延
云连接网内实测时延超过承诺值10%时(在计划维护期间除外),可以参考下表中标准进行故障申告
|
实测时延超标范围 |
网络质量 |
|
<10.0% |
正常 |
|
10.1%-20% |
性能下降 |
|
20.1%-30.0% |
性能劣化 |
|
>30.1% |
性能严重劣化 |
(3)骨干网内节点间丢包率
云连接网内节点间承诺平均丢包率小于或等于1%(月平均统计值);当实际平均丢包率大于平均丢包率承诺时,可根据下表进行故障申告
|
实际平均丢包率 |
网络质量 |
|
≦ 1% |
0 |
|
>1% |
性能下降 |
2.3 赔偿不适用的情况
因以下原因导致的服务中断或不可用,国际公司不提供服务赔偿:
(1)紧急或定期维护;
(2)协议及销售合同中规定的不可抗力造成的服务中断;
(3)因客户、用户或其授权者的行为或是不作为而直接或间接影响服务水平的;
(4)用户启动的系统升级或用户端的应用程式的使用或安装;
(5)根据主协议暂停或终止服务;
(6)非国际公司或其关联公司的电力、设备、设施、系统或连接故障所导致的服务中断。
2.4 协议生效及其他
本承诺书自用户申请云连接服务之日起生效并遵行。终止日期以《中国电信国际公司云连接服务协议》的终止为准。
因性能无法达到客户要求而产生赔付的,合计月赔付比例上限为影响站点的月租费用的20%
第三条 维护
国际公司可在维护或更新其网络期间暂停服务。 如果进行例行、有计划的维护,国际公司将向客户提供合理的事先通知。对于紧急维护,国际公司将根据具体情况尽可能地提供通知。在所有情况下,国际公司将与客户合作,将服务的中断最小化。在任何情况下,任何有计划的中断或例行维护都不被视为服务中断。除非在服务水平协议中另有说明,否则客户无权依据此类维护而获得任何补偿。
附件《网络及信息安全承诺书》
网络及信息安全承诺书
本单位与贵公司签订《云连接服务合同》或类似合同、订单(以下统称“合同”)使用云连接业务(“业务”)。本单位郑重承诺遵守本承诺书,如有违反本承诺书有关条款的行为,本单位承担由此带来的一切民事、行政和刑事责任。
We have entered into an [ CloudExchange Service]contract or similar contract or order form (together as “Contract”) with you under which certain CloudExchange services (together as “Services”) are provided to us. We promise to abide by this Letter and shall bear all civil, administrative and criminal liabilities arising therefrom if there is any violation of the relevant clauses of this Letter by us.
一、本单位承诺遵守《中华人民共和国网络安全法》《全国人民代表大会常务委员会关于加强网络信息保护的决定》《中华人民共和国电信条例》《中华人民共和国计算机信息系统安全保护条例》《计算机信息网络国际联网安全保护管理办法》《互联网信息服务管理办法》《非经营性互联网信息服务备案管理办法》《移动互联网应用程序信息服务管理规定》《电信和互联网用户个人信息保护规定》和《公共互联网网络安全突发事件应急预案》及有关法律、法规、规章和政策文件规定(“相关规定”)。
1. We warrant to comply with the Network Security Law of the People's Republic of China, the Decision of the Standing Committee of the National People's Congress on Strengthening the Protection of Network Information, the Regulations of the People's Republic of China on Telecommunications, the Regulations of the People's Republic of China on the Protection of Computer Information Systems, the Computer Information Network International Network Security Protection Management Measures, the Internet Information Service Management Measures, the Non-commercial Internet Information Service Filing Management Measures, the Mobile Internet Application Information Service Management Regulations, the Telecommunications and Internet User Personal Information Protection Regulations, the Public Internet Network Security Emergency Response Plan and relevant laws, regulations, rules and policies (together the "Related Regulations").
二、本单位承诺按照相关规定、政府主管部门要求以及合同约定规范使用业务,不得超出合同约定的范围和用途使用业务,具备所从事业务的全部合法必要的资质条件。
2. We warrant to use the Services in accordance with Related Regulations, the requirements of the government authorities and the Contract, and shall not use the Services beyond the scope and purpose agreed in the Contract, and have all the legal and necessary qualifications for the business we engage in.
三、本单位承诺按照用户真实身份信息制度(“实名制”)的要求提供身份信息、使用业务,并保证所提供信息、资料的真实、完整、准确、有效。
3. We warrant to provide identity information and use Services in accordance with the requirements of the user’s true identity information system ("Real Name System"), and to ensure that the information and materials provided are true, complete, accurate and effective.
四、本单位保证不利用网络(包括但不限于固定网、移动网、互联网,下同)从事危害国家安全、泄露国家秘密等违法犯罪活动,不侵犯他人的合法权益。
4. We guarantee not to use the network (including but not limited to fixed network, mobile network, internet, the same as below) to engage in illegal and criminal activities such as endangering national security, leaking state secrets, and not to infringe on the legitimate rights and interests of others.
五、本单位承诺严格按照国家相关法律法规做好本单位网络安全、信息安全管理工作,健全各项网络安全管理制度和落实各项安全保护技术措施,按政府主管部门要求设立信息安全责任人和信息安全审查员,当安全责任人发生变更时及时通知贵公司。否则,导致的一切后果由本单位承担,贵公司有权立即终止合同。
5. We warrant to do a good job in our network and information security management in strict accordance with Related Regulations, to complete various network security management systems and implement various security protection technical measures, and set the positions of the person in charge of information security and information security inspector in accordance with the requirements of government authorities, and shall notify you in time when the person in charge of the information security changes. All the liabilities arising from our breach of the above warranties shall be undertaken by us, and you have the right to terminate the Contract immediately.
六、本单位承诺配合贵公司为公安机关、国家安全机关等政府部门依法维护国家安全和侦查犯罪的活动提供协助,如实提供有关安全保护的信息、资料及数据文件,积极协助查处信息网络违法犯罪行为。
6. We warrant to cooperate with you to provide assistance to public security authorities, national security authorities and other government departments in legally maintaining national security and investigating criminal activities, provide true information, data and files related to security protection, and actively assist in the investigation of information network related illegal and criminal activities.
七、本单位承诺发送信息的真实性、准确性、合法性,承诺发布的内容应严格遵守相关规定,不通过网络制作、复制、查阅和传播有害信息,不得散发传播违法、不健康反动等信息,不得制作、复制、查阅和传播任何含有违反下列要求的内容之一(即“九不准”及“六不许”内容)的信息:
“九不准”,即不准制作、复制、查阅和传播含有以下内容的信息:
1、反对宪法所确定的基本原则的;
2、危害国家安全,泄露国家秘密,颠覆国家政权,破坏国家统一的;
3、损害国家荣誉和利益的;
4、煽动民族仇恨、民族歧视,破坏民族团结的;
5、破坏国家宗教政策,宣扬邪教和封建迷信的;
6、散布谣言,扰乱社会秩序,破坏社会稳定的;
7、散布淫秽、色情、赌博、暴力、凶杀、恐怖或者教唆犯罪的;
8、侮辱或者诽谤他人,侵害他人合法权益的;
9、含有法律法规禁止的其他内容的。
“六不许”,即:
1、决不允许在群众中散布违背党的理论和路线方针政策的意见;
2、决不允许公开发表同中央的决定相违背的言论;
3、决不允许对中央的决策部署阳奉阴违;
4、决不允许编造、传播政治谣言及丑化党和国家形象的言论;
5、决不允许以任何形式泄露党和国家的秘密;
6、决不允许参与各种非法组织和非法活动。
7. We guarantee the authenticity, accuracy, and legality of the information to be sent, and warrant the content to be published shall strictly abide by the Related Regulations, not to make, copy, review and disseminate harmful information through the internet, not to distribute or disseminate illegal, unhealthy information, not to produce, copy, review and disseminate any information that violates one of the following requirements (i.e., Nine Prohibited and Six Not-allowed content).
The Nine Prohibitions means that the production, reproduction, review and dissemination of information containing the following contents are prohibited:
1) Opposing the basic principles established by the state constitution;
2) Endangering national security, leaking state secrets, subverting state power, and undermining national unity;
3) Damage to national honor and interests;
4) Inciting ethnic hatred, ethnic discrimination, and undermining ethnic unity;
5) Undermining the state's religious policies, promoting cults and feudal superstition;
6) Spread rumors, disrupt social order, and undermine social stability;
7) Spreading obscenity, pornography, gambling, violence, murder, terror or instigating crime;
8) Insulting or slandering others, infringing on the legal rights of others;
9) Contains other content prohibited by laws and regulations.
Six Not-allowed means:
1) It is never allowed to disseminate opinions that violate the theory, guidelines, principles and policies of the Communist Party of China (the “Party”) among the people;
2) It is never allowed to publicly publish remarks that are contrary to the decision of the central committee of the Party;
3) It is never allowed to violate the central government's decision-making and deployment;
4) Never allow fabricating or spreading political rumors and speech that defames the image of the Party and the country;
5) Never divulge Party and state secrets in any form;
6) Never allow participation in various illegal organizations and illegal activities.
八、本单位承诺不从事任何危害网络安全、信息安全的活动,包括但不限于:
1、未经允许进入网络或者使用网络资源的;
2、未经允许对网络功能进行删除、修改或者增加的;
3、未经允许对网络中存储或者传输的数据和应用程序进行删除、修改或者增加的;
4、故意制作、传播网络病毒等破坏性程序的;
5、其他危害网络安全的。
8. We warrant not to engage in any activities that endanger network and information security, including but not limited to:
1) Entering the network or using network resources without permission;
2) Delete, modify or add network functions without permission;
3) Delete, modify or add data and applications stored or transmitted on the network without permission;
4) Deliberately making and spreading network viruses and other destructive programs;
5) Other activities endangering network security.
九、本单位使用互联网接入类业务的(包括但不限于电路使用、互联网数据中心、互联网专线、云主机等),承诺遵守以下规定:
(一)具备从事互联网服务的全部合法必要的资质条件,已履行相关规定要求的手续或已取得有关资质证明文件。在签署合同前, 本单位向贵公司提供主体资格文件、资质证明文件的原件供贵公司审核,复印件(加盖公章)供贵公司留存,并保证所提供资料的真实、完整、准确、有效。在合同有效期/服务期限内,如本单位提交的主体资格、资质证明文件所记载内容出现变更,本单位将在完成变更后尽快向贵公司提供最新的文件。前述主体资格文件、资质证明文件包括但不限于营业执照、增值电信业务经营许可证、广告经营许可证、非经营性互联网信息服务备案证明以及贵公司要求提交的其他文件。其中:
1、本单位如从事电子公告、新闻、出版、教育、医疗保健、药品和医疗器械、文化、广播电影电视节目等特殊互联网信息服务,应当根据相关规定经政府主管部门审核同意,履行批准或备案手续,并取得通信主管部门批准或备案文件。
2、本单位如从事非经营性互联网信息服务,应当首先履行互联网备案手续,并按期履行年度审核手续。本单位委托贵公司提供代备案服务的,应当向贵公司提供代备案所需信息并对该等信息进行动态维护和更新,定期向贵公司及通信主管部门报送网站管理所需信息。本单位承诺所提交的所有备案信息真实、完整、准确、有效,当备案信息发生变化时将及时在备案系统中更新,如因未及时更新而导致备案信息不准确,贵公司有权依法采取暂停或终止提供服务、断开网络接入等关闭处理措施。
3、本单位如从事经营性互联网服务,应当取得相应的增值电信业务经营许可证。
4、本单位如从事经营性互联网服务,应当在其网站主页的显著位置标明其经营许可证编号;本单位如从事非经营性互联网服务,本单位网站开通时在主页底部的中央位置标明其备案编号,并在备案编号下方链接工业和信息化部备案管理系统网址,供社会公众查询核对;本单位将按照工业和信息化部备案管理系统的要求,将备案电子验证标识放置在其网站的指定目录下。
(二)如经贵公司许可进入中国电信机房时,应当严格遵守机房的各项管理规定。
(三)根据当地公安局网监分局的要求,在入网后5个工作日内在网上提交备案信息,提交信息后10个工作日内办理备案。
9. We warrant to comply with the following regulations if we use internet access services (including but not limited to circuit use, internet data centers, internet dedicated lines, cloud hosts, etc.):
1) we have all the legally necessary qualifications to engage in internet services, have fulfilled the procedures required by relevant regulations, or have obtained relevant qualification certification documents. Before signing the Contract, we will provide you with the originals of the main qualification documents and certificates for your review, and the photocopies (with official common seal) for your filing, and ensure that the information provided is true, complete, accurate and effective . During the term of the Contract/service period, if there is a change in the content of the qualification and certificates submitted by us, we will provide the latest documents to you as soon as possible after the change is completed. The aforementioned qualification documents and certificates include but are not limited to business licenses, value-added telecommunications business licenses, advertising business licenses, non-commercial internet information service filing certificates, and other documents required by you. Among them:
a) If we engage in special internet information services such as electronic announcements, news, publishing, education, health care, medicines and medical equipment, culture, radio, film and television programs, etc., we shall be approved by the competent government authorities in accordance with Related Regulations, and perform approval or filing procedures, and obtain approval or filing documents from the competent communications authorities.
b) If we engage in non-commercial internet information services, we shall first perform internet filing procedures and perform annual review procedures on schedule. If we entrust you to provide filing services, we shall provide you with the information required for filing, maintain and update such information dynamically, and regularly report the information required for website management to you and the telecommunications authorities. we promise that all the filing information submitted is true, complete, accurate, and effective. When the filing information changes, it will be updated in the filing system in a timely manner. If the filing information is inaccurate due to failure to update in time, you have the right to suspend the Services according to law or even terminate the provision of Services, disconnect the network access and take other closure measures.
c) If we engage in commercial internet services, we shall obtain a corresponding value-added telecommunications license.
d) If we engage in commercial internet services, we shall indicate our license number in a prominent position on the homepage of our website; If we engage in non-commercial internet services, our filing number should be marked in the center at the bottom of the homepage when our website is launched, and the website link of the filing management system of the Ministry of Industry and Information Technology should be put under the filing number for the public’s check and verification; We shall place the filing electronic verification mark on its website in accordance with the requirements the filing management system of the Ministry of Industry and Information Technology.
2) If we enter your computer room with your permission, we shall strictly abide by the management regulations of the computer room.
3) According to the requirements of the network supervision branch of the local public security bureau, the filing information shall be submitted online within 5 working days after accessing the network, and the filing shall be completed within 10 working days after the information is submitted.
十、本单位承诺在业务使用过程中发生重大安全事故时,立即采取应急措施,保留有关原始记录,在24小时内向有关部门报告并书面通知贵公司。如发生重大安全事故或其他影响网络安全、信息安全的突发事件,贵公司有权采取包括但不限于停止业务等紧急措施,以保证网络安全和信息安全。
10. We warrant to take emergency measures immediately when a major security accident occurs during the use of the Services, keep the relevant original records, report to the relevant authorities within 24 hours and notify you in writing. In the event of major security accidents or other emergencies that affect network and information security, you have the right to take emergency measures including but not limited to suspension of business to ensure network security and information security.
十一、本单位如出现任何违反上述承诺的情况,将依据合同承担违约责任,接受有关政府主管部门的处理(包括但不限于限期整改、公开曝光),并直接承担相应法律责任,造成财产损失的,由本单位直接赔偿。同时,贵单位有权在不通知本单位的情况下暂停、停止业务直至解除合同并不承担任何责任,一切责任后果全部由本单位自行承担。给贵公司造成损失或不良影响的,本单位将负责消除不良影响并赔偿贵公司相应损失。
11. If we violate any of the above warranties, we shall undertake the liabilities for breach of Contract, accept the penalties imposed by the relevant government authorities (including but not limited to remedy within required time limit, public exposure), and directly assume corresponding legal liabilities as well as to compensate for all the property losses thus cased if any. At the same time, you have the right to suspend or terminate the Services without notice or any liability. All liabilities and consequences therefrom shall be borne by ourselves. If you suffer any loss or adverse effects from our breach, we will be liable for eliminating the adverse effects and compensate you fully for the corresponding losses.
十二、如出现任何违反上述承诺的情况引发的投诉、举报,由本单位负责解决并承担责任。当通信主管部门、“12321网络不良与垃圾信息举报受理中心”、中国电信10000热线等各类渠道投诉、举报达到或超过[ 2 ]件/月时,贵公司有权在不通知本单位的情况下立即停止业务。
12. If there is any complaint or report caused by violation of the above warranties, we are responsible for the settlement and shall assume all the liabilities. When complaints and reports from various channels such as the competent communications authorities, 12321 Network Bad and Spam Report Acceptance Center, China Telecom 10000 hotline and other channels reach or exceed[2 ]pieces/month, you have the right to terminate the Services immediately without notice.
十三、本单位承诺与最终用户参照签订此类《网络及信息安全承诺书》,并督促最终用户履行相应责任。否则,本单位承担连带责任。
13. We warrant and undertake to sign this Letter or similar document with end users (if any), and urge end users to perform corresponding obligations, failing which we shall bear joint and several liabilities.
十四、本承诺书以中英文书写,二者如有任何不一致,概以中文为准。本承诺书经本单位签署后,与合同同时生效。
14. This Letter is drafted in both Chinese and English languages and the Chinese version shall prevail in case of any inconsistency between the 2 versions. This Letter will take effect at the same time as the Contract after being duly executed by us.
承诺单位(盖章)Company Name (Seal):
单位地址Company Address:
联系人姓名Contact Name:
联系人电话Contact Phone Number:
法定代表人、负责人或授权代表签字:
Signature of Legal or Authorized Representative:
日期Date:
