Helping small web agencies manage their WordPress sites

Terms and Conditions and Data Protection

1. The Vendor will carry out our work in accordance with good industry practice and at the standard expected from a suitably qualified person with relevant experience.
2. The Vendor cannot accept liability for losses caused by the unavailability, malfunction or interruption of the Client's website.
3. The Vendor cannot guarantee that its work will be error-free, due to the nature of the WordPress and plugins in the WordPress Plugins Directory.
4. In order to protect the confidentiality and trade secrets of the Client and without prejudice to every other duty to keep secret all information given to it or gained in confidence, the Vendor agrees on its own part and on behalf of its Staff as follows:
1. Not at any time whether during or after an Assignment (unless expressly so authorised by the Client as a necessary part of the performance of its duties) to disclose to any person or to make use of any of the trade secrets or confidential information of the Client;
2. To deliver up to the Client (as directed) at the end of each Assignment all documents and other materials created by it or the Staff during the course of the Assignment;
3. Not at any time to make any copy, abstract, summary or précis of the whole or any part of any document or other material belonging to the Client except when required to do so in the course of its duties under an Assignment in which event any such item shall belong to the Company as appropriate.
5. It is expressly agreed that the Vendors obligations as therein set out shall remain in full force and effect and shall remain fully enforceable by the Client notwithstanding the termination or assignment of this agreement.
6. Either party for whatever reason can immediately terminate this Contract for Services and no notice is required to be given.
7. The Vendor consents to the Client holding and processing data relating to the Vendor for legal, personnel, administrative and management purposes and in particular to the processing of any “sensitive personal data” as defined by the Data Protection Act 1998 relating to you.
8. These terms are governed by the law of England, Scotland & Wales and are subject to the exclusive jurisdiction of the Courts of England, Scotland & Wales.
9. The personal data Vendor collects will be used only for the purpose of this Agreement.
10. The Vendor complies with the data protection principles set out below. When processing personal data, it ensures that:
    1. it is processed lawfully, fairly and in a transparent manner in relation to the data subject (“lawfulness, fairness and transparency”) it is collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes ('purpose limitation')
    2. it is all adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed ('data minimisation')
    3. it is all accurate and, where necessary, kept up to date and that reasonable steps will be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay ('accuracy')
    4. it is kept in a form that permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed ('storage limitation')
    5. it is processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures (“integrity and confidentiality”)
11. The Vendor will facilitate any request from a data subject who wishes to exercise their rights under data protection law as appropriate, always communicating in a concise, transparent, intelligible and easily accessible form and without undue delay.
12. Vendor will:
ensure that the legal basis for processing personal data is identified in advance and that all processing complies with the law
1. not do anything with your data that you would not expect given the content of this policy and the fair processing or privacy notice
2. ensure that appropriate privacy notices are in place advising staff and others how and why their data is being processed, and, in particular, advising data subjects of their rights
3. only collect and process the personal data that it needs for purposes it has identified in advance
4. ensure that, as far as possible, the personal data it holds is accurate, or a system is in place for ensuring that it is kept up to date as far as possible
5. only hold onto your personal data for as long as it is needed, after which time The Vendor will securely erase or delete the personal data
6. ensure that appropriate security measures are in place to ensure that personal data can only be accessed by those who need to access it and that it is held and transferred securely
13. The Vendor will ensure that all staff who handle personal data on its behalf are aware of their responsibilities under this policy and other relevant data protection and information security policies and that they are adequately trained and supervised.