Terms of Service: Cloud Hosting

Effective Date: 7/1/2025

Last Updated: 6/24/2025

Website: https://www.udcus.com

1. Scope and Acceptance

These Terms apply to all users of UDC cloud hosting services, including virtual machines, cloud storage, databases, and related infrastructure. If you use our services, then you agree to these terms.

In the event of any conflict or inconsistency between these Terms of Service and the terms of a separately executed Master Services Agreement (MSA) between UDC and a client, the terms of the Master Services Agreement shall prevail.

The MSA governs the provision of services, service levels, data protection obligations, fees, liability, and other commercial or legal terms agreed upon between the parties. These Terms of Service shall apply only to the extent that they do not conflict with any applicable MSA.

2. Information Security Management System (ISMS)

UDC maintains an Information Security Management System aligned with ISO/IEC 27001:2022. We commit to protecting the confidentiality, integrity, and availability of your data, and to continual improvement of our security controls.

You are responsible for complying with your own security obligations, including user access management and endpoint security.

3. Account Registration and User Responsibilities

To use our Services, you must create an account and provide accurate, complete, and up-to-date information. You are responsible for:

  • Keeping your credentials secure.
  • Deactivating user accounts when they are no longer necessary
  • Managing access controls within your organization.
  • Notifying us immediately of any unauthorized access.

You must ensure that your use of the Services complies with all applicable laws, regulations, and contractual obligations.

4. Acceptable Use

You agree not to use the Services for:

  • Any unlawful, abusive, or fraudulent activity.
  • Hosting malicious code, botnets, or phishing infrastructure.
  • Disclosing or storing personal data without proper consent or legal basis.
  • Circumventing security controls, attempting to exploit vulnerabilities, or interfering with the operation of the Services.

Violations of this policy may result in service suspension, termination, and legal action.

5. Data Protection and Privacy

We process and store customer data in accordance with:

  • ISO/IEC 27001:2022 controls
  • Applicable privacy laws including GDPR and CCPA where relevant

UDC does not access, use, or disclose customer data except:

  • As required to provide the Services
  • To comply with legal obligations
  • As authorized by you in writing

We retain logs, backup data, and audit records in accordance with our data retention policy, accessible upon request.

6. Confidentiality

All customer data, support communications, and technical configurations are treated as confidential. Our employees and subprocessors are contractually obligated to uphold strict confidentiality obligations.

We will notify you promptly in the event of a confirmed or suspected data breach, consistent with ISO 27001 incident response procedures.

7. Service Levels and Availability

We provide a service uptime depending on the level of service purchased.

Incident management and service monitoring are in place. All outages and SLA performance metrics are logged and reviewed as part of our ISMS framework.

8. Data Ownership and Portability

You retain ownership of all data and content uploaded to the Services.

At your request and upon account termination, we will make your data available for export for up to 30 days. After this period, all data is securely deleted in compliance with our data destruction policy and ISO 27001 controls.

9. Intellectual Property

All UDC technology, infrastructure, branding, and materials remain the exclusive property of UDC or its licensors.

You may not reverse engineer, decompile, copy, or replicate any part of the platform or Services.

10. Termination

You may terminate your use of the Services at any time. UDC may terminate your account for:

  • Violation of these Terms
  • Failure to pay
  • Security concerns or legal orders

Upon termination, your data is retained and then deleted in accordance with Section 8.

11. Compliance and Audit Rights

We undergo regular internal audits and third-party assessments as part of our ISO/IEC 27001:2022 certification.

Upon reasonable request, and subject to non-disclosure agreements, we may provide audit summaries, penetration testing results, or security documentation to customers with regulated or critical workloads.

12. Modifications

We may update these Terms from time to time to reflect changes in the law, services, or policies. Updates will be posted on our website and, where required, we will notify you via email. Continued use of the Services constitutes acceptance of the updated Terms.

13. Contact

For questions about these terms or to request security documentation, contact:

UDC
Address: 82 Inverness Drive E. Suite 1A
Website: https://www.udcus.com