ClickCease Legal Agreements For TuxCare

Check the status of CVEs. Learn More.

Click here to view LICENSE-1.2.TXT

READ THIS LICENSE AGREEMENT BEFORE INSTALLING THESE PROGRAMS. THIS LICENSE AGREEMENT IS A LEGAL CONTRACT BETWEEN YOU, AS EITHER AN INDIVIDUAL OR AN ENTITY, AND CLOUD LINUX SOFTWARE INC., DOING BUSINESS AS TUXCARE (“TUXCARE”), GOVERNING YOUR USE OF ANY PROGRAMS DOWNLOADED, INSTALLED OR USED BY YOU (THE “PROGRAMS”). REFERENCES TO “YOU” HEREIN REFER TO BOTH YOU, THE INDIVIDUAL END USER, AND THE ENTITY ON WHOSE BEHALF YOU ARE ACCEPTING THIS LICENSE AGREEMENT. TUXCARE IS UNWILLING TO LICENSE THE PROGRAMS EXCEPT ON THE TERMS CONTAINED IN THIS LICENSE AGREEMENT. THE ACT OF DOWNLOADING, INSTALLING OR USING THE PROGRAMS SHALL CONSTITUTE AN ACCEPTANCE BY YOU OF THE TERMS OF THIS LICENSE AGREEMENT. IF YOU DO NOT WISH TO AGREE TO THE TERMS OF THIS LICENSE AGREEMENT, PROMPTLY EXIT THE INSTALLATION NOW AND REMOVE IT FROM YOUR SYSTEM.

THIS LICENSE AGREEMENT IS THE COMPLETE AND EXCLUSIVE STATEMENT OF TUXCARE’S OBLIGATIONS AND RESPONSIBILITIES TO YOU AS LICENSEE, AND SUPERSEDES ANY OTHER PROPOSAL, REPRESENTATION, OR OTHER COMMUNICATION BY OR ON BEHALF OF TUXCARE RELATING TO THE SUBJECT.

  1. GRANT OF LICENSE.TuxCare hereby grants to you, and you accept, a limited, nonexclusive license to use the Programs in machine-readable, object code form only, and the user manuals accompanying the Programs (the “Documentation”), only as authorized in this License Agreement. For purposes of this License Agreement, the “Programs” include any updates, enhancements, modifications, revisions, or additions to the Programs made by TuxCare and made available to end-users. Notwithstanding the foregoing, TuxCare shall be under no obligation to provide any updates, enhancements, modifications, revisions, or additions to the Programs.You may use one copy of the Programs only on systems, including servers, workstations, virtual machines, blades, nodes, or disk partitions for which you have purchased Subscription Services from TuxCare or its resellers. For purposes of this License Agreement, “use” of the Programs means loading the Programs into the temporary or permanent memory of a computer. Installation of the Programs on a network server solely for distribution to other computers is not “use” of the Programs and is permitted as long as you have purchased Subscription Services for the systems being accessed by the Programs.Your installation or use of the Programs grants TuxCare limited access to your system information for the sole purpose of Cybersecurity analysis and reporting. Such access and information collected include reviewing installed packages and applications, the names, sizes, and attributes of files, the server or system uptime, load, running processes, and debugging information of the patching process and Program.As a condition of the license granted to You pursuant to this License Agreement, You shall pay TuxCare the amount(s) of all applicable license fees. You shall, in addition to the license fees, pay all applicable sales, use, transfer, or other taxes and all duties, whether national, state, or local, however designated, that are levied or imposed by reason of the transaction contemplated under this License Agreement. You shall reimburse TuxCare for the amount of any such taxes or duties paid or incurred directly by TuxCare as a result of this transaction, and you agree that TuxCare may charge any such reimbursable taxes to the payment instrument you used for Your initial payment.Restrictions on Use with cPanel and Plesk: Notwithstanding any other provisions in this License Agreement, licenses for Endless Lifecycle Support (ELS) for CloudLinux 7 and ELS for CentOS 7, when procured directly from CloudLinux, shall not be used on systems running cPanel or Plesk. For systems utilizing cPanel or Plesk, licensing for ELS must be procured through WebPros or its authorized distributors. Any use of directly procured CloudLinux ELS licenses on such systems constitutes a breach of this License Agreement.
  2. AUDITYou agree that on TuxCare’s request, you will certify in writing your compliance with the terms of this License Agreement, including your use of the Programs only on or in connection with the number of systems licensed. You further agree that TuxCare may, during normal business hours and with reasonable prior notice, request and gain access to your premises for the limited purpose of conducting an inspection to determine and verify your compliance with this License Agreement. The inspection will be conducted no more than once per year and in a manner not intended to disrupt your business and will be restricted in scope and duration to that reasonably necessary to achieve its purpose.
  3. PROTECTION OF PROPRIETARY RIGHTS; CONFIDENTIALITY.You acknowledge that the Programs and each of their components are owned by TuxCare and others, and are protected under copyright law and other laws as applicable. Title to the Programs or any copy, modification, or merged portion thereof shall remain with their respective owners, subject to the applicable license. You may commercially redistribute the Programs only if you have entered into a separate agreement with TuxCare authorizing such commercial redistribution or if uxCare has otherwise granted you permission in writing. You agree not to remove any confidential or proprietary legends from the Programs. You acknowledge that, in the event of your breach of any of the provisions of this Section 3, TuxCare will not have an adequate remedy in money or damages. TuxCare shall, therefore, be entitled to obtain an injunction against such breach from any court of competent jurisdiction immediately upon request. TuxCare’s right to obtain injunctive relief shall not limit its right to seek further remedies. This Section 3 shall survive termination for any reason. Your obligations hereunder shall remain in effect for as long as you continue to possess or use the Programs, or any proprietary interests therein. You further agree not to, and You will not permit others to (a) license, sell, rent, lease, assign, distribute, transmit, host, outsource, disclose or otherwise commercially exploit the Programs, (b) copy or use the Programs for any purpose other than as permitted in this License Agreement, (c) remove or alter any trademark, logo, copyright or, patent marking(s), other proprietary notices, legends, symbols or labels in the Programs, or (d) modify, make derivative works of, disassemble, reverse compile or reverse engineer any part of the Programs, including, but not limited to, its license keys, to the fullest extent of the law. All Programs are and remain the confidential information of, and a trade secret of, TuxCare. The Programs does not include any rights to the underlying source code of the Programs, but only a right to use the object/binary code as set forth and restricted herein. You shall not rent, sell, lease, license, sublicense, assign, transfer, publish, disclose, distribute, display, or transcribe in any fashion any of the Programs to others or for any use other than as provided bythis EULA, and any such attempted rental, selling, leasing, licensing, sublicensing, assignment, transfer, publishing, disclosure, distribution, display or transcription shall be null and void.“Confidential Information” shall mean the Programs, any intellectual property of TuxCare or any other information that characterizes as confidential at the time of its disclosure either in writing or orally, except for information which you can demonstrate: (a) is previously rightfully known to you without restriction on disclosure; or (b) is or becomes, from no act or failure to act on your part, generally known in the relevant industry or public domain. You shall use your best efforts to preserve and protect the confidentiality of the Confidential Information at all times, both during the term hereof and for a period of at least 3 years after termination of this License Agreement, provided, however, that any source code or trade secrets you receive shall be held in confidence in perpetuity. You shall not disclose, disseminate, or otherwise publish or communicate Confidential Information to any person, firm, corporation, or other third party without the prior written consent of TuxCare. You shall not use any Confidential Information other than in the as expressly required to use the Programs in accordance with its standard use and in accordance with all Product Information. You are required to notify TuxCare in writing immediately upon discovery of any unauthorized use or disclosure of Confidential Information or any other breach of this License Agreement and to cooperate with TuxCare in every reasonable way to regain possession of Confidential Information and prevent any further unauthorized use. If you are legally compelled to disclose any of the Confidential Information, then, prior to such disclosure, you will (i) immediately notify TuxCare prior to such disclosure to allow TuxCare an opportunity to contest the disclosure, (ii) assert the privileged and confidential nature of the Confidential Information, and (iii) cooperate fully with TuxCare in protecting against any such disclosure and/or obtaining a protective order narrowing the scope of such disclosure and/or use of the Confidential Information. In the event such protection is not obtained, you shall disclose the Confidential Information only to the extent necessary to comply with the applicable legal requirements.
  4. LIMITED WARRANTY; EXCLUSIVE REMEDIES.Limited Warranty: TuxCare warrants that (i) the media on which the Programs are furnished will be free from defects in materials and manufacture under normal use of a period of 30 days from the date of delivery to you; and (ii) TuxCare is the owner or authorized licensee of the Programs, or has the rights to license the Programs to you.No person other than TuxCare, in writing, is authorized to make any representation or warranty to you regarding the Programs.Exclusive Remedy: In the event of a breach of the limited warranty above, your exclusive remedy relative to the Programs shall be for TuxCare, at TuxCare’s option, to either: (i) replace the Programs that do not meet the limited warranty; or (ii) refund to you the Programs license fees (and no other fees) paid by you, during the 12 month period immediately preceding the breach of the limited warranty, for the Programs which fails to comply with the limited warranties.
  5. DISCLAIMER; LIMITATION ON LIABILITYDisclaimer: THE LIMITED WARRANTY ABOVE IS THE SOLE WARRANTY MADE BY TUXCARE. TUXCARE MAKES NO OTHER WARRANTY OF ANY KIND WHATSOEVER, EXPRESS OR IMPLIED. ANY AND ALL WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT ARE EXPRESSLY DISCLAIMED AND EXCLUDED BY TUXCARE.Limitation on Consequential Damages: IN NO EVENT SHALL TUXCARE BE LIABLE TO YOU, AS LICENSEE, OR ANY OTHER PERSON FOR ANY INDIRECT, CONSEQUENTIAL OR INCIDENTAL DAMAGES (INCLUDING DAMAGES FOR BUSINESS PROFITS, BUSINESS INTERRUPTION, LOSS OF BUSINESS INFORMATION OR SIMILAR LOSSES) EVEN IF TUXCARE HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. TUXCARE SHALL HAVE NO LIABILITY OF ANY KIND RELATED TO YOUR DATA, INCLUDING, BUT NOT LIMITED TO, THE LOSS OR DAMAGE THEREOF.Limitation on Liability: THE CUMULATIVE LIABILITY OF TUXCARE TO YOU FOR ALL CLAIMS RELATED TO THE PROGRAMS AND THIS LICENSE AGREEMENT, INCLUDING ANY CAUSE OF ACTION SOUNDING IN CONTRACT, TORT, OR STRICT LIABILITY SHALL NOT EXCEED THE TOTAL AMOUNT OF ALL LICENSE FEES (AND NO OTHER FEES) PAID TO TUXCARE FOR THE PROGRAMS DURING THE TWELVE (12) MONTH PERIOD IMMEDIATELY PRECEDING THE INITIAL EVENT GIVING RISE TO THE CLAIM. All limitations on liability, damages, and claims are intended to apply without regard to whether other provisions of this License Agreement have been breached or have proven ineffective.
  6. TERMINATION.The license granted herein is effective until terminated. The license will automatically terminate without notice if you fail to comply with any provision of this License Agreement. Upon termination of this License Agreement, all rights granted to you pursuant to this License Agreement will terminate and revert to TuxCare. This license may be terminated at any time, for any reason, by TuxCare. TuxCare’s maximum liability for any such termination is to refund to you any prepaid fees.
  7. PERSONAL INFORMATION CONTROL.You agree to comply with all applicable laws, regulations, rulings, and orders of the EU, US, and other countries (including but not limited to the EU’s GDPR) in which you have operations relating to the protection, use, and distribution of personal information of your users or visitors on any devices which have the Program installed or stored. Further, you shall indemnify TuxCare for any and all claims resulting from your violation of any such laws, regulations, rulings, or orders.
  8. EXPORT CONTROL.You agree to comply with all applicable laws, regulations, rulings, and executive orders of the United States relating to the exportation or importation of any copies of the Programs (including but not limited to the export and destination control regulations of the Commerce and Treasury Department) and with all applicable foreign laws relating to the use, importation, licensing or distribution of copies of the Programs. You acknowledge that TuxCare is subject to economic sanctions laws (“Economic Sanctions Laws”), including but not limited to those enforced by the U.S. Department of the Treasury’s Office of Foreign Assets Control (“OFAC”), the European Union, and the United Kingdom. Accordingly, You shall comply with all Economic Sanctions Laws, including, but not limited to, those of the United States, the European Union, and the United Kingdom. You shall not provide access to the TuxCare Products to any individuals identified on OFAC’s list of Specially Designated Nationals (“SDN List”), the UK’s HM Treasury’s Consolidated List of Sanctions Targets, or the EU’s Consolidated List of Persons, Groups, and Entities Subject to EU Financial Sanctions (collectively “Sanctioned Parties”). You shall not take any action that would place TuxCare in a position of non-compliance with any such Economic Sanctions Laws. Furthermore, You represent and warrants that (i) you have not in the past been, and will not be in the future, be connected with any Sanctioned Parties, (ii) shall provide such information regarding any individual or entity which you do business within any location covered by Economic Sanction Laws upon request of TuxCare, and (iii) shall promptly advise TuxCare of any activities which increases the risk of your’s non-compliance with this Section 8 or TuxCare’ compliance with Economic Sanctions Laws. You agree to indemnify and hold TuxCare harmless from any loss, damages, liability, or expenses incurred by TuxCare as a result of your failure to comply with any export regulations or restrictions or otherwise fails to comply with this Section 8.
  9. GENERAL.This License Agreement shall be governed by and construed in accordance with the laws of the State of Delaware and the United States, without regard to any conflict of laws provisions. The rights and obligations of the parties to this License Agreement shall not be governed by the United Nations Convention on the International Sale of Goods. No modification of this License Agreement shall be binding unless it is in writing and is signed by an authorized representative of the party against whom enforcement of the modification is sought; or in the event of TuxCare updating this License Agreement; You agreeing to the modified terms through use of a click through process. Any notices required or permitted under this License Agreement shall be in writing and delivered in person or sent by registered or certified mail, return receipt requested, with proper postage affixed. In the event that any term of this License Agreement is or becomes or is declared to be invalid or void by any court or tribunal of competent jurisdiction, such term shall be null and void and shall be deemed severed from this License Agreement, and all the remaining terms of this License Agreement shall remain in full force and effect.

Effective from December 1, 2024. Archived versions | Download PDF

Please read these Terms of Use carefully before using this website, our products, and/or services (“Services”). The following are terms of a legal agreement between you (“You” or “Your”), as either an individual or an Entity, and Cloud Linux Software, Inc., doing business as TuxCare, and its affiliated companies (“We” or “TuxCare”). References to “You” herein refer to both You, the individual end user, and the entity on whose behalf You are accepting these Terms of Use. By using this website and Services, you have accepted these Terms of Use. If you do not accept these Terms of Use, do not use the website and Services. TuxCare reserves the right to revise the Terms of Use at our sole discretion at any time. Any revisions to the Terms of Use will be effective immediately upon posting by TuxCare. For any material changes to the Terms of Use, TuxCare will take reasonable steps to notify you of such changes via a banner on the website, email notification, another method, or a combination of methods. In all cases, your continued use of the Services after publication of such changes, with or without notification, constitutes binding acceptance of the revised Terms of Use. If at any time the Terms of Use are no longer acceptable to You, you should immediately cease all use of this website and Services.

Definitions

The following definitions are used in this Terms of Use:

“TuxCare” means Cloud Linux Software, Inc. and its affiliated companies.

“Account” means a specific-to-you web-based portal through which you may access and manage the Services, view usage information, and update your profile information.

Key-based licensing account” means a specific-to-you web-based portal through which you may access and manage the Services using only key-based licensing type.

“IP-based licensing account” means a specific-to-you web-based portal through which you may access and manage the Services using both IP-based and key-based licensing types.

“Key-based license” type allows customers to activate the Company’s service(s) using an activation key, which is presented as a unique code and related activation commands.

“IP-based license” type allows customers to activate the Company’s service(s) using an IP address and activation commands.

“Billing Cycle” means the interval of time between invoicing. At TuxCare, a billing cycle is traditionally set on a monthly or yearly basis, depending on the product or service rendered. For example, if the purchase is made on Jan 2nd, invoices will be generated on the 2nd date of each month for monthly subscriptions and on Jan 2nd once a year for yearly subscriptions.

“Chargeback” is a charge that is returned to a payment card after a customer successfully disputes an item on their account statement or transactions report.

“TuxCare Support Portal” means a web-based, browser-accessed self-serve portal that offers information and resources to help users find answers and resolve their issues.

“CloudLinux Network subscriber” means a Customer who registered with the TuxCare portal for the purpose of using TuxCare Services.

“Recurring payment” takes place after the initial charge and allows the automatic deduction of funds from Your account(s ) at scheduled intervals to cover Your subscription fees for Services as long as the subscription is active.

“Payment Information” means any details required for the purchase of Services. This includes, but is not limited to, credit/debit card details, digital wallet such as PayPal, billing address, user’s full name, etc.

“Services” means any products, software, and services available on the TuxCare website.

“Subscription” means a purchase by prepayment for TuxCare Services on a monthly or yearly basis.

“Check-in” is an event where the server communicates with a licensing system (CLN) to confirm its license status.

CloudLinux Network (CLN) is a website for purchasing and managing licenses, servers, and account preferences.

 

Use of Software

Any software (“Software”) that is made available to you to download from this website is the copyrighted work of TuxCare and/or third parties. Your use of the Software is governed by the terms of the license agreement that accompanies or is included with the Software (“License Agreement”). You agree not to install any Software that is accompanied by or includes a License Agreement unless you first agree to the terms of the License Agreement.

THE ONLY LIMITED WARRANTIES, IF ANY, RELATING TO THE SOFTWARE ARE INCLUDED IN THE TERMS OF THE LICENSE AGREEMENT ACCOMPANYING THE SOFTWARE. EXCEPT AS EXPRESSLY SET FORTH IN THE LICENSE AGREEMENT, ALL EXPRESS OR IMPLIED WARRANTIES, INCLUDING THE WARRANTY OF MERCHANTABILITY, AND FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE DISCLAIMED.

Linking

This website may contain links to other websites and resources. These links are provided for your convenience only. TuxCare has not reviewed the linked websites and is not responsible for the content or availability of any linked websites. The inclusion of any link to a website does not imply endorsement by TuxCare of the website, the sponsoring entity, or the products or services.

Restrictions on Use

You agree to comply with all applicable local, state, national, and international laws and regulations which may apply to your use of this website and Services. Any attempt by any person to deliberately damage this website is a violation of criminal and civil laws. TuxCare reserves the right to seek damages from any such person to the fullest extent permitted by law.

You agree not to not to: use this website and Services in any way that is unlawful, or harms TuxCare or any customer of TuxCare, as determined by TuxCare, in its sole discretion; interrupt, or attempt to interrupt, the operation of this website in any way; restrict, in any way, any other user from using this website and Services; post or transmit to this website and Services any software viruses or any other malicious code designed to interrupt, destroy or limit the functionality of any computer software, hardware or telecommunications equipment; use this website to transmit, directly or indirectly, any unsolicited bulk email or unsolicited commercial email (spam); post any obscene, indecent, pornographic, hateful, profane, sexually explicit, abusive, false or misleading, fraudulent, slanderous, libelous, defamatory, unlawful or otherwise objectionable material, at any time; harvest or collect information about website visitors without their express written consent; and, except as necessary to use this website, copy, reproduce, post or distribute, in any way, any portion of this website or derivative works thereof.

Account Security

If you are a CloudLinux Network subscriber, you must select a username and password, and you agree to provide TuxCare with accurate, complete, and up-to-date information and to keep such information accurate, current and complete; and to comply with these Terms of Use. Your failure to do so constitutes a breach of these Terms of Use, which may result in immediate termination of your right to access this website and Services.

TuxCare reserves the right to reject any user name at its sole discretion. You agree: not to sell or transfer your use of or access to this website and Services; not to permit anyone else to use your username or password; to maintain the confidentiality of your username and password; and to be responsible for all activity that occurs on your account. You agree to immediately notify TuxCare of any unauthorized use of your account or any other breach of security. TuxCare will not be liable for any loss you incur as a result of someone else using your password and account with or without your permission.

Taxes

You shall, in addition to the license fees, pay all applicable sales, use, transfer, or other taxes and all duties, whether national, state, or local, however designated, that are levied or imposed by reason of the transaction contemplated under these Terms of Use. You shall reimburse TuxCare for the amount of any such taxes or duties paid or incurred directly by TuxCare as a result of this transaction, and you agree that TuxCare may charge any such reimbursable taxes to the payment instrument you used for your initial payment.

Billing, Payments and Refunds

If You are a CloudLinux Network subscriber and have any type of TuxCare account, You agree to adhere to the rules outlined in the following Policies, which are an integral part of the Terms of Use.

Copyrights

TuxCare either owns the intellectual property rights in the text, images, audio, video, software, and other content that is made available on this website or has obtained the permission of the owner of the intellectual property to make it available on this website. You may not redistribute or copy any part of this website or its content without prior written permission of TuxCare. You may display on your computer, download, and print pages from this website provided: (a) the copyright notice appears on all such printouts, (b) the information will not be altered, (c) the content is only used for personal, educational and non-commercial use, and (d) you do not redistribute or copy the information to any other media.

Trademarks

Please refer to Logo and Trademark Usage Guidelines for details on CloudLinux’s intellectual property rights. The trademarks, logos, and service marks (“Marks”) displayed on this website are the property of Cloud Linux Software, Inc., or other third parties. The trademarks of other third parties are the property of their respective owners and are only mentioned on the website for informative purposes. You are not permitted to use these Marks without the prior written consent of CloudLinux or the third party that owns the Marks.

Monitoring

TuxCare has the right, but not the obligation, to monitor the content of this website and to determine compliance with these Terms of Use and any other operating rules established by TuxCare. TuxCare has the right, in its sole discretion, to edit, refuse to post, or remove any material submitted to or posted on this website that we find to be in violation of these Terms of Use or which it finds to be otherwise objectionable. You are solely responsible for any information you post, transmit, or otherwise make available on this website. You acknowledge and agree that TuxCare does not have any liability for any action or inaction with respect to any conduct, communication, or posting on this website.

Content Posted on Website By You

By displaying, publishing and making available for download and use by others any content, message, text, files, images, photos, video, audio, works of authorship, or any other materials (“Content”), you give TuxCare a perpetual, irrevocable, worldwide, royalty-free, and non-exclusive license to reproduce, adapt, modify, translate, publish, publicly perform, publicly display, and distribute any Content, including the right for TuxCare to make Content available to other companies, organizations or individuals with whom TuxCare has relationships for the provision of services, and to use such Content in connection with the provision of those services. You understand that TuxCare may transmit or distribute the Content over various public networks and in various media; and make such changes to the Content as are necessary to conform and adapt that Content to the technical requirements of connecting networks, devices, services or media. You represent and warrant to TuxCare that you have all the rights, power and authority necessary to grant this license. As to any Content submitted by you to this website, you agree to defend, indemnify and hold TuxCare and its affiliates, officers, directors, owners, predecessors, successors in interest, employees, agents and licensors harmless from and against any and all claims, losses, liabilities and expenses (including attorneys’ fees) related to or arising out of such Content, including without limitation claims made by third parties related to any false advertising claims, liability claims for products or services sold by you, claims for patent, copyright or trademark infringement, claims due to disruption or malfunction of services provided, even if such Content is reviewed by TuxCare prior to publishing on the website.

Export Control

By using this website and Services, you represent and warrant that you are not located in, under the control of, or a national or resident of any country to which the United States has embargoed goods. You agree you will not export or re-export any goods or products unless you have complied with all applicable U.S. and foreign government export controls and approvals. TuxCare makes no claim that content contained on this website is appropriate or may be downloaded outside the United States. If you access this website from outside the United States, you do so at your own risk and are responsible for compliance with the laws of your jurisdiction.

You acknowledge that TuxCare is subject to economic sanctions laws, including but not limited to those enforced by the U.S. Department of the Treasury’s Office of Foreign Assets Control (“OFAC”), the European Union, and the United Kingdom (“Economic Sanctions Laws”). Accordingly, You shall comply with all Economic Sanctions Laws, including, but not limited to, those of the United States, the European Union, and the United Kingdom. You shall not provide access to the TuxCare Products to any individuals identified on OFAC’s list of Specially Designated Nationals (“SDN List”), the UK’s HM Treasury’s Consolidated List of Sanctions Targets, or the EU’s Consolidated List of Persons, Groups, and Entities Subject to EU Financial Sanctions (collectively “Sanctioned Parties”). You shall not take any action that would place TuxCare in a position of non-compliance with any such Economic Sanctions Laws. Furthermore, You represent and warrants that (i) you have not in the past been, and will not be in the future, be connected with any Sanctioned Parties, (ii) shall provide such information regarding any individual or entity which you do business within any location covered by Economic Sanction Laws upon request of TuxCare, and (iii) shall promptly advise TuxCare of any activities which increases the risk of your’s non-compliance with this Section or TuxCare’ compliance with Economic Sanctions Laws.

You agree to indemnify and hold TuxCare harmless from any loss, damages, liability, or expenses incurred by TuxCare as a result of your failure to comply with any export regulations or restrictions or otherwise fails to comply with this Section.

Disclaimer; Limitation of Liability

THIS WEBSITE, INCLUDING ALL WEBSITE CONTENTS, IS PROVIDED “AS IS,” “WITH ALL FAULTS” AND “AS AVAILABLE.” TUXCARE MAKES NO WARRANTY OF ANY KIND WHATSOEVER, EXPRESS, STATUTORY OR IMPLIED. ANY AND ALL WARRANTIES ARE EXPRESSLY DISCLAIMED, INCLUDING, WITHOUT LIMITATION, (i) WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, WORKMANLIKE EFFORT, TITLE, SECURITY, ACCURACY, NON-INFRINGEMENT, AVAILABILITY, RELIABILITY, OR UNINTERRUPTED ACCESS; (ii) WARRANTIES ARISING THROUGH COURSE OF DEALINGS OR USAGE OF TRADE; AND (iii) WARRANTIES THAT ACCESS TO OR USE OF THIS WEBSITE WILL BE SECURE, UNINTERRUPTED OR ERROR FREE. THIS DISCLAIMER APPLIES TO ANY EXPENSES, DAMAGES OR INJURY, REGARDLESS OF THE CAUSE, WHETHER FOR BREACH OF CONTRACT, STRICT LIABILITY, TORTUOUS BEHAVIOR, NEGLIGENCE, OR FOR ANY OTHER CAUSE OF ACTION.

IF YOU ARE DISSATISFIED WITH THIS WEBSITE (INCLUDING ANY OF THE WEBSITE CONTENTS), YOU DO NOT AGREE WITH ANY PART OF THESE TERMS OF USE, OR YOU HAVE ANY OTHER DISPUTE OR CLAIM WITH OR AGAINST TUXCARE WITH RESPECT TO THESE TERMS OF USE OR THIS WEBSITE, THEN YOUR SOLE AND EXCLUSIVE REMEDY IS TO DISCONTINUE USING THIS WEBSITE. IN NO EVENT SHALL TUXCARE BE LIABLE TO YOU, OR ANY OTHER PERSON FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, INCIDENTAL OR PUNITIVE DAMAGES (INCLUDING DAMAGES FOR BUSINESS PROFITS, BUSINESS INTERRUPTION, LOSS OF BUSINESS INFORMATION OR SIMILAR LOSSES) EVEN IF TUXCARE HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. THIS LIMITATION ON LIABILITY IS INDEPENDENT OF YOUR EXCLUSIVE REMEDY AND SURVIVES IN THE EVENT SUCH REMEDY IS DEEMED UNENFORCEABLE.

THE CUMULATIVE LIABILITY OF TUXCARE TO YOU FOR ALL CLAIMS RELATED TO THIS WEBSITE, AND THESE TERMS OF USE, INCLUDING ANY CAUSE OF ACTION SOUNDING IN CONTRACT, STRICT LIABILITY, TORT, NEGLIGENCE OR OTHER CAUSE OF ACTION SHALL NOT EXCEED THE TOTAL AMOUNT OF ALL FEES PAID BY YOU TO TUXCARE FOR USE OF THIS WEBSITE DURING THE IMMEDIATELY PRECEDING 6 MONTH PERIOD.

Privacy

See the CloudLinux Privacy Policy located here. As stated in our Privacy Policy, we may transfer personal data to third-party processor companies (i.e., cloud data and server services) that help us provide our service. Such third-party processors are located in, and the transfers are limited to, the United States or countries in the European Union, and these processors are controlled by data processing agreements providing the same protections of your personal data. Your agreement to these terms includes your consent to such transfer of your personal data.

Miscellaneous

All claims relating to these Terms of Use are governed by the Federal laws and the laws of the State of Delaware, U.S.A., without regard to choice of law provisions. You and TuxCare agree to submit to the personal and exclusive jurisdiction of the courts located within the State of Delaware.

The headings of sections of these Terms of Use are for convenience of reference only and shall not affect the meaning or interpretation of these Terms of Use.

You agree that TuxCare may provide notices and other communications to you solely by means of email, posting on the Website, or other electronic transmission.

These Terms of Use constitutes the entire agreement between you and Cloud Linux Software, Inc., doing business as TuxCare (“TuxCare”), with respect to this Website (including the website contents), and supersedes all prior agreements between you and TuxCare. If these Terms of Use conflict with any other terms contained within this Website, then the terms of these Terms of Use shall control. Failure by TuxCare to enforce any provision of these Terms of Use shall not be construed as a waiver of any provision or right.

In the event that any portion of these Terms of Use is held unenforceable, the unenforceable portion shall be construed in accordance with applicable law as nearly as possible to reflect the original intent of the parties, and the remainder of the provisions shall remain in full force and effect.

CLOUD LINUX SOFTWARE, INC. (“CLOUDLINUX”) RESERVE THE RIGHT TO CHANGE THESE GUIDELINES AT ANY TIME. YOU SHOULD PERIODICALLY CHECK THESE GUIDELINES TO BE SURE THAT YOU ARE IN COMPLIANCE.

THIS GUIDELINES PROVIDE GENERAL GUIDANCE ON CLOUDLINUX’s POLICIES RELATING TO LOGOS, TRADEMARKS AND PROPER REFERENTIAL USE OF CLOUDLINUX’s LOGOS AND TRADEMARKS.

CloudLinux Trademarks ( in word and logo form) include:

  • Imunify360
  • ImunifyAV
  • ImunifyAV+
  • ImunifySecurity
  • SecureSite
  • ImunifyEmail
  • KernelCare
  • TuxCare
  • CloudLinux OS
  • We are CloudLinux
  • AccelerateWP
  • AlmaCare
  • LibCare
  • QEMUCare
  • DBCare
  • KernelCare IoT

and other trademarks, logos and service marks (“Marks”) are the property of CloudLinux. You are permitted to use these Marks only with the written consent of CloudLinux. If you are the official reseller of the CloudLinux product licenses or use products in your multi-tenant hosting environment, you have the right to use these Marks following these guidelines.

CloudLinux not permit or consent to any use of its Marks in any manner that is likely to cause confusion by implying association with or sponsorship by CloudLinux. Do not use any of the Marks as the name of your company, products or services, as a domain name or social media profile. This applies to all jurisdictions, whether foreign or domestic.

Rules for proper usage of Marks

You may not use the Marks, including logos, unless you have an agreement with or express written consent from CloudLinux authorizing such use. If you are an official reseller of CloudLinux products or offer CloudLinux products and services to your customers, you may use the Marks, including logos,in advertising, sales materials, promotions, or on your website.

Only use approved Marks artwork and designs

The CloudLinux Marks should be used as downloaded. Do not alter or distort the appearance of Marks in any way, including by abbreviating them, incorporating them into acronyms, changing their spelling, or using improper capitalization. Do not attempt to reproduce the Marks.  Do not add your own design elements to any Mark. Do not change the color or font of the Marks. Your use of any Mark should look sharp, clean, and legible. Do not use the Marks as a decorative element. Do not use or alter a Mark for purely decorative purposes.

Brand book for TUXCARE logos is available here.

IMUNIFY logos can be viewed in the partner resources section or downloaded here (zip).

Brand book for CLOUDLINUX logos is available here

If you have Marks questions pertaining to an existing agreement or other business dealings with CloudLinux, please contact your CloudLinux business contact or Marketing Department at [email protected]. They will seek advice from the CloudLinux Legal Department as appropriate.

If you believe that your copyrighted work has been copied in a way that constitutes copyright infringement and is accessible via the Service, please notify the DMCA agent of Cloud Linux Software, Inc (“CloudLinux”), as set forth in the Digital Millennium Copyright Act of 1998 (“DMCA”). For your complaint to be valid under the DMCA, you must provide the following information in writing:

  1. An electronic or physical signature of a person authorized to act on behalf of the copyright owner;
  1. Identification of the copyrighted work that you claim has been infringed;
  2. Identification of the material that is claimed to be infringing and where it is located on the Service;
  3. Information reasonably sufficient to permit CloudLinux to contact you, such as your address, telephone number, and, e-mail address;
  4. A statement that you have a good faith belief that use of the material in the manner complained of is not authorized by the copyright owner, its agent, or law; and
  5. A statement, made under penalty of perjury, that the above information is accurate, and that you are the copyright owner or are authorized to act on behalf of the owner.

The above information must be submitted to the following DMCA Agent:
Attn: DMCA Notice

Compliance Officer

Cloud Linux Software, Inc.

20791 Three Oaks Pkwy, #980

Estero, FL 33929

Phone: 17189304286

Email: [email protected]

UNDER FEDERAL LAW, IF YOU KNOWINGLY MISREPRESENT THAT ONLINE MATERIAL IS INFRINGING, YOU MAY BE SUBJECT TO CRIMINAL PROSECUTION FOR PERJURY AND CIVIL PENALTIES, INCLUDING MONETARY DAMAGES, COURT COSTS, AND ATTORNEYS’ FEES.

Please note that this procedure is exclusively for notifying CloudLinux that your copyrighted material has been infringed. The preceding requirements are intended to comply with CloudLinux’s rights and obligations under the DMCA, including 17 U.S.C. §512(c), but do not constitute legal advice. It may be advisable to contact an attorney regarding your rights and obligations under the DMCA and other applicable laws.

At Cloud Linux Software, Inc. (“CloudLinux”), we take the security of our customers seriously and try to resolve any security issues as soon as they are reported.

If you found any security issues with CloudLinux products, services, or systems, we appreciate your prompt disclosure of such issues. Please provide full details about the suspected vulnerability so that the CloudLinux security team may verify and reproduce the issue.

You can use CloudLinux’s Security PGP key to encrypt sensitive information you send via email.

Please submit the report to [email protected].

 

Policy Scope

We encourage you to discover and report to us any vulnerabilities in the company’s products:

  • CloudLinux OS software, including its components, such as kernel, apache, LVE Manager, Cage FS, MySQL Governor, Selectors, Hardened PHP, mod_lsapi, SecureLinks, Slow Site analyzer, PHP X-Ray, Centralized Monitoring, Accelerate WP, etc.
  • TuxCare Live Patching software or TuxCare ELS software
  • Imunify360 software, including its components, such as Firewall, IDS/IPS, Malware scanning, Proactive Defense, etc.
  • Imunify Email software
  • KuberLogic software.

We also accept vulnerabilities in company services and systems if there is a proven security impact. Please always carefully check whose assets you are testing when conducting research.

 

Out of Scope Vulnerabilities

The list of out-of-scope vulnerabilities includes, but is not limited to:

  • Clickjacking on pages with no sensitive actions
  • Cross-Site Request Forgery (CSRF) on unauthenticated forms or forms with no sensitive actions
  • Attacks requiring MITM or physical access to a user’s device
  • Previously known vulnerable libraries without a working Proof of Concept
  • Comma Separated Values (CSV) injection without demonstrating a vulnerability
  • Missing best practice, configuration, or policy suggestions including SSL/TLS configurations that do not contain a fully functional proof-of-concept
  • Missing/enabled HTTP header/methods which do not lead directly to a security vulnerability
  • Any activity that could lead to the disruption of our service (DoS)
  • Content spoofing and text injection issues without showing an attack vector/without being able to modify HTML/CSS
  • Rate limiting or bruteforce issues on non-authentication endpoints
  • Missing best practices in Content Security Policy
  • Missing HttpOnly or Secure flags on insensitive cookies
  • Missing email best practices (Invalid, incomplete or missing SPF/DKIM/DMARC records, etc.)
  • Software version disclosure / Banner identification issues / Descriptive error messages or headers (e.g. stack traces, application or server errors)
  • Tabnabbing
  • Open redirect – unless an additional security impact can be demonstrated
  • Issues that require unlikely user interaction

  • Introduction 
  • Message from Igor Seletskiy, CEO 

Integrity is one of the core values in which we, Cloud Linux Software, Inc. (“CloudLinux”), operate. The Code of Ethics is companywide and describes how we put CloudLinux values in the way we work every day. It also explains our commitments and, more importantly, expectations towards everyone. Commitments I make to you and, likewise, commitments you make to me and everyone we deal with both internally and externally.

We run our business ethically and responsibly. We are committed to complying with the highest standards of integrity, transparency and honesty. We commit to prevent corruption, fraud and anti-competitive ways of working. We are respectful and follow the laws of the land where we operate.

A document can never cover one hundred percent of every situation you may face on a day-to-day basis. The Code of Ethics is your map. It illustrates the values and provides the tools that will help you, that will guide you in making the right decisions consistently and ethically. Also, it is important to raise your hand, speak out if you become aware or suspect a violation of the Code. We introduced the Whistleblowing Procedure to help you with this notification so you may do it with one hundred percent confidentiality and privacy.

Our Code of Ethics is important, critical and imperative. We are all responsible for the reputation of CloudLinux and it is an important commitment for us to make and to honor.

  • Purpose of this Code 

As a multi-national company with an identifiable brand the actions of one CloudLinux employee has the potential to impact upon the entire company. Furthermore, with the diverse range of jurisdictions in which CloudLinux operates there is a wide range of laws, rules, regulations, customs and approaches to conducting business. The continued success of CloudLinux depends on the actions of every CloudLinux employee being transparent, lawful and ethical. As such, the primary function of this Code is to provide a unified set of principles and behaviors which are designed to act as a guide to help you make the right decisions for yourself and for CloudLinux. At the same time, the Code of Ethics cannot describe every law, policy or process that may apply to us or every situation that we may face within our everyday role. As a general rule, we are responsible for understanding and complying with the laws, regulations and policies that relate to our business activities. Detailed guidance on how to deal with important ethical and compliance issues will be described in CloudLinux’s corporate policies and other relevant documents. These will be available on the CloudLinux Google shared drive or Slite platform. However, being aware, understanding and following the principles described in this Code will help to protect the reputation of CloudLinux and CloudLinux employees.

  • Scope 

This Code applies to and is mandatory to be followed by all CloudLinux employees. Each of us, wherever we work, must behave in accordance with these standards when dealing with fellow CloudLinux employees, clients, suppliers, stakeholders, governmental authorities and competitors. We also should require our suppliers or vendors to adhere to this Code or adopt similar ethical standards.

  • Responsibilities 

CloudLinux employees

The primary responsibility for maintaining an environment of ethical behavior rests with CloudLinux employees through a demonstrated commitment to compliance with the Code of Ethics and with legal and regulatory requirements relevant to CloudLinux’s business. To carry out this responsibility, CloudLinux employees will:

  • Read, understand, and abide by the Code of Ethics.
  • Exercise appropriate behavior and maintain the highest standards of ethical conduct when representing CloudLinux. This includes when traveling on the company business and attending functions hosted by CloudLinux or third parties (e.g., conferences, trade shows, events). Seek advice from your Line Manager if uncertain about the meaning or application of the Code of Ethics or when in doubt about the best course of action in a particular situation.
  • Learn and contribute to a workplace environment that is conducive to and encourages compliance with the Code of Ethics and with laws and regulations.
  • Maintain sensitivity to alleged, actual, or suspected illegal, unethical, or improper conduct by a supplier, client, consultant, or other person or organization with whom CloudLinux has a relationship, and to report such conduct to the Compliance Officer.

Leadership Team

In addition to their professional responsibilities in CloudLinux, Senior Management (Leadership team) must maintain a workplace environment that stresses commitment to compliance with the Code of Ethics and with laws and regulations. CloudLinux’s Leadership Team will:

  • Exhibit the highest standards of ethical conduct at all times and avoid the perception of unethical behavior.
  • Ensure that CloudLinux employees understand their duty to report actual or suspected Code of Ethics violations and that there are procedures and mechanisms available to facilitate reporting.
  • Ensure that CloudLinux employees receive appropriate training in the meaning and application of CloudLinux’s compliance documents
  • Ensure that all policies and references are in place and in the laws and regulations related to CloudLinux.
  • Maintain a workplace environment that prevents reprisals against CloudLinux employees who in good faith reports actual or suspected Code of Ethics violations.
  • Approve and/or make modifications to the Code of Ethics as needed.
  • Review current and proposed corporate policies, processes, and procedures for consistency with the Code of Ethics.
  • Establish and maintain the means, methods, and procedures for investigating violations of the Code of Ethics.
  • Monitor disciplinary measures taken for violations of the Code of Ethics.
  • Provide training and educational programs to enhance CloudLinux employee’s awareness of and compliance with the Code of Ethics.
  • How to raise an issue or concern? 

The Code cannot cover every situation that we may face. We may find ourselves faced with a dilemma that we are not sure how to resolve. If in doubt, ask yourself these questions:

  • Does it comply with the CloudLinux’s Code of Ethics?
  • Does it comply with policy, regulation and law?
  • Would I be setting a good example?
  • Would I be comfortable explaining what I did to my colleagues, family and friends without shame or embarrassment?
  • Would I or CloudLinux be comfortable if the action was written about in a newspaper?
  • Have I consulted others who have knowledge of the topic and sought advice to help me make an informed decision?

If the answer is ‘No’ to any of these questions, or if you are not sure, stop and seek further advice.

If you become aware or suspect a violation of this Code, we expect you to report promptly to your Line Manager / Project Manager, HR Director or Compliance Officer. If you are uncomfortable making such a notification, you may do so anonymously in accordance with the instructions mentioned in the Whistleblowing Procedure. There are a number of ways that you can seek advice and support, including through any of the following:

  1. reporting to a line manager at CloudLinux directly via Slack or corporate email;
  2. reporting to the Compliance Officer directly to a corporate email [email protected] or to the HR Director to a corporate email [email protected];
  3. reporting to the Compliance Officer or to the HR Director via an anonymous email service ProtonMail to a corresponding corporate email [email protected] or [email protected]..

Never hesitate to ask questions, raise concerns, or seek the guidance you need. CloudLinux will not tolerate any discrimination against anyone who has reported a concern in good faith.

  • Breach of this Code 

CloudLinux will investigate any report of a violation with the principles of the Code of Ethics. You must cooperate fully with any investigation, but should not investigate independently as alleged violations may involve complex legal issues, and you may risk compromising the integrity of a formal investigation. Conduct that violates the law and/or company policies is ground for disciplinary or remedial action. In addition, failure to report a known violation of law or company policy by someone else may result in disciplinary action for CloudLinux employees and/or termination of employment/your relationship with CloudLinux. The disciplinary action taken will be decided on a case by case basis. The action will be conducted in accordance with CloudLinux’s Acceptable Use Policy and corresponding legal requirements. Where laws have been violated, we will cooperate fully with the appropriate authorities.

  • Compliance with laws and regulations 

CloudLinux is a global company and our business is subject to the laws of many different countries. Each day we interact with a variety of individuals and groups including our clients, competitors, co-workers, suppliers, and sometimes government officials. We are committed to interacting with all in a respectful, ethical manner and in compliance with legal requirements. We would rather miss out on a business opportunity than compromise our integrity.

  • Anti-Bribery & Corruption 

Bribery is the offering, giving, receiving or soliciting of any item of value in order to wrongfully influence someone’s actions, or to secure an improper advantage.

Guidance 

CloudLinux has a zero-tolerance policy toward bribery and corrupt conduct in any form. Improper inducements involving government officials, clients, suppliers, business partners, and all other counterparties are strictly prohibited. We must all act with the utmost honesty, integrity and transparency in all dealings with clients, suppliers, business partners and government officials. CloudLinux does not allow CloudLinux employees or others to make facilitation payments on its behalf.

We are committed to complying with all anti-corruption/anti-bribery laws, everywhere in the world such as the US Foreign Corrupt Practices Act, the UK Bribery Act and EU Directives. Bribery can have very serious consequences, for the individuals involved and for CloudLinux. Any third-party, agent or intermediary acting on CloudLinux’s behalf is also prohibited from offering, giving or accepting bribes and improper inducements, including acts of favoritism to influence a business decision.

  • Gifts and Hospitality 

Guidance 

The CloudLinux Compliance Policy requires moderation and the use of good judgment when giving or accepting gifts or entertainment in the course of business. Extending or receiving common courtesies such as business meals in connection with legitimate business activities generally is acceptable. However, in any such dealings, CloudLinux employees should not request, accept, offer to give or give anything of value that would give the appearance of impropriety or suggest that the gift or entertainment was intended in any way to influence a business decision or to obtain an improper advantage.

A gift can be an item, but it also can include event tickets or the provision of services when the gift provider is not otherwise involved in the event or service (e.g. the giver provided the tickets but does not accompany the recipient to the event). Entertainment is distinguished from a gift as it typically involves meals, events or other forms of entertainment (e.g. sporting events, concerts, shows) where the provider participates in the meal, event or other form of entertainment.

Permissible gifts and entertainment include those that:

  • Are given openly and directly;
  • Come with no strings attached;
  • Are NOT solicited;
  • Are NOT in the form of cash or a cash equivalent, such as a cash or gift card;
  • Are NOT significant in value;
  • Are NOT accepted as part of or during a business negotiation;
  • Comply with all applicable laws and with all policies of both the giver and recipient; and
  • Would NOT reflect poorly on CloudLinux.

You can read more about gifts` limits and prohibitions, permissible and non-permissible gifts in the Compliance Policy available in CloudLinux Google shared drive and Slite platform. For details, please refer to the Compliance Officer.

  • Money Laundering and Sanctions 

Money Laundering 

People who are involved in criminal activity such as bribery, fraud or trafficking narcotics may attempt to launder money through apparently legitimate businesses in order to use the funds from their criminal activity and reduce suspicion.

CloudLinux will not accept or process money gained through criminal activity; we will only deal with reputable clients who are involved in legitimate business activities and whose funds are derived from legitimate sources. If you become suspicious, you should raise your concern immediately to the Chief Financial Officer and/or Compliance Officer and document all steps that are taken in relation to the transaction.

Sanctions 

Sanctions are a foreign policy tool used by Governments to restrict the ability of designated countries, individuals or entities access to particular products, services and markets.

CloudLinux has a zero-tolerance approach to engaging with entities or individuals that are subject to sanctions restrictions implemented by the OFAC, EU, USA or other Governments. If you have any doubts about dealing with an entity which may be subject to sanctions, you should raise the question with the Compliance Officer.

  • Fair Competition and Antitrust 

Generally, antitrust and competition laws prohibit any activity that may improperly reduce or inhibit competition. Most countries where CloudLinux does business also have laws restricting attempts to monopolize markets or otherwise restrict or control competition.

It is CloudLinux’s obligation to comply with these laws where they are applicable. Because of the complexity of antitrust and competition laws, it is imperative that CloudLinux employees seek advice from the Compliance Officer on any question regarding these issues. The penalties for violating antitrust laws and trade regulations can be extremely severe for both CloudLinux and the individuals involved.

  • Personal Information 

CloudLinux takes its obligations under applicable data protection and privacy laws (e.g., General Data Protection Regulations (EU) 2016/679 (GDPR), UK Data Protection Act 2018, California Consumer Privacy Act (CPRA), etc.) very seriously. We all have a responsibility to safeguard the privacy, confidentiality and security of personally identifiable information and other private information of CloudLinux employees, clients, partners and other third parties in CloudLinux’s possession. We have in place effective systems to only allow access to our personal information to those who have a valid business reason for accessing it, reducing the risk of our personal data being compromised. While creating documents in a cloud environment we need to provide access only to those people, who are authorized to see it.

You should never provide the information without the individual’s permission. If in doubt you should refer your enquiry to the Compliance Officer.

  • Business Records 

We must help to ensure that CloudLinux’s books and records, which include virtually all forms of business documentation, electronic or otherwise, accurately and fairly reflect, in reasonable detail, all transactions and dispositions of assets. It is of critical importance that CloudLinux’s financial reporting, including its reports to investors and lenders, be accurate and timely. Depending on the type of services they provide, CloudLinux employees may be called upon to give information necessary to assure that CloudLinux’s financial reports are complete, fair and understandable.

  1. Managing and Protecting CloudLinux’s Assets and Reputation 

3.1. Confidential and Proprietary Information

Confidential information includes all non-public information that might be useful to competitors or that could be harmful to CloudLinux if disclosed.

CloudLinux has a duty to its clients, suppliers and personnel to respect all information it holds about them and to protect and handle such information responsibly.

CloudLinux’s legal obligations and its competitive position require that confidential information remain confidential and that we are diligent in our efforts to protect our intellectual assets. Information that is proprietary to our clients, suppliers and others should be treated as confidential and used for the purpose for which it was obtained and disclosed only as permitted between CloudLinux and the other party. Confidential information should be properly and securely stored, transmitted and disposed of, and CloudLinux employees must be mindful of the risk of discussing confidential information in public places. This means that CloudLinux employees should not disclose or share information regarding internal CloudLinux matters with anyone outside CloudLinux, except as required in the performance of their employment duties.

It is never acceptable to discuss confidential information in a public place even if there are no classified documents in use. The security and confidentiality of the information could be compromised if someone overhears the conversation. For more information, please, read the Acceptable Use Policy or refer to the Compliance Officer or Head of Security.

3.2. Conflict of Interest 

‘Conflict of interest’ arises where a person’s position or responsibilities within their business unit presents an opportunity for personal gain above the normal rewards of cooperation. In other words, a conflict of interest exists when your personal interests interfere with the best interests of CloudLinux. CloudLinux employees should attempt to avoid actual or apparent conflicts of interest.

Any personal interests (or the interests of a member of the immediate family) in relation to CloudLinux’s business must be disclosed to your manager and the Compliance Officer immediately. Disclosure is mandatory, failing to disclose a conflict or a perceived conflict is a violation of the Code.

In a situation that appears to present a conflict of interest we expect you to “refrain and report”. If it is not possible to avoid participating in the event or activity creating the conflict, promptly disclose the potential conflict to your supervisor and the Compliance Officer, and avoid participating in decisions that might raise the appearance of a conflict until you receive appropriate guidance.

3.3. Use and Protection of Cloudlinux’s Resources 

We are each responsible for protecting any intangible assets and goodwill to which we have access to or have been entrusted to safeguard, whether that equipment belongs to CloudLinux company, our clients or other third parties. We need to make sure that these assets are not compromised, lost, damaged, misused or wasted. We use these assets exclusively for CloudLinux’s business purposes.

3.4. Social media 

CloudLinux recognizes the role that social media plays in communications and society today. However, sometimes it gets difficult to make a clear division between one’s private voice on social media and the role as a CloudLinux employee. We all need to be responsible in our engagement on social media and exercise judgment when communicating in public forums. While engaging on social media, you should:

  • Be transparent and make it clear that you are speaking for yourself in your private capacity;
  • Recognize that anything you say can be viewed as CloudLinux’s own statement;
  • Protect confidential information;
  • Be honest, accurate and ethical at all times;
  • Not announce things which you are not authorized to announce; and
  • Understand the potential consequences of your actions.
  1. Providing a Dynamic & Diverse Work Environment 

4.1. Open, Honest & Respectful 

In our relationships with each other, we strive to be open, honest, and respectful in sharing our ideas and thoughts, and in receiving input. We value the free flow of thoughts, ideas, questions and concerns. We encourage CloudLinux employees to raise work related issues or concerns through our established processes as soon as issues or concerns arise.

4.2. Equal Opportunity and Anti-Discrimination 

CloudLinux promotes a cooperative and productive work environment by supporting the cultural and ethnic diversity of its workforce. Our collective challenge is to enhance the company’s performance through valuing and understanding differences. CloudLinux is committed to a policy of providing equal employment opportunity to all qualified individuals and applicants. This commitment is reflected in all aspects of our daily operations and Dignity and Equity Procedure.

We do not discriminate on the basis of race, color, descent, sex, sexual orientation, gender reassignment, political views, confession or religious beliefs, nationality, ethnicity, marital or civil partnership status, family / career responsibilities, pregnancy and maternity / paternity status, age, disability or impairment, profession or occupation, veteran status, physical peculiarity or genetic information in any personnel practice, including recruitment, hiring, employment, compensation and benefits / remuneration, facilities and services, promotion, training and professional development, termination and references, discipline and grievance.

4.3. Health & Safety 

At CloudLinux, we are committed to creating a safe, healthy and non-threatening work environment. Under all circumstances, all CloudLinux employees must take due care of their health and safety and ensure that they do not endanger others by any acts or omissions.

Activities that are not conducive to a good work environment are not permitted; this includes the consumption or being under the influence of alcohol or any controlled substances other than substances as prescribed by a physician during working hours, while on company business.

  1. Working Responsibly and Serving Communities 

5.1. Political Activities and Contributions 

Guidance 

CloudLinux strives to comply with all national, federal, state, and local laws and regulations. Respecting the responsibilities of government agencies and cooperating with them in good faith as they execute established guidelines and policies is essential.

CloudLinux employees shall not provide anything of value to any local, state, or national or federal elected or appointed official or government employee unless the CloudLinux employee’s supervisor has confirmed that the item of value complies with all laws or regulations that limit or prohibit such gifts or require the gifts to be reported.

CloudLinux employees are encouraged to participate in the electoral process through voting, contributing time or other appropriate means. You may not contribute funds, assets or services for, or on behalf of, CloudLinux to any political candidates, political party, charity or similar organizations unless such contribution is expressly permitted by law and authorized by CloudLinux.

5.2. Community Investment 

We will make a positive social and economic contribution through our activities to the communities in which we work, and we will support, sponsor and contribute to the activities of other organizations, where they are aligned with our own business objectives, our values and will enhance the reputation of CloudLinux. We contribute to charities and good causes through sponsorship and donations and by providing materials. We encourage our employees to give their time as volunteers to these causes. When making sponsorship commitments, charitable donations or promises of ‘in-kind’ support such as company materials or resources, prior approval is required and the activity must be recorded. All requests for sponsorship and charitable donations received must be approved by the Chief Executive Officer to ensure that they meet our sponsorship and charitable giving criteria.

  1. Definitions 

Who are CloudLinux employees? 

CloudLinux employees are used in this Code as the collective reference for employees (permanent or temporary, full or part time) of any CloudLinux legal entity, or any of its affiliates or subsidiaries, as well as for others performing work for, or on behalf of, CloudLinux.

What is bribery? 

Broadly, bribery is defined as giving or receiving a financial or other advantage in connection with the “improper performance” of a position of trust, or a function that is expected to be performed impartially or in good faith.

Bribery does not have to involve cash or an actual payment exchanging hands and can take many forms such as a gift, lavish treatment during a business trip or tickets to an event. The types of bribery that take place in the commercial sector are numerous. Some simple examples are:

  • bribery in order to secure or keep a contract;
  • bribery to secure an order;
  • bribery to gain any advantage over a competitor;
  • bribery of a local, national or foreign official to secure a contract;
  • bribery to turn a blind eye to a health safety issue or poor performance or substitution of materials or false labor charges; and
  • bribery to falsify an inspection report or obtain a certificate.

CloudLinux’s definition of bribery also includes making “facilitation payments”. A “facilitation payment” is a payment or gift given (usually to a government official) to speed up a procedure or to encourage one to be performed. It does not include fees required to be made by law such as the payment of a filing fee for a legal document. The acceptance of a facilitation payment by a government official is an example of corrupt activity.

CloudLinux defines “corrupt conduct” or “corruption” as the abuse of entrusted power for private gain.

What is money laundering and sanctions? 

Money laundering 

‘Money laundering’ is the process of hiding illegal sources of money. For example, under the UK Proceeds of Crime Act 2002 (POCA) money laundering offenses are committed when a person:

  • conceals criminal property
  • enters into an arrangement regarding criminal property
  • acquires, uses or possesses criminal property.

This process is of critical importance, as it enables the criminal to enjoy these profits without jeopardizing their source. Illegal arms sales, smuggling, and the activities of organized crime can generate huge amounts of proceeds. Embezzlement, insider trading, bribery and computer fraud schemes can also produce large profits and create the incentive to “legitimize” the ill-gotten gains through money laundering. When a criminal activity generates substantial profits, the individual or group involved must find a way to control the funds without attracting attention to the underlying activity or the persons involved. Criminals do this by disguising the sources, changing the form, or moving the funds to a place where they are less likely to attract attention.

Sanctions 

Sanctions are a foreign policy tool used by Governments to restrict the ability of designated countries, individuals or entities access to particular products, services and markets. The jurisdictions, individuals and entities who are the target of sanctions are those who particular governments view as engaging activity which is either considered abhorrent (e.g. suppression of civil rights) or would threaten international peace and security (e.g. development of a nuclear weapon). These restrictive measures are most commonly enforced by the OFAC, EU and USA.

What is fair competition and antitrust? 

Generally, antitrust and competition laws prohibit any activity that may improperly reduce or inhibit competition. Most competition laws and trade regulations apply to the sale and marketing of services as well as products. It is expected that each of us compete vigorously and fairly in the conduct of business matters but always in compliance with the local and other countries’ laws.

What is personal information? 

Personal information is any information that can be used, alone or in combination with other information, to identify a specific individual. It includes such information as a person’s name, address, email address, date of birth, driving license number, financial account numbers, passport, Social Security/Tax ID number or other government identification number and other identifiers.

What is confidential and proprietary information? 

Confidential information includes all non-public information that might be useful to competitors or that could be harmful to CloudLinux if disclosed. Proprietary information, i.e. intellectual property, includes data such as trade secrets, patents, trademarks and copyrights, and business information, research and new product plans, objectives and strategies, records, databases, salary and benefits data, employee personal and medical information, client, employee and supplier lists and any unpublished financial or pricing information.

What is the conflict of interest? 

‘Conflict of interest’ arises where a person’s position or responsibilities within their business unit presents an opportunity for personal gain above the normal rewards of cooperation. A conflict of interest can arise in many situations, including:

  • Family and relationships among CloudLinux employees or with the employees of our suppliers, partners, or clients;
  • Giving or receiving gifts, hospitality, or travel;
  • Outside work activities;
  • Dealing with family members employed by a vendor or partner;
  • Dealing with a vendor or partner who employs family members; and
  • Dealing with a vendor or partner in which you or a family member have a financial interest

Anti-Slavery and Anti-Human Trafficking Statement

Introduction

This Slavery and Human Trafficking Statement is made on behalf of Cloud Linux Software, Inc. (“CloudLinux”), and operating under CloudLinux’s trademarks worldwide.

CloudLinux has a zero-tolerance approach to slavery and human trafficking. We are committed to addressing the contents of the Modern Slavery Act 2015 and to ensuring that there is no modern slavery or human trafficking in our supply chains or in any part of our business.

Organizational Structure

CloudLinux is a US-registered software engineering company. We deliver our products and services to fast-growing organizations in the United Kingdom, European Union, United States, and worldwide.

Policies in relation to slavery and human trafficking

Tone at the Top

CloudLinux Code of Ethics promotes and supports our staff to act with respect towards human rights and is obligatory for acknowledgement and implementation at all times. When in doubt about any breach of human rights, our employees can speak up according to procedures set up in the Code of Ethics.

Due Diligence of third parties

We are committed to acting ethically and with integrity in all our business relationships and expect the same from our counterparties.

We have implemented robust due diligence procedures with respect to all third parties, their beneficiaries and top executives we are going to cooperate with.

Speak Up for reporting concerns

We also have a Whistleblowing Procedure in place. The Whistleblowing Procedure supports different channels of anonymous and non-anonymous reporting. CloudLinux may raise their concerns regarding potential wrongdoing or breaches of the law, including modern slavery laws, in confidence and without fear of disciplinary action.

Training and awareness

CloudLinux provides annual Compliance training mandatory for all CloudLinux covering such topics as compliance with laws and regulations, bribery and corruption, ethical behaviors, data privacy and protection, and sanctions compliance.

This statement is being reviewed annually and made available on our website.

IGOR SELETSKIY
CEO

For and on behalf of

CLOUD LINUX SOFTWARE, INC.
02 December 2024