1. These General Terms and Conditions (GTC) apply to all contracts between ActiDoo GmbH, Technologiepark 20, 33100 Paderborn (hereinafter "ActiDoo") and the customer regarding the use of the service "loginfactor.com". Deviating terms and conditions of the customer shall not become part of the contract unless ActiDoo expressly agrees to their validity in writing.
2. The offer is exclusively directed to entrepreneurs within the meaning of § 14 BGB (German Civil Code), legal entities under public law, or special funds under public law, and explicitly not to consumers as defined by § 13 BGB.
3. Side agreements, amendments, and supplements must be made in writing.
1. ActiDoo provides the customer with a hosted Keycloak server as a Software-as-a-Service (SaaS). The scope of services results from the current service description on the website or in the individual offer. ActiDoo will inform the customer in advance, especially via email, of planned maintenance windows.
2. The customer can optionally book a Service Level Agreement (SLA), which defines, depending on the selected level, guaranteed availability, support hours, incident response time, as well as Recovery Time Objective (RTO) and Recovery Point Objective (RPO). The exact definition of SLA services is specified in the respective offer.
3. The guaranteed availability is calculated on a monthly basis unless an annual average is expressly agreed upon in the offer. Times of announced maintenance and downtimes caused by the customer or due to force majeure are excluded from the calculation.
4. Response time and RTO are only applicable during the agreed support hours as per the booked SLA.
5. If an SLA is booked and ActiDoo fails to meet the guaranteed availability in any given month, the customer will receive a pro-rata refund of the SLA fees for that month based on the percentage deviation.
6. ActiDoo may adjust the service if technically necessary or legally required, without the customer deriving any claims therefrom.
7. ActiDoo reserves the right to terminate free offerings (e.g., during a trial period or promotional campaign) at any time and without prior notice.
1. The contract is concluded either through the customer’s order and subsequent order confirmation by ActiDoo or through direct online booking and automatic provisioning via a payment provider.
2. Unless otherwise agreed, the contract term is 12 months and will automatically renew for another 12 months unless one party terminates the contract in writing at least one month before the end of the current term.
1. The fees are specified in the individual offer or ActiDoo’s current price list.
2. Billing is done annually in advance unless otherwise agreed.
3. Invoices are due within 10 days of receipt.
1. The customer is granted access to the SaaS service exclusively for online use. No usage rights to the software or source code are transferred.
2. Use is limited to the agreed scope. In particular, the customer is prohibited from downloading, copying, modifying, or redistributing the software or parts thereof.
1. The customer agrees to keep the access credentials provided by ActiDoo confidential and to protect them against unauthorized access.
2. The customer must ensure that no unlawful content is processed or stored via the service.
3. The customer is responsible for performing regular data backups unless expressly agreed otherwise.
4. If the customer uploads custom extensions or modifications, they are responsible for ensuring compatibility with updates. ActiDoo does not perform regular updates of the Keycloak software automatically to protect the functionality of customer-specific extensions. In exceptional cases—especially in the event of critical security vulnerabilities—ActiDoo is authorized to carry out updates automatically and without prior consent. The customer acknowledges that this may render their custom extensions incompatible. ActiDoo is not liable for any resulting damages or service interruptions.
1. ActiDoo commits to complying with data protection laws and in particular to processing personal data of the customer in accordance with legal requirements (GDPR, BDSG).
2. Details of data processing are governed by a separately concluded data processing agreement.
1. ActiDoo is liable for intent and gross negligence in accordance with legal regulations. Liability for slight negligence is limited to typical, foreseeable damages.
2. Liability for indirect damages, especially lost profits or business interruptions, is excluded.
3. Liability for data loss is excluded if the customer has not performed appropriate backups.
4. ActiDoo is not liable for damages or consequential damages resulting from temporary unavailability of the SaaS service, unless due to intentional or grossly negligent behavior. This applies especially when the customer or third parties lose access to systems, applications, or data due to service interruptions.
1. ActiDoo warrants the functionality of the SaaS services as described in the service specifications.
2. Defects must be reported in writing without delay. ActiDoo will remedy justified and reported defects within a reasonable period.
1. Upon termination of the contract, ActiDoo will delete all customer data after a 30-day grace period during which the customer may retrieve their data.
2. Both parties may terminate the contract without notice for good cause in case of significant breach of obligations.
1. Unless expressly agreed otherwise, ActiDoo may name the customer as a reference client in an appropriate manner.
1. ActiDoo is not liable for delays or failures in performance due to force majeure. This includes, but is not limited to, natural disasters, war, strikes, technical failures, or cyberattacks.
1. ActiDoo reserves the right to amend these GTC, provided that the changes are reasonable for the customer. Changes will be communicated to the customer at least six weeks in advance in text form, especially by email. The customer may object in writing within this period. If no objection is made, the changes are deemed accepted.
1. ActiDoo may suspend access to the service if the customer violates these GTC or if there are security-related incidents. The customer will be informed immediately.
1. Support requests must be submitted via the channels defined in the respective offer.
1. German law shall apply, excluding the UN Convention on Contracts for the International Sale of Goods (CISG).
2. Jurisdiction is Paderborn, provided the customer is a merchant, legal entity under public law, or a special fund under public law.
3. Should any provision of these GTC be or become invalid, this shall not affect the validity of the remaining provisions.