Kyndrava Customer-Managed Operations Addendum
This page is an addendum-style public draft intended to connect Kyndrava's customer-managed operating rules to the Product Terms, usage rules, Order Form or individual agreement. It is not merely a marketing explanation.
This addendum draft is not legal advice. Counsel review is required before use for customer signature, B2C sales, international sales, cloud functions, support-log intake or personal-data processing.
1. Role of this addendum
This addendum is intended to be attached to or referenced by the Product Terms, usage rules, Order Form, quote or individual agreement when Kyndrava is deployed in a customer-managed model. If an individual written agreement states different terms, that agreement prevails.
2. Definitions
- Product: Kyndrava software, documentation, updates and license information.
- Customer Administrator: the person appointed by the customer to manage users, devices, invitations, QR codes, license assignment and backups.
- End User: a person authorized by the Customer Administrator to use the Product.
3. Customer-managed operation
After purchase, user registration, device registration, QR code issuance, invitation distribution, suspension, deletion, backups, recovery and other operations are performed by the Customer Administrator.
4. Vendor-no-touch boundary
Except as separately agreed, the vendor does not acquire, store or manage end-user rosters, device lists, individual usage logs, personal data or backup data.
5. QR codes and invitations
QR codes and invitation links must not contain passwords, private keys, persistent API keys or personal information. Invite tokens should be short-lived, one-time, limited-use and revocable.
6. Installation and distribution
The Customer Administrator distributes the Product using vendor-provided instructions, installers, QR codes or invite links. The vendor does not normally email end users individually or register devices on their behalf.
7. License scope
The customer may use the Product only within the period, device count, user count and organizational scope stated in the Order Form or license certificate. Resale, lending, third-party provision, reverse engineering, modification and circumvention are prohibited.
8. Administrator responsibility
The Customer Administrator is responsible for user addition/removal, device registration/revocation, access control, backups, restore testing, log review, internal policy alignment and legal compliance.
9. Backups and recovery
The customer must take regular backups of settings, data, certificates, logs and Kyndrava-related data and verify restorability. Unless a separate backup service agreement exists, the vendor has no obligation to retain customer backups.
10. Support materials
If logs, configurations or screenshots are submitted to support, the Customer Administrator must first remove or mask personal data, confidential information, credentials and certificate private keys.
11. Telemetry and logs
Unless the customer expressly agrees, the Product will not automatically transmit end-user rosters, device content, individual usage logs or personal data to the vendor. If anonymous statistics are used, content, purpose and opt-out method must be disclosed.
12. Privacy and personal data
The vendor handles only minimum information needed for contracting, invoicing, license issuance and support. If the vendor processes personal data, a separate data processing or personal-data handling agreement is required.
13. Security and updates
The customer must manage administrator credentials, MFA, devices, access control, backups, anti-malware and network protection. The vendor will use reasonable efforts to provide security improvements and updates.
14. Sales representations and warranty
The vendor discloses price, payment method, delivery, cancellation, renewal, support scope, recommended environment and limitations, and avoids unsupported absolute claims such as perfect protection or absolute security.
15. Suspension, termination and exit handling
For breach, abuse or urgent security risk, the vendor may take minimum necessary suspension or termination measures. After termination, the Customer Administrator is responsible for customer-environment data deletion, backup deletion and uninstalling the Product. Materials temporarily received for support will be deleted within a reasonable period after support completion.
16. Legal review issues
- Whether sales are B2B only or also to individual consumers.
- Whether vendor cloud exists and whether it receives personal data.
- Whether support receives logs, configurations or screenshots.
- Mail-order/e-commerce, subscription, international sales, export controls, tax, governing law and jurisdiction.
- Whether liability limitations are valid under consumer protection rules.
Related pages
Usage RulesTermsPrivacyCheckout wordingSupport policyBackup responsibility