WorldFirst Account API Integration Master Service Agreement 万里汇账户API集成主服务协议

WorldFirst Account API Integration Master Service Agreement

Version: July 2022

中文版本协议请点击这里

This WorldFirst Account API Integration Master Service Agreement (this “Agreement”) is a legally binding contract between you, the end user, together with any company that employs you or that you represent (“Licensee”) and World First Asia Limited (“WorldFirst”) and applies to your use of the WorldFirst Account API Integration Service or related API Materials offered by WorldFirst pursuant therewith. By (i) clicking “I Accept” or a similar affirmation as it appears, or (ii) accessing or using the WorldFirst Account API Integration Service or related API Materials, you acknowledge and agree that your use of the WorldFirst Account API Integration Service and any related API Materials made available to you will be governed by this Agreement. WorldFirst and the Licensee shall each be referred as a “Party” and together the “Parties”.

This Agreement is in both languages, English and Chinese. The Chinese version is a translation for information purposes only. In the event of any inconsistency, the English version will prevail and will therefore be the binding version for both Parties. 

DEFINITIONS AND INTERPRETATIONS  

1. WORLD ACCOUNT 

In order to use the WorldFirst Account API Integration Service or related API Materials, the Licensee must register for a World Account and use such registration details to access your WorldFirst Developer Account.

2. LICENCE TO USE THE API AND API MATERIALS

2.1. Subject to the Licensee performing its obligations in accordance with this Agreement, and with effect from the Commencement Date, WorldFirst grants the Licensee a non-exclusive, non-transferable, without a right to sublicense to end-users, revocable licence to use the API Functions and subject to any other restrictions on use in this Agreement, including but not limited to clause 3.

2.2.  The Licensee shall not sub-license, assign or otherwise transfer the rights granted under this Agreement unless WorldFirst has provided written consent to such sub-licensing.

2.3.  In order to enable the Licensee to use the API and WorldFirst Services as licensed under clause 2.1, WorldFirst grants the Licensee and its Affiliates a limited, non- exclusive, revocable, non-assignable and non- transferable licence to download, copy, view and use the API Materials.

2.4.  The grant of the license to use the API and API Materials shall be for the duration of the Term, unless terminated earlier in accordance with the terms of this Agreement.

2.5.  The API licensed under this Agreement shall include Updates to the API (the “Updated API”) and you acknowledge your usage of the Updated API shall be also be subject to the terms and conditions as contained herein.

2.6.  The Licensee shall be responsible for the Licensee’s build and associated costs of ensuring that the Licensee’s Application can integrate the API and interact with the WorldFirst Services.

3. USE OF THE API AND API MATERIALS

3.1. The API Functions shall only provide the Licensee access to its own account information for purposes performing the WorldFirst Services. Each Party acknowledges that through using the API and carrying out their obligations under this Agreement they are separate Data Controllers. Schedule 1 sets out the framework for sharing and processing data between the Parties as Data Controller in accordance with Data Protection Legislation.

3.2. The Licensee affirms that its collection, access, use, storage, disposal and disclosure of the API, API Materials and any other data, either supplied or accessed through the Platform or Application, does and will comply with all Applicable Laws including but not limited to Data Protection Legislation, foreign privacy and data protection laws, as well as all other applicable regulations and directives.

3.3. The Licensee shall not use the API or API Materials contrary to any restrictions as detailed in this Agreement, or otherwise in a way that is not expressly permitted by this Agreement.

3.4. The Licensee shall not copy or repackage the API or the Platform, or any part of it, or any API Materials except if it is for the sole purpose of using the licence granted to us pursuant to this Agreement.

Use of the API

3.5. The Licensee agrees to use the API:

3.5.1. solely for the Purpose set out in this Agreement;

3.5.2. in accordance with the security and data protection requirements detailed in clause 8 and Schedule1

3.5.3. in accordance with all relevant legislation, regulation, codes of practice, guidance and other requirement of any relevant government, governmental or regulatory agency or other relevant body.

3.6.   The Licensee agrees the API will not be used:

3.6.1. to make any Confidential Information on the Platform publicly available on the Licensee’s Application;

3.6.2. in connection with any unlawful purpose under Applicable Laws or Regulations;

3.6.3. in any way that contravenes the WorldFirst terms of use detailed in Terms of Use and as amended from time to time;

3.6.4. in any way which breaches or could potentially breach a legal duty to a third party, including a duty of confidentiality, or which infringes or could potentially infringe a person’s right to privacy; or in any way that may infringe the Intellectual Property Rights of third parties or which promotes any unlawful act.

3.7.   The Licensee shall not:

3.7.1. Distribute, license, lease or otherwise deal in the API; or

3.7.2. Modify, add to, or otherwise enhance or alter the API; or

3.7.3. Disable any features, functionality or security controls of the API or WorldFirst Services; or

3.7.4. Misuse the API or Platform by knowingly introducing viruses, Trojans, worms, bits, logic bombs or any other malicious software; or

3.7.5. Attempt to gain unauthorised access to the Platform, the WorldFirst servers or any server, computer of database connected to the Platform and API.

3.8.   Where the Licensee’s Application has End Users it shall:

3.8.1. Not allow End Users to download or store data accessed via the API for any purpose other than recordkeeping; and

3.8.2. Ensure that the login/access through the API meets the security requirements provided to the Licensee by WorldFirst pursuant to this Agreement.

3.9.   Where Licensee is permitted in accordance with this Agreement to allow a third party to benefit from the API, such as approved sub-licensing arrangements to Affiliates, the Licensee shall ensure that all such use:

3.9.1. Does not exceed the Licensee’s permitted use;

3.9.2. Is controlled by the Licensee; and

3.9.3. Is subject to and in accordance with the terms of this Agreement.

3.10. WorldFirst reserves the right at any time to access or suspend the Application and/or API in order to ensure that the Licensee is complying with this Agreement in respect of its use of the API and the Licensee agrees to co-operate with WorldFirst in all matters relating to this Agreement.

3.11. Should WorldFirst reasonably determine, at its sole discretion, that the Licensee is allowing or using the API directly or indirectly in relation to any of the restrictions on use set out in its Terms of Use, WorldFirst may immediately suspend and, if persistently in breach, revoke the license for the API upon notice to you.

Use of API Materials

3.12. The Licensee acknowledges that the API Materials may contain third party Intellectual Property Rights and Licensee shall ensure that use of such API Materials does not infringe on these rights. In the event of any such infringements by the Licensee, the Licensee’s license to use the API Materials will automatically be revoked and the Licensee must immediately destroy copies make of the API Materials.

3.13.  Licensee shall not:

3.13.1. create permanent copies of the API Materials except to the extent permitted by this Agreement;

3.13.2. use or exploit the API Materials in any way, for any purpose, except as specifically permitted by this Agreement; and

3.13.3. remove or alter any attributions, copyright notices, and other means of identification or disclaimers as they appear in the API Materials.

4. API DATA PROTECTION

4.1. The Licensee shall ensure that it implements appropriate technical and organisational measures to protect the Application, API, API Materials and any personal data against unauthorised or unlawful processing and against accidental loss, destruction, damage, alteration or disclosure.

4.2. These measures shall be appropriate to the harm that might result from any unauthorised or unlawful processing, accidental loss, destruction or damage to the Application, API, API Materials and any personal data and having regard to the nature of the information shared through the API that is to be protected.

4.3. The Licensee shall:

4.3.1. comply with all applicable Data Protection Legislation in respect of its use of the API and API Materials;

4.3.2. ensure that its collection, use and disclosure of any personal data as part of the use of the API and the API Materials complies with Data Protection Legislation and it has obtained necessary consent from data subject;

4.3.3. in its use of the API and the API Materials, only process the data that the Licensee needs to operate the Application;

4.3.4. have in place and follow a proper process for securely retaining any data no longer being required and or deleting an end- user’s personal data upon withdrawal of their consent to the processing of their personal data;

4.3.5. notify WorldFirst immediately of any unauthorised access, or use of the API; and

4.3.6. comply with the WorldFirst Privacy Policy and, where applicable, prominently display a privacy policy which informs any end-user of the information that the Licensee will collect from them and how that information will be and only process personal data that forms part of, is derived from or is combined with, the API Materials to the extent, and in such manner, as is permitted by the privacy policies of the Platform and Application.

4.4. WorldFirst reserves the right to, at any time, suspend the Licensee’s access to the API upon notice for a breach of this clause.

5. API SECURITY CREDENTIALS

5.1. WorldFirst shall provide the Licensee with API Credentials prior to connecting to the API. Licensee agrees to ensure the API Credentials are kept confidential and secure and shall only use the API Credentials for the sole purpose of accessing the API.

5.2. For the avoidance of doubt, you should not share the API Credentials with any third party.

5.3. The Licensee shall be liable for any bookings made through the API Function(s) including instances of any misuse, fraud or abuse by you or your End Users or where you or your End Users have disclosed API Credentials or unique security credentials to a third party.

6. NO LICENCE

6.1. For the avoidance of doubt, no right or license, express or implied, is granted to the Company to use any trade names, trademarks, service marks, logos, copyright notices, domain names and other distinctive brands of WorldFirst (and its Affiliates), pursuant to this Agreement.

7. APPLICATION CONTENT AND MARKETING

7.1. If required by regulations, prior to the API being activated, the Licensee agrees that its Application content shall:

7.1.1. be fair, clear and not misleading;

7.1.2. clearly reference that the services of the API Functions are provided by WorldFirst; and

7.1.3. be reviewed and approved by WorldFirst.

7.2. For the avoidance of doubt, WorldFirst must approve any changes that affect the content already approved at clause 7.1 and/or API Functions prior to being displayed on the Application.

7.3. During the Term of this Agreement and subject to clause 7.4 below, the Licensee grants to WorldFirst a non-exclusive, worldwide, sub-licensable, royalty-free license to use the Party’s brand to publicize or advertise that the Licensee is using the WorldFirst API (for example, by using the party’s marks in presentations, marketing materials, customer lists, financial reports, and website listings (including links to your website), or by creating marketing or advertising materials that show screenshots of the Application). For this purpose,

7.4. The Parties agree that prior to use any promotional materials that relate to the API, Application, WorldFirst Services and/or the other Party must be approved in advance by the other Party.

8. SERVICE

8.1. WorldFirst shall provide the API and WorldFirst Services subject to Applicable Law and the WorldFirst Terms and Conditions in accordance with the terms of this Agreement.

8.2. The Licensee agrees to comply with Schedule 2 in regards to reporting regulatory and technical issues with in respect only to the provision of the API. 

9. FEES AND TAXES

9.1. WorldFirst does not currently charge any fees for granting the Licensee access to the API, API Materials; nevertheless, the cost of the aforementioned access will be subject to such fees as may be communicated to you by WorldFirst from time to time.

9.2. As applicable all amounts due under this Agreement are exclusive of goods and services, sales or other applicable tax for the time being prescribed by law.

10. INTELLECTUAL PROPERTY RIGHTS

10.1. Except for the Licensee's licenced right to use the API, Platform and API Material as expressly granted in this Agreement, all Intellectual Property Rights in and to the API, Platform and API Materials shall vest and remain vested in WorldFirst or its licensors.

10.2. You may provide WorldFirst with feedback or comments related to the API(s) and/or your experience with and use thereof (“Feedback”). Licensee agrees that WorldFirst and its designees and assigns shall be free to copy, modify, create derivative works of, publicly display, disclose, distribute, license, sublicense, incorporate, and otherwise use Feedback, including all derivative works thereto, for any and all purposes, commercial or otherwise, with no obligation of any kind to you.

10.3. To the extent that the Licensee acquires any Intellectual Property Rights in the API, Platform or API Materials, the Licensee shall assign or procure the assignment of such Intellectual Property Rights with full title guarantee (including by way of present assignment of future Intellectual Property Rights) to WorldFirst or any relevant third party nominated by WorldFirst. The Licensee shall execute all such documents and do such things, as WorldFirst may consider necessary, to give effect to this clause.

10.4. All Intellectual Property Rights in and to the Application shall vest and remain vested in the Licensee.

11. MODIFICATIONS TO THE API

11.1. WorldFirst reserves the right to make modifications to the API and release modifications in the form of Major and Minor Versions, as necessary for the performance of the API. Minor Versions to the API should not impact the use of the API or integration of the Application. A Major Version modification will affect your Application and API access.

11.2. You acknowledge that where a change is critical for business, legal or compliance reasons, WorldFirst may need to include a change in a Minor Version that may impact your use of the API. WorldFirst shall use reasonable endeavours to provide prior notice of such changes.

11.3.  You acknowledge that a Major Version may have an adverse effect on the Application, including but not limited to changing the manner in which the Application communicates with the API and displays content. You agree it is your obligation to integrate Major Versions and at your own cost within 6 months of the release date.

11.4.  Notice of Major Versions shall be communicated via email. You otherwise acknowledge and agree that the API may be modified at any time and without any notice to you.

11.5.  On release of a new Major Version, the old Major Versions may be moved to an ‘End of Life’ state within such reasonable period as may be notified by WorldFirst to you. The old Major Version shall be disable at the end of the ‘End of Life’ period. The Licensee agrees that it must integrate to the new Major Version prior to the old Major Version being disabled. For the avoidance of doubt, the Licensee can continue to use the Old Version until it is disabled.

11.6. The Licensee acknowledges and agrees that all Intellectual Property Rights in any modification, version or enhancements made to the API by the Licensee shall vest in WorldFirst upon creation, and WorldFirst shall be entitled to use any information provided by the Licensee relation to modifications or enhancements that could be made to the API without any right of the Licensee to compensation for the same.

11.7. To the extent that the Licensee acquires any Intellectual Property Rights in any modification to the API, the same requirements as under clause 10.3 shall apply in respect of such modifications.

12. SUPPORT

12.1. WorldFirst shall not provide a development support service unless the Licensee makes separate arrangements with WorldFirst and pays all fees associated with such support. Any such support provided by WorldFirst shall be subject to the terms of this Agreement as modified by any associated support agreement.

12.2. WorldFirst’s technical support service shall only be available to those authorised technical representative as notified in writing by the Licensee to WorldFirst.

13. CONFIDENTIAL INFORMATION

13.1. Each Party shall maintain the confidentiality of the other Party’s Confidential Information and shall not with the prior written consent of the other, use, disclose, copy or modify the other Party’s Confidential Information, or permit others to do so, other than as necessary for the performance of its rights and obligations under this Agreement.

13.2. Each party undertakes to:

13.2.1. Disclose the other Party’s Confidential Information only to those of its officers, employees, agents, professional advisors, contractors and Affiliates to whom and to the extent that such disclosure is necessary in the performance of the obligations under this Agreement;

13.2.2. To procure that such persons are made aware of and agree in writing to observe the obligations in this clause;

13.2.3. Each Party shall give notice to the other of any unauthorised misuse, disclosure, theft or loss of the other Party’s Confidential Information immediately upon becoming aware of the same.

13.3.  The provisions of this clause 13 shall not apply to information which:

13.3.1. Is or comes into the public domain through no fault of the recipient, or its Affiliates, officers, employees, agents, contractors;

13.3.2. Is lawfully receiving by the recipient from a third party free of any obligation of confidence at the time of its disclosure;

13.3.3. Independently developed by the recipient, without access to or use of such information; or

13.3.4. Is required by law, court, governmental or regulatory order to be disclosed, provided that the relevant Party, where legally possible, notifies the other Party at the earlies opportunity before many any disclosure.

13.4. Beforethe recipient discloses any information pursuant to clause 13.3.4 it shall, to the extent permitted by law, use all reasonable endeavours to give the discloser as much notice of this disclosure as possible. Where notice of such disclosure is not prohibited and is given in accordance with this clause 13.4, the recipient shall take into account the reasonable requests of the discloser in relation to the content of this disclosure.

13.5. If the recipientis unable to inform the discloser before any information is disclosed pursuant to clause 13.3.4 it shall, to the extent permitted by law, inform the discloser of the full circumstances of the disclosure and the information that has been disclosed as soon as reasonably practicable after such disclosure has been made.

13.6. The obligations under this clause 13 shall survive the variation, expiry or termination of this Agreement for a period of five (5) years thereafter.

14. TERMINATION

14.1.  This Agreement shall commence on the date you indicate your acceptance of the terms and conditions hereof and shall remain in full force and effect until the date terminated as permitted hereunder (the “Term”). Either Party may terminate this agreement for any reason on 30 days’ written notice to the other Party.

14.2.  Either Party may terminate this Agreement with immediate effect by written notice to the other at any time if the other Party:

14.2.1. Commits a material breach, where the breach is not remedied within 30 days after receiving written notice of the breach;

14.2.2. Commits a material breach which is not remediable, including but not limited to a breach of the provisions hereof regarding confidentiality or security;

14.2.3. Commits persistent breaches of the Agreement;

14.2.4. (As applicable) fails to pay sums due under the Agreement when they fall due and payable; or

14.2.5. Is deemed insolvent or bankrupt further where (i) a petition is presented for the winding up of a Party to the agreement, (ii) it has an administrator or liquidator appointed, or (iii) a Party makes an arrangement with its credits.

14.2.6. An Update causes the API to be unusable or requires Licensee to incur unreasonable commercial costs from development work required to accept the Update.

14.2.7. Either Party materially breaches the security requirements of this Agreement including but not limited to the Licensee not ensuring that API Credentials are kept confidential secure, or does not use the API Credentials as the sole means of accessing the WorldFirst API.

14.3.  WorldFirst reserves the right to termination the Agreement with immediate effect and without notice if:

14.3.1. Licensee substantially replicates products or services offered by WorldFirst or repackages, redesigns, or resells the API Materials; or

14.3.2. Licensee uses the API or API Materials for a means or a purpose not outlined in this Agreement and causes significant disruption, loss or damage to WorldFirst.

14.4.  Notwithstanding the other provisions contained herein, this Agreement shall terminate automatically upon your termination of your World Account.

14.5.  On termination of this Agreement for any reason:

14.5.1. WorldFirst shall deactivate the API Credentials for accessing the API and all rights and the license granted to the Licensee under this Agreement shall immediately be revoked and the Licensee shall cease all activities authorised by this Agreement including, without limitation, making the API and API Materials available on the Application;

14.5.2. the Licensee shall, if requested by WorldFirst’s, return to WorldFirst all copies of any part of the API Materials or destroy the same and, on WorldFirst’s written request, certify in writing to WorldFirst that they have been destroyed or erased. This does not extend to transaction data which is required to be stored by Licensee for regulatory purposes; and

14.5.3. Licensee shall ensure that the API is erased from all Applications and equipment and, on WorldFirst’s written request certify to WorldFirst that this has been done.

14.6. Any termination of this Agreement shall not affect any accrued rights or liability of either Party nor shall it affect the coming into force or continuance of any provisions hereof which is expressly or by implication intended to come into force or survive termination.

15. NOTICES

15.1. The Licensee agrees that all notices to it shall be in writing, (a) either addressed to it at its registered office (if it is a company) or its principle place of business (in any other case) or (b) given electronically, sent to the electronic mail address provided by it during the registration of its World Account.

15.2. You agree that all notices to WorldFirst shall be given electronically, sent to the following electronic mail address:

            WorldFirst:  legal.desk@worldfirst.com

15.3. A notice shall be deemed to have been received if delivered to the registered address of a Party (as applicable) (a) personally at the address referred to in this Agreement, (b) by first class post two days after posting, (c) by airmail seven days after posting, (d) if by email to the address below at the time of sending, provided that no undelivered notice has been generated.

16. NO AGENCY

16.1. Except as expressly set forth herein, no agency, partnership, joint venture, or employment is created as a result of this Agreement and neither Party has any authority of any kind to bind the other Party in any respect whatsoever. 

17. WARRANTIES

17.1. Each Party represents and warrants that:

17.2.  they have the necessary power and authority to enter into this Agreement;

17.3.  performance of their obligations will not constitute a breach or otherwise violate any other Agreement or the right of any third party arising therefrom;

17.4.  they will maintain, throughout the Term, all required rights and licences related to the Application and WorldFirst Services, as applicable;

17.5.  provision or use of the API Materials (as appropriate) do and shall comply with all Applicable Law and Regulation.

17.6. Any warranties given by WorldFirst shall be subject to the Licensee using the API in compliance with this Agreement, and WorldFirst shall not be liable under this clause for, or required to remedy, any problem arising from:

17.6.1. Any modification made to any part of the API by anyone other than WorldFirst without its express prior written consent; or

17.6.2. Any defect of error wholly caused by any equipment or third-party software used in connection with the API.

18. INDEMNITIES

18.1. Licensee agrees that WorldFirst shall have no liability whatsoever for any use Licensee makes of the API and Platform.  Licensee shall indemnify and hold harmless WorldFirst and its Affiliates from any and all claims, damages, liabilities, costs and fees (including legal fees) arising from the Licensee’s improper use of the API, WorldFirst Services and Platform.

18.2. The Licensee shall indemnify and keep WorldFirst indemnified from and against any penalties or fines incurred from any regulator , any breach or alleged breach by the Licensee of any representation, warranty, or obligation contained in this Agreement and any losses which arise out of or in connection with any breach of security or loss of data (including for the avoidance of doubt Personal Data for which the Indemnified Party is the Data Processor) which was caused by breach of this Agreement or negligence of the Licensee, or its Affiliates, its employees, agents and/or sub-contractors.

19. FORCE MAJEURE

19.1.  A Party shall not be liable if delayed in or prevented from performing its obligations hereunder due to Force Majeure, provided that it:

19.1.1. promptly notifies the other Party of the Force Majeure event and its expected durations; and

19.1.2. uses reasonable endeavours to minimise the effects of that event.

19.2.  If, due to Force Majeure, a Party:

19.2.1. is unable to perform a material obligation; or

19.2.2. is delayed in or prevented from performing its obligations for a continuous period of more than 30 days;

The other Party may, within a further 10 days, terminate this Agreement on notice; otherwise, this Agreement shall continue in full force and effect.

20. LIMITS OF LIABILITY

20.1.  REGARDLESS OF WHETHER ANY REMEDY SET FORTH HEREIN FAILS OF ITS ESSENTIAL PURPOSE OR OTHERWISE, AND EXCEPT FOR DEATH OR  PERSONAL INJURY CAUSED BY A PARTY’S NEGLIGENCE; OR FOR FRAUD OR FRAUDULENT MISREPRESENTATION, IN NO EVENT WILL A PARTY OR ITS AFFILIATES BE LIABLE TO THE OTHER PARTY OR TO ANY THIRD PARTY UNDER ANY TORT (INCLUDING NEGLIGENCE), CONTRACT, STATUTE OR OTHER LEGAL OR EQUITABLE THEORY FOR ANY LOSS OF PROFITS, LOSS OF EARNING, LOSS OF PRODUCTION, LOSS OF GOODWILL, REPUTATION OR ANY INDIRECT OR CONSEQUENTIAL LOSS ARISING FROM OR IN CONNECTION TO THIS AGREEMENT.

20.2.  WorldFirst ’s total aggregate liability to the Licensee under this Agreement will not exceed USD 500,000.  

20.3. The foregoing limitations shall survive and apply even if any limited remedy specified in this Agreement is found to have failed of its essential purpose.

21. DISCLAIMER AND WAIVER

21.1. THE API, WORLDFIRST SERVICES AND API MATERIALS ARE PROVIDED ‘AS IS’ WITHOUT WARRANTY OF ANY KIND. EXCEPT TO THE EXTENT REQUIRED BY APPLICABLE LAW, WORLDFIRST AND ITS AFFILIATES EACH DISCLAIM ALL WARRANTIES WHETHER EXPRESS, IMPLIED OR STATUTORY, NOT EXPRESSLY STATED IN THIS AGREEMENT, REGARDING THE API, API MATERIALS AND THE WORLDFIRST SERVICES, INCLUDING WITHOUT LIMITATION ANY AND ALL IMPLIED WARRANTIES OF MERCHANTABILITY, ACCURACY, RELIABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, NON- INFRINGEMENT OF THIRD-PARTY RIGHTS, ANY WARRANTIES OR CONDITIONS ARISING OUT OF COURSE OF DEALING OR USAGE OF TRADE. FURTHER, WORLDFIRST DISCLAIMS ANY WARRANTY THAT THE LICENSEE’S USE OF THE API WILL BE UNINTERRUPTED OR ERROR FREE.

21.2. The failure of a Party to exercise or enforce any right or provision of this Agreement will not constitute a waiver of such right or provision.

22. SEVERABILITY

If any provision of this Agreement is found by a court of competent jurisdiction to be invalid or unenforceable, then that provision will be removed from this Agreement and the remaining provisions will remain in full force and effect. 

23. VARIATION AND THIRD PARTIES

23.1. WorldFirst reserves the right to modify the terms of this Agreement at any time by posting a new version at https://www.worldfirst.com.cn/content/articles/DeveloperAPI/gj66tyku (or such URL as may be designated from time to time). To the fullest extent permitted under applicable Law, your continued use of the WorldFirst Account API Integration Service or related API Materials after any such modification constitutes Your acceptance of the Agreement as modified. If You do not agree to any modification of this Agreement, You must immediately stop accessing and using the WorldFirst Account API Integration Service or related API Materials.

23.2. For the purposes of the Contracts (Rights of Third Parties) Ordinance, this Agreement is not intended to and does not give any person who is not a Party to it any right to enforce any of its provisions.

24. ASSIGNMENT

You may not assign any of your rights or delegate the performance of any of your obligations under this Agreement without the prior written consent of WorldFirst. Any purported assignment in violation hereof shall be null and void. WorldFirst reserves the right to assign this Agreement or any right or obligation under this Agreement to an Affiliate without consent.

25. ENTIRE AGREEMENT

This Agreement contains the whole agreement between the Parties relating to its subject matter and supersedes any prior agreements, representations or understandings between them unless expressly   incorporated   by  reference   in this Agreement. Each party acknowledges that it has not relied on, and shall have no remedy in respect of, any representation (whether innocent or negligent) made but not expressly embodied in this Agreement. Nothing in this clause limits or excludes any liability for fraud or fraudulent misrepresentation.

26. GOVERNING LAW AND JURISDICTION

This Agreement shall be governed by and construed in accordance with the laws of Hong Kong. The parties agree to irrevocably submit to the exclusive jurisdiction of the courts of Hong Kong

Schedule 1

DATA TRANSFER AGREEMENT BETWEEN LICENSEE AND WORLDFIRST AS DATA CONTROLLERS

Definitions

For the purposes of the Schedule:

"Data Discloser": means a Party that is disclosing personal data under the Agreement

"Purpose": means the purpose for which a Party shares personal data and to comply with Applicable Laws to which the Data Controller is subject to

"Permitted Recipients": The Parties to the Agreement, the employees of each Party, and any third parties engaged to perform obligations in connection with (and where necessary for the performance of) with the Agreement.

"Shared Personal Data": means the personal data that is to be shared by the Parties under this Agreement for the Purpose.

“Controller”, “data subject”, “personal data”, “personal data breach”, “process”, “processor” and “supervisory authority” shall for the purposes of this Schedule have the meanings set out in the Data Protection Legislation.

1.     Data Protection

1.1. The Parties agree that they are both Controllers for the purposes of the Data Protection Legislation in respect of their processing of Shared Personal Data under the Agreement.

1.2. Each Party shall comply with all the obligations imposed on a Controller under the Data Protection Legislation.

1.3.  Each Party shall:

1.3.1. ensure that it processes the Shared Personal Data fairly and lawfully as provided for in the Data Protection Legislation during the term of the Agreement;

1.3.2.  ensure that its privacy notices are clear and provide sufficient information to the data subjects for them to understand what of their personal data is being shared, the circumstances in which it will be shared, the legal grounds on which the sharing is based, the purposes for the data sharing and the identity of the Controller;

1.3.3. give full information to any data subject whose personal data may be processed under the Agreement that personal data relating to them may be retained by or, as the case may be, transferred to one or more of the Permitted Recipients, their successors and assignees;

1.3.4. process the Shared Personal Data only for the Purpose;

1.3.5. not disclose or allow access to the Shared Personal Data to anyone other than the Permitted Recipients or its regulators;

1.3.6. ensure that all Permitted Recipients are subject to written contractual obligations concerning the Shared Personal Data (including obligations of confidentiality) which are no less onerous than those imposed by this Schedule 1;

1.3.7. ensure that it has in place appropriate technical and organisational measures to protect against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data.

1.3.8. not transfer any personal data unless permitted under the Data Protection Legislation.

1.4. Each Party shall assist the other in complying with all applicable requirements of the Data Protection Legislation. In particular, each Party shall:

1.4.1. consult with the other Party about any notices given to data subjects in relation to the Shared Personal Data;

1.4.2. promptly inform the other Party about the receipt of any data subject access request;

1.4.3. provide the other Party with reasonable assistance in complying with any data subject access request;

1.4.4. not disclose or release any Shared Personal Data in response to a data subject access request without first consulting the other Party wherever possible;

1.4.5. assist the other Party, at the cost of the other Party, in responding to any request from a data subject and in ensuring compliance with its obligations under the Data Protection Legislation with respect to security, breach notifications, impact assessments and consultations with supervisory authorities or regulators;

1.4.6. notify the other Party without undue delay on becoming aware of any breach of the Data Protection Legislation in respect of personal data transferred under this Agreement;

1.4.7. use compatible technology for the processing of Shared Personal Data to ensure that there is no lack of accuracy resulting from personal data transfers;

1.4.8. maintain complete and accurate records and information to demonstrate its compliance with this

clause and allow for audits by the other Party or the other Party’s designated auditor; and

1.4.9. provide the other Party with contact details of at least one employee as point of contact and responsible manager for all issues arising out of the Data Protection Legislation.

1.5.  Each Party shall comply with the principles of this Schedule in the event that either Party processes personal data in its performance of the services under this Agreement.

Schedule 2

INCIDENT REPORTING

In order to comply with regulations, WorldFirst must report the occurrence of certain incident(s). The Licensee must report any of the following incidents to WorldFirst in the manner and timeframe set out in the table below:

万里汇账户API集成主服务协议

版本：2022年7月

本万里汇账户API集成主服务协议（本“协议”）是您（终端用户）和雇用您或您代表的任何公司（“被许可方”）与 World First Asia Limited（“万里汇”）之间具有法律约束力的合同。本协议适用于您对万里汇账户API集成服务或万里汇根据本协议提供的相关API材料的使用。通过（一）点击“我接受”或所见类似确认信息，或（二）访问或使用万里汇账户API集成服务或相关API材料，您确认并同意您在使用万里汇账户API集成服务和提供给您的任何相关API材料时均受本协议约束。万里汇和被许可方各称为“一方”，并统称为“双方”。

本协议以英文和中文书就，中文译本仅供参考。如二者有不一致之处，当以英文版本为准。本协议英文版本对双方具有约束力。

定义和解释

1.       万里汇账户

被许可方须注册万里汇账户，并使用该等注册信息访问您的万里汇开发者账户，方可使用万里汇账户API集成服务或相关API材料。

2.     使用API和API材料的许可

2.1.   自本协议生效日期起，在被许可方按照本协议履行其义务的前提下，万里汇授予被许可方使用API能力的许可。该等许可具有非排他性、不可转让、无权转授给终端用户，并且可撤销。此外，该等许可受限于本协议中任何其他对使用的限制，包括但不限于本协议第3条之内容。

2.2.   被许可方不得转授、让渡或以其他方式转让本协议项下授予的权利，除非万里汇已就该等转授提供书面同意。

2.3.   为使被许可方能够使用本协议第2.1条许可的API和万里汇服务，万里汇授予被许可方及其关联方一项有限的、非排他性的、可撤销的、不可让渡和不可转让的许可，用于下载、复制、查看和使用API材料。

2.4.   对API和API材料的使用许可在协议期限内有效，除非根据本协议的条款提前终止。

2.5.   根据本协议许可的API应包括API的更新（“更新的API”），您知晓您在使用更新的API时也应受本协议所包含的条款和条件的约束。

2.6.   被许可方应负责被许可方的构建和相关成本，以确保其应用程序能够集成API并与万里汇服务交互。

3.     API及API材料的使用

3.1.   API能力应仅向被许可方提供对其自身账户信息的访问权，以用于执行万里汇服务。各方知晓，通过使用API并履行其在本协议项下的义务，他们是独立的数据控制者。附表1规定了双方作为数据控制者根据数据保护立法共享和处理数据的框架。

3.2.   被许可方确认，其对平台或应用程序提供的或访问平台或应用程序所得的API、API材料和任何其他数据的收集、访问、使用、存储、处置和披露，已经并将遵守所有适用法律，包括但不限于数据保护立法、他国隐私和数据保护法以及所有其他适用法规和指令。

3.3.   被许可方不得违反本协议中详述的任何限制或以本协议未明确允许的方式使用API或API材料。

3.4.    除非是出于使用本协议授予我们的许可这一唯一目的，被许可方不得对API或平台，或其任何部分，或任何API材料进行复制或重新包装。

API的使用

3.5.   被许可方同意在使用API时：

3.5.1. 仅出于本协议规定的目的；

3.5.2. 遵守本协议第8条及附表1所述安全及数据保护规定；

3.5.3. 遵守任何相关政府、政府或监管机构或其他相关机构的所有相关法律、法规、业务守则、指导和其他要求。

3.6.   被许可方同意在使用API时不会：

3.6.1. 在被许可方的应用程序中对外公开平台上的任何保密信息；

3.6.2. 与适用法律或法规规定的任何非法目的产生关联；

3.6.3. 以任何方式违反使用条款中详细列出并经不时修订的万里汇使用条款;

3.6.4. 以任何方式违反或可能违反对第三方的法律义务（包括保密义务），或侵犯或可能侵犯个人的隐私权；或以任何方式侵犯第三方的知识产权或助长任何非法行为。

3.7.    被许可方不得：

3.7.1. 分发、许可、出租或以其他方式交易API；或

3.7.2. 修改、添加或以其他方式增强或更改API；或

3.7.3. 禁用API或万里汇服务的任何特性、功能或安全控制；或

3.7.4. 通过故意引入病毒、木马、蠕虫、比特、逻辑炸弹或任何其他恶意软件来滥用API或平台；或

3.7.5. 试图未经授权访问平台、万里汇服务器或连接到平台和API的任何服务器、数据库计算机。

3.8.   若被许可方的应用程序有终端用户，则其应：

3.8.1. 不允许终端用户出于记录保存以外的任何目的下载或存储通过API访问的数据；和

3.8.2. 确保通过API进行的登录/访问符合万里汇根据本协议向被许可方提出的安全要求。

3.9.   若被许可方根据本协议允许第三方从API获益，例如批准转授许可给关联方，则被许可方应确保所有该等使用：

3.9.1. 不得超过被许可方允许的使用范围；

3.9.2.  受被许可方控制；和

3.9.3. 受本协议条款约束并符合本协议条款。

3.10.  万里汇保留随时访问或暂停应用程序和/或API的权利，以确保被许可方在使用API时遵守本协议，并同意在与本协议相关事项上配合万里汇。

3.11.  若万里汇全权酌情确定，被许可方在使用API时直接或间接地涉及其使用条款中规定的任何使用限制，或容许该等情形，万里汇可立即暂停API许可，若被许可方持续违反上述限制，万里汇可在通知您后撤销API许可。

API材料的使用

3.12.  被许可方确认，API材料可能包含第三方知识产权，被许可方应确保在使用该等API材料时不侵犯这些权利。若被许可方发生任何该等侵权行为，其使用API材料的许可将被自动撤销，且须立即销毁API材料的副本。

3.13.  被许可方不得：

3.13.1.创建API材料的永久副本，除非在本协议允许的范围内；

3.13.2.以任何方式、出于任何目的使用或利用API材料，除非本协议明确允许；和

3.13.3.删除或更改API材料中出现的任何属性、版权声明和其他标识或免责声明。

4.     API数据保护

4.1.   被许可方应确保其实施适当的技术和组织措施，以保护应用程序、API、API材料和任何个人数据不受未经授权或非法处理的影响，不受意外丢失、破坏、损坏、更改或披露的影响。

4.2.   该等措施应适用于任何未经授权或非法处理、意外丢失、破坏或对应用程序、API、API材料和任何个人数据造成的损害，并考虑到通过API共享的受保护信息的性质。

4.3.    被许可方应：

4.3.1. 在使用API和API材料时，遵守所有适用的数据保护立法;

4.3.2. 确保其在收集、使用及披露任何个人数据作为其使用API及API材料的一部分时，符合数据保护立法的规定，并已取得数据当事人的必要同意;

4.3.3. 在使用API和API材料时，仅处理被许可方操作应用程序所需的数据;

4.3.4. 制定及遵循适当的流程，以稳妥地保留任何不再需要的数据，以及/或在终端用户撤回对处理其个人数据的同意后，删除其个人数据；

4.3.5. 在出现任何未经授权的API访问或使用时，立即通知万里汇；和

4.3.6. 遵守万里汇隐私政策，并在显著位置展示隐私政策（如适用），告知终端用户被许可方将向其收集哪些信息，以及该等信息将如何处理，并且仅依据平台和应用程序的隐私政策允许的范围和方式处理构成API材料的一部分、衍生自API材料或与API材料相结合的个人数据。

4.4.   若被许可方违反本条规定，万里汇有权在通知被许可方后随时暂停其对API的访问。

5.     API安全凭证

5.1.   在连接API之前，万里汇应向被许可方提供API凭证。被许可方同意确保API凭证的机密性和安全性，并且仅将 API 凭证用于访问 API 这一唯一目的。

5.2.   为免生疑问，您不应与任何第三方共享API凭证。

5.3.   被许可方应对通过API能力进行的任何预约负责，包括您或您的终端用户的任何误用、欺诈或滥用，或您或您的终端用户向第三方披露API凭证或唯一安全凭证的情况。

6.     无许可

6.1   为免生疑问，根据本协议，公司未获得任何明示或默示的权利或许可，以使用万里汇（及其关联方）的任何商号、商标、服务标志、标识、版权声明、域名和其他独特品牌。

7.     应用程序内容及营销

7.1.   若法规要求，在API被激活之前，被许可方同意其应用程序内容应：

7.1.1.  公平、清晰、不误导；

7.1.2. 明确说明API能力的服务由万里汇提供；和

7.1.3.  由万里汇审批通过。

7.2.   为免生疑问，如有任何更改会对第7.1条和/或API能力已经批准的内容产生影响，万里汇必须先对该等更改做出批准，然后才能将其体现到应用程序中。

7.3.   在本协议期限内，在不违反下文第7.4条的情况下，被许可方向万里汇授予一项非排他性的、全球性的、可转授的、免版税的许可，允许万里汇使用该方的品牌来宣传被许可方正在使用万里汇API（例如，在演示文稿、营销材料、客户名单、财务报告和网站列表（包括指向您的网站的链接）中使用该方的标志，或在营销或广告材料中展示应用程序截图）。为此，

7.4.   双方同意，在使用任何与API、应用程序、万里汇服务和/或另一方有关的宣传材料之前，必须事先获得另一方的批准。

8.     服务

8.1.   万里汇应根据适用法律和万里汇条款和条件，按照本协议的条款提供API和万里汇服务。

8.2.   被许可方同意遵守附表2，报告仅与提供API相关的监管和技术问题。

9.     费用和税收

9.1.   万里汇目前不对授权被许可方访问API、API材料收取费用；然而，上述访问的费用将以万里汇不时告知您的费用为准。

9.2.   在适用的情况下，本协议项下的所有应付款项均不包括法律规定的商品和服务、销售或其他适用税。

10.   知识产权

10.1.  除本协议中明确授予的被许可方使用API、平台和API材料的许可权利外，API、平台和API材料的所有知识产权应归属于并继续归属于万里汇或其许可方。

10.2.  您可以向万里汇提供与API和/或您使用API的经验相关的反馈或意见（“反馈”）。被许可方同意，万里汇及其指定方和受让方将可自由复制、修改、创作、公开展示、披露、分发、许可、转授许可、合并和以其他方式使用该等反馈（包括其所有衍生作品），用于任何和所有商业或其他目的，而不对您承担任何种类的义务。

10.3.  如果被许可方获得了API、平台或API材料中的任何知识产权，则被许可方应将该等知识产权在完全所有权担保下（包括通过当前转让未来知识产权的方式）转让给万里汇或万里汇指定的任何相关第三方。被许可方应签署所有万里汇认为必要的文件并采取必要的行动，以使本条款生效。

10.4.  应用程序中的所有知识产权应归属并始终归属于被许可方。

11.   API的修改

11.1.  万里汇保留对API进行修改的权利，并根据API性能的需要，以主版本号和次版本号的形式发布修改。API的次版本号不应影响API的使用或应用程序的集成。主版本号的修改将对您访问应用程序和API产生影响。

11.2.  您知晓，若某项变更出于业务、法律或合规原因而至关重要，万里汇可能需要在次版本号中进行变更，该等变更可能影响您对API的使用。万里汇应尽合理努力提前就该等变更做出通知。

11.3.  您知晓，主版本号可能会对应用程序产生不利影响，包括但不限于改变应用程序与API通信和显示内容的方式。您同意您有义务在发布日期后的6个月内自费集成主版本号。

11.4.  主版本号的通知应通过电子邮件传达。您知晓并同意API可以随时修改，无需另行通知。

11.5.  在新的主版本号发布时，旧的主版本号可能会在万里汇通知您的合理期限内进入“使用寿命结束”状态。旧的主版本号将在“使用寿命结束”期结束时禁用。被许可方同意它必须在旧的主版本号被禁用之前集成到新的主版本号中。为免生疑问，被许可方可以继续使用旧版本，直到它被禁用。

11.6.  被许可方知晓并同意，被许可方对API进行的任何修改、版本或增强中的所有知识产权应在创建时归属于万里汇，并且万里汇有权使用被许可方提供的与可能对API进行的修改或增强有关的任何信息，而被许可方无权因此获得任何补偿。

11.7.  若被许可方在对 API 的任何修改中获得任何知识产权，则第10.3条中的相同要求应适用于该等修改。

12.   支持

12.1.  万里汇不提供开发支持服务，除非被许可方与万里汇做出单独安排并支付与该等支持相关的所有费用。万里汇提供的任何该等支持均应遵守经相关支持协议修改的本协议条款。

12.2.  万里汇的技术支持服务只能提供给被许可方以书面形式通知万里汇的授权技术代表。

13.   机密信息

13.1.  各方均应对另一方的机密信息保密，除非事先获得另一方的书面同意，否则不得使用、披露、复制或修改另一方的机密信息，或允许他人这样做，但为履行其在本协议项下的权利和义务所必需的除外。

13.2.  各方承诺：

13.2.1.仅向履行本协议项下义务所需的其高级职员、雇员、代理、专业顾问、承包商和关联方披露另一方的机密信息；

13.2.2.使该等人士知晓并书面同意遵守本条款中的义务；

13.2.3.任何一方在知悉对方的机密信息遭受未经授权的滥用、披露、盗窃或丢失时，应立即通知对方。

13.3.  本协议第13条的规定不适用于：

13.3.1.并非由于接收方或其关联方、高级职员、雇员、代理、承包商的过错而进入公众领域的信息；

13.3.2.在信息披露时，接收方不承担任何保密义务而合法地从第三方接收的信息；

13.3.3.由接收方独立开发，未访问或使用该等信息的信息；或

13.3.4.法律、法院、政府或监管命令要求披露的信息，但在法律允许的情况下，相关方应在披露之前尽早通知另一方。

13.4. 在接收方根据第13.3.4条披露任何信息之前，在法律允许的范围内，接收方应尽一切合理的努力，尽可能多地就此次披露通知披露方。如果此类披露的通知未被禁止，且按照本第13.4条的规定发出，接收方应考虑披露方就披露内容提出的合理要求。

13.5. 如果接收方无法在根据第13.3.4条披露任何信息之前通知披露方，则接收方应在法律允许的范围内，在披露完成后，在合理可行的范围内尽快将披露的全部情况和已披露的信息告知披露方。

13.6.  本第13条项下的义务在本协议变更、期满或终止后的五（5）年内继续有效。

14.   终止

14.1.  本协议自您表示接受本协议条款和条件之日起生效，并在本协议允许的终止日期（“期限”）之前保持完全有效。任何一方均可在提前30天书面通知另一方后以任何理由终止本协议。

14.2.  任何一方均可随时书面通知另一方终止本协议，终止后立即生效，如果另一方：

14.2.1.重大违约，自收到违约书面通知之日起30日内未纠正违约行为；

14.2.2.发生不可补救的重大违约行为，包括但不限于违反本协议有关保密或安全的规定；

14.2.3.持续违反本协议；

14.2.4.（如适用）未能支付本协议项下到期应付款项；或

14.2.5.在以下情况下，被视为资不抵债或进一步破产：（一）协议一方被提出清盘呈请，（二）已指定管理人或清算人，或（三）一方对其债权作出安排。

14.2.6.更新会导致API无法使用，或要求被许可方因接受更新所需的开发工作而承担不合理的商业成本。

14.2.7.任何一方严重违反本协议的安全要求，包括但不限于被许可方未确保API凭证的保密性，或未将API凭证用作访问万里汇API的唯一方式。

14.3.  万里汇保留立即终止协议的权利，恕不另行通知，如果：

14.3.1.被许可方大量复制万里汇提供的产品或服务，或重新包装、重新设计或转售API材料；或者

14.3.2.被许可方将API或API材料用于本协议中未列明的手段或目的，并对万里汇造成重大干扰、损失或损害。

14.4.  即使本协议中有其他规定，本协议仍将在您的万里汇账户终止时自动终止。

14.5.  本协议因任何原因终止时：

14.5.1.万里汇应停用用于访问API的API凭证，在本协议项下授予被许可方的所有权利和许可应立即被撤销，被许可方应停止本协议授权的所有活动，包括但不限于在应用程序上提供API和API材料;

14.5.2.应万里汇要求，被许可方应将API材料任何部分的所有副本归还给万里汇或销毁该等副本，并应万里汇书面请求，以书面形式向万里汇证明该等副本已被销毁或删除。以上不适用于被许可方出于监管目的而需要存储的交易数据；和

14.5.3.被许可方应确保从所有应用程序和设备中删除API，并应万里汇书面请求，向万里汇证明已完成删除。

14.6.  本协议的终止不影响任何一方的任何累算权利或责任，也不影响本协议中明示或暗示将生效或在终止后继续有效的任何条款的生效或存续。

15.   通知

15.1.  被许可方同意，向其发出的所有通知均应采用书面形式，（一）发送至其注册办事处（如为公司）或其主要营业地点（在任何其他情况下），或（二）以电子方式发送， 发送至其在其万里汇账户注册期间提供的电子邮件地址。

15.2.  您同意向万里汇发出的所有通知均应以电子方式发送至以下电子邮件地址：

万里汇：legal.desk@worldfirst.com

15.3.  若通知以如下方式送达至一方的注册地址（如适用）：（一）亲自送达本协议中提及的地址，（二）以一类邮件付邮后2天，（三）以航空邮件付邮后7天，（四）如果发送时通过电子邮件发送至以下地址（前提是没有产生未送达的通知），则该通知应被视为已收到。

16.   无代理

16.1.  除本协议中明确规定外，本协议不产生任何代理、合伙、合资或雇佣关系，且任何一方均无权在任何方面约束另一方。

17.   保证

17.1.  各方声明并保证：

17.2.  其拥有签订本协议的必要权力和授权；

17.3.  履行其义务不会违反任何其他协议或由此产生的任何第三方的权利；

17.4.  其将在整个期限内维持与应用程序和万里汇服务相关的所有必要权利和许可（如适用）；

17.5.  API材料的提供或使用（视情况而定）确实且应遵守所有适用的法律和法规。

17.6. 万里汇提供的任何保证均应以被许可方按照本协议的规定使用API为前提，且万里汇在本条项下不对以下情况引起的任何问题承担责任或进行补救：

17.6.1.除万里汇外的任何人未经其事先明确书面同意对API的任何部分进行的任何修改；或

17.6.2.完全由与API相关的任何设备或第三方软件引起的任何错误或缺陷。

18.   赔偿

18.1.  被许可方同意，对于被许可方对API和平台的任何使用，万里汇不承担任何责任。被许可方应对因被许可方不当使用API、万里汇服务和平台而产生的任何和所有索赔、损害、责任、成本和费用（包括法律费用），向万里汇及其关联方作出赔偿，并使其免受损害。

18.2.  对于任何监管处罚或罚款、因被许可方违反或涉嫌违反本协议中包含的任何陈述、保证或义务而招致的任何处罚或罚款，以及因被许可方、其关联方、其雇员、代理和/或分包商违反本协议或疏忽而造成的因违反安全规定或数据丢失（为免生疑问，包括受补偿方为数据处理者的个人数据）而产生或与之相关的任何损失，被许可方应对万里汇作出赔偿并使万里汇免受任何处罚或罚款。

19.   不可抗力

19.1.  一方因不可抗力而延误或不能履行其在本合同项下的义务时，不承担责任，但条件是：

19.1.1.及时将不可抗力事件及其预计持续时间通知另一方；和

19.1.2.作出合理的努力，尽量减少该事件的影响。

19.2.  如果由于不可抗力，一方：

19.2.1.无法履行实质义务；或

19.2.2.拖延、不履行其义务连续30日以上的；

另一方可在10日内经通知终止本协议；否则，本协议应继续完全有效。

20.   责任限制

20.1.  无论本协议中规定的任何补救措施是否能达到其基本目的或其他目的，除因一方疏忽造成死亡或人身伤害或欺诈或欺诈性虚假陈述之外，在任何情况下，一方或其关联方均不对因本协议引起或与本协议有关的任何利润损失、盈利损失、生产损失、商誉、声誉损失或任何间接或后果性损失根据任何侵权（包括疏忽）、合同、法规或其他法律或衡平法理论向另一方或任何第三方承担责任。

20.2.  在本协议项下，万里汇对被许可方的责任总额不超过50万美元。

20.3.  即使发现本协议中规定的任何有限补救措施未能达到其基本目的，上述限制仍将继续有效并适用。

21.   免责声明和豁免

21.1.  API、万里汇服务和API材料均按“原样”提供，且不含任何类型的保证。除适用法律规定的范围外，对于API、API材料和万里汇服务，万里汇及其关联方不作本协议中未明确规定的明示、默示或法定保证，包括但不限于对适销性、准确性、可靠性、特定用途的适用性、所有权、不侵犯第三方权利的任何和所有默示保证，以及因交易、使用或贸易而产生的任何保证或条件。此外，万里汇不保证被许可方在使用API时不中断或无误差。

21.2.  一方未能行使或执行本协议的任何权利或规定，不应构成其对该等权利或规定的放弃。

22.    可分割性

如果有司法管辖权的法院发现本协议的任何条款无效或不可执行，则该条款将从本协议中删除，其余条款将保持完全有效。

23.   变更和第三方

23.1.  万里汇保留随时通过在https://www.worldfirst.com.cn/content/articles/DeveloperAPI/gj66tyku（或不时指定的URL）发布新版本修改本协议条款的权利。在适用法律允许的最大范围内，您在任何该等修改后继续使用万里汇账户API集成服务或相关API材料，即表示您接受修改后的协议。如果您对本协议的任何修改表示不同意，您必须立即停止访问和使用万里汇账户API集成服务或相关API材料。

23.2.  就《合约（第三方权利）条例》而言，本协议无意也未赋予任何非其缔约方的人任何权利来执行其任何条款。

24.    转让

未经万里汇事先书面同意，您不得转让您在本协议项下的任何权利或委托履行您在本协议项下的任何义务。任何违反本协议的转让均属无效。万里汇保留未经同意将本协议或本协议项下的任何权利或义务转让给关联方的权利。

25.    完整协议

本协议包含双方之间关于协议标的物的全部协议，并取代双方先前的任何协议、陈述或谅解，除非通过援引明确纳入本协议。各方承认，其并未依靠或享有对本协议中未明确体现的（无论出于疏忽还是无意造成）的任何陈述的补救。本条款中的任何内容均不限制或排除对欺诈或欺诈性虚假陈述的任何责任。

26.    适用法律及司法管辖权

本协议受香港法律管辖并按香港法律解释。协议双方同意不可撤销地接受香港法院的专属司法管辖权管辖。

附表1

被许可方与万里汇作为数据控制者之间的数据传输协议

定义

就本附表而言：

“数据披露方”：指根据协议披露个人数据的一方

“目的”：指一方共享个人数据和遵守数据控制者须遵守的适用法律的目的

 “获准接收方”：本协议各方、各方的雇员，以及承诺履行与本协议相关义务（并在必要时履行本协议）的任何第三方。

“共享个人数据”：指双方在本协议项下出于上述目的共享的个人数据。

就本附表而言，“控制者”、“数据当事人”、“个人数据”、“个人数据泄露”、“处理”、“处理者”和“监管机构”具有数据保护立法所载含义。

1.     数据保护

1.1.   双方同意，就数据保护立法而言，双方在处理本协议项下共享个人数据方面均为控制者。

1.2.   各方应遵守数据保护立法对控制者施加的所有义务。

1.3.    各方应：

1.3.1.  确保其在协议期限内按照数据保护立法的规定公平合法地处理共享个人数据；

1.3.2.  确保其隐私声明清晰明了，并向数据当事人提供足够的信息，以便他们了解正在共享哪些个人数据、将在何种情况下共享、共享的法律依据、数据共享的目的和控制者的身份；

1.3.3.  向其个人数据可根据本协议进行处理的任何数据当事人提供充分信息，说明与其相关的个人数据可由一名或多名获准接收方、其继任者和受让方保留或（视情况而定）传输给该等人士；

1.3.4.  仅出于前述目的处理共享个人数据；

1.3.5.  不得向获准接收方或其监管机构以外的任何人披露共享个人数据或允许他们访问共享个人数据；

1.3.6.  确保所有“获准接收方”都遵守有关共享个人数据的书面合同义务（包括保密义务），该等义务的繁重程度不低于本附表1所规定的义务；

1.3.7.  确保已采取适当的技术和组织措施，防止个人数据被未经授权或非法处理，以及防止个人数据意外丢失或毁坏或损坏。

1.3.8.  不得传输任何个人数据，除非数据保护立法允许。

1.4.   各方应协助另一方遵守数据保护立法的所有适用要求。特别是，各方应：

1.4.1.  就向数据当事人发出的与共享个人数据有关的任何通知与另一方协商；

1.4.2.  立即将收到任何数据当事人查阅要求的情况通知另一方；

1.4.3.  向另一方提供合理协助以依从数据当事人查阅要求；

1.4.4.  尽可能在未事先与另一方协商的情况下，不得为回应数据当事人查阅要求而披露或发布任何共享个人数据；

1.4.5.  在另一方承担费用的情况下，协助另一方回应数据当事人的任何请求，并确保其遵守数据保护立法规定的关于安全、违约通知、影响评估和与监管机构磋商的义务；

1.4.6.  在获悉根据本协议传输的个人数据有任何违反数据保护立法的情况时，立即通知另一方；

1.4.7.  使用兼容技术处理共享个人数据，以确保不会因个人数据传输而导致准确性不足；

1.4.8.  保持完整和准确的记录和信息，以证明其遵守本条款，并允许另一方或另一方指定的审计员进行审计；和

1.4.9.  向另一方提供至少一名雇员的联系方式，作为由数据保护立法引起的所有问题的联系人和负责经理。

1.5.   若任一方在履行本协议项下的服务过程中处理个人数据，则任一方均应遵守本附表的原则。

附表2

事件报告

为了遵守规定，万里汇必须在发生某些事件时进行报告。被许可方必须按照下表规定的方式和时限在下列事件发生时向万里汇报告：