Professional Documents
Culture Documents
ARMSS
ARMSS
SERVICE AGREEMENT
This Services Agreement (“Agreement”) is entered on the date and place as mentioned in
Annexure-1
BETWEEN
WES BEN ENTERPRISES PVT LTD, a non-banking financial company having its registered
office at No.9187 , New palace Road , Opposite to New Municipality Office ,Pudukkottai district-
622001.
AND
Er.T.SEKAR, S/O.THANGAIYAN a Proprietorship Firm in the name of M/s. GLOBAL
CONSTRUCTION & PROPERTIES, registered office at No – 13-F/799, M.I.M Trade Centre
Complex, JegeerUshan Street, 60 Feet Road, Kumbakonam, Thanjavur, Tamil Nadu, 612001
referred to as Service Provider, more particularly described in the Schedule (hereinafter
collectively referred to as the “Service Provider”, which expression shall unless the context
otherwise requires, include its/his/her/their respective heirs, legal representative, partners,
executors, administrator, successors, and permitted assigns;
The Service Provider and WES BEN are hereinafter each referred to as a "Party" and together
the "Parties", where the context so permits.
INTERNAL
WHEREAS
A. The Service Provider has been in business since [___], providing services of [__], and WES
BEN ENTERPRISES PVT LTD wishes to engage the Service Provider for the Services (as
defined hereinafter) on the terms and conditions as agreed between the Parties herein.
NOW THIS AGREEMENT WITNESSETH AND IT IS HEREBY AGREED BY AND BETWEEN
THE PARTIES HERETO AS BELOW
LTD and the Service Provider, including but not limited to, the currently
applicable notifications, circulars, guidelines and directions as issued by
RBI are RBI Directions on Managing Risks and Code of Conduct in
Outsourcing of Financial Services by NBFCs - Circular DNBR.PD. CC.
No.090/03. 10.001/2017, and RBI’s Guidelines for Digital Lending -
DOR.CRE. REC.66/21.07.001/ 2022-23, and RBI/DNBS/2016-17/53
Master Direction DNBS.PPD.No.04/66. 15.001/ 2016-17, and
RBI/DNBR/2016-17/45 Master Direction DNBR.PD.008/03.10.119/2016-
17, and Master Circular RBI/2015-16/16 DNBR (PD)
CC.No.054/03.10.119/2015-16, as the above shall be amended,
supplemented or any new circulars or notifications or directions or
guidelines as may be made applicable from time to time;
Companies Act shall refer to any of the laws governing the manner of establishment and
operation of corporate entities established under the same, including but
not limited to Companies Act, 1956 and Companies Act, 2013, and will
include by way of reference any preceding legislation to the
aforementioned statutes and any statute which replaces the said statutes
by way of implemented legislation and shall include all rules, regulations,
notifications, circulars and office memorandums issued pursuant to the
said statutes;
Confidential shall mean and include all proprietary and/or confidential information of
Information each Party and those of their customers or clients whether personal,
commercial, financial, technical or otherwise, in writing, machine readable
or in any other form or material (whether electronically recorded, in writing
or otherwise), whether communicated orally or in writing, which by its very
nature should be treated as secret and confidential and which the Parties
desire to protect against unrestricted disclosure or competitive use or
which is designated as such by the Parties herein, except for information
which is deemed as disclosed being (i) is generally available to the public,
(ii) is known to the Receiving Party on a non-confidential basis prior to
disclosure and/or (iii) is approved in writing by the Disclosing Party for
disclosure;
Customer shall mean the clients or customers of WES BEN ENTERPRISES PVT
LTD, both present, proposed and future, under any arrangement or any
other party that the Service Provider may have to interact/deal with in the
course of providing the Services.
Customer’s shall mean, include and refer to all information of a Customer, including
Confidential Personal Data, in the nature of personal identifiers or personally
Information identifiable information, including address, bank account details,
government registrations, documents issued by the government, or any
other information regarding a Customer that is not publicly available or any
combination thereof;
Data Protection means the applicable legislation and regulations relating to the protection
Laws of Personal Data (as defined below) and processing, storage, usage,
collection and/or application of Personal Data or privacy of an individual
including (without limitation):
a. The Information Technology Act, 2000 (as amended from time to time),
including the Information Technology (Reasonable Security Practices and
INTERNAL
Any description or definition included in any Annexure hereto are incorporated in this Clause 1
of the Agreement by way of reference without specific inclusion thereof herein.
INTERNAL
2. Interpretation
In this Agreement, unless the context otherwise requires,
a. Unless the context otherwise requires, words importing the singular include the
plural and vice versa, and pronouns importing a gender include each of the
masculine, feminine and neuter genders.
b. Reference to statutory provisions shall be construed as meaning and including
references also to any amendment or re-enactment (whether before or after the
date of this Agreement) for the time being in force and to all statutory instruments
or orders made pursuant to such statutory provisions.
c. The words “directly or indirectly” mean directly or indirectly through one or more
intermediary persons or through contractual or other legal arrangements, and
“direct or indirect” shall have the correlative meanings.
d. The annexures to this Agreement shall form an integral part of: (i) this Agreement
for its understanding, implementation, compliance and interpretation; and (ii) any
payments to be made under this Agreement.
required by WES BEN ENTERPRISES PVT LTD for the due performance of the
Services.
4. The Service Provider shall develop and establish a robust framework for
documenting, maintaining and testing business continuity and recovery
procedures required for its Services, and such business continuity and recovery
plan shall be tested periodically, including at the instance of WES BEN
ENTERPRISES PVT LTD and by WES BEN ENTERPRISES PVT LTD or their
duly appointed contractor or consultant for such testing of the business continuity
and recovery plan and systems. The Parties may also consider occasional joint
testing and recovery exercises, along with their respective service providers, if
any.
5. The Service Provider shall allow WES BEN ENTERPRISES PVT LTD to review
the financial and operational conditions of the Service Provider to assess its
ability to continue to provide Services, as per LTF’s requirement. Upon the
outcome of such review, WES BEN ENTERPRISES PVT LTD shall, at its
discretion, continue or terminate the Agreement.
5. Information Security
o Either Party recognizes, accepts and agrees that the Information provided or
disclosed by WES BEN ENTERPRISES PVT LTD or obtained by the Service
Provider, its staff, its sub -contractors, including WES BEN ENTERPRISES
PVT LTD practices and trade secrets, which may be communicated to the
Service Provider and/or its staff may be privy under or pursuant to this
Agreement and / or in the course of performance of the Service Provider's
obligations under this Agreement shall be treated as absolutely confidential and
the Service Provider hereby irrevocably agrees and undertakes and ensures that
the Service Provider, all its staff , its sub-contractors shall keep the same as
secret and confidential and shall not disclose the same, at all in whole or in part
to any person or persons (including legal entities) at any time or use nor shall
allow the Information to be used for any purpose other than as may be necessary
for the due performance of Services and the Service Provider’s Obligations
hereunder.
INTERNAL
o Either Party represents and warrants that it has put in place and effectively
operates an adequate information security management system, commensurate
with the size and nature of operations including necessary security measures,
policies, procedures and checks including but not limited to those required by the
Applicable Laws, including Data Protection Laws and other applicable legal and
regulatory stipulation.
o Either Party shall inform the other Party about any breach of this Agreement
(including breach of provisions relating to information security).
o Either Party shall before outsourcing any part of its services to a third party a)
give notice on best effort basis of such delegation to the other; and b) ensure that
such third party is of a good standing and has adequate system to protect
interest of the other including but not limited to having security system.
o Either Party shall be responsible and liable to the other for breaches if any by its
subcontractors.
statutory requirements and Applicable Laws which shall include, but not be
limited to, the Employees’ State Insurance Act 1948, the Employees’ Provident
Funds & Miscellaneous Provisions Act, 1952 and their applicable rules, and such
other laws, regulations and guidelines as applicable to the Service Provider.
6. Compliances:
(a) Environmental, Social and Governance: (i) The Service Provider shall at all
times uphold human rights and fundamental rights and not discriminate against
anyone based on gender, sex, race, caste, creed, age, disability etc.; (ii) the
Service Provider agrees and undertakes to act, to the extent and as applicable,
in compliance and consistent with the “Client’s Code of Conduct” as provided on
the official website of Client, and as may be amended from time to time by WES
BEN ENTERPRISES PVT LTD, in the manner and to the satisfaction of WES
BEN ENTERPRISES PVT LTD, and applicable laws of the jurisdiction of the
Service Provider; (iii) the Service Provider understands that compliance with as
provided under this clause is essential to the terms of the Agreement.
(c) The Service Provider shall ensure that the Services are performed in compliance
with all Applicable Laws and will be conducted in a courteous and business-like
manner. The Service Provider shall ensure that at no point of time the Services
are performed in a manner which is detrimental to the image and reputation of
WES BEN ENTERPRISES PVT LTD.
(d) If applicable, the Service Provider shall ensure that the Services relating to cash
management or reconciliation of transactions or other reconciliations are carried
out in timely manner and submitted to WES BEN ENTERPRISES PVT LTD.
7. The Service Provider shall represent and clearly indicate to all third parties, including
without limitation the Customers of WES BEN ENTERPRISES PVT LTD (as may be
applicable), that they are an independent contractor who has entered into a contractual
arrangement with WES BEN ENTERPRISES PVT LTD and therefore have the authority
to perform the Services. Accordingly, it should be clarified that all actions are
independent actions of the Service Provider. Further the Service Provider is not being
provided any authority to make any commitments or representations on behalf of WES
BEN ENTERPRISES PVT LTD. The Service Provider shall act within the limited rights
given by WES BEN ENTERPRISES PVT LTD under this Agreement or under specific
written authority and within framework of the Applicable Laws and shall not act beyond
the permitted authority.
8. The Service Provider shall not portray, or permit any person to portray it, as being
authorised to bind WES BEN ENTERPRISES PVT LTD in any way or be entitled to
enter into any negotiations on behalf of WES BEN ENTERPRISES PVT LTD, or to bind
WES BEN ENTERPRISES PVT LTD in any way or enter into settlements on behalf of
WES BEN ENTERPRISES PVT LTD or act in their name.
9. Service Provider shall be liable and/or responsible for any act of omission or
commission, including but not limited to, negligence, misrepresentation, violence,
threats, coercion, harassment, false/misleading representation etc., on the part of the
Service Provider or Personnel during performance of their functions or rendering
Services under this Agreement. Actions, if any, initiated by third parties against WES
BEN ENTERPRISES PVT LTD with respect to the above matters, shall be defended by
the Service Provider at its own cost.
INTERNAL
10. Service Provider shall promptly inform WES BEN ENTERPRISES PVT LTD of any
notice received by the Service Provider pursuant to the provisions of the IBC or the filing
of an application for initiation of insolvency process under the IBC.
11. The Service Provider hereby confirms and agrees that WES BEN ENTERPRISES PVT
LTD may conduct a credit bureau (e.g. TransUnion CIBIL Limited) search to obtain
information regarding the credit standing of the Service Provider as and when deemed
appropriate by WES BEN ENTERPRISES PVT LTD.
12. If deemed necessary by WES BEN ENTERPRISES PVT LTD, to comply with the
applicable laws and regulations, and as deemed required to protect the brand of WES
BEN ENTERPRISES PVT LTD, WES BEN ENTERPRISES PVT LTD may at its
discretion mandate the Service Provider, at Service Provider's cost and expense, to
obtain necessary and identified trainings and compliances in order to have effective
oversight, or to conduct necessary diligence and manage risk. If the Service Provider is
unable to procure the necessary training as agreed in this clause, WES BEN
ENTERPRISES PVT LTD shall, in such form and manner as it may deem fit, assist the
Service Provider to enhance its quality, professional effectiveness and performance
standard by providing ongoing training to the Personnel engaged by the Service
Provider in relation to the Services. Such training will include but not be limited to issues
like non-solicitation of the defaulting Parties, reasonable calling hours sensitivity and
privacy and confidentiality of the information of defaulting Parties. WES BEN
ENTERPRISES PVT LTD shall extend such other help from time to time as WES BEN
ENTERPRISES PVT LTD may deem necessary for the Services.
13. The Service Provide covenants that the Services shall be performed as per the below
parameters:
a. It shall record the content of the calls made by it to the Customer and vice versa.
b. It shall handle with care and shall act responsibly, particularly with aspects like
privacy of the information of the Customer, reasonable hours of calling etc.
c. It shall establish a robust framework for business continuity and recovery
procedures so that in no event WES BEN ENTERPRISES PVT LTD would suffer
due to disruptive scenarios caused by the Service Provider’s inabilities that could
affect smooth functioning of WES BEN ENTERPRISES PVT LTD business.
d. It shall ensure that it provides the highest quality of service while dealing with the
Customer, including but not limited to timely reports of the Services provided to
show the performance and end-to-end processes of the Service Provider. The
Service Provider shall follow the guidelines indicated by WES BEN
ENTERPRISES PVT LTD for the purpose of carrying out the terms of this
Agreement. The Service Provider confirms that the checklist for the same has
already been provided and outlined by WES BEN ENTERPRISES PVT LTD.
c. They shall comply with all Applicable Laws and regulations in the exercise
and performance of its duties and obligations under this Agreement.
d. That the person executing this Agreement is authorized to do so, on their
respective behalf.
2. The Service Provider represents and warrants that:
a. It has the necessary skill, knowledge, experience, expertise, adequate
capital and competent Personnel, system and procedures, infrastructure,
and capability to perform its obligations in accordance with the terms of
this Agreement and to the satisfaction of WES BEN ENTERPRISES PVT
LTD.
b. The execution of this Agreement and performance of obligations
hereunder do not and shall not violate, commit breach and / or
contravene any conditions of any other agreement entered with any other
party.
c. it has paid all statutory dues and wages to its employees and under no
circumstances shall WES BEN ENTERPRISES PVT LTD be liable under
this Agreement for making any payment to the Service Provider or its
employees or agents which is not as provided for in Annexure-2 of this
Agreement.
d. There are no litigations, arbitrations, or administrative proceedings of or
before any court, arbitral body or agency which have been started or
threatened against the Service Provider or its assets, which would
impede or prevent the Service Provider into entering into this Agreement
or providing the Services as agreed in this Agreement.
e. No corporate action has been taken by the Service Provider nor have any
other steps been taken or legal proceedings been started or threatened
against the Service Provider for its winding-up, dissolution, administration,
or reorganization or for the appointment of a receiver, administrator,
administrative receiver, trustee or similar officer of the Service Provider or
of any or all of its assets or revenues.
f. No application for initiation of proceedings under the IBC have been filed
in relation to the Service Provider and there exists no default with any
operational creditor or otherwise of the Service Provider.
g. The Service Provider has necessary licenses and approvals under
Applicable Laws for the purpose of providing Services to WES BEN
ENTERPRISES PVT LTD. It has complied with and obtained all
necessary permissions / licenses / authorizations under the central, state
and local authorities and obtained all required permissions / licenses for
carrying out its obligations and duties under this Agreement and shall
keep the same valid by renewing them from time to time as required
under the Applicable Laws.
h. It has not committed any offence in the past which would disentitle it from
being a Service Provider. The Service Provider further declares that it is
not involved directly or indirectly in any complaint, case, dispute, or
proceeding/s, whether civil or criminal, with any person/s, authorities in
connection with any matter.
i. It has the power to appoint Personnel and is in compliance with all
Applicable Laws in relation thereto.
INTERNAL
15. CONFIDENTIALITY
1. The confidentiality obligations agreed herein shall survive the expiration or early
termination of this Agreement. The Parties shall maintain and protect each
other’s Confidential Information with the same standard of care and protection,
as it extends to its own information, and especially the information of or in
relation to the Customers, and not disclose the same to any third party, or directly
or indirectly use the same or permit the same to be used, for any purpose other
than performing the obligations undertaken in this Agreement. Service Provider
shall ensure that the consents of Customers as per Applicable Law and Circulars
is obtained prior to procuring the Customers Confidential Information from the
said Customers or sharing the same with WES BEN ENTERPRISES PVT LTD.
Either Party disclosing Confidential Information shall ensure that the person
receiving Confidential Information is/are bound by confidentiality obligations of a
similar standard to that agreed in this Agreement. Confidential Information shall
have the same standard whether the same is disclosed by the Parties, Personnel
or the employees and authorised representatives of the Parties. The Service
Provider shall ensure regular monitoring of its security practices and shall be
solely responsible for the leak of Confidential Information. Any breach in the
security practices of the Service Provider shall be immediately notified to WES
BEN ENTERPRISES PVT LTD. The Service Provider shall destroy, return or
confirm such destruction of all Confidential Information including Customers
Confidential Information upon termination of the Services or as may be directed
by WES BEN ENTERPRISES PVT LTD. However, the Service Provider shall
retain copy of necessary information required by law post termination of this
Agreement. If either Party is required by law or regulation to disclose the
Confidential Information of the other Party, such Party shall promptly notify the
other Party.
2. The Service Provider shall, in respect of Confidential Information and Customer’s
Confidential Information:
a. comply with the data protection guidelines mentioned in Annexure 3 and
any request made or direction given by WES BEN ENTERPRISES PVT
LTD, including in connection with the requirements of any Data Protection
Laws;
b. not do or permit anything to be done which might jeopardize or
contravene the terms of any registration, notification or authorization
under any Data Protection Laws applicable to WES BEN ENTERPRISES
PVT LTD;
c. segregate all WES BEN ENTERPRISES PVT LTD Confidential
Information and Customer Confidential Information from its own data and
from any data of its other customers or clients;
d. take all reasonable steps to ensure the reliability of the Personnel
engaged by the Service Provider which will have access to any
Confidential Information and Customer’s Confidential Information and
ensure that any Personnel requiring access to any Confidential
Information and Customer’s Confidential Information is duly bound as per
the confidentiality obligations agreed herein; and
e. at the Service Provider’s cost implement all suggestions by WES BEN
ENTERPRISES PVT LTD to ensure that the level of protection provided
for Confidential Information and Customer’s Confidential Information is in
accordance with this Agreement and the Data Protection Laws and
INTERNAL
b. deduct from Fees an amount which WES BEN ENTERPRISES PVT LTD
reasonably considers appropriate, or levy an amount of penalty as
determined be WES BEN ENTERPRISES PVT LTD to be reasonable
considering the nature of violation and deficiency by the Service Provider;
c. procure services of a substantially similar nature to the Services from one
or more third parties at the Service Provider’s cost.
d. The Service Provider acknowledges and agrees that any deductions
made by WES BEN ENTERPRISES PVT LTD pursuant to this Clause are
a genuine pre-estimate of the loss LTF is likely to suffer from the Service
Provider’s failure to provide the Services in accordance with the
requirements of this Agreement.
12. MISCELLANEOUS
1. Sub-Contractor: Subject to approval by WES BEN ENTERPRISES PVT LTD,
the Service Provider can subcontract its responsibilities regarding the Services
as contained in this Agreement to any agent, sub-agent or sub-contractor and the
Service Provider shall continue to be wholly responsible for all acts and
omissions of its contractors, sub-contractors or agents. The Service Provider
shall provide a list of sub-contractors to be engaged by it for the Services herein
at the start of every quarter or in case any change in the sub-contractor or agent,
for prior approval of WES BEN ENTERPRISES PVT LTD, alongwith details of
INTERNAL
8. Assignment: The Service Provider shall not assign or transfer this Agreement or
part of this Agreement or any rights or obligations there under to or for the benefit
of any third party without WES BEN ENTERPRISES PVT LTD prior written
consent. Any assignment without such consent shall be null and void. WES BEN
ENTERPRISES PVT LTD may without the consent of the Service Provider,
assign all or any part of its rights and benefits hereunder or transfer or novate all
or part of its rights, benefits and obligations hereunder to any person, at any time
in accordance with the provisions herein, and while so assigning, transferring, or
novating, WES BEN ENTERPRISES PVT LTD may reserve to it a right to
proceed against the Service Provider on behalf of the assignee or transferee.
9. Notices: Any notice, direction or instruction given under this Agreement shall be
in writing and delivered by hand delivery, electronic mail, registered post
acknowledgement due and any reputed courier to the below mentioned
addresses of the Parties or to such other address as a Party notifies to other in
writing, from time to time. Notice will be deemed given (i) in the case of hand
delivery on delivery; (ii) in case of electronic mail, on having been sent (ii) in case
of registered post acknowledgement due in 7 (seven) calendar days after
posting; (iii) in case of courier in 3 (three) calendar days after posting. Provided
that in case of the date of receipt not being a business day, notice shall be
deemed to have been received by the receiving Party on the next business day.
Notices under this Agreement are to be sent to WES BEN ENTERPRISES PVT
LTD at its corporate office address and Service Provider at its address provided
in Annexure-1.
10. Waiver: No waiver of any provision or of any breach of this Agreement shall
constitute a waiver of any prior, concurrent or subsequent provisions or breach of
provisions hereof, and no waiver shall be effective unless it is made in writing
and is signed by an authorized representative of the waiving Party. The waiver or
failure of to exercise in any respect any right provided for in this Agreement shall
not be deemed a waiver of any further right under this Agreement.
11. Severability: In the event that any part of this Agreement shall be held by a court
of competent jurisdiction to be unlawful or otherwise unenforceable, under any
present or future Applicable Laws, and if the rights or obligations under this
Agreement of the Parties shall not be materially and adversely affected thereby,
the remainder of this Agreement shall remain in full force and effect to the
maximum extent possible.
12. Amendment: No variation or amendment of this Agreement shall be binding on
any Party unless such variation or amendment is in writing and signed by each
Party. The Parties may upon the concurrence of WES BEN ENTERPRISES PVT
LTD choose to extend the Services as per this Agreement, including extending
its term, by way of executing an addedum/amendment of this Agreement, which
shall not vary any other rights of the Parties agreed herein except to the extent
expressly agreed in writing in such addendum.
13. Counterparts: This Agreement or an Amendment may be executed in any
number of counterparts, which taken together shall constitute one and the same
instrument and be an original. The delivery of signed counterparts by electronic
mail in “portable document format” (“.pdf”) shall be as effective as signing and
delivering the document in person.
INTERNAL
The Service Provider shall on receiving instructions from the Company, conduct visit of the
project/property for Valuation purposes, and shall do the following:
1. Visit the site of the project/property personally and provide Valuation Report to the
Company pertaining to the property. While doing so the Service Provider shall do the
following;
a) Verify the project/property with the documents provided, make note of actual
measurement, its boundaries, and the schedule;
b) Verify the plan and the approved date of the plan, validity of the plan, approving
authority mentioned on the plan and confirm plan’s genuineness’;
c) Ensure that plan and property schedule is matched with all respect including
property No., Survey no. __________, Village, etc and compare the same with
the estimate and the property document provided by the Company;
d) Make note of the development of the surrounding area, proximity to all civic
amenities.
INTERNAL
e) Prepare and provide the valuation report to LTF, which shall include the following:
i) Name of the Applicant/s, File No.
ii) Name of the present titleholder
iii) Date of the visit
iv) Location of the property
v) Plan details:
Approving Authority
Approval No.
Validity
Approved area
i) The statement of facts presented in the Valuation Report are correct to the best of
Service Provider’s knowledge;
Amount
Consideration Rs.
ii) The Service Provider has no (or if so, a specified) interest in the subject property;
iii) The Service Provider has made a personal inspection of the property.
14. Service Provider is strictly prohibited to interact with media in order to pro-actively
manage our reputation in the media and within the corporate world and to ensure
consistency of messages.
15. The Service Provider are properly trained to handle their responsibilities with care and
sensitivity.
16. The Service Provider shall adhere to extant instructions on Fair Practices Code for
NBFCs amended from time to time as also their own code for collection of dues and
repossession of security.
17. The Service Provider shall refrain from action that could damage the integrity and
reputation of the NBFC and that they observe strict customer confidentiality.
18. The Service Provider shall not resort to intimidation or harassment of any kind, either
verbal or physical, against any person in their debt collection efforts, including acts
intended to humiliate publicly or intrude upon the privacy of the debtors' family members,
referees and friends, sending inappropriate messages either on mobile or through social
media, making threatening and/or anonymous calls for recovery of overdue loans,
making false and misleading representations, etc.
ENTERPRISES PVT LTD shall take place via secure means (using HTTPS or SFTP,
FTPS, TLS or equivalent). Network security controls should be in place to protect data in
transit against malware, man in the middle attacks or intrusions.
5. The Receiving Party shall keep WES BEN ENTERPRISES PVT LTD Data separate from
other customer’s data and shall maintain physical, technical, and administrative
safeguards that are commensurate with the information assets being protected with the
nature of business, and in any event no less than reasonable security practices and
procedures basis industry standards or as required by law in the cloud computing/online
services industry to protect the Data against unauthorized access, use, or disclosure
while it is in the possession or control of the Receiving Party.
6. The Receiving Party shall access and use the Data solely for the purpose of providing
WES BEN ENTERPRISES PVT LTD with access to the Services, products, software
and/or Receiving Party’s platform as agreed in the Agreement, in accordance with the
terms and conditions of the Agreement. Data shall not be distributed, repurposed or
shared with any third party.
7. For the term of the Agreement, WES BEN ENTERPRISES PVT LTD may audit, either
directly or through an independent auditor, the Receiving Party’s systems and records to
the extent necessary to verify compliance with the terms of this letter, upon at least five
(5) business days' prior written notice and during normal business hours.
8. The Data shall be and remain the property of WES BEN ENTERPRISES PVT LTD.
Upon expiry or earlier termination of the Agreement in accordance with the terms
thereof, all Data which is then in the possession of the Receiving Party, shall be
promptly returned upon the WES BEN ENTERPRISES PVT LTD written request.
Alternatively, the Data may be destroyed by the Receiving Party such that it is no longer
accessible and need not be returned. All Data must be handed over or destroyed within
5 (five) days of termination of the Agreement pursuant to which WES BEN
ENTERPRISES PVT LTD shall revoke all rights provided to the Receiving Party.
9. In case of any data breach by the security provider/ Receiving Party or any other third
party, the same must be notified to WES BEN ENTERPRISES PVT LTD within 24 hours
from the time the breach is identified by the Receiving Party by telephone or e-mail to
infosec@LTF.com
10. The Receiving Party shall comply with all security policies of WES BEN ENTERPRISES
PVT LTD which are applicable depending upon the nature of the service provided.
4. Information processing facilities and systems shall be protected from power failures and
other disruptions caused by failures in supporting utilities.
Access Control:
1. Privileged accounts associated with each type of information systems processing WES
BEN ENTERPRISES PVT LTD information such as operating systems, business
applications, databases, network devices, etc. shall be identified and documented.
2. Appropriate mechanism shall be implemented to provision, control, and monitor and
review the privileged access rights.
3. Privileged access rights shall be reviewed and monitored on periodic basis and after any
changes such as promotion, transfer, demotion, or termination of employment, change in
role, etc.
Communications Security:
1. Information exchanged during communication between the WES BEN ENTERPRISES
PVT LTD and its business partner shall be protected adequately.
2. Appropriate controls shall be implemented to secure WES BEN ENTERPRISES PVT
LTD data during transit & at rest.
3. Defense in depth controls shall be implemented to ensure vendor network is secure and
has properly segregated environment to ensure WES BEN ENTERPRISES PVT LTD
data is separated from other customer's data.
Acceptable Usage:
1. The confidentiality of email cannot be assured. Such confidentiality may be
compromised by applicability of law or policy, by unintended redistribution, or because of
inadequacy of current technologies to protect against unauthorized access. Vendor or
Partner, therefore, should exercise extreme caution in using email to communicate
confidential or sensitive matters related to WES BEN ENTERPRISES PVT LTD or its
customer’s data.
2. Service Provider shall use strong passwords and/or pin/token to protect access to WES
BEN ENTERPRISES PVT LTD information and information processing facilities to
minimize the risk of unauthorized access.
3. Passwords should necessarily satisfy following complexity criteria:
1. Passwords shall be of minimum 8 characters and should contain combination of
upper case and lowercase letters, numerals and special characters;
2. Passwords should not be based on entities that can be easily guessed or
obtained using personal information such as names, telephone numbers, date of
birth, words commonly found in dictionary, company names etc.;
3. Passwords shall be changed after a predefined 60 days’ period. Passwords of
privileged accounts shall be changed after every 45 days;
4. Minimum password age should be 1 day. (In case the system does not provide
for forced password change for first time login, this may be set to 0(zero));
5. Password history of last 3 passwords shall be maintained.
INTERNAL
4. Service Provider shall take responsibility of WES BEN ENTERPRISES PVT LTD & its
customers data and any loss of information, intellectual capital, software or physical
assets etc. shall be promptly reported to WES BEN ENTERPRISES PVT LTD.
5. If any Service Provider becomes aware of any security weakness or vulnerability in WES
BEN ENTERPRISES PVT LTD systems, they should promptly report this to WES BEN
ENTERPRISES PVT LTD. They shall not attempt to test or exploit any such vulnerability
or weakness.
Additional Controls:
Below mentioned additional controls shall also be implemented depending upon the nature of
the service provided to WES BEN ENTERPRISES PVT LTD.
1. Controls shall be implemented to ensure data privacy of the WES BEN ENTERPRISES
PVT LTD data.
2. Controls shall be implemented to ensure incidents are handled properly and WES BEN
ENTERPRISES PVT LTD is notified for the same
3. Proper SDLC process shall be followed for secure development of applications or web
services.
4. Controls shall be implemented to ensure that software used for WES BEN
ENTERPRISES PVT LTD transactions are free from vulnerabilities.
5. Controls shall be implemented for human resources management.
IN WITNESS WHEREOF, this Agreement has been executed by the Parties hereto on the day
and year as agreed in Annexure-1
Signed and Delivered by Signed and Delivered by the within named
WES BEN ENTERPRISES Service Provider
PVT LTD by the hands of its by the hands of its Authorized Signatory,
Authorized Signatory,
Name: Name:
Designation Designation