Terms of Service

1. Introduction

These Terms of Service (“Terms”) govern access to and use of Sobah Systems, LLC products,
applications, websites, platforms, and related services (collectively, the “Services”).

By accessing or using the Services, you agree to comply with these Terms. If you are using
the Services on behalf of an organization, you represent that you have authority to bind that
organization to these Terms.

Enterprise Agreement Priority: If you or your organization has executed
a separate written agreement with Sobah Systems, including a Master Services Agreement
(“MSA”), Order Form, Statement of Work, Subscription Agreement, Data Processing Agreement,
or Business Associate Agreement (“BAA”), that agreement will govern and take precedence
over these Terms in the event of any conflict.

2. Company Information

Sobah Systems, LLC (“Sobah Systems”, “Sobah”, “we”, “our”, or “us”) provides software,
technology, implementation, support, and related professional services, including the
1Degree Product Suite and associated solutions.

3. Scope

These Terms apply to:

  • Visitors to Sobah Systems websites;
  • Users accessing Sobah Systems products or services;
  • Customers, prospects, partners, and authorized representatives;
  • Any use of Sobah Systems-hosted applications, portals, dashboards, or support services.

These Terms do not replace or modify obligations separately agreed in an executed MSA,
BAA, Order Form, or customer-specific contract.

4. Eligibility and Authority

To use the Services, you must:

  • Be at least 18 years old;
  • Use the Services only for lawful business purposes;
  • Have authority to act on behalf of your organization, where applicable;
  • Comply with these Terms and any applicable customer agreement.

5. Use of Services

You agree to use the Services in accordance with applicable laws, regulations, contractual
obligations, documentation, and acceptable use requirements.

Prohibited Activities

You must not:

  • Access or attempt to access systems, data, or accounts without authorization;
  • Disrupt, interfere with, or degrade the security, availability, or performance of the Services;
  • Upload, transmit, or introduce malware, malicious code, or harmful content;
  • Reverse engineer, decompile, or attempt to derive source code except where legally permitted;
  • Use the Services for unlawful, fraudulent, abusive, or unauthorized purposes;
  • Bypass security, authentication, rate limiting, monitoring, or access control mechanisms;
  • Use the Services in a way that violates third-party rights or applicable law.

6. Account and Access Responsibilities

Customers and authorized users are responsible for maintaining the confidentiality of
credentials and for all activities conducted through their accounts.

Customers are responsible for:

  • Provisioning and deprovisioning authorized users;
  • Maintaining accurate user and administrator access;
  • Protecting account credentials and authentication methods;
  • Promptly notifying Sobah Systems of suspected unauthorized access or security incidents.

7. Customer Data

Customers retain ownership of data, files, records, content, and information submitted to,
processed by, or made available through the Services (“Customer Data”).

Sobah Systems will use Customer Data only as necessary to:

  • Provide, operate, maintain, and support the Services;
  • Fulfill contractual obligations;
  • Maintain security, compliance, and operational integrity;
  • Comply with applicable legal or regulatory requirements.

Sobah Systems does not sell Customer Data and does not use Customer Data for AI model
training unless expressly agreed in writing.

8. Healthcare Data and HIPAA Considerations

Where Services involve Protected Health Information (“PHI”), Sobah Systems will process
such information only in accordance with an applicable Business Associate Agreement,
customer contract, and applicable HIPAA requirements.

In the event of a conflict between these Terms and an executed BAA, the BAA will control
with respect to PHI handling, safeguards, breach notification, permitted uses and disclosures,
and related HIPAA obligations.

9. Security and Compliance

Sobah Systems maintains an information security program designed to protect the
confidentiality, integrity, and availability of systems and Customer Data.

Security measures may include:

  • Encryption in transit and at rest;
  • Role-based access controls and identity management;
  • Logging, monitoring, and alerting;
  • Vulnerability management and remediation tracking;
  • Secure software development and change management practices;
  • Endpoint, network, and cloud security controls;
  • Incident response and business continuity planning.

Specific security commitments, audit rights, compliance obligations, or control requirements
are governed by the applicable MSA, BAA, or customer agreement.

10. Service Availability and Support

Sobah Systems uses commercially reasonable efforts to provide reliable Services. Service
levels, uptime commitments, maintenance windows, and support obligations are governed by
the applicable MSA, Order Form, SLA, or customer agreement.

If no specific SLA applies, the Services are provided on a commercially reasonable efforts basis.

11. Third-Party Services and Infrastructure

The Services may rely on third-party providers, hosting platforms, cloud infrastructure,
telecommunications services, identity providers, analytics tools, or other integrations.

Sobah Systems is not responsible for third-party outages, service interruptions, security
events, or failures outside its reasonable control, except as expressly stated in an applicable
written agreement.

12. Fees, Payment, and Taxes

Fees, billing terms, payment obligations, taxes, renewal terms, and invoicing requirements
are governed by the applicable Order Form, MSA, Subscription Agreement, Statement of Work,
or other written agreement.

If no separate agreement applies, payment is due as stated on the applicable invoice or
ordering document. Failure to pay may result in suspension or termination of access.

13. Intellectual Property

Sobah Systems retains all rights, title, and interest in and to the Services, software,
platform, documentation, workflows, templates, designs, know-how, and related intellectual
property, excluding Customer Data.

Subject to these Terms and any applicable agreement, Sobah Systems grants authorized
users a limited, non-exclusive, non-transferable right to access and use the Services for
permitted business purposes.

14. Confidentiality

Each party may receive confidential or proprietary information from the other. Each party
agrees to protect confidential information using reasonable safeguards and to use such
information only for authorized purposes.

Confidentiality obligations in an executed MSA, BAA, NDA, or other written agreement will
take precedence over this section.

15. Privacy

Sobah Systems’ website privacy practices are described in the Sobah Systems Privacy Policy.
Customer-specific data processing terms may be further governed by applicable agreements,
including an MSA, BAA, or Data Processing Agreement.

16. Data Retention and Deletion

Customer Data retention, return, deletion, archival, and post-termination handling are
governed by the applicable MSA, BAA, Order Form, data retention commitments, or other
written customer agreement.

Where no specific contractual retention term applies, Sobah Systems will retain data only
as reasonably necessary for business, legal, security, compliance, and operational purposes.

17. Suspension and Termination

Sobah Systems may suspend or terminate access to the Services if:

  • You violate these Terms or an applicable agreement;
  • Use of the Services creates a security, legal, or operational risk;
  • Payment obligations are not met;
  • Suspension or termination is required by law, regulation, or governmental authority.

Termination rights and obligations in an executed agreement will control in the event of conflict.

18. Disclaimers

Except as expressly provided in an applicable written agreement, the Services are provided
“as is” and “as available.” Sobah Systems does not warrant that the Services will be
uninterrupted, error-free, or free from all security vulnerabilities.

Any warranties, representations, or service commitments in an executed MSA, SLA, or
customer agreement will control over this section.

19. Limitation of Liability

To the maximum extent permitted by law, Sobah Systems will not be liable for indirect,
incidental, special, consequential, exemplary, or punitive damages, including loss of profits,
revenue, goodwill, data, or business opportunity.

Liability limitations, exclusions, caps, and exceptions in an applicable MSA, BAA, or customer
agreement will control. If no written agreement applies, Sobah Systems’ total liability will
not exceed the amount paid for the Services during the twelve (12) months preceding the claim.

20. Indemnification

Indemnification obligations, if any, are governed by the applicable MSA, Order Form, or
written agreement. If no agreement applies, each party is responsible for claims arising from
its own unlawful acts, misconduct, or breach of these Terms.

21. Regulatory and Legal Compliance

Each party is responsible for complying with laws and regulations applicable to its business,
systems, users, and data. Customers are responsible for ensuring that their use of the
Services complies with their own regulatory, contractual, and organizational requirements.

22. Export Controls and Sanctions

You may not use, export, re-export, or transfer the Services in violation of applicable export
control laws, trade sanctions, or restricted-party requirements.

23. Changes to These Terms

Sobah Systems may update these Terms periodically to reflect operational, legal, regulatory,
security, or business changes.

Updates will be posted on this page with a revised “Last Updated” date. Continued use of
the Services after updates become effective constitutes acceptance of the updated Terms,
unless a separate written agreement provides otherwise.

24. Governing Law

Governing law, venue, dispute resolution, and related legal terms are governed by the
applicable MSA, Order Form, or written agreement. If no such agreement applies, applicable
U.S. laws will govern to the extent permitted by law.

25. Contact Information

For questions regarding these Terms, please contact:

Sobah Systems, LLC
Email: support@sobahsystems.com
Security: security@sobahsystems.com
Website: https://sobahsystems.com

Last Updated: January 01, 2026