Convo provides a place for people to communicate with others in their work, school or community networks (each, a "Network") in real time.
Convo grants you permission to use the Service as set forth in this Agreement, provided that: (i) you will not copy, distribute, or disclose any part of the Service in any medium; (ii) you will not alter or modify any part of the Service other than as may be reasonably necessary to use the Service for its intended purpose; and (iii) you will otherwise comply with the terms and conditions of this Agreement. You will need to register with Convo and create a “Member” account. Your account gives you access to the services and functionality that we may establish and maintain from time to time and in our sole discretion.
You may never use another Member’s account without permission. When creating your account, you must provide accurate and complete information. You are solely responsible for the activity that occurs on your account, and you must keep your account password secure. You must notify Convo immediately of any breach of security or unauthorized use of your account. Although Convo will not be liable for your losses caused by any unauthorized use of your account, you shall be liable for the losses of Convo or others due to such unauthorized use. You may use your Account Settings to control your Member Profile. By providing Convo your email address you consent to our using the email address to send you Service-related notices, including any notices required by law, in lieu of communication by postal mail. You may use your Notifications Settings to opt out of many Service-related communications. We may also use your email address to send you other messages, including changes to features of the Service and special offers. If you do not want to receive such email messages, you may opt out by changing the preferences in your Notifications Settings. Opting out may prevent you from receiving email messages regarding updates, improvements, or offers.
You agree not to use or launch any automated system, including without limitation, "robots," "spiders," "offline readers," etc., that accesses the Service in a manner that sends more request messages to the Convo servers than a human can reasonably produce in the same period of time by using a desktop application or a conventional on-line web browser. You agree not to collect or harvest any personally identifiable information, including account names, from the Service nor to use the communication systems provided by the Service for any commercial solicitation purposes. You agree not to use any portion of the Service as a destination linked from any unsolicited bulk messages or unsolicited commercial messages.
Convo may permanently or temporarily terminate, suspend, or otherwise refuse to permit your access to the Service without notice and liability, if, in Convo's sole determination, you violate any of the Agreement, including the following prohibited actions: (i) attempting to interfere with, compromise the system integrity or security or decipher any transmissions to or from the servers running the Service; (ii) taking any action that imposes, or may impose at our sole discretion an unreasonable or disproportionately large load on our infrastructure; (iii) uploading invalid data, viruses, worms, or other software agents through the Service; (iv) impersonating another person or otherwise misrepresenting your affiliation with a person or entity, conducting fraud, hiding or attempting to hide your identity; (v) interfering with the proper working of the Service; or, (vi) bypassing the measures we may use to prevent or restrict access to the Service, including, but not limited to, registering for the Service with a non-Network email address. Upon termination for any reason, you continue to be bound by this Agreement.
Convo reserves the right to offer alternative and/or additional Services to certain administrative users that may not be offered to general Users. You acknowledge that Convo may charge a fee for the use of any Services, provided that Convo notifies you of any such fee before you incur it. Subject to the foregoing, you agree to pay any fees incurred by you.
If you learn that a User is not authorized to be a Member of a Network or is otherwise violating this Agreement, we encourage you to visit such User's Member profile page or the Manage Users tab and click the “suspend user” to notify us. You agree you will not accuse any User of being unauthorized or of violating this Agreement unless you have actual knowledge.
By utilizing the Service, you agree to have the domain portion of your email address (“@yourcorp.com”) and/or the company, school, or organization name represented by such domain portion of your email address, listed on the Convo website in a company directory listing (“Directory”). Customers (as defined below) who do not want to be included in such published Directory may send a written request to firstname.lastname@example.org to remove their company, school, or organization name from the Directory.
You agree not to post User Content that: (i) may create a risk of harm, loss, physical or mental injury, emotional distress, death, disability, disfigurement, or physical or mental illness to you, to any other person, or to any animal; (ii) may create a risk of any other loss or damage to any person or property; (iii) may constitute or contribute to a crime or tort; (iv) contains any information or content that is unlawful, harmful, abusive, racially or ethnically offensive, defamatory, infringing, invasive of personal privacy or publicity rights, harassing, humiliating to other people (publicly or otherwise), libelous, threatening, or otherwise objectionable; (v) contains any information or content that is illegal; (vi) contains any information or content that you do not have a right to make available under any law or under contractual or fiduciary relationships; or (vii) contains any information or content that you know is not correct and current. You agree that any User Content that you post does not and will not violate third-party rights of any kind, including without limitation any Intellectual Property Rights (as defined below), rights of publicity and privacy. You understand that publishing your User Content on the Service is not a substitute for registering it with the U.S. Copyright Office, the Writer’s Guild of America, or any other rights organization.
For the purposes of this Agreement, “Intellectual Property Rights” means all patent rights, copyright rights, mask work rights, moral rights, rights of publicity, trademark, trade dress and service mark rights, goodwill, trade secret rights and other intellectual property rights as may now exist or hereafter come into existence, and all applications therefore and registrations, renewals and extensions thereof, under the laws of any state, country, territory or other jurisdiction.
Convo takes no responsibility and assumes no liability for any User Content that you or any other Users or third parties post or send over the Service. You understand and agree that any loss or damage of any kind that occurs as a result of the use of any User Content that you send, upload, download, stream, post, transmit, display, or otherwise make available or access through your use of the Service, is solely your responsibility. Convo is not responsible for any public display or misuse of your User Content. You understand and acknowledge that you may be exposed to User Content that is inaccurate, offensive, indecent, or objectionable, and you agree that Convo shall not be liable for any damages you allege to incur as a result of such User Content.
You are solely responsible for your interactions with other Convo Users. We reserve the right, but have no obligation, to monitor disputes between you and other Users.
Each Network may have one or more individuals who are responsible for overseeing the use of, and monitoring the content posted to, such Network (the “Network Administrator”). Networks may exist on the Service absent a Network Administrator; in such case Users are responsible for conducting themselves in accordance with this Agreement.
From time to time, Users may be asked to confirm their account on the Network via an email message containing a hyperlink to the User’s Network email address. If such account is not reconfirmed, the account is removed. Once a User is removed from a Network, the content of that User remains on the Network and is the sole property of the company which administers that Network.
Users should follow their particular company’s policies, guidelines, and procedures concerning the Content they post to the Service. Users may delete their own User Content from the Network, so long as they are a Member of that Network. Network Administrators may delete the User Content of one or more Users in their Network.
Individual Users may form a group to segment the audience for certain User Content (“Private Group”). The group creator may allow other group members to update group settings, and add or remove other users, including guest users from outside the company network. Only the group creator may delete a group, and all its content. Though Users may establish a Private Group, User Content posted within a Private Group on a Network is owned by that Network. Network Administrators have access to all content, including that in Private Groups.
Subject to the terms and conditions of this Agreement, you are hereby granted a non-exclusive, limited, personal license to use the Service. Convo reserves all rights not expressly granted herein in the Service and the Convo Content (as defined below). Convo may terminate this license at any time for any reason or no reason.
Except for your User Content, the Service and its materials, including, without limitation, software, images, text, graphics, illustrations, logos, patents, trademarks, service marks, copyrights, photographs, audio, videos and music (the "Convo Content"), and all Intellectual Property Rights related thereto, are the exclusive property of Convo and its licensors. Except as explicitly provided herein, nothing in this Agreement shall be deemed to create a license in or under any such Intellectual Property Rights, and you agree not to sell, license, rent, modify, distribute, copy, reproduce, transmit, publicly display, publicly perform, publish, adapt, edit or create derivative works from any materials or content accessible on the Service. Use of the Convo Content or materials on the Service for any purpose not expressly permitted by this Agreement is strictly prohibited.
You may choose to or we may invite you to submit comments or ideas about the Service, including without limitation about how to improve the Service or our products (“Ideas”). By submitting any Idea, you agree that your disclosure is gratuitous, unsolicited and without restriction and will not place Convo under any fiduciary or other obligation, that we are free to disclose the Ideas on a non-confidential basis to anyone or otherwise use the Ideas without any additional compensation to you. You acknowledge that, by acceptance of your submission, Convo does not waive any rights to use similar or related ideas previously known to Convo, or developed by its employees, or obtained from sources other than you.
This Service is intended solely for Users who are thirteen (13) years of age or older, and any registration, use or access to the Service by anyone under 13 is unauthorized, unlicensed, and in violation of this Agreement. Convo may terminate your account, delete any content or information that you have posted on the Service, and/or prohibit you from using or accessing the Service (or any portion, aspect or feature of the Service) for any reason, at any time in its sole discretion, with or without notice, including without limitation if it believes that you are under 13. If you are under 18 years of age you may use the Service only if you either are an emancipated minor, or possess legal parental or guardian consent, and are fully able and competent to enter into the terms, conditions, obligations, affirmations, representations, and warranties set forth in this Agreement, and to abide by and comply with this Agreement.
The Convo customer support staff has logic in place to ensure that you and your network receive the highest level of customer support. Help requests sent by administrators of enterprise networks are automatically placed into a separate queue so we can address your questions as quickly as possible. The members of enterprise networks also have the privilege of priority customer support by having their help requests placed in a tier right below administrators. All other members are placed into a third tier and still have their help requests addressed in a timely fashion, but not at the priority that you and the members of your network will. Please feel free to direct any customer support issues to email@example.com or by selecting “Report a bug” from the Options menu, so we can address them for you.
We have assigned the following severity levels to issues based on issue type and customer impact.
|Sev A (Critical)||Service is unusable to majority of end users||Convo application is down.|
|Sev B (High)||Service is up but performance is severely degraded.||News feed isn’t getting updated.|
|Sev C (Medium)||Performance is degraded but workarounds are available to fix the issue.||New group creation isn’t working.|
We have designated the following response times to handle issues based on the severity levels described above.
|Severity Level||Response Time|
|Sev A (Critical)||24 hours (24 hours a day, 7 days a week response)|
|Sev B (High)||1 to 2 business days|
|Sev C (Medium)||2 to 3 business days|
You shall be solely responsible for your own User Content and the consequences of posting or publishing it. In connection with User Content, you affirm, represent and warrant, in addition to the other representations and warranties in this Agreement, the following:
A. You are at least 18 years of age, or if you are under 18 years of age you are either an emancipated minor, or possess legal parental or guardian consent, and are fully able and competent to enter into the terms, conditions, obligations, affirmations, representations, and warranties set forth in this Agreement, and to abide by and comply with this Agreement.
B. You have the written consent of each and every identifiable natural person in your Network to use such person’s name or likeness in the manner contemplated by the Service and this Agreement, and each such person has released you from any liability that may arise in relation to such use.
C. Your User Content and Convo's use thereof as contemplated by this Agreement and the Service will not infringe any rights of any third party, including but not limited to any Intellectual Property Rights, privacy rights and rights of publicity.
You agree to defend, indemnify and hold harmless Convo and its subsidiaries, agents, managers, and other affiliated companies, and their employees, contractors, agents, officers and directors, from and against any and all claims, damages, obligations, losses, liabilities, costs or debt, and expenses (including but not limited to attorney's fees) arising from: (i) your use of and access to the Service, including any data or work transmitted or received by you; (ii) your violation of any term of this Agreement, including without limitation, your breach of any of the representations and warranties above; (iii) your violation of any third-party right, including without limitation any right of privacy, publicity rights or Intellectual Property Rights; (iv) your violation of any law, rule or regulation of the United States or any other country; (v) any claim or damages that arise as a result of any of your User Content or any that are submitted via your account; or (vi) any other party’s access and use of the Service with your unique username, password or other appropriate security code.
THE SERVICE IS PROVIDED ON AN "AS IS" AND "AS AVAILABLE" BASIS. USE OF THE SERVICE IS AT YOUR OWN RISK. THE SERVICE IS PROVIDED WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT. WITHOUT LIMITING THE FOREGOING, CONVO, ITS SUBSIDIARIES, AND ITS LICENSORS DO NOT WARRANT THAT THE CONTENT IS ACCURATE, RELIABLE OR CORRECT; THAT THE SERVICE WILL MEET YOUR REQUIREMENTS; THAT THE SERVICE WILL BE AVAILABLE AT ANY PARTICULAR TIME OR LOCATION, UNINTERRUPTED OR SECURE; THAT ANY DEFECTS OR ERRORS WILL BE CORRECTED; OR THAT THE SERVICE IS FREE OF VIRUSES OR OTHER HARMFUL COMPONENTS. ANY CONTENT DOWNLOADED OR OTHERWISE OBTAINED THROUGH THE USE OF THE SERVICE IS DOWNLOADED AT YOUR OWN RISK AND YOU WILL BE SOLELY RESPONSIBLE FOR ANY DAMAGE TO YOUR COMPUTER SYSTEM OR LOSS OF DATA THAT RESULTS FROM SUCH DOWNLOAD.
CONVO DOES NOT WARRANT, ENDORSE, GUARANTEE, OR ASSUME RESPONSIBILITY FOR ANY PRODUCT OR SERVICE ADVERTISED OR OFFERED BY A THIRD PARTY THROUGH THE CONVO SERVICE OR ANY HYPERLINKED WEBSITE OR SERVICE, OR FEATURED IN ANY BANNER OR OTHER ADVERTISING, AND CONVO WILL NOT BE A PARTY TO OR IN ANY WAY MONITOR ANY TRANSACTION BETWEEN YOU AND THIRD-PARTY PROVIDERS OF PRODUCTS OR SERVICES.
TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL CONVO, ITS AFFILIATES, DIRECTORS, EMPLOYEES OR ITS LICENSORS BE LIABLE FOR ANY DIRECT, INDIRECT, PUNITIVE, INCIDENTAL, SPECIAL, CONSEQUENTIAL OR EXEMPLARY DAMAGES, INCLUDING WITHOUT LIMITATION DAMAGES FOR LOSS OF PROFITS, GOODWILL, USE, DATA OR OTHER INTANGIBLE LOSSES, THAT RESULT FROM THE USE OF, OR INABILITY TO USE, THIS SERVICE. UNDER NO CIRCUMSTANCES WILL CONVO BE RESPONSIBLE FOR ANY DAMAGE, LOSS OR INJURY RESULTING FROM HACKING, TAMPERING OR OTHER UNAUTHORIZED ACCESS OR USE OF THE SERVICE OR YOUR ACCOUNT OR THE INFORMATION CONTAINED THEREIN.
TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, CONVO ASSUMES NO LIABILITY OR RESPONSIBILITY FOR ANY (I) ERRORS, MISTAKES, OR INACCURACIES OF CONTENT; (II) PERSONAL INJURY OR PROPERTY DAMAGE, OF ANY NATURE WHATSOEVER, RESULTING FROM YOUR ACCESS TO AND USE OF OUR SERVICE; (III) ANY UNAUTHORIZED ACCESS TO OR USE OF OUR SECURE SERVERS AND/OR ANY AND ALL PERSONAL INFORMATION STORED THEREIN; (IV) ANY INTERRUPTION OR CESSATION OF TRANSMISSION TO OR FROM THE SERVICE; (V) ANY BUGS, VIRUSES, TROJAN HORSES, OR THE LIKE THAT MAY BE TRANSMITTED TO OR THROUGH OUR SERVICE BY ANY THIRD PARTY; (VI) ANY ERRORS OR OMISSIONS IN ANY CONTENT OR FOR ANY LOSS OR DAMAGE INCURRED AS A RESULT OF THE USE OF ANY CONTENT POSTED, EMAILED, TRANSMITTED, OR OTHERWISE MADE AVAILABLE THROUGH THE SERVICE; AND/OR (VII) USER CONTENT OR THE DEFAMATORY, OFFENSIVE, OR ILLEGAL CONDUCT OF ANY THIRD PARTY. IN NO EVENT SHALL CONVO, ITS AFFILIATES, DIRECTORS, EMPLOYEES, OR LICENSORS BE LIABLE TO YOU FOR ANY CLAIMS, PROCEEDINGS, LIABILITIES, OBLIGATIONS, DAMAGES, LOSSES OR COSTS IN AN AMOUNT EXCEEDING THE AMOUNT YOU PAID TO CONVO HEREUNDER.
THIS LIMITATION OF LIABILITY SECTION APPLIES WHETHER THE ALLEGED LIABILITY IS BASED ON CONTRACT, TORT, NEGLIGENCE, STRICT LIABILITY, OR ANY OTHER BASIS, EVEN IF CONVO HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. THE FOREGOING LIMITATION OF LIABILITY SHALL APPLY TO THE FULLEST EXTENT PERMITTED BY LAW IN THE APPLICABLE JURISDICTION.
Unless otherwise explicitly stated, all materials found on the Service are solely directed to individuals, companies, or other entities located in the U.S.
This Agreement, and any rights and licenses granted hereunder, may not be transferred or assigned by you, but may be assigned by Convo without restriction.
A. Governing Law. You agree that: (i) the Service shall be deemed solely based in Massachusetts; and (ii) the Service shall be deemed a passive one that does not give rise to personal jurisdiction over Convo, either specific or general, in jurisdictions other than Massachusetts. This Agreement shall be governed by the internal substantive laws of the State of Massachusetts, without respect to its conflict of laws principles. Any claim or dispute between you and Convo that arises in whole or in part from the Service shall be decided exclusively by a court of competent jurisdiction located in Massachusetts.
B. Notification Procedures. Convo may provide notifications, whether such notifications are required by law or are for marketing or other business related purposes, to you via email notice, written or hard copy notice, or through conspicuous posting of such notice on our website, as determined by Convo in our sole discretion. Convo reserves the right to determine the form and means of providing notifications to our Users, provided that you may opt out of certain means of notification as described in this Agreement.
C. Entire Agreement/Severability. This Agreement, together with any other legal notices and agreements published by Convo via the Service, shall constitute the entire agreement between you and Convo concerning the Service. If any provision of this Agreement is deemed invalid by a court of competent jurisdiction, the invalidity of such provision shall not affect the validity of the remaining provisions of this Agreement, which shall remain in full force and effect.
D. No waiver of any term of this Agreement shall be deemed a further or continuing waiver of such term or any other term, and Convo's failure to assert any right or provision under this Agreement shall not constitute a waiver of such right or provision.
Please Contact us at firstname.lastname@example.org with any questions regarding this Agreement.
This Security Policy was last modified on June 13, 2014.
At Convo, security is quintessential to a quality service and product. Providing best in class security requires taking a holistic approach. That is why our security initiative tackles all possible facets needed to provide a satisfying solution. Here is a list of those areas:
- Encryption in transit is protected with 4096 bit RSA keys and 128/256 bit AES encryption.
- Data at rest is protected with high-grade AES-256 encryption.
- For encryption split knowledge and dual control is enforced within the key management procedures. Keys are rotated often.
- Passwords and encryption keys are stored in encrypted manner.
- All sensitive payment information data is at rest encrypted.
- All user data and files belonging to Enterprise accounts are at rest encrypted.
- Convo uses the latest technology and the industry best practices for data encryption of sensitive customer data. All Enterprise customer data and files are encrypted, in transit to and from Convo servers as well as while stored within Convo.
All sensitive data (including user specific data) is stored using Amazon Relational Database Service (RDS) and Amazon Simple Storage Server (S3) that use industry standards for security:
For more details please see: aws.amazon.com/security
- ISO 27001 certification for user data centers (Amazon S3).
- Uninterruptible power and backup systems, plus fire and flood prevention at Amazon storage sites.
- Convo employs multiple Amazon data centers to host customer data. All data centers employ physical security, strict access policies and secure vaults and cages.
Administrator access is restricted to the company’s owned static IPs through a firewall, and from allowed IPs, access is only possible if the administrator with special privileges has a key file.
There is a firewall for each of the connections to the internet or other untrusted networks.
- No systems are directly connected to the internet.
- Remote access is managed by secure Virtual Private Network (VPN). No other means are allowed for remote access to internal network.
- Password based access is not allowed on production servers, and can only be accessed with SSH key file. Only authorized persons have access to this key.
- There is a separate firewall for production servers which restricts administrator access to these servers from anywhere except from within the company’s secure internal network (with access strictly limited to only those with relevant job responsibility). Any change made in this firewall rules is logged with user identity, and time.
- Guidelines are in place for employees to change passwords frequently.
- Each user is identified through a unique ID.
- User identity is required at time of password reset.
- Access to systems is established and approved according to business need and job responsibility. Employees are granted specific rights for access to resources like computer machines, code base, servers, office building etc.
- Central computing systems are protected via firewalls, key files, access through SSH etc.
Keeping machines secure
- Anti-virus products are required for all systems regardless of the purpose of the machine as long as it on the network.
- All machines are kept up to date with latest security patches and updates from relevant vendors.
Company facilities that have access to software code, and authorized access to AWS data centers are strengthened with proper security measures in place to restrict any form of unauthorized physical access of the premises.
- Doors require card readers for entry
- Video surveillance is used to log and monitor premises
- Employees are required to keep wear employee badges
- Proper procedures are in place to distinguish full time employees from visitors
- Visitors are required to sign-in
- Visitors are escorted at all times
- Visitors are given a token on check in which is returned on check out
- Audit logs containing programmer activities (log ins, check ins etc.) are maintained.
- Employees (including but not limited to engineers) are required to authenticate themselves before accessing any machine, network resource or source code (changes to which are tracked).
- Logs are recorded and maintained for all access calls from authorized Convo personnel to Convo servers including the identity of the caller, the time of the call, the source IP address of the caller, the request parameters, and the response elements returned by the servers.
All software code is developed based on strict and well defined industry standard software engineering product development life cycle principles.
- No code is ever released without proper testing (including security testing). Tests include but are not limited to – Invalid user input, authentication issues, unauthorized access etc.
- Security analysis and review is done for all new features especially for those where there is reasonable change to any existing system.
- There are separate environments for test, development and production.
- Production data is never used for testing.
- All source code changes are peer reviewed.
- Confidentiality and nondisclosure agreements are required from business partners.
- All employees are required to sign a privacy and security acknowledgment document at time of hire.
- Potential new hire candidates are screened to minimize chances of any internal breach.
Procedures are in place to ensure security documents, information and guidelines are broadly shared with all employees
- Sharing security guidelines and procedures are part of onboarding a full time hire (FTE)
- Initiatives for security specific knowledge sharing include publishing security related documents internally, conducting brown bags and related mandatory security meetings.
This Security Policy may be updated periodically and without prior notice to you to reflect changes in our security practices. We will post a prominent notice on this Website to notify you of any significant changes to our Security Policy and indicate at the top of the statement when it was most recently updated.