[{"data":1,"prerenderedAt":520},["ShallowReactive",2],{"document-data-sharing-agreement-D13514":3},{"document":4,"label":21,"preview":11,"thumb":22,"thumb600":23,"description":5,"descriptionCustom":6,"apiDescription":5,"pages":8,"extension":10,"parents":24,"breadcrumb":28,"related":34,"customDescModule":166,"customdescription":6,"mdFm":167,"mdProseHtml":519},{"description":5,"descriptionCustom":6,"label":7,"pages":8,"size":9,"extension":10,"preview":11,"thumb":12,"svgFrame":13,"seoMetadata":14,"parents":16,"keywords":15},"DATA SHARING AGREEMENT This Data Sharing Agreement (the \"Agreement\") is entered into effect as of [DATE], BETWEEN: [NAME OF PARTY A], (\"Data Provider\"), an individual with their main address located at OR a corporation organized and existing under the laws of the [State/Province] of [STATE/PROVINCE], with its head office located at: [COMPLETE ADDRESS] AND: [NAME OF PARTY B], (\"Data Recipient\") a corporation organized and existing under the laws of the [State/Province] of [STATE/PROVINCE], with its head office located at: [COMPLETE ADDRESS] PURPOSE AND SCOPE The purpose of this Agreement is to establish the terms and conditions under which the Data Provider will share certain data with the Data Recipient. This Agreement outlines the rights and obligations of both Parties with respect to the shared data. The data shared under this Agreement shall be limited to [SPECIFY DATA SETS OR TYPES OF DATA]. 1.2 This Agreement shall govern the sharing of data between the Data Provider and the Data Recipient for the purpose of [STATE THE PURPOSE OR OBJECTIVE OF DATA SHARING]. DEFINITIONS 2.1 \"Data\" refers to the information shared by the Data Provider with the Data Recipient. 2.2 \"Confidential Information\" refers to any data or information that is identified as confidential or proprietary by the Data Provider. 2.3 \"Personal Data\" refers to any information that relates to an identified or identifiable natural person, as defined by applicable data protection laws and regulations. DATA SHARING OBLIGATIONS 3.1 The Data Provider agrees to share the specified data with the Data Recipient for the purpose outlined in this Agreement. 3.2 The Data Provider represents and warrants that it has the necessary rights and permissions to share the data with the Data Recipient. 3.3 The Data Recipient shall use the shared data solely for the purpose specified in this Agreement and shall not disclose or use the data for any other purpose without obtaining prior written consent from the Data Provider. 3.4 The Data Recipient shall take appropriate measures to ensure the security, confidentiality, and integrity of the shared data, including implementing technical and organizational safeguards to prevent unauthorized access, loss, or disclosure. 3.5 The Data Recipient shall comply with all applicable laws and regulations governing data protection and privacy in relation to the shared data, including but not limited to the General Data Protection Regulation (GDPR) or any equivalent legislation. OWNERSHIP AND INTELLECTUAL PROPERTY 4.1 The ownership of the shared data remains with the Data Provider. The Data Recipient acknowledges that it does not acquire any ownership rights or intellectual property rights in the shared data. 4.2 The Data Recipient shall not modify, reproduce, distribute, or create derivative works based on the shared data without the prior written consent of the Data Provider. CONFIDENTIALITY 5",null,"Data Sharing Agreement","3",513,"doc","https://templates.business-in-a-box.com/imgs/1000px/data-sharing-agreement-D13514.png","https://templates.business-in-a-box.com/imgs/250px/13514.png","https://templates.business-in-a-box.com/svgs/docviewerWebApp1.html?v6#13514.xml",{"title":15,"description":6},"data sharing agreement",[17,20],{"label":18,"url":19},"Legal Agreements","/templates/business-legal-agreements/",{"label":18,"url":19},"Data Sharing Agreement Template","https://templates.business-in-a-box.com/imgs/400px/13514.png","https://templates.business-in-a-box.com/imgs/600px/13514.png",[25,17,20],{"label":26,"url":27},"Templates","/templates/",[29,30,31],{"label":26,"url":27},{"label":18,"url":19},{"label":32,"url":33},"Confidentiality & NDA","/templates/confidentiality-and-nda/",[35,39,43,47,51,55,59,63,67,71,75,79,83,98,113,128,140,153],{"label":36,"url":37,"thumb":38,"extension":10},"Revenue Sharing Agreement","/template/revenue-sharing-agreement-D13477","https://templates.business-in-a-box.com/imgs/250px/13477.png",{"label":40,"url":41,"thumb":42,"extension":10},"Time Sharing Agreement","/template/time-sharing-agreement-D13287","https://templates.business-in-a-box.com/imgs/250px/13287.png",{"label":44,"url":45,"thumb":46,"extension":10},"Profit Sharing Agreement","/template/profit-sharing-agreement-D13753","https://templates.business-in-a-box.com/imgs/250px/13753.png",{"label":48,"url":49,"thumb":50,"extension":10},"Data Protection Agreement","/template/data-protection-agreement-D13652","https://templates.business-in-a-box.com/imgs/250px/13652.png",{"label":52,"url":53,"thumb":54,"extension":10},"Consulting Agreement with Sharing of Software Revenues","/template/consulting-agreement-with-sharing-of-software-revenues-D785","https://templates.business-in-a-box.com/imgs/250px/785.png",{"label":56,"url":57,"thumb":58,"extension":10},"Data License Agreement","/template/data-license-agreement-D13952","https://templates.business-in-a-box.com/imgs/250px/13952.png",{"label":60,"url":61,"thumb":62,"extension":10},"Data Processing Agreement","/template/data-processing-agreement-D13954","https://templates.business-in-a-box.com/imgs/250px/13954.png",{"label":64,"url":65,"thumb":66,"extension":10},"Confidentiality Agreement (Data Processing Services)","/template/confidentiality-agreement-data-processing-services-D948","https://templates.business-in-a-box.com/imgs/250px/948.png",{"label":68,"url":69,"thumb":70,"extension":10},"Data Classification Policy","/template/data-classification-policy-D13828","https://templates.business-in-a-box.com/imgs/250px/13828.png",{"label":72,"url":73,"thumb":74,"extension":10},"Data Management Policy","/template/data-management-policy-D13953","https://templates.business-in-a-box.com/imgs/250px/13953.png",{"label":76,"url":77,"thumb":78,"extension":10},"Data Privacy Policy","/template/data-privacy-policy-D13465","https://templates.business-in-a-box.com/imgs/250px/13465.png",{"label":80,"url":81,"thumb":82,"extension":10},"Data Governance Policy","/template/data-governance-policy-D13829","https://templates.business-in-a-box.com/imgs/250px/13829.png",{"description":84,"descriptionCustom":6,"label":85,"pages":8,"size":9,"extension":10,"preview":86,"thumb":87,"svgFrame":88,"seoMetadata":89,"parents":91,"keywords":90,"url":97},"NON-DISCLOSURE AGREEMENT (NDA) This Non-Disclosure Agreement (the \"Agreement\") is made and effective [DATE], BETWEEN: [YOUR COMPANY NAME] (the \"Disclosing Party\"), a corporation organized and existing under the laws of the [State/Province] of [STATE/PROVINCE], with its head office located at: [YOUR COMPLETE ADDRESS] AND: [RECEIVING PARTY NAME] (the \"Receiving Party\"), an individual with his main address located at OR a corporation organized and existing under the laws of the [State/Province] of [STATE/PROVINCE], with its head office located at: [COMPLETE ADDRESS] WHEREAS, Receiving Party has been or will be engaged in the performance of work on [DESCRIBE]; and in connection therewith will be given access to certain confidential and proprietary information; and WHEREAS, Receiving Party and Disclosing Party wish to evidence by this Agreement the manner in which said confidential and proprietary material will be treated. NOW, THEREFORE, it is agreed as follows: NON-DISCLOSURE OF CONFIDENTIAL INFORMATION Both Parties understand and agree that each Party may have access to the confidential information of the other party. For the purposes of this Agreement, \"Confidential Information\" means proprietary and confidential information about the Disclosing Party's (or it's suppliers') business or activities. Such information includes all business, financial, technical, and other information marked or designated by such Party as \"confidential\" or \"proprietary.\" Confidential Information also includes information which, by the nature of the circumstances surrounding the disclosure, ought in good faith to be treated as confidential. For the purposes of this Agreement, Confidential Information does not include: Information that is currently in the public domain or that enters the public domain after the signing of this Agreement. Information a Party lawfully receives from a third Party without restriction on disclosure and without breach of a non-disclosure obligation. Information that the Receiving Party knew prior to receiving any Confidential Information from the Disclosing Party. Information that the Receiving Party independently develops without reliance on any Confidential Information from the Disclosing Party. Each Party agrees that it will not disclose to any third Party or use any Confidential Information disclosed to it by the other Party except when expressly permitted in writing by the other Party. Each Party also agrees that it will take all reasonable measures to maintain the confidentiality of all Confidential Information of the other Party in its possession or control. TERM The term of this Agreement is [number] of [years/months] from the date of execution by both Parties. TITLE The Receiving Party agrees that all Confidential Information furnished by the Disclosing Party shall remain the sole property of the Disclosing Party. DISCLAIMER","Non Disclosure Agreement Nda","https://templates.business-in-a-box.com/imgs/1000px/non-disclosure-agreement-nda-D12692.png","https://templates.business-in-a-box.com/imgs/250px/12692.png","https://templates.business-in-a-box.com/svgs/docviewerWebApp1.html?v6#12692.xml",{"title":90,"description":6},"non disclosure agreement nda",[92,94],{"label":18,"url":93},"business-legal-agreements",{"label":95,"url":96},"Confidentiality Agreements","confidentiality-agreement","/template/non-disclosure-agreement-nda-D12692",{"description":99,"descriptionCustom":6,"label":100,"pages":101,"size":9,"extension":10,"preview":102,"thumb":103,"svgFrame":104,"seoMetadata":105,"parents":107,"keywords":106,"url":112},"PARTNERSHIP AGREEMENT This Partnership Agreement (\"Agreement\") is made and effective this [Date], BETWEEN: [YOUR COMPANY NAME] (the \"First Partner\"), a corporation organized and existing under the laws of the [State/Province] of [STATE/PROVINCE], with its head office located at: [YOUR COMPLETE ADDRESS] AND: [SECOND PARTNER NAME] (the \"Second Partner\"), an individual with his main address located at OR a corporation organized and existing under the laws of the [State/Province] of [STATE/PROVINCE], with its head office located at: [COMPLETE ADDRESS] RECITALS Partners desire to join together for the pursuit of common business goals. Partners have considered various forms of joint business enterprises for their business activities. Partners desire to enter into a partnership agreement as the most advantageous business form for their mutual purposes. The parties hereto agree to form a limited partnership (the \"Partnership\") under [LAW, CODE OR ACT]. In consideration of the mutual promises contained in this agreement, partners agree as follows: NAME AND DOMICILE The name of the partnership shall be [name]. The principal place of business shall be at [address], [city], [state/province], unless relocated by consent of the partners. Purposes Subject to the limitations set forth in this Agreement, the purposes of the Partnership are to engage in the business of [DESCRIBE ACTIVITIES]; and to conduct other activities as may be necessary or incidental to or desirable in connection with the foregoing. DURATION OF AGREEMENT The term of this agreement shall be for [number] years, commencing on [date], and terminating on [date], unless sooner terminated by mutual consent of the parties or by operation of the provisions of this agreement. CLASSIFICATION AND PERFORMANCE BY PARTNERS Partners shall be classified as active partners, advisory partners, or estate partners. An active partner may voluntarily become an advisory partner, may be required to become one irrespective of age, and shall automatically become one after attaining the age of [age] years, and in each case shall continue as such for [number] years unless the partner sooner withdraws or dies. If an active partner dies, the partner's estate will become an estate partner for [number] years. If an advisory partner dies within [Number] years of having become an advisory partner, the partner will become an estate partner for the balance of the [number]-year period. Only active partners shall have any vote in any partnership matter. At the time of the taking effect of this partnership agreement, all the partners shall be active partners except [name] and [name], who shall be advisory partners. An active partner, after attaining the age of [age] years, or prior to that age if the [executive committee or as the case may be] with the approval of [two-thirds or as the case may be] of all the other active partners determines that the reason for the change in status is bad health, may become an advisory partner at the end of any calendar month on giving [number] calendar months' prior notice in writing of the partner's intention to do so. The notice shall be deemed to be sufficient if sent by registered mail addressed to the partnership at its principal office at [address], [city], [state/province] not less than [number] calendar months prior to the date when the change is to become effective. Any active partner may at any age be required to become an advisory partner at any time if the [executive committee or as the case may be] with the approval of [two-thirds or as the case may be] of the other active partners shall decide that the change is for any reason in the best interests of the partnership, provided notice of the decision shall be given in writing to the partner. The notice shall be signed by the [chairman or as the case may be] of the [executive committee or as the case may be] or, in the event of his or her being unable to sign at the time, by another member of the [executive committee or as the case may be]. The notice shall be served personally on the partner required to change his or her status or mailed by registered mail to the partner's last known address. Change of the partner's status shall become effective as of the date specified in the notice. Every active partner shall automatically and without further act become an advisory partner at the end of the fiscal year in which the partner's birthday occurs. In the event that an active partner becomes an advisory partner or dies, the partner or the partner's estate shall be entitled to the following payments at the following times: [describe] Each active partner shall apply all of the partner's experience, training, and ability in discharging the partner's assigned functions in the partnership and in the performance of all work that may be necessary or advantageous to further the business interests of the partnership. CONTRIBUTION Each partner shall contribute [amount] on or before [date] to be used by the partnership to establish its capital position. Any additional contribution required of partners shall only be determined and established in accordance with Article Nineteen. MANAGEMENT OF THE PARTNERSHIP The Partnership shall be managed by [SPECIFY]. Subject to the limitations specifically contained in this Agreement, [PARTY MANAGING THE PARTNERSHIP] shall have the full, exclusive and absolute right, power and authority to manage and control the Partnership and the property, assets and business thereof. [PARTY MANAGING THE PARTNERSHIP] shall have all of the rights, powers and authority conferred by law or under other provisions of this Agreement. Without limiting the generality of the foregoing, such powers include the right on behalf of the Partnership, in [PARTY MANAGING THE PARTNERSHIP]' sole discretion, to: Acquire, purchase, renovate, improve, and own any property or assets necessary or appropriate or in the best interests of the business of the Partnership, and to acquire options for the purchase of any such property; Borrow money, issue evidences of indebtedness in connection therewith, refinance, increase the amount of, modify, amend or change the terms of, or extend the time for the payment of, any indebtedness or obligation of the Partnership, and secure such indebtedness by mortgage, deed of trust, pledge or other lien on Partnership assets; Sue on, defend or compromise any and all claims or liabilities in favor of or against the Partnership and to submit any or all such claims or liabilities to arbitration; File applications, communicate and otherwise deal with any and all governmental agencies having jurisdiction over, or in any way affecting, the Partnership's assets or any part thereof or any other aspect of the Partnership business; Retain services of any kind or nature in connection with the Partnership business, and to pay therefore such remuneration deem reasonable and proper; and Perform any and all other acts deem necessary or appropriate to the Partnership business. TRANSFER OF PARNERSHIP INTERESTS Restrictions on Transfer None of the Partners shall sell, assign, transfer, mortgage, encumber, or otherwise dispose of the whole or part of that Partner's interest in the Partnership, and no purchaser or other transferee shall have any rights in the Partnership as an assignee or otherwise with respect to all or any part of that Partnership interest attempted to be sold, assigned, transferred, mortgaged, encumbered, or otherwise disposed of, unless and to the extent that the remaining Partner(s) have given consent to such sale, assignment, transfer, mortgage, or encumbrance, but only if the transferee forthwith assumes and agrees to be bound by the provisions of this Agreement and to become a Partner for all purposes hereof, in which event, such transferee shall become a substituted partner under this Agreement.","Partnership Agreement","8","https://templates.business-in-a-box.com/imgs/1000px/partnership-agreement-D12551.png","https://templates.business-in-a-box.com/imgs/250px/12551.png","https://templates.business-in-a-box.com/svgs/docviewerWebApp1.html?v6#12551.xml",{"title":106,"description":6},"partnership agreement",[108,109],{"label":18,"url":93},{"label":110,"url":111},"Partnership Agreements","partnership-agreement","/template/partnership-agreement-D12551",{"description":114,"descriptionCustom":6,"label":115,"pages":116,"size":117,"extension":10,"preview":118,"thumb":119,"svgFrame":120,"seoMetadata":121,"parents":122,"keywords":126,"url":127},"INDEPENDENT CONTRACTOR AGREEMENT This Independent Contractor Agreement (\"Agreement\") is made and effective [Date], BETWEEN: [INDEPENDENT CONTRACTOR NAME] (the \"Independent Contractor\"), a company organized and existing under the laws of the [State/Province] of [STATE/PROVINCE], with its head office located at: [COMPLETE ADDRESS] AND: [YOUR COMPANY NAME] (the \"Company\"), a company organized and existing under the laws of the [State/Province] of [STATE/PROVINCE], with its head office located at: [YOUR COMPLETE ADDRESS] RECITALS Independent Contractor is engaged in providing [Describe] business services, its Employer Tax I.D. Number is [Insert], and its Business License Number is [insert]. Independent Contractor has complied with all Federal, State, and local laws regarding business permits, sales permits, licenses, reporting requirements, tax withholding requirements, and other legal requirements of any kind that may be required to carry out said business and the Scope of Work which is to be performed as an Independent Contractor pursuant to this Agreement. Independent Contractor is or remains open to conducting similar tasks or activities for clients other than the Company and holds themselves out to the public to be a separate business entity. Company desires to engage and contract for the services of the Independent Contractor to perform certain tasks as set forth below. Independent Contractor desires to enter into this Agreement and perform as an independent contractor for the company and is willing to do so on the terms and conditions set forth below. NOW, THEREFORE, in consideration of the above recitals and the mutual promises and conditions contained in this Agreement, the Parties agree as follows: TERMS This Agreement shall be effective commencing [Date], and shall continue until terminated at the completion of the Scope of Work which shall occur no later than [Date] or by either party as otherwise provided herein. STATUS OF INDEPENDENT CONTRACTOR This Agreement does not constitute a hiring by either party. It is the parties intentions that Independent Contractor shall have an independent contractor status and not be an employee for any purposes, including, but not limited to, [laws]. Independent Contractor shall retain sole and absolute discretion in the manner and means of carrying out their activities and responsibilities under this Agreement. This Agreement shall not be considered or construed to be a partnership or joint venture, and the Company shall not be liable for any obligations incurred by Independent Contractor unless specifically authorized in writing. Independent Contractor shall not act as an agent of the Company, ostensibly or otherwise, nor bind the Company in any manner, unless specifically authorized to do so in writing. TASKS, DUTIES, AND SCOPE OF WORK Independent Contractor agrees to devote as much time, attention, and energy as necessary to complete or achieve the following: [Describe]. The above to be referred to in this Agreement as the \"Scope of Work\". It is expected that the Scope of Work will completed by [Date]. Independent Contractor shall additionally perform any and all tasks and duties associated with the Scope of Work set forth above, including but not limited to, work being performed already or related change orders. Independent Contractor shall not be entitled to engage in any activities which are not expressly set forth by this Agreement. The books and records related to the Scope of Work set forth in this Agreement shall be maintained by the Independent Contractor at the Independent Contractor's principal place of business and open to inspection by Company during regular working hours. Documents to which Company will be entitled to inspect include, but are not limited to, any and all contract documents, change orders/purchase orders and work authorized by Independent Contractor or Company on existing or potential projects related to this Agreement. Independent Contractor shall be responsible to the management and directors of Company, but Independent Contractor will not be required to follow or establish a regular or daily work schedule. Supply all necessary equipment, materials and supplies. Independent Contractor will not rely on the equipment or offices of Company for completion of tasks and duties set forth pursuant to this Agreement. Any advice given Independent Contractors regarding the scope of work shall be considered a suggestion only, not an instruction. Company retains the right to inspect, stop, or alter the work of Independent Contractor to assure its conformity with this Agreement. ASSURANCE OF SERVICES Independent Contractor will assure that the following individuals (the \"Key Employees\") will be available to perform, and will perform, the Services hereunder until they are completed (identify by title and name as applicable): [Name of Key Employee, Title] [Name of Key Employee, Title] The Key Employees may be changed only with the prior written approval of the Company, which approval shall not be unreasonably withheld. COMPENSATION Independent Contractor shall be entitled to compensation for performing those tasks and duties related to the Scope of Work as follows: [Describe] Such compensation shall become due and payable to Independent Contractor in the following time, place, and manner: [Describe] NOTICE CONCERNING WITHHOLDING OF TAXES Independent Contractor recognizes and understands that it will receive a [specify tax] statement and related tax statements, and will be required to file corporate and/or individual tax returns and to pay taxes in accordance with all provisions of applicable Federal and State law. Independent Contractor hereby promises and agrees to indemnify the Company for any damages or expenses, including attorney's fees, and legal expenses, incurred by the Company as a result of independent contractor's failure to make such required payments. AGREEMENT TO WAIVE RIGHTS TO BENEFITS Independent Contractor hereby waives and foregoes the right to receive any benefits given by Company to its regular employees, including, but not limited to, health benefits, vacation and sick leave benefits, profit sharing plans, etc. This waiver is applicable to all non-salary benefits which might otherwise be found to accrue to the Independent Contractor by virtue of their services to Company, and is effective for the entire duration of Independent Contractor's agreement with Company. This waiver is effective independently of Independent Contractor's employment status as adjudged for taxation purposes or for any other purpose. Neither this Agreement, nor any duties or obligations under this Agreement may be assigned by either party without the consent of the other. TERMINATION This Agreement may be terminated prior to the completion or achievement of the Scope of Work by either party giving [number] days written notice. Such termination shall not prejudice any other remedy to which the terminating party may be entitled, either by law, in equity, or under this Agreement. NON-DISCLOSURE OF TRADE SECRETS, CUSTOMER LISTS AND OTHER PROPRIETARY INFORMATION Independent Contractor agrees not to disclose or communicate, in any manner, either during or after Independent Contractor's agreement with Company, information about Company, its operations, clientele, or any other information, that relate to the business of Company including, but not limited to, the names of its customers, its marketing strategies, operations, or any other information of any kind which would be deemed confidential, a trade secret, a customer list, or other form of proprietary information of Company. Independent Contractor acknowledges that the above information is material and confidential and that it affects the profitability of Company. ","Independent Contractor Agreement","6",62,"https://templates.business-in-a-box.com/imgs/1000px/independent-contractor-agreement-D160.png","https://templates.business-in-a-box.com/imgs/250px/160.png","https://templates.business-in-a-box.com/svgs/docviewerWebApp1.html?v6#160.xml",{"title":6,"description":6},[123],{"label":124,"url":125},"Consultant & Contractors","consulting-contractor-business","independent contractor agreement","/template/independent-contractor-agreement-D160",{"description":129,"descriptionCustom":6,"label":130,"pages":116,"size":9,"extension":10,"preview":131,"thumb":132,"svgFrame":133,"seoMetadata":134,"parents":136,"keywords":135,"url":139},"SERVICE AGREEMENT This SERVICE AGREEMENT (\"Agreement\") is effective [DATE], BETWEEN: [COMPANY NAME] (the \"Contractor\"), a company organized and existing under the laws of [STATE/PROVINCE], with its head office located at: [COMPLETE ADDRESS] AND: [COMPANY NAME] (the \"Customer\"), a company organized and existing under the laws of [STATE/PROVINCE], with its head office located at: [COMPLETE ADDRESS] (The Contractor and the Customer shall be individually referred to as a \"Party\" and collectively referred to as the \"Parties\", as the context may require). WHEREAS A. Contractor has experience and expertise in [DESCRIBE EXPERIENCE AND SERVICE]. B. Customer desires to have Contractor provide services for them. C. Contractor desires to provide services to Customer on the terms and conditions set forth herein (the \"Services\"). NOW THEREFORE, in consideration of the above recitals, the representations, warranties, and agreements contained in this Agreement and for other good and valuable consideration, the receipt and adequacy of which are now acknowledged, the Parties agree as follows: SERVICES PROVIDED Beginning on upon agreement to this contract, [CONTRACTOR] will provide to [CUSTOMER] the following service (collectively, the /Services\"): Description of the project: [DESCRIBE THE SERVICE REQUIRED]. SCOPE OF WORK Contractor agrees to provide Services pursuant to the Scope of Work set forth in Exhibit A attached hereto (the \"Scope of Work\"). TERM Unless both parties mutually agree on an extension, this contract will automatically terminate on [SPECIFY]. PERFORMANCE The parties agree to do everything possible to ensure that the terms of this Agreement take effect. PAYMENT FOR SERVICES In exchange for the Services rendered, a payment of [SPECIFY] will be made to the Contractor upon completion of the scheduled Services described in this Contract. If an invoice is not paid on the due date, interest will be added to the current balance. These amounts shall be payable, and the Customer shall pay all overdue amounts at the lesser of [SPECIFY] per cent per annum or the maximum percentage permitted by applicable law. Or Customer will pay Contractor as follows: [SPECIFY]. DELIVERY OF SERVICES The Contractor will exercise due diligence in the provision of services. However, the Customer acknowledges that the indicated delivery times and other payment milestones listed in Scope of Work are estimates and do not constitute final delivery dates. SECURITY The Contractor must make reasonable security arrangement to protect Material from unauthorized access, collection, use, alteration or disposal. OWNERSHIP RIGHT The Customer shall hold the copyright for the agreed version of the Services as delivered, and the Customer's copyright notice may be displayed in the final version. All works, ideas, discoveries, inventions, patents, products or other information that may be protected by copyright (collectively, the \"Work Product\" developed in whole or in part by the Contractor in connection with the Services, shall be the exclusive property of the Customer. Upon request, the Contractor shall execute all documents necessary to confirm or perfect the exclusive ownership of the Customer's \"Work Product\". The Contractor retains exclusive rights to pre-existing materials used in the Customer's projects. The Customer shall not have the right to reuse, resell or otherwise transfer material belonging to the contractor or third parties. The Contractor reserves the right to use the finished public product as an example of a product. RETURN OF PROPERTY Upon the expiry or termination of this Agreement, the Contractor will return to the Customer any property, documentation, records or Confidential Information which is the property of the Customer. COMPENSATION For all services rendered by the Contractor under this Agreement, the Customer shall indemnify the Contractor. In the event that the Customer fails to make any of the payments mentioned, the Contractor shall have the right, but shall not be obliged, to exercise any of the following remedies: ","Service Agreement","https://templates.business-in-a-box.com/imgs/1000px/service-agreement-D12711.png","https://templates.business-in-a-box.com/imgs/250px/12711.png","https://templates.business-in-a-box.com/svgs/docviewerWebApp1.html?v6#12711.xml",{"title":135,"description":6},"service agreement",[137,138],{"label":18,"url":93},{"label":18,"url":93},"/template/service-agreement-D12711",{"description":141,"descriptionCustom":6,"label":142,"pages":143,"size":9,"extension":10,"preview":144,"thumb":145,"svgFrame":146,"seoMetadata":147,"parents":149,"keywords":148,"url":152},"MASTER SERVICE AGREEMENT This Master Service Agreement (\"Agreement\") is made and effective this [Date], BETWEEN: [YOUR COMPANY NAME],\" PARTY A\", a corporation organized and existing under the laws of [STATE/PROVINCE], with its head office located at: [YOUR COMPLETE ADDRESS] AND: [COMPANY NAME],\" PARTY B\", a corporation organized and existing under the laws of [STATE/PROVINCE], with its head office located at: [COMPLETE ADDRESS] SCOPE OF SERVICES [PARTY A] shall provide [PARTY B] with the services and products described in the Statements of Work. The SOW must describe the respective contribution and services of each party. Any services provided by either party under this Agreement are referred to as the \"Services\". For the purposes of this Agreement, the party engaged to perform the Services, [PARTY A], is the \"Performing Party\" and the party for whom the Services are to be performed, [PARTY B], is the \" Engaging Party\". All SOWs that are negotiated between the parties shall be in writing and executed by both parties and shall be attached hereto as supplemental Exhibits, and shall be incorporated into, and governed by, this Agreement. STATEMENT OF WORK (SOW) Contents of Statements of Work The parties shall describe each individual deliverable to be provided under this agreement in its own statement of work (each, a \"Statement of Work\"), each one including a complete description of the deliverable provided under the Statement of Work, the number of [PARTY A] personnel who will be assigned to provide the deliverable in question, key [PARTY A] personnel the parties agree are essential to the provision of the particular deliverable (shall not exceed [SPECIFY] percent of the total personnel assigned to this Statement of Work) (each one a \"Key Personnel\"), the applicable fees and fee schedule, including any milestones and milestone payments if applicable, for the particular deliverable, the service levels and acceptance criteria for the particular deliverable, any materials the parties will provide for the particular deliverable, a timeline for providing the particular deliverable, and a unique identification number for the Statement of Work and explicit reference to this agreement. Integration. A Statement of Work signed by both parties, bearing a unique identification number and making explicit reference to this Agreement, shall be deemed to form an integral part of this Agreement. Severable. The parties may terminate any individual Statement of Work without affecting the rest of the agreement or any other Statement of Work. Conflict of Terms. If there is a conflict between the terms of this agreement and any Statement of Work, the Statement of Work shall apply. Changes to Statements of Work Proposing Changes. Either party may propose amendments to the Statement of Work deliverable, fees or schedule by giving written notice to the other party. Finalizing Changes. If the parties agree to change the deliverable, fees, or schedule of a Statement of Work they parties shall cooperate to execute a written amendment to the relevant Statement of Work detailing the changes. Additional Statements of Work Request Additional Services. [PARTY B] may request additional services by sending a written notice to [PARTY A] reasonably detailing the services requested. Assess the Request. Immediately after receiving a request for additional services from [PARTY B], [PARTY A] shall evaluate the request to determine whether there are circumstances preventing it from providing the requested services and, if there are no circumstances preventing it from providing the requested services, shall provide [PARTY A] with the estimated fees and timelines for such requested services. Execute New Statement of Work. If after receiving [PARTY A] 's estimates [PARTY B] still wants the requested services, the parties shall execute a new Statement of Work according to the requirements of paragraph CONTENT OF STATEMENTS OF WORK. Acceptance and Rejection Inspection Period. [PARTY B] shall have an \"Inspection period\" of [NUMBER] working days after [PARTY A] has provided the deliverable to review and verify that the deliverable meets the acceptance criteria as set out in the applicable Statement of Work (the \"Inspection Period\"). Acceptance. If in [PARTY B] 's opinion the deliverable meets the acceptance criteria, [PARTY B] must accept the deliverable and notify [PARTY A] that it is accepting the deliverable. Deemed Acceptance.[PARTY B] shall be deemed to have accepted the deliverable if [PARTY B] fails to notify [PARTY A] by the end of the inspection period, or if, during the inspection period, [PARTY B] uses or attempts to use the deliverable beyond what is necessary for the inspection and testing, in a manner that a reasonable person would consider compatible with [PARTY B] having accepted deliverable from [PARTY A]. Rejection. If in [PARTY B]'s opinion, the deliverable does not materially meet the acceptance criteria, [PARTY B] may reject the deliverable by delivering to [PARTY B] a written list detailing each failure to satisfy the acceptance criteria. TERM The term of this Agreement begins on [INSERT START DATE] and continues until such time as the Deliverables have been provided to the Purchaser in accordance with this Agreement or until such time as this Agreement is terminated by either party in accordance with its terms. BUDGET AND PAYMENT DEADLINE The budget and payment deadline will be defined in each SOW. Unless otherwise provided in this SOW, uncontested invoices are payable within 30 calendar days of receipt of the invoice. Payment is made as follows: [SPECIFY]. INDEPENDENT CONTRACTOR The relationship between [PARTY A] and [PARTY B] shall, within the context of the SOW, be that of an independent contractor, and nothing in this Agreement should be construed to create a partnership, joint venture, or employer-employee relationship. Each Party shall, at all times during the term of this Agreement, perform the duties and responsibilities herein without any control by the other Party. Either Party may realize a profit or loss in connection with performing the services. Either Party may render similar services for the benefit of others. Neither Party is an agent of the other Party and is not authorized to make any representation, contract, or contract commitment on behalf of the other Party. DELIVERABLES The Supplier shall provide the goods and/or services described in the Statement of Work (attached) of this Master Service Agreement. CONFIDENTIALITY Information shall be treated as confidential during the term of this Agreement and for a period of seven (7) years thereafter. During such period, the parties will not: (a) disclose the Confidential Information of the Disclosing Party to any third party, using at least the same degree of care as it uses to protect its own confidential information, but not less than reasonable care or (b) use such information for any purpose other than to perform its obligations under this Agreement. Confidential Information does not include information which has previously been made generally available to the public, becomes publicly known, without fault on the part of the Receiving Party, subsequent to disclosure by the Disclosing Party of such information to the Receiving Party, is received by the Receiving Party at any time from a source, other than the Disclosing Party, lawfully having possession of and the right to disclose such information, otherwise becomes known by the Receiving Party prior to disclosure by the Disclosing Party to the receiving party of such information, or is independently developed by the Receiving Party without use of such information","Master Service Agreement","7","https://templates.business-in-a-box.com/imgs/1000px/master-service-agreement-D12657.png","https://templates.business-in-a-box.com/imgs/250px/12657.png","https://templates.business-in-a-box.com/svgs/docviewerWebApp1.html?v6#12657.xml",{"title":148,"description":6},"master service agreement",[150,151],{"label":18,"url":93},{"label":18,"url":93},"/template/master-service-agreement-D12657",{"description":154,"descriptionCustom":6,"label":155,"pages":143,"size":9,"extension":10,"preview":156,"thumb":157,"svgFrame":158,"seoMetadata":159,"parents":161,"keywords":164,"url":165},"WEBSITE TERMS AND CONDITIONS Welcome to [WEBSITE NAME], (hereinafter referred to as the \"Website\", \"We,\" \"Us,\" or \"Our\"), owned and operated by [COMPANY NAME] (hereinafter referred to as \"the Company\") with its registered office located at [THE COMPANY'S COMPLETE ADDRESS]. The Website is offered to You conditioned on Your acceptance without modification of the Terms, Conditions, and notices contained herein (the \"Terms\"). INTRODUCTION Our Website is a Platform (hereinafter referred to as \"Platform\") where [SPECIFY THE PURPOSE OF WEBSITE]. The Users of the Website shall be referred to as \"You,\" \"Your,\" or \"Users.\" By clicking on the \"Accept\" button at the end of the Agreement acceptance form, Users agree to be bound by the Terms and Conditions of this Agreement. Please read this entire Agreement carefully before accepting its Terms. When You undertake any activity on the Website, You agree to accept these Terms and Conditions. In using this Website, You are deemed to have read and agreed to the following Terms and Conditions set forth herein. Any incidental documents and links mentioned shall be accepted jointly with these Terms. You agree to use the Website only in strict interpretation and acceptance of these Terms, and any actions or commitments made without regard to these Terms shall be at Your own risk. These Terms and Conditions form part of the Agreement between the Users and Us. By accessing this Website, and/or undertaking to perform a Service provided by Us indicates Your understanding, agreement to and acceptance of the disclaimer notice and the full Terms and Conditions contained herein. ELIGIBILITY OF THE USER You may use the Service only if You are at least eighteen (18) years of age and can form a binding contract with Us, and only in compliance with this Agreement and all applicable local, state, national, and international laws, rules and regulations. Unauthorized Users are strictly prohibited from accessing or attempting to access, directly or indirectly, the Platform. Any such unauthorized use is strictly forbidden and shall constitute a violation of applicable state and local laws. Our Website may, in its sole discretion, refuse to offer access to or use of the Platform to any person or entity, and change its eligibility criteria at any time. This provision is void where prohibited by law and the right to access the Website is revoked in such jurisdictions. SERVICES OFFERED BY THE PLATFORM We provide the Users with a Platform to [SPECIFY THE SERVICES]. YOU AGREE AND CONFIRM That You will use the Services provided by Our Platform, its affiliates and contracted companies, for lawful purposes only and comply with all applicable laws and regulations while using the Platform. That You will provide authentic and true information in all instances where such information is requested of You. We reserve the right to confirm and validate the information and other details provided by You at any point in time. If upon confirmation Your details are found not to be true (wholly or partly), We have the right in Our sole discretion to reject the registration and debar You from using the Services of Our Platform and/or other affiliated websites without prior intimation whatsoever. That You are accessing the Services available on this Website and transacting at Your sole risk and are using Your best and prudent judgment before entering into any dealings through this Platform. It is possible that the other Users (including unauthorized/unregistered users or \"hackers\") may post or transmit offensive or obscene materials on the Platform and that You may be involuntarily exposed to such offensive and obscene materials. It also is possible for others to obtain personal information about You due to Your use of the Platform, and that the recipient may use such information to harass or injure You. We do not approve of such unauthorized uses, but by using the Platform, You acknowledge and agree that We are not responsible for the use of any personal information that You publicly disclose or share with others on the Platform. Please carefully select the type of information that You publicly disclose or share with others on the Platform. You agree to not post or transmit any unlawful, threatening, abusive, libelous, defamatory, obscene, vulgar, pornographic, profane or indecent information or description/image/text/graphic of any kind, including without limitation any transmissions constituting or encouraging conduct that would constitute a criminal offense, give rise to civil liability or otherwise violate any local, state, national, or international law. You agree to not post or transmit any information, software, or other material which violates or infringes the rights of others, including material which is an invasion of privacy or publicity rights or which is protected by copyright, trademark or other proprietary right, or derivative works with respect thereto, without first obtaining permission from the owner or right holder. You agree to not alter, damage or delete any Content or other communications that are not Your own Content or to otherwise interfere with the ability of others to access Our Platform. You agree to indemnify and keep indemnified the Company from all claims/losses (including advocates' fees for defending/prosecuting any case) that may arise against the Company due to acts/omission on the part of the User. WARRANTIES, REPRESENTATION AND UNDERTAKINGS OF USER The User warrants and represents that all obligations narrated under this Agreement are legal, valid, binding and enforceable in law against the User. The User agrees that there are no proceedings pending against the User, which may have a material adverse effect on its ability to perform and meet the obligations under this Agreement. The User agrees that it shall, at all times, ensure compliance with all the requirements applicable to its business and for the purposes of this Agreement including but not limited to intellectual property rights, value-added tax, excise and import duties, etc. It further declares and confirms that it has paid and shall continue to discharge all its obligations towards statutory authorities. The User agrees that it has adequate rights under relevant laws including but not limited to various intellectual property legislation(s) to enter into this Agreement with the Company and perform the obligations contained herein and that it has not violated/infringed any intellectual property rights of any third party. The User agrees that appropriate disclaimers and Terms of use on the Company's Website shall be placed by the Company. INTELLECTUAL PROPERTY RIGHTS The User expressly authorizes the Company to use its trademarks/copyrights/designs/logos and other intellectual property owned and/or licensed by it for the purpose of reproduction on the Platform and at such other places as the Company may deem necessary. It is expressly agreed and clarified that, except as specified agreed in this Agreement, each Party shall retain all right, title and interest in their respective trademarks and logos and that nothing contained in this Agreement, nor the use of the trademarks/logos in the publicity, advertising, promotional or other material in relation to the Services shall be construed as giving to any Party any right, title or interest of any nature whatsoever to any of the other Party's trademarks and/or logos. The Company's Website and other Platforms, and the information and materials that it contains, are the property of the Company and its licensors, and are protected from unauthorized copying and dissemination by copyright law, trademark law, international conventions, and other intellectual property laws. All the Company's product names and logos are trademarks or registered trademarks","Website Terms and Conditions","https://templates.business-in-a-box.com/imgs/1000px/website-terms-and-conditions-D13193.png","https://templates.business-in-a-box.com/imgs/250px/13193.png","https://templates.business-in-a-box.com/svgs/docviewerWebApp1.html?v6#13193.xml",{"title":160,"description":6},"website terms and conditions",[162,163],{"label":18,"url":93},{"label":18,"url":93},"website terms conditions","/template/website-terms-and-conditions-D13193",false,{"seo":168,"reviewer":180,"quick_facts":184,"at_a_glance":187,"personas":191,"variants":216,"glossary":242,"clauses":279,"how_to_fill":330,"common_mistakes":371,"faqs":396,"industries":424,"comparisons":449,"diy_vs_lawyer":461,"jurisdictions":474,"related_template_ids_curated":495,"schema":506,"classification":507},{"meta_title":169,"meta_description":170,"primary_keyword":171,"secondary_keywords":172},"Data Sharing Agreement Template (Free Word)","Free data sharing agreement template for businesses exchanging confidential data. Trusted by companies in USA, Canada, UK, Australia, and 190+ countries. Free Word and PDF download.","data sharing agreement template",[15,173,174,175,176,177,178,179],"data sharing agreement template word","data sharing agreement free download","data exchange agreement template","data transfer agreement template","data sharing contract template","gdpr data sharing agreement","data sharing agreement between companies",{"name":181,"credential":182,"reviewed_date":183},"Bruno Goulet","CEO, Business in a Box","2026-05-02",{"difficulty":185,"legal_review_recommended":186,"signature_required":186},"advanced",true,{"what_it_is":188,"when_you_need_it":189,"whats_inside":190},"A Data Sharing Agreement is a legally binding contract between two or more parties that governs how specified data sets — including personal, proprietary, or confidential information — may be accessed, used, stored, and disclosed. This free Word download gives you a complete, editable template you can tailor to your data exchange arrangement and export as PDF for execution.\n","Use it whenever your organization shares structured data with a partner, vendor, research institution, government body, or affiliate — especially where personal data or commercially sensitive information is involved. It is essential before any API integration, data-licensing arrangement, joint research project, or third-party analytics engagement.\n","Definitions of permitted data and authorized purposes, data security and handling obligations, restrictions on onward transfer and sub-processing, breach notification timelines, data subject rights procedures, liability and indemnification, and termination with return or deletion of data.\n",[192,196,200,204,208,212],{"title":193,"use_case":194,"icon_asset_id":195},"Technology companies","Governing API data feeds shared with third-party developers or platform partners","persona-tech-company",{"title":197,"use_case":198,"icon_asset_id":199},"Healthcare organizations","Sharing patient records or clinical data with research partners under HIPAA","persona-healthcare-provider",{"title":201,"use_case":202,"icon_asset_id":203},"Marketing and analytics agencies","Receiving client CRM or behavioral data to run campaigns or build attribution models","persona-agency",{"title":205,"use_case":206,"icon_asset_id":207},"Research institutions and universities","Exchanging datasets with industry partners or government bodies for joint studies","persona-researcher",{"title":209,"use_case":210,"icon_asset_id":211},"Financial services firms","Sharing transaction or credit data with credit bureaus, fintechs, or regulators","persona-fintech",{"title":213,"use_case":214,"icon_asset_id":215},"Government and public sector agencies","Formalizing inter-agency data exchange for public service delivery or policy analysis","persona-government-agency",[217,220,224,228,231,235,239],{"situation":218,"recommended_template":60,"slug":219},"Sharing personal data with a vendor who processes it on your behalf","data-processing-agreement-D13954",{"situation":221,"recommended_template":222,"slug":223},"Transferring personal data from the EU to a non-adequate third country","Standard Contractual Clauses (SCCs)","earnout-clauses-agreement-D329",{"situation":225,"recommended_template":226,"slug":227},"Sharing confidential business information without a data-processing element","Non-Disclosure Agreement","non-disclosure-agreement-nda-D12692",{"situation":229,"recommended_template":100,"slug":230},"Exchanging data as part of a broader commercial partnership","partnership-agreement-D12551",{"situation":232,"recommended_template":233,"slug":234},"Providing data access via API under defined commercial terms","API License Agreement","api-license-agreement-D12726",{"situation":236,"recommended_template":237,"slug":238},"Sharing research data between two academic or nonprofit institutions","Research Collaboration Agreement","collaboration-agreement-D13222",{"situation":240,"recommended_template":56,"slug":241},"One-way data licensing arrangement with royalties or fees","data-license-agreement-D13952",[243,246,249,252,255,258,261,264,267,270,273,276],{"term":244,"definition":245},"Data Controller","The entity that determines the purposes and means of processing personal data — typically the organization that originally collected it.",{"term":247,"definition":248},"Data Processor","An entity that processes personal data on behalf of a data controller, acting only on documented instructions.",{"term":250,"definition":251},"Personal Data","Any information that identifies or could identify a living individual — including names, email addresses, IP addresses, and device identifiers.",{"term":253,"definition":254},"Permitted Purpose","The specific, documented use cases for which the recipient is authorized to use the shared data, as enumerated in the agreement.",{"term":256,"definition":257},"Onward Transfer","The act of a data recipient sharing received data with a further third party — typically restricted or prohibited without prior written consent.",{"term":259,"definition":260},"Data Breach","Any unauthorized access, disclosure, alteration, loss, or destruction of shared data, whether accidental or deliberate.",{"term":262,"definition":263},"Data Minimization","The principle that only the minimum data necessary to achieve the permitted purpose should be shared, stored, and processed.",{"term":265,"definition":266},"Sub-processor","A third party engaged by the data processor to carry out specific processing activities on behalf of the data controller.",{"term":268,"definition":269},"Data Subject","The living individual to whom personal data relates — the person whose rights are protected under applicable privacy law.",{"term":271,"definition":272},"Retention Period","The maximum duration for which the recipient is permitted to hold the shared data before it must be deleted or returned.",{"term":274,"definition":275},"Adequacy Decision","A formal determination by the European Commission that a non-EU country provides an equivalent level of data protection to the GDPR standard.",{"term":277,"definition":278},"Technical and Organizational Measures (TOMs)","The security controls — encryption, access controls, audit logs, staff training — that a party implements to protect shared data.",[280,285,290,295,300,305,310,315,320,325],{"name":281,"plain_english":282,"sample_language":283,"common_mistake":284},"Parties, recitals, and definitions","Identifies the data disclosing party and the data receiving party by their full legal names, states the commercial context for the agreement, and defines key terms used throughout.","This Data Sharing Agreement ('Agreement') is entered into on [DATE] between [DISCLOSING PARTY LEGAL NAME], a [ENTITY TYPE] incorporated in [JURISDICTION] ('Discloser'), and [RECEIVING PARTY LEGAL NAME], a [ENTITY TYPE] incorporated in [JURISDICTION] ('Recipient').","Using trade names instead of registered legal entity names. If an enforcement action becomes necessary, proceedings against the wrong entity name create jurisdictional problems that delay or defeat the claim.",{"name":286,"plain_english":287,"sample_language":288,"common_mistake":289},"Description and scope of shared data","Specifies exactly which data sets, categories, fields, or data types are covered — including format, volume, and the technical method of transfer.","The Discloser shall provide the Recipient with access to the following data: [DATA CATEGORIES / FIELDS] in [FORMAT], transferred via [METHOD — secure SFTP / API / encrypted email] on a [FREQUENCY — daily / monthly / one-time] basis.","Describing data too broadly with phrases like 'all customer data.' Overly broad scope exposes the discloser to liability for data the recipient never needed and creates disproportionate security obligations on both sides.",{"name":291,"plain_english":292,"sample_language":293,"common_mistake":294},"Permitted purpose and use restrictions","States the specific purposes for which the recipient may use the data and explicitly prohibits all other uses, including sale, re-identification, and profiling.","Recipient shall use the Shared Data solely for [SPECIFIC PURPOSE] and shall not use the Shared Data for any other purpose, including but not limited to re-identification of individuals, sale or licensing to third parties, or training machine learning models, without the Discloser's prior written consent.","Listing permitted purposes at a high level of abstraction — e.g., 'research and analytics' — without defining what falls inside or outside those categories. Disputes almost always arise at the boundary of a vaguely drafted purpose clause.",{"name":296,"plain_english":297,"sample_language":298,"common_mistake":299},"Data security obligations and technical measures","Requires the recipient to implement and maintain specific security controls proportionate to the sensitivity of the data, and to document those controls on request.","Recipient shall implement and maintain technical and organizational measures including, at minimum: [AES-256 encryption at rest and in transit], [role-based access controls limited to authorized personnel], [annual penetration testing], and [multi-factor authentication on all systems holding Shared Data].","Requiring 'industry-standard security' without specifying what that means. Vague security obligations are unenforceable and leave the discloser unable to audit compliance or establish a breach of contract.",{"name":301,"plain_english":302,"sample_language":303,"common_mistake":304},"Onward transfer and sub-processing restrictions","Prohibits the recipient from passing the data to any third party without written consent, and — if sub-processors are permitted — requires them to be bound by equivalent obligations.","Recipient shall not transfer, disclose, or make available any Shared Data to any third party without the prior written consent of the Discloser. Any approved sub-processor must execute a written agreement imposing obligations no less protective than those in this Agreement.","Allowing onward transfer to 'affiliates' without defining the term or requiring the affiliate to be bound by equivalent data obligations — creating an uncontrolled chain of data access.",{"name":306,"plain_english":307,"sample_language":308,"common_mistake":309},"Data breach notification and response","Sets the maximum timeframe within which the recipient must notify the discloser of a suspected or confirmed breach, the content of that notification, and the required containment and remediation steps.","Recipient shall notify Discloser of any actual or suspected Data Breach within [72] hours of becoming aware, providing: (a) description of the nature of the breach; (b) categories and approximate volume of affected data; (c) contact details of the Recipient's data protection officer or privacy lead; and (d) immediate remediation steps taken.","Setting a breach notification window longer than 72 hours. Under GDPR and many other frameworks, the data controller is required to notify its supervisory authority within 72 hours — a longer contractual window puts the discloser in breach of its own regulatory obligations.",{"name":311,"plain_english":312,"sample_language":313,"common_mistake":314},"Data subject rights and cooperation","Requires the recipient to cooperate with the discloser in responding to data subject access requests, deletion requests, and other rights exercised under applicable privacy law within specified timeframes.","Recipient shall, within [5] business days of receiving a data subject request relating to Shared Data, notify Discloser and provide all reasonable cooperation and information necessary to enable Discloser to fulfill its obligations under applicable Data Protection Law.","Omitting this clause entirely on the assumption that data subject rights are the discloser's problem. Recipients holding personal data have independent obligations in many jurisdictions and can be subject to regulatory action regardless of the discloser's role.",{"name":316,"plain_english":317,"sample_language":318,"common_mistake":319},"Retention, return, and deletion","Specifies how long the recipient may hold the data, what happens to it at contract expiry or termination, and requires written certification of deletion.","Recipient shall retain Shared Data for no longer than [RETENTION PERIOD] from the date of receipt. Upon expiry or termination of this Agreement, Recipient shall, within [30] days, either return all Shared Data to Discloser in [FORMAT] or permanently delete it and provide written certification of deletion.","No deletion certification requirement. Without it, the discloser has no evidence that data was destroyed and cannot demonstrate compliance to regulators or demonstrate breach of contract if data is later misused.",{"name":321,"plain_english":322,"sample_language":323,"common_mistake":324},"Liability, indemnification, and limitations","Allocates financial responsibility for losses arising from breach of the agreement, caps aggregate liability, and indemnifies the discloser against third-party claims caused by the recipient's misuse of data.","Recipient shall indemnify and hold harmless Discloser against any third-party claims, regulatory fines, or losses arising from Recipient's breach of this Agreement. Each party's aggregate liability shall not exceed [AMOUNT / the fees paid in the preceding 12 months], except in cases of willful misconduct or fraud.","Applying the same liability cap to data breach claims as to general commercial breaches. Regulatory fines under GDPR can reach €20M or 4% of global turnover — a cap equal to one year's contract fees provides no meaningful protection against catastrophic breach events.",{"name":326,"plain_english":327,"sample_language":328,"common_mistake":329},"Governing law, termination, and entire agreement","States which jurisdiction's law governs the contract, the notice period and grounds for termination, and confirms that the written agreement supersedes all prior discussions and representations.","This Agreement is governed by the laws of [JURISDICTION]. Either party may terminate on [30] days' written notice. Termination for material breach is effective immediately upon written notice if the breach is not remedied within [14] days. This Agreement constitutes the entire agreement between the parties regarding the Shared Data.","Choosing a governing law that differs from the jurisdiction where the data subjects reside. Privacy regulators apply the law of the data subjects' location regardless of the governing-law clause — creating a conflict between contractual rights and regulatory obligations.",[331,336,341,346,351,356,361,366],{"step":332,"title":333,"description":334,"tip":335},1,"Identify both parties with full legal entity names","Enter the registered legal name, entity type, and jurisdiction of incorporation for both the disclosing and receiving party. Include registered addresses and, where relevant, data protection officer contact details.","Check the company registry of each party's jurisdiction to confirm the exact legal name — a mismatch between the contract and corporate records can create enforcement gaps.",{"step":337,"title":338,"description":339,"tip":340},2,"Define the shared data precisely","List the specific data categories, fields, file formats, transfer method, and frequency. If personal data is included, identify whether it includes special-category data such as health, financial, or biometric information.","Attach a data inventory table as Schedule A rather than embedding it in the body — this makes future amendments cleaner and avoids reopening the main agreement.",{"step":342,"title":343,"description":344,"tip":345},3,"State the permitted purpose with specificity","Write a purpose clause that is specific enough to exclude adjacent uses — for example, 'to perform fraud screening on transactions processed through [PLATFORM NAME]' rather than 'fraud prevention.' List all prohibited uses explicitly.","For each permitted purpose, ask whether the data subject would reasonably expect their data to be used that way — if not, that purpose may require additional legal basis under GDPR or similar frameworks.",{"step":347,"title":348,"description":349,"tip":350},4,"Specify security requirements with measurable controls","List the specific technical and organizational measures required — encryption standards, access control protocols, audit log retention periods, and penetration testing frequency. Avoid generic language like 'reasonable security.'","Align security requirements to the sensitivity of the data: financial or health data typically warrants ISO 27001 compliance or SOC 2 Type II attestation as a contractual minimum.",{"step":352,"title":353,"description":354,"tip":355},5,"Set breach notification timelines","Enter a notification window no longer than 72 hours for personal data breaches to align with GDPR and equivalent frameworks. Include the required content of the notification — nature of breach, data affected, and steps taken.","Consider adding an obligation to provide a preliminary notification within 24 hours followed by a detailed report within 72 hours — this mirrors best practice under most supervisory authority guidance.",{"step":357,"title":358,"description":359,"tip":360},6,"Define the retention period and deletion process","Enter the maximum duration the recipient may hold the data after the final transfer date. Specify the deletion standard (e.g., NIST 800-88 media sanitization) and require written certification within 30 days of deletion.","Mirror the retention period to your own internal data retention schedule — inconsistent retention periods between discloser and recipient create regulatory exposure if the same data is held for different durations.",{"step":362,"title":363,"description":364,"tip":365},7,"Set the liability cap and indemnification scope","Agree on an aggregate liability cap that reflects the commercial value of the arrangement and the risk profile of the data. Carve out personal data breach and regulatory fine scenarios from the general cap if the data is high-sensitivity.","For arrangements involving personal data, consider requiring the recipient to maintain cyber liability insurance at a specified minimum coverage level as an additional protection.",{"step":367,"title":368,"description":369,"tip":370},8,"Execute before any data is transferred","Both authorized signatories must sign the agreement — including any data processing addenda or schedules — before the first data transfer occurs. Retroactive agreements are difficult to enforce and signal poor data governance to regulators.","Use a versioned amendment process for schedule updates rather than re-executing the full agreement each time the data set or purpose changes.",[372,376,380,384,388,392],{"mistake":373,"why_it_matters":374,"fix":375},"Transferring data before the agreement is signed","Data transferred before execution is unprotected by the contractual obligations. If a breach occurs during that window, the discloser has no contractual basis to claim indemnification or require remediation.","Make execution of the agreement a hard prerequisite for any data transfer. Build this as a checklist step into your vendor onboarding or partnership process.",{"mistake":377,"why_it_matters":378,"fix":379},"Vague permitted-purpose language","Broad terms like 'analytics' or 'research' allow recipients to use data for purposes the discloser never intended — including training AI models, building competitive products, or selling insights to third parties.","Draft the permitted purpose at the level of a specific workflow or output. Include an explicit list of prohibited uses — re-identification, onward sale, profiling for advertising — so the boundaries are unambiguous.",{"mistake":381,"why_it_matters":382,"fix":383},"No breach notification timeline","Without a contractual notification window, a recipient may delay disclosing a breach for days or weeks — causing the discloser to miss its own 72-hour regulatory reporting obligation under GDPR and equivalent laws.","Set a contractual notification window of 72 hours or less, with a defined content checklist for the notification. Align this to the jurisdiction with the shortest regulatory deadline applicable to the arrangement.",{"mistake":385,"why_it_matters":386,"fix":387},"Omitting a deletion certification requirement","A retention clause without a deletion certification is unverifiable. The discloser cannot demonstrate to regulators that data was destroyed, and cannot establish breach of contract if the data surfaces later in an unauthorized context.","Require the recipient to provide a written certificate of deletion — signed by an authorized officer — within 30 days of the retention period expiry or agreement termination.",{"mistake":389,"why_it_matters":390,"fix":391},"Using a liability cap that excludes data breach scenarios","Standard commercial liability caps (e.g., fees paid in the prior 12 months) are typically far too low to cover regulatory fines, class-action exposure, or reputational costs arising from a personal data breach.","Create a tiered liability structure: a standard cap for general commercial breaches and a higher or uncapped exposure for personal data breaches, fraud, and willful misconduct.",{"mistake":393,"why_it_matters":394,"fix":395},"No sub-processor approval process","If the recipient is permitted to engage sub-processors without prior consent, the discloser loses visibility and control over where the data actually resides and who can access it.","Require the recipient to obtain written approval before engaging any sub-processor, and mandate that sub-processors are bound by contractual obligations at least as protective as the main agreement.",[397,400,403,406,409,412,415,418,421],{"question":398,"answer":399},"What is a data sharing agreement?","A data sharing agreement is a legally binding contract between two or more parties that sets out the terms under which specified data — often including personal, proprietary, or confidential information — may be accessed, used, stored, and disclosed. It defines the permitted purposes for the data, the security obligations each party must meet, restrictions on further sharing, breach notification requirements, and what happens to the data when the arrangement ends. Organizations use it to protect themselves legally, demonstrate regulatory compliance, and establish clear accountability between data partners.\n",{"question":401,"answer":402},"When do I need a data sharing agreement?","You need one any time your organization shares structured data with an external party — including vendors, research partners, government agencies, affiliates, or joint-venture partners. It is especially important when the data includes personal information, proprietary business data, or commercially sensitive records. If you are subject to GDPR, HIPAA, CCPA, or similar frameworks, a written data sharing agreement is typically a regulatory requirement rather than merely a best practice.\n",{"question":404,"answer":405},"What is the difference between a data sharing agreement and a data processing agreement?","A data sharing agreement governs an arrangement where one party provides data to another who will use it for their own purposes — both parties may act as independent data controllers. A data processing agreement (DPA) is used when a processor handles personal data strictly on behalf of and under the instructions of a controller — the processor has no independent right to use the data. Under GDPR, a DPA is mandatory for all controller-processor relationships; a data sharing agreement is used for controller-to-controller sharing.\n",{"question":407,"answer":408},"Does a data sharing agreement need to comply with GDPR?","Yes, if any of the shared data relates to individuals located in the European Economic Area, GDPR compliance is required regardless of where the parties are based. The agreement must identify the lawful basis for sharing, specify the purposes, include data subject rights procedures, address international transfer mechanisms if data leaves the EEA, and align retention periods to the principles of data minimization and storage limitation. Non-compliance can result in fines of up to €20M or 4% of global annual turnover.\n",{"question":410,"answer":411},"What security requirements should a data sharing agreement include?","At minimum, the agreement should specify encryption standards for data at rest and in transit, access control requirements limiting data to authorized personnel, audit logging obligations, incident response procedures, and any required certifications such as ISO 27001 or SOC 2 Type II. For highly sensitive data — health records, financial data, biometrics — consider requiring penetration testing on a defined schedule and mandatory breach insurance coverage. Vague requirements like \"industry-standard security\" are difficult to audit and harder to enforce.\n",{"question":413,"answer":414},"How long should data be retained under a data sharing agreement?","Retention periods should be set to the minimum duration necessary for the permitted purpose — no longer. Typical ranges are 12–36 months for marketing or analytics data, aligned to regulatory minimums for financial records (typically 5–7 years), or aligned to research data management plans for academic datasets. The agreement should require deletion or return within 30 days of expiry and mandate written certification of deletion so the discloser can demonstrate compliance to regulators.\n",{"question":416,"answer":417},"Can a data sharing agreement be terminated early?","Yes. Most data sharing agreements include provisions for termination for convenience with a defined notice period — typically 30 to 90 days — and immediate termination for material breach, insolvency, or regulatory action. Upon termination, the agreement should trigger an obligation to return or delete data within a specified period. Allowing data to remain with the recipient after termination without a clear mechanism to retrieve or destroy it is one of the most common and consequential drafting gaps.\n",{"question":419,"answer":420},"Do I need a lawyer to draft a data sharing agreement?","For straightforward arrangements between domestic parties involving non-sensitive data, a well-structured template reviewed by a privacy professional is often sufficient. Engage a lawyer when the arrangement involves personal data subject to GDPR, HIPAA, or CCPA; when data is being transferred internationally; when the data is commercially valuable or competitively sensitive; or when the counterparty is a large organization with significant negotiating leverage. A 2–3 hour privacy counsel review typically costs $500–$1,500 and is worthwhile for any arrangement involving personal data at scale.\n",{"question":422,"answer":423},"What happens if a party breaches a data sharing agreement?","The non-breaching party may terminate the agreement, demand return or deletion of all shared data, and pursue damages or indemnification for losses arising from the breach. If personal data was involved, the discloser may also face regulatory scrutiny for having shared data with a party that failed to protect it adequately — making the recipient's indemnification obligation a critical commercial protection. In serious cases involving unauthorized disclosure of personal data, regulatory fines and class-action exposure can far exceed the direct commercial value of the arrangement.\n",[425,429,433,437,441,445],{"industry":426,"icon_asset_id":427,"specifics":428},"Healthcare and life sciences","industry-healthtech","Patient data sharing requires HIPAA Business Associate Agreement integration, de-identification standards under Safe Harbor or Expert Determination, and IRB approval references for research datasets.",{"industry":430,"icon_asset_id":431,"specifics":432},"Financial services and fintech","industry-fintech","Open banking and credit data sharing require alignment with PSD2 in Europe, GLBA in the US, and OSFI guidelines in Canada, with enhanced security controls for transaction-level data.",{"industry":434,"icon_asset_id":435,"specifics":436},"Technology and SaaS","industry-saas","API-based data sharing arrangements require rate limits, data schema versioning, and sub-processor disclosure schedules that update dynamically as cloud infrastructure changes.",{"industry":438,"icon_asset_id":439,"specifics":440},"Government and public sector","industry-government","Inter-agency data sharing requires alignment with freedom of information legislation, public sector data governance frameworks, and — in the EU — the Data Governance Act requirements for re-use of public sector data.",{"industry":442,"icon_asset_id":443,"specifics":444},"Research and academia","industry-research","Research data sharing agreements must address IRB and ethics board conditions, data management plan obligations under funder requirements (NIH, UKRI, Horizon Europe), and embargo periods before public release.",{"industry":446,"icon_asset_id":447,"specifics":448},"Retail and e-commerce","industry-retail","Customer behavioral data sharing with ad tech partners, loyalty program data exchanges, and supply-chain analytics integrations each require purpose limitation clauses tailored to CCPA opt-out and GDPR consent requirements.",[450,452,455,458],{"vs":226,"vs_template_id":227,"summary":451},"An NDA protects confidential information from unauthorized disclosure but does not govern how data is processed, stored, secured, or deleted. A data sharing agreement builds on confidentiality obligations and adds data-specific protections — permitted purpose, security controls, breach notification, and retention limits. Organizations sharing personal data need a data sharing agreement; an NDA alone does not satisfy regulatory requirements under GDPR or HIPAA.",{"vs":60,"vs_template_id":453,"summary":454},"D{DATA_PROCESSING_AGREEMENT_ID}","A data processing agreement is used when one party processes personal data solely on the instructions of another — the processor has no independent right to use the data. A data sharing agreement is used when both parties use the data for their own purposes as independent controllers. Choosing the wrong instrument mischaracterizes the relationship and can result in regulatory non-compliance under GDPR Article 28.",{"vs":142,"vs_template_id":456,"summary":457},"D{MASTER_SERVICE_AGREEMENT_ID}","A master service agreement governs the overall commercial relationship between a service provider and client, including payment, warranties, and liability. A data sharing agreement is a focused instrument addressing only data governance obligations. Where data sharing is one component of a broader commercial arrangement, a data sharing agreement or addendum should sit alongside — not be replaced by — the MSA.",{"vs":100,"vs_template_id":459,"summary":460},"partnership-agreement-D176","A partnership agreement defines the business and financial terms of a joint venture or collaboration, including profit sharing, decision-making, and exit rights. It does not address the specific data governance obligations that arise when partners exchange personal or proprietary data. Organizations running data-intensive partnerships need both a partnership agreement and a standalone data sharing agreement.",{"use_template":462,"template_plus_review":466,"custom_drafted":470},{"best_for":463,"cost":464,"time":465},"Domestic data sharing arrangements between businesses involving non-sensitive proprietary data with a trusted partner","Free","1–2 hours",{"best_for":467,"cost":468,"time":469},"Arrangements involving personal data, cross-border transfers, or regulated industries such as healthcare and financial services","$500–$1,500 (privacy counsel review)","3–5 business days",{"best_for":471,"cost":472,"time":473},"High-volume or high-sensitivity data exchanges, international transfers requiring SCCs or BCRs, or arrangements with material commercial liability exposure","$2,000–$8,000+","2–4 weeks",[475,480,485,490],{"code":476,"name":477,"flag_asset_id":478,"note":479},"us","United States","flag-us","The US has no single federal data privacy law equivalent to GDPR. Sector-specific laws apply: HIPAA for health data, GLBA for financial data, FERPA for education records, and COPPA for children's data. State-level privacy laws — including CCPA/CPRA in California, VCDPA in Virginia, and CPA in Colorado — impose additional obligations on data sharing arrangements involving residents of those states. Security breach notification laws exist in all 50 states with varying notification timelines, typically ranging from 30 to 90 days.",{"code":481,"name":482,"flag_asset_id":483,"note":484},"ca","Canada","flag-ca","Canada's federal private sector privacy law, PIPEDA, is being replaced by Bill C-27 (Consumer Privacy Protection Act) as of the date of this review — organizations should monitor the legislative timeline. Quebec's Law 25 (Bill 64) imposes GDPR-like obligations including privacy impact assessments, 72-hour breach notification, and explicit data transfer agreements for cross-border sharing. Provincially regulated sectors in Alberta, British Columbia, and Quebec are subject to separate provincial privacy legislation.",{"code":486,"name":487,"flag_asset_id":488,"note":489},"uk","United Kingdom","flag-uk","Following Brexit, the UK operates under its own UK GDPR and Data Protection Act 2018, which are substantively similar to EU GDPR but enforced by the Information Commissioner's Office (ICO). The UK has issued its own adequacy decisions for a limited set of countries. Transfers from the UK to the EU remain lawful under a UK adequacy decision, but transfers from the EU to the UK require a separate legal basis. The ICO has published a specific Data Sharing Code of Practice that sets best-practice expectations for data sharing agreements.",{"code":491,"name":492,"flag_asset_id":493,"note":494},"eu","European Union","flag-eu","GDPR is the primary framework governing data sharing in the EU, imposing obligations on any organization processing personal data of EU residents regardless of where the organization is based. Controller-to-controller sharing requires a documented lawful basis, a data sharing agreement addressing Articles 26 or 28 as applicable, and — for transfers outside the EEA — an approved transfer mechanism such as Standard Contractual Clauses or Binding Corporate Rules. The EU Data Governance Act (effective September 2023) introduces additional obligations for sharing non-personal public sector data and for data intermediaries.",[227,230,496,497,498,499,500,501,502,503,504,505],"independent-contractor-agreement-D160","service-agreement-D12711","master-service-agreement-D12657","website-terms-and-conditions-D13193","data-privacy-policy-D13465","administrative-and-technology-services-outsourcing-D849","custom-software-development-agreement-D787","employee-non-disclosure-agreement-D538","consulting-agreement---long-D12543","joint-venture-agreement-D889",{"emit_how_to":186,"emit_defined_term":186},{"primary_folder":93,"secondary_folder":508,"document_type":509,"industry":510,"business_stage":511,"tags":512,"confidence":518},"confidentiality-and-nda","agreement","general","all-stages",[513,514,515,516,517],"confidentiality","contract","legal","data-protection","data-sharing",0.95,"\u003Ch2>What is a Data Sharing Agreement?\u003C/h2>\n\u003Cp>A \u003Cstrong>Data Sharing Agreement\u003C/strong> is a legally binding contract between two or more organizations that governs the terms under which specified data — including personal, proprietary, or confidential information — may be accessed, used, stored, and disclosed by a receiving party. It identifies the parties, defines precisely which data is being shared, restricts use to documented permitted purposes, mandates specific security controls, sets breach notification timelines, and establishes what must happen to the data when the arrangement ends. Unlike a general non-disclosure agreement, a data sharing agreement addresses the full lifecycle of data from transfer through deletion and is specifically designed to satisfy the obligations imposed by data protection law on both the disclosing and receiving organization.\u003C/p>\n\u003Ch2>Why You Need This Document\u003C/h2>\n\u003Cp>Sharing data without a written agreement exposes your organization to regulatory liability, reputational damage, and commercial loss on multiple fronts simultaneously. Under GDPR, HIPAA, CCPA, and equivalent frameworks, regulators can impose substantial fines on the organization that shared data with a party that failed to protect it — regardless of who caused the breach. Without documented permitted purposes, a recipient can use your customer data to train a competing AI model, enrich a third-party database, or sell derived insights without your knowledge. Without a deletion obligation, data you shared for a 12-month analytics project may sit indefinitely on a vendor's servers, available to sub-processors you never approved. This template gives you a structured, enforceable starting point that closes those gaps, satisfies common regulatory audit requirements, and establishes a clear accountability framework between you and every party that touches your data.\u003C/p>\n",1781185978427]