Legal Clauses

Cloud Certificate & Manager Service Statement

Cloud Certificate & Manager Service Statement

This Service Agreement ("this Agreement") describes your rights, obligations, and responsibilities of using Huawei Cloud services. Please read the terms carefully, especially those that have a significant impact on your rights and interests, such as exemption from liability and limitation of liability. Such terms are in bold in this Agreement.

You understand and agree that by using any service as stated under this Agreement, you are deemed to have read and agreed to the General Terms of Service in this Agreement and the Dedicated Terms of Service for the service you use. By using any service under this Agreement, this Agreement shall become legally binding on you. If you do not agree to part or all of the terms of this Agreement, you shall stop using any such related services.

1. General Terms of Service

1.1 Contracting Entity: This Agreement is entered into by and between Huawei Cloud Contracting Party ("Huawei Cloud" or "We") as defined in Section 15.4 of the Huawei Cloud Customer Agreement and you ("User"). Once this Agreement takes effect, it has legal effect between you and Huawei Cloud. The contracting entity displayed in your account center shall prevail. In the event that you register on behalf of a company or other legal entity, you represent and warrant that you are an authorized representative of the company or legal entity to bind such company or legal entity to the terms of this Agreement.

1.2 Separate Agreement: If you subscribe to this Service offline, purchase this Service through our partners, or purchase partner products that integrate this Service, you may sign a separate agreement with us or our partners. You acknowledge and agree that you will remain bound by the separate agreement mentioned in this article if you are authorized to access and use this Service.

1.3 Agreement Update: This Agreement is subject to change at any time. We will notify you of any changes to this Agreement by posting a notice on our website or by other means. You can also visit our website to read the latest service agreement. If you do not agree any part of the latest version of this Agreement, you shall stop using this Service. By continuing to use this Service, you acknowledge that you are aware of and agree to the latest version of this Agreement.

1.4 Your Content

1.4.1 The definitions and related regulations of "Your Content" are subject to the Huawei Cloud Customer Agreement:

https://www.huaweicloud.com/intl/en-us/declaration-sg/sa_cua.html

1.4.2 In terms of your content, except as required by laws and regulations or for your use of this Service, Huawei Cloud is entrusted to process your data only in accordance with your authorization and instructions and the agreement between you and us.

1.4.3 You have the right to upload, delete, and modify your content. Exercise caution when deleting or modifying data and you shall solely bear the consequences of these operations.

1.4.4 You shall back up your data as required. Huawei Cloud provides data backup services only in accordance with relevant laws and regulations.

2. Cloud Certificate & Manager Terms of Service

2.1 Service Content

Cloud Certificate & Manager (CCM) is provided by Huawei Cloud, and you can access and use CCM through the Huawei Cloud console or APIs.

CCM is a cloud service that provides one-stop lifecycle management of digital certificates. It provides SSL Certificate Manager (SCM) and Private Certificate Authority (PCA). SCM: Huawei Cloud cooperates with world-renowned Certificate Authorities (CAs) to issue SSL certificates for you. SCM provides a one-stop full-lifecycle management platform for SSL certificates. PCA manages private CAs and certificates. It provides a simple web UI so you can easily establish a complete CA hierarchy and use it to issue and manage private certificates for your internal businesses.

These functions and services may be optimized or modified by the service provider based on changing user needs or updated service version without any prior notification, or they may be suspended temporarily due to scheduled or unscheduled maintenance.

You are advised to carefully read the product help documentation on the Huawei Cloud website. Huawei Cloud will provide you with services based on the scope specified in this document.

Huawei Cloud is not responsible for any loss caused by reasons that are not related to Huawei Cloud, including but not limited to certificate defects and certificate cracking. However, Huawei Cloud will work with you to resolve any related issues with the corresponding CA.

2.2 Collection and Processing of Your Personal Data

You acknowledge and agree that we will process your personal data in order to provide you with the CCM service. If you do not consent to our processing of your personal data, we will be unable to provide you with the service.

● Types and purposes of personal data

When you apply for an SSL certificate using SCM, applicant name, phone number, and email address are required for applying for a certificate from the CA.

● Personal data storage location

Your personal information will be processed in Hong Kong (China).

● Personal data retention period

Upon issuance of the certificate, your personal data will be stored in Hong Kong (China) for five years after the certificate expires, in order to facilitate future certificate applications. If you do not need Huawei Cloud to retain your personal information, you can cancel privacy authorization on the details page for the corresponding certificate or delete the corresponding certificate on the CCM console. Once the authorization is cancelled or the certificate is deleted, your personal information will be completely deleted from Huawei Cloud CCM.

● Personal data sharing and entrusted processing

To fulfill the contract, you agree that we will share or entrust the information with our supplier iTrusChina or TrustAsia located in the Chinese mainland. These suppliers will transfer your personal information to the CA of your choice for the purpose of issuing an SSL certificate. If you select a CA outside the Chinese mainland, such as GeoTrust or DigiCert in the United States, or GlobalSign in Japan, your personal information may be further transferred across borders by our supplier to the CA. We will sign a Data Processing Agreement (DPA) with our supplier iTrusChina or TrustAsia to ensure that it processes your personal information for the above purposes and takes appropriate organizational and technical measures to protect your personal information.

For the entire service process, you understand and agree that Huawei Cloud is entitled to collect, use, and process your personal data in accordance with the Privacy Statement (https://www.huaweicloud.com/intl/en-us/declaration-sg/sa_prp.html).

Processing Your Content Data

You understand and agree that both parties will process personal data contained in Your Content in accordance with the Data Processing Addendum (https://www.huaweicloud.com/intl/en-us/declaration-sg/sa_dpa.html).

2.4 Cooperation You Need to Provide

If you need to apply for an SSL certificate, you should submit an application to Huawei Cloud at least 7 to 10 working days before you use the certificate and cooperate with Huawei Cloud to complete domain name ownership and organization identity verification, or there might be possibilities that certificates may not be issued in a timely manner, which could impact your services. Huawei Cloud will not be liable for any losses incurred.

2.5 Restrictions

(1) The private key of the certificate is disclosed. The CA will revoke the certificate within 24 hours after detecting the leakage. (2) It is proved that the certificate has been used for illegal services or behaviors such as phishing or malicious code. The CA will revoke the certificate within 7 days (possibly shorter than 7 days). (3) The laws of the country where the CA is located prohibit the issuance, revocation, cancellation, termination, and suspension of the certificate.

In the event of any of these cases, we have the right to unilaterally suspend or terminate the provisioning this Service to you and ask you to compensate us for any and all losses arising therefrom. In addition, we have the right to withhold any cloud service fees or support service fees you have already paid.

2.6 Disclaimer

2.6.1 Certificate application: You understand that SSL certificates are issued by CAs. You guarantee that you have provided real, accurate, valid information when configuring and submitting your service ticket or order. You are responsible for any service unavailability, legal consequences, and loss of Huawei Cloud caused by your provisioning of invalid information.

2.6.2 Private key hosting: If you choose to use Huawei Cloud to generate a Certificate Signing Request (CSR), Huawei Cloud will generate a private key for you. This private key is generated using a secure encryption algorithm that complies with international standards. The private key is stored with Huawei Cloud HSM, which will keep your private key secure on the cloud. After a certificate is issued, if you need to download the certificate and private key, make sure you keep the private key secure after the download. Huawei Cloud is not liable for any losses or consequences caused by the loss or disclosure of your private key.

2.6.3 Certificate issuing: Huawei Cloud is not responsible for any losses caused by reasons that are not related to Huawei Cloud, including but not limited to your configurations, certificate defects, or certificate cracking. If there are such issues, Huawei Cloud will cooperate with you to resolve them with the corresponding CA.

2.6.4 Certificate configuration: CCM provides services only as a certificate lifecycle management platform. If you want to upload a CSR that is generated locally to apply for a certificate, make sure a secure key algorithm is used. Huawei Cloud is not liable for any cybersecurity risks caused by insecure key algorithms used by your certificate or insecure protocols used when HTTPS is configured on your server.

2.6.5 Certificate use: You guarantee that the information you provide when applying for a certificate is real and valid, or CCM has the right to revoke the issued certificate and refund no money to you. Huawei Cloud is not liable for any legal liabilities caused by incorrect information that you provided when applying for a certificate.

2.6.6 Certificate renewal: From September 1, 2020, only one-year SSL certificates can be issued by all global digital CAs. Multi-year SSL certificates you request through Huawei Cloud CCM are based on one-year SSL certificates that are automatically renewed. Purchasing a multi-year certificate or enabling auto renewal for an SSL certificate indicates that you have understood and agree that for automated renewals Huawei Cloud will submit certificate details that you provide when applying for the current certificate to the CA within 30 days of when the current certificate expires. You have also understood and agree that the renewed SSL certificate is billed at the price when the certificate is renewed on the Huawei Cloud website, and Huawei Cloud automatically deducts the renewal payment from your account. Huawei Cloud is not responsible for any losses caused by renewal failures due to invalid certificate details you provide or failed auto-renewal payments.

2.6.7 Certificate revocation and expiration: Huawei Cloud is not responsible for website or service unavailability caused by SSL certificate expiration or revocation.

Last updated: September 25, 2025

You can see what is updated in Cloud Certificate Manager (CCM) Service Statement History Version.