Cloud Certificate Manager (CCM) Service Statement
Print
Cloud Certificate Manager (CCM) Service Statement
This Service Statement (hereinafter referred to as "this Statement" or "this Agreement") describes your rights, obligations, and responsibilities of using Huawei Cloud services. Please read the clauses carefully and fully understand them, especially those highlighted in bold that have significant impact on your rights such as limitations and exclusions of liability.
You understand and agree that by using any service in this Agreement, you are deemed to have read and agree to the General Terms of Service in this Agreement and the Dedicated Terms of Service for the service you use. This Agreement shall become legally binding on you. If you do not agree to part or all of the terms of this Agreement, you shall stop using related services.
1. General Terms of Service
1.1 Contracting Entity: This Agreement is entered into by and between Huawei Cloud (hereinafter referred to as "Huawei Cloud", or "We") as defined in Article 15.4 in Huawei Cloud Customer Agreement and the entity you (or "user") represent. Once this Agreement takes effect, it has legal effect between you and Huawei Cloud. You acknowledge that you shall be a natural person, legal person, or other organization that has full capacity for civil conduct, and may independently carry out civil juristic acts. If the foregoing is not true, please do not use this Service. Otherwise, you shall bear all consequences caused thereby. In addition, Huawei Cloud has the right to cancel (or permanently freeze) your account and claim compensation from you. In the event that you register on behalf of a company or other legal entity, you represent and warrant that you are an authorized representative of the company or legal entity to bind such company or legal entity to the terms of this Agreement.
1.2 Separate Agreement. If you subscribe to this Service offline, purchase this Service through our partners, or purchase partner products that integrate this Service, you may sign a separate agreement with us or our partners. You acknowledge and agree that you will remain bound by the separate agreement mentioned in this article if you are authorized to access and use this Service. If this Agreement conflicts with the separate agreement, the separate agreement shall prevail.
1.3 Agreement Update. This Agreement is subject to change. We will notify you of any changes to this Agreement by posting a notice on our website or by other means. You can also visit our website to read the latest service agreement. If you do not agree to part or all of the latest Agreement, please stop using this Service. By continuing to use this Service, you acknowledge that you are aware of and agree to the latest Statement.
1.4 Service Maintenance. We may maintain this Service from time to time through application upgrade, patch installation, or bug fixing. We will make our best, reasonable efforts to notify you of such maintenance events (except for emergency maintenance). You agree to make your best, reasonable efforts to comply with any notified cooperation requirements.
1.5 Your Content
1.5.1 The definition and related regulations of "Your Content" are subject to the Huawei Cloud Customer Agreement (https://www.huaweicloud.com/intl/en-us/declaration-sg/sa_cua.html).
1.5.2 In terms of your content, except as required by laws and regulations or for your use of this Service, Huawei Cloud is entrusted to process your data only in accordance with your authorization and instructions and the agreement between you and us.
1.5.3 You have the right to upload, delete, and modify your content. Exercise caution when deleting or modifying data and bear the consequences of these operations.
1.5.4 You shall back up your data as required. Huawei Cloud provides data backup services only in accordance with relevant laws and regulations.
1.6 You are committed to being responsible for your end users. If your end users violate laws and regulations when using services related to this Agreement, or improperly use related services and cause damages to third parties or Huawei Cloud, you shall be liable for compensation.
1.7 Our Limited Warranty
1.7.1 The provision of a Huawei Cloud service is based on the availability status and product features of the cloud service at the time of provisioning, and does not constitute a commitment of Huawei Cloud to providing the cloud service for a long time after a certain lifecycle of the cloud service ends.
1.7.2 You understand and agree to our limited warranty in terms of the SLA in Clause 4.3 "Our Limited Warranty" of the Huawei Cloud Customer Agreement (https://www.huaweicloud.com/intl/en-us/declaration-sg/sa_cua.html).
1.8 Statement by Both Parties
1.8.1 You understand and agree that your use of this Service must comply with applicable laws and regulations. We provide you with standard services only in accordance with your instructions and are not responsible for the legal compliance of your use of this Service. If we reasonably believe that you have violated laws, regulations, or the rights of third parties when using this Service, or violated the terms of related agreements (including Legal Statement, Privacy Statement, Acceptable Use Policy, Huawei Cloud Customer Agreement, and other agreements related to you on the Huawei Cloud official website) ("Prohibited Content"), we have the right to delete prohibited content, prohibit your use of related services and access to related content, or suspend services. In addition, you shall compensate for all losses caused to Huawei Cloud due to your faults.
1.8.2 Huawei Cloud provides O&M only for Huawei Cloud services. You shall ensure the security and stability of your network and devices. If any device fault or network interruption occurs due to your own or third-party reasons, you shall resolve the issue in a timely manner to avoid impact on Huawei Cloud services.
1.8.3 When the lifecycle of a specific cloud service product reaches the end of marketing (EOM), end of service and support (EOS), or end of all service activities, we will make our best commercial efforts to notify you. After reading and understanding the notification, you can agree to upgrade related services or migrate related services to updated software and hardware.
1.9 Disclaimer
1.9.1 You understand and agree that we are not liable if this Service is unavailable in the following situations:
1) Service unavailability or any legal consequences caused by your refusal to provide relevant information or the information provided does not meet service requirements
2) Service unavailability due to force majeure
3) Service unavailability due to your reasons or non-Huawei Cloud reasons
4) Service unavailability during regular service maintenance
1.9.2 You understand and agree that before the lifecycle of a specific cloud service reaches the end of all service activities, we will make our best commercial efforts to notify you. You need to migrate or upgrade related workloads within a certain time window based on the notification of Huawei Cloud. If you do not choose to upgrade this Service to a new version available, you agree that Huawei Cloud has the right to automatically upgrade it when the right opportunity comes. We shall not be held liable for any potential service outage arising from the upgrade.
2. Terms of Service
2.1 Service Content
Cloud Certificate Manager (CCM) is provided by Huawei Cloud, and you can access and use CCM through the Huawei Cloud console or APIs.
CCM is a cloud service that provides one-stop lifecycle management of digital certificates. It provides SSL Certificate Manager (SCM) and Private Certificate Authority (PCA). SCM: Huawei Cloud cooperates with world-renowned Certificate Authorities (CAs) to issue SSL certificates for you. SCM provides a one-stop full-lifecycle management platform for SSL certificates. PCA manages private CAs and certificates. It provides a simple web UI so you can easily establish a complete CA hierarchy and use it to issue and manage private certificates for your internal businesses.
These functions and services may be optimized or modified by the service provider based on changing user needs or updated service version without any prior notification, or they may be suspended temporarily due to scheduled or unscheduled maintenance.
You are advised to carefully read the product help documentation on the Huawei Cloud website. Huawei Cloud will provide you with services based on the scope specified in this document.
Huawei Cloud is not responsible for any loss caused by reasons that are not related to Huawei Cloud, including but not limited to certificate defects and certificate cracking. However, Huawei Cloud will work with you to resolve any related issues with the corresponding CA.
2.2 Collection and Processing of Your Personal Data
You understand and agree that for the purpose of providing services, you agree to authorize us to collect and use your personal information, including the name, phone number, and email address of the certificate applicant, which are used by the CA to contact the certificate applicant. You also agree to authorize us to transmit your personal information to our Chinese supplier iTrusChina or TrustAsia. iTrusChina and TrustAsia will transmit the personal information to the CA you select for validation. If you select American CA GeoTrust or DigiCert, your personal information will be transmitted to the United States. If you select CA GlobalSign in Japan, your personal data will be transmitted to Japan.
After a certificate is issued, Huawei Cloud will retain your personal information on servers in Hong Kong, China to reduce your workload when you apply for certificates next time. Your personal information will be retained for five years after your certificate expired. If you do not need Huawei Cloud to retain your personal information, you can cancel privacy authorization on the details page for the corresponding certificate or delete the corresponding certificate on the CCM console. Once the authorization is cancelled or the certificate is deleted, your personal information will be completely deleted from Huawei Cloud CCM. You understand and consent to the collection of the above information. If you do not provide or do not allow us to collect and use the data, Huawei Cloud will not be able to provide the Service. For the entire service process, you understand and agree that Huawei Cloud is entitled to collect, use, and process your personal data in accordance with the Privacy Statement (https://www.huaweicloud.com/intl/en-us/declaration-sg/sa_prp.html).
2.3 Processing Your Content Data
You understand and agree that you and/or your end users have full ownership and complete control over the information of any format you authorize Huawei Cloud CCM to handle, including details about the CA, country, region, state, city, company name, department name, certificate signing requests (CSRs), and private certificate AltName like IP address, DNS, email, and URL, and you shall be responsible for the legality of the sources and acquisition of the preceding data. Huawei Cloud is entrusted by you to process your data to implement the functions or purposes of the Service, including: (1) The CA name, country/region name, state/city name, company name, and department will be used for creating private CAs. (2) Your CSRs will be used for submitting certificate applications to the CA. (3) Your IP address, DNS, email address, and URL added as AltName will be used for submitting a private certificate application. (4) Your certificate files, public keys, and private keys will be used for quickly deploying certificates for your cloud services. Your above content data will be processed in Hong Kong, China. Without your consent, Huawei Cloud will not use the preceding content data for other purposes or transmit it to any third parties.
2.4 Cooperation You Need to Provide
If you need to apply for an SSL certificate, you should submit an application to Huawei Cloud at least 7 to 10 working days before you use the certificate and cooperate with Huawei Cloud to complete domain name ownership and organization identity verification, or there might be possibilities that protection preparations are not enough. If CCM fails to meet your expectation due to this, Huawei Cloud will not be liable for any losses incurred.
2.5 Restrictions
You shall not use a certificate from CCM in any of the following cases: (1) The private key of the certificate is disclosed. If this happens, the CA will revoke the certificate within 24 hours after detecting the leakage. (2) There is proof that the certificate has been used for illegal services or behaviors, such as phishing or posting immoderate content that might damage the state security and public safety, disturb social order, infringe upon the rights and interests of other people, and more. The CA will revoke the certificate within 7 days (possibly shorter than 7 days). (3) The company that the certificate is bound to is prohibited from issuing certificates by the law of the country where the CA is located.
In the event of any of these cases, we have the right to unilaterally suspend or terminate the provisioning this Service to you and ask you to compensate us for any and all losses arising therefrom. In addition, we have the right to withhold any cloud service fees or support service fees you have already paid.
2.6 Disclaimer
2.6.1 Certificate application: You understand that SSL certificates are issued by CAs. You guarantee that you have provided real, accurate, valid information when configuring and submitting your service ticket or order. You are responsible for any service unavailability, legal consequences, and loss of Huawei Cloud caused by your provisioning of invalid information.
2.6.2 Private key hosting: If you choose to use Huawei Cloud to generate a Certificate Signing Request (CSR), Huawei Cloud will generate a private key for you. This private key is generated using a secure cryptographic algorithm that complies with international standards. The private key is stored with Huawei Cloud HSM, which will keep your private key secure on the cloud. After a certificate is issued, if you need to download the certificate and private key, make sure you keep the private key secure after the download. Huawei Cloud is not liable for any losses or consequences caused by the loss or disclosure of your private key.
2.6.3 Certificate issuing: Huawei Cloud is not responsible for any losses caused by reasons that are not related to Huawei Cloud, including but not limited to your configurations, certificate defects, or certificate cracking. If there are such issues, Huawei Cloud will cooperate with you to resolve them with the corresponding CA.
2.6.4 Certificate configuration: CCM is a certificate lifecycle management platform. Your servers may be not deployed on Huawei Cloud. In this case, if there are any issues about certificate configuration, you can submit a service ticket to Huawei Cloud. We will work with the after-sales personnel of the corresponding CA to provide you with necessary technical support, including certificate installation and configuration. If you want to upload a CSR that is generated locally to apply for a certificate, make sure a secure key algorithm is used. Huawei Cloud is not liable for any cybersecurity risks caused by insecure key algorithms used by your certificate or insecure protocols used when HTTPS is configured on your server.
2.6.5 Certificate use: You guarantee that the information you provide when applying for a certificate is real and valid, or CCM has the right to revoke the issued certificate and refund no money to you. Huawei Cloud is not liable for any legal liabilities caused by incorrect information that you provided when applying for a certificate.
2.6.6. Certificate renewal: From September 1, 2020, only one-year SSL certificates can be issued by all global digital certificate authorities (CAs). Multi-year SSL certificates you request through Huawei Cloud are based on one-year SSL certificates that are automatically renewed. Purchasing a multi-year certificate or enabling auto renewal for an SSL certificate indicates that you have understood and agree that for automated renewals Huawei Cloud will submit certificate details that you provide when applying for the current certificate to the CA within 30 days of when the current certificate expires. You have also understood and agree that the renewed SSL certificate is billed at the price when the certificate is renewed on the Huawei Cloud website, and Huawei Cloud automatically deducts the renewal payment from your account. Huawei Cloud is not responsible for any losses caused by renewal failures due to invalid certificate details you provide or failed auto-renewal payments.
2.6.7 Certificate revocation and expiration: Huawei Cloud is not responsible for website or service unavailability caused by SSL certificate expiration or revocation.
Last Updated: January 30, 2024
You can see what is updated in Cloud Certificate Manager (CCM) Service Statement History Version.