Klick Data – License Framework 2026

This framework consists of the Master Services Agreement (MSA) and four specific modules that define the terms for content, platform, AI services, and data processing.

---

1. Master Services Agreement (MSA) 2026

General Terms and Conditions

1. Definitions

• The Service: The cloud-based services provided by Klick Data, including but not limited to the KLMS (K3) learning management system, digital course content, and AI-assisted tools.

• Module: Specific service areas (A. Education Library, B. Technical Platform, C. AI Services, D. DPA) activated via the Order Form.

• User: The Customer’s employees, consultants, or students authorized to use the Service.

• Customer Data: All information and material uploaded or created by the Customer within the Service.

2. Modular Agreement Structure

2.1. This MSA regulates the general legal framework. Specific terms for each service are found in the associated Modules:

• Module A: Digital Education Library (CPV 80420000-4)

• Module B: KLMS Technical Platform (CPV 48000000-8)

• Module C: AI Services & Educational Production Environment

• Module D: Data Processing Addendum (DPA)

2.2. The Customer may opt out of specific Modules (e.g., Module C for AI services) without affecting the validity of the MSA.

3. Right of Use and Access

3.1. Klick Data grants the Customer and its Users a non-exclusive, time-limited, and non-transferable right to access the agreed-upon parts of the Service via the internet.

3.2. The Service is provided as SaaS (Software as a Service). No software is transferred for local installation, and no physical media (such as CD-ROM or VHS tapes) is included. 

4. Fees and Payment

4.1. The Customer shall pay fees in accordance with the current price list or the Order Form.

4.2. Prices are adjusted annually on January 1st according to the Labor Cost Index (LCI) for the IT sector (SNI 2007 code J - Information and Communication) or an equivalent index.

4.3. Payment terms are 30 days from the invoice date. Late payments incur interest in accordance with the Swedish Interest Act.   

5. Compliance (NIS2 & AI Act)

5.1. Klick Data commits to complying with relevant provisions of the Swedish Cybersecurity Act (implementing the NIS2 Directive) regarding incident reporting and risk management for the covered parts of the Service.

5.2. Klick Data is responsible for ensuring that the Service meets the transparency and documentation requirements of the EU AI Act, where applicable.

5.3. The Customer is responsible for ensuring its Users possess a sufficient level of AI Literacy in accordance with Article 4 of the AI Act.

6. Intellectual Property and Data

6.1. Klick Data (or its licensors) owns all rights to the Service, its source code, design, and the pedagogical content provided by Klick Data.

6.2. The Customer owns all rights to Customer Data. The Customer grants Klick Data a limited license to process Customer Data solely for the purpose of providing the Service.

6.3. It is expressly prohibited to use the Service or its content to train external AI models without written approval from Klick Data. 

7. Limitation of Liability

7.1. Klick Data’s total liability during a calendar year is limited to an amount corresponding to 12 months' fees for the service in question.

7.2. Klick Data is not liable for indirect damages, such as lost profits, loss of data (beyond what is covered by backup routines in Module B), or third-party claims.

8. Term and Termination

8.1. The agreement applies from the date specified in the Order Form. Unless otherwise agreed, the initial term is 12 months with automatic renewal for 12 months at a time.

8.2. Termination must be submitted in writing at least three (3) months before the end of the current term.

8.3. Upon termination, Klick Data will, at the Customer’s request, enable the export of Customer Data in a standard digital format. Requirements for physical destruction of media are not applicable in the cloud environment. 

9. Dispute Resolution

9.1. Swedish law shall apply to this MSA and all Modules.

9.2. Disputes shall be settled by arbitration administered by the Arbitration Institute of the Stockholm Chamber of Commerce (SCC). 

---

2. Module A: Digital Education Library & Pedagogy

(CPV 80420000-4)

1. Scope of Service

1.1. Klick Data provides access to a digital education library consisting of e-courses, video lectures, quizzes, and tests.

1.2. The service is delivered exclusively as a streaming service via Klick Data’s platform. No physical storage media or files for local installation are provided.

2. Scope of License and Restrictions

2.1. The Customer is granted a non-exclusive and time-limited right of use for the number of Users specified in the Order Form.

2.2. Prohibited actions include:

• Copying, recording, or reproducing the content.

• Publicly displaying content to individuals not covered by the license.

• Sharing login credentials between individuals.

3. IP Rights and Anti-AI Scraping

3.1. All content in the Education Library is protected under the Swedish Copyright Act (1960:729) and belongs to Klick Data or its partners.

3.2. Prohibition of AI Training: It is strictly forbidden to use the content in the Education Library for text and data mining (TDM) or as training data for generative AI models or other machine learning systems without Klick Data’s written consent.

---

3. Module B: KLMS Technical Platform

(CPV 48000000-8)

1. Platform Service Scope

1.1. Klick Data provides a cloud-based Learning Management System (LMS) with tools for course administration, user management, statistics, and the self-production of courses and tests.

2. Availability and SLA

2.1. Guaranteed Availability: Klick Data guarantees service availability of at least 99.5% per calendar month, excluding Planned Maintenance.

2.2. Service Credits: If the target is not met, the Customer is entitled to service credits:   

• < 99.5% availability: 5% credit of the monthly fee.

• < 98.0% availability: 10% credit of the monthly fee.    

3. Information Security and NIS2

3.1. Klick Data will implement appropriate technical and organizational measures in accordance with the Swedish Cybersecurity Act (NIS2).

3.2. Incident Reporting: Significant security incidents will be reported to the Customer within 24 hours of discovery to enable statutory reporting to the Swedish Civil Defense Authority (MCF).

---

4. Module C: AI Services & Educational Production Environment

1. Nature of Service

1.1. Klick Data provides AI services as a support tool for course production, data analysis, and interactive learning support.

1.2. The service integrates with third-party models (e.g., Azure AI, OpenAI). Klick Data reserves the right to update underlying models to ensure performance and security.

2. EU AI Act Compliance

2.1. Risk Classification: Standard AI services are classified as "Limited Risk" or "Minimal Risk." If the Customer intends to use AI for "High-Risk" purposes (e.g., automated exam grading), the Customer must inform Klick Data for a specific risk assessment.

2.2. Transparency: All AI-generated content must be clearly labeled. The Customer must not remove or hide automatic labels inserted by KLMS.

3. Human Oversight (Human-in-the-Loop)

3.1. The Customer must ensure that all material created in the production environment undergoes human review and approval before publication.

3.2. AI tools should be viewed as "inexperienced assistants," and the final pedagogical responsibility remains with the Customer.

4. Disclaimer for AI Output (Hallucinations) 4.1. The Customer acknowledges that LLM models may generate incorrect information ("hallucinations"). Klick Data is not liable for incorrect educational decisions based on unverified AI content. 

---

5. Module D: Data Processing Addendum (DPA)

1. Purpose

1.1. This DPA ensures that Klick Data’s (the "Processor") processing of personal data on behalf of the Customer (the "Controller") complies with the General Data Protection Regulation (EU) 2016/679 (GDPR).

2. Security Measures

2.1. The Processor shall implement measures according to Article 32 GDPR, including:

• Encryption: Data at rest and in transit.

• Access Control: Access restricted to authorized personnel with a "need-to-know."

• Logging: Traceability of all access to personal data.

3. Sub-processors

3.1. The Customer provides general authorization for the Processor to engage sub-processors (e.g., cloud and AI API providers).

3.2. The Processor shall maintain an updated list of sub-processors and notify the Customer 30 days before adding new ones.

4. Data Location

4.1. Personal data is primarily stored and processed within the EU/EEA.

4.2. Any transfers to third countries shall be based on legal grounds, such as Standard Contractual Clauses (SCCs).   

---

Version: 2026.EN.1 (English version of the Klick Data General License Framework)

See also translated: Swedish License agreement