These Terms govern access to and use of the Site and the Services provided by Fathom. Clients and other users which use the Site or any of the Services agree to be bound by the following Terms. Please read the Terms carefully. Use of the Site or any of the Services indicates an acceptance of these Terms. If you do not accept these Terms, you must not use the Site or any of the Services.
Breach of any of the Terms may result, among other things, in the termination of your account.
The individual who registers to use the Service on behalf of a Client.
The entity or organisation, represented by the Account Holder, that acquires the Services from us.
Fathom, We, Us
Fathom Applications Pty Ltd and all related entities including Fathom USA Inc (United States), Fathom Applications UK Ltd (United Kingdom) (collectively referred to as Fathom) as part of The Access Group.
Any person or entity, other than the Client and Account Holder, that uses the Service from time to time, at the invitation of, and with the authorisation of, the Account Holder.
The various services made available through the Site and otherwise provided or made available by us.
The Internet sites available at www.fathomhq.com, app.fathomhq.com, api.fathomhq.com, fathom.com and any other site operated by Fathom.
This Terms of Service agreement.
Refers to all users of the Site and Services, including Clients, Invited Users and the Account Holder, unless expressly specified.
A. Account Terms
- Users must nominate an email address and password (together referred to as your "login") to use the Site. Your login is used by you to access the Site and the Services. Fathom is entitled to assume that all access to and use of the Site and the Services using your login is access and use by you.
- A login may only be used by one individual - a single login shared by multiple individuals is not permitted. The Account Holder may create separate logins for as many individual users as the Client’s subscription plan allows.
- During the signup process the Account Holder and each User must provide their full name and a valid email address. As part of our security process we verify that you have access to the nominated email address.
- You are responsible for maintaining the security of your account and password. Fathom is not responsible for any loss or damage arising from your failure to comply with this security obligation.
B. Payment, Refunds, Upgrading and Downgrading Terms
- Payments will be charged using any credit card or other payment mechanism we have on record for the Client (or the Account Holder on behalf of the Client).
- The Service is billed in advance on a monthly basis and those fees are non-refundable. There are no refunds or credits for partial months of service, upgrade/downgrade refunds, or refunds for months unused with an open account.
- Payments will cover the use of the contracted Services for a monthly or annual subscription period as agreed.
- All fees are inclusive of Australian GST (if required) but exclusive of all other taxes, levies, or duties imposed by taxing authorities. The Client is responsible for payment of all such taxes, levies, or duties.
- The services and prices are described in detail at https://www.fathomhq.com/pricing
- For any upgrade or downgrade in plan level, the Client will be charged the new rate commencing from the start of your next billing cycle.
- Downgrading your Service may cause a reduction in features, or capacity of your Account. Fathom has no liability for such reduction.
- Unless the Client (through the Account Holder) notifies Fathom before the end of the applicable subscription period that the Client wants to cancel, using the method described in Section C below, your subscription will automatically renew at the end of the then-current period and you authorise us to collect the then-applicable subscription fee in accordance with item B.1 above.
C. Cancellation and Termination
- If you, as the Client, wish to terminate your account, the Account Holder must notify us using our normal account management and termination process within the Service. The Account Holder is solely responsible for properly cancelling your account. An email or phone request to cancel your account is not effective cancellation. The correct process to cancel your account is by clicking on the Administration link in the navigation bar at the top of the company selector screen, and choosing the Account/Billing screen. The Account/Billing screen provides an account cancellation link.
- There is no refund or credit of monthly fees for cancellation during a month.
- Failure to pay our fees for any reason may result in the suspension or termination of a Client’s account (including all associated user accounts) and, after a short period, the deletion of those accounts and associated data.
- Fathom, in its sole discretion, may decline to provide Services to anyone for any reason, and may suspend or terminate accounts and refuse access to or use of the Services for any reason at any time. Termination of the Services will result in the deactivation or deletion of user accounts or access to user accounts.
D. Modifications to the Service and Prices
- Fathom may modify or discontinue the Services (or any part of them) with or without prior notice.
- Prices of all Services, including but not limited to monthly subscription plan fees to the Service, are subject to change by us upon 30 days’ prior notice. Such notice may be provided by us at any time by posting the changes to the site, by email, or provided through the Service itself.
- Fathom is not liable to you or to any third party for any modification, price change, suspension or discontinuance of the Service.
E. Managing data privacy and data sharing among entities
- The Service allows members of an organisation to import and analyse data from multiple entities (for example, multiple companies within a corporate group, or multiple unrelated companies such as members of a franchise group or trade association). The Service also allows an organisation to create user accounts for that organisation’s own clients. Data from such entities and clients may be entered, analysed and managed within the Service.
- Importantly, you are accountable to ensure the appropriate roles and permissions are applied in order to avoid data being inappropriately shared amongst those entities.
- Where an organisation groups companies into benchmark groups for comparative purposes, the level of access for the organisation’s users can be specified. The available access levels are:
- "No access": the user has no access to any benchmark groups, meaning they will not be able to view any of the benchmark tools, or see data from other entities they do not have access to.
- "Limited access": the user has access to the benchmark group, and can see certain companies identified in the analysis. These are companies which have been specifically shared with the user, and can be seen in the user's "My Companies" interface. The results and keyword categories of other companies in this group are visible, but the company names are not revealed.
- "Full access": the user has access to a benchmark group and can see the name, results and keywords of all other companies in the group.
- Fathom Clients must consider the data privacy arrangements you have in place with your clients, employees, team members or related entities before adding them as an Invited User into Fathom, importing their data into Fathom, or adding a client company to a benchmark group.
We understand that when you use Fathom, you are entrusting us with one of your most valuable assets - the financial data of your company or client. We treat this responsibility very seriously.
While we can’t publicise every detail of our security processes, we would like to provide a level of assurance by demonstrating a careful, pragmatic approach alongside some of the key tenets that we operate by.
1. You own your data
We are in essence ‘caretakers’, looking after your financial data, in order to provide a service. We ensure that you have the controls necessary to manage access to your data.
When you delete a company that was imported from a cloud accounting system (eg. Xero, MYOB AccountRight Live, QuickBooks Online), we also delete any associated access tokens ensuring we can no longer access your company data through the accounting provider’s API.
If at any time you wish to remove a company from Fathom, you can simply delete the company from within Fathom. The data will exist in our offsite backup for a period of time and then be removed ensuring no data remains with Fathom.
2. Security is ongoing
Security is not a ‘set-and-forget’ operation. At Fathom we are continuously evaluating and reinforcing our security approach through an internal documentation & review process.
We also engage independent security specialists on a regular basis to review the Fathom application. An independent review by experienced security professionals provides a fresh set of eyes and keeps us up to date with the latest developments in the security industry.
3. Availability is important
The availability of your data is crucial to your use of Fathom.
We backup and encrypt your data (256-bit AES encryption) before moving it to a secure offsite location in a secondary data center.
This means that, in the event of a disaster or an outage at our primary datacenter, we can recover quickly and continue to provide Fathom from a geographically redundant secondary facility.
Hosting & Physical Security
Fathom is hosted on Microsoft Azure, a highly scalable cloud computing platform with end-to-end security and privacy features built in. Our team takes additional measures to maintain a secure infrastructure and application environment.
For more specific details regarding Azure security, please refer to http://azure.microsoft.com/en-us/support/trust-center/.
Within each account, Fathom provides for multiple levels of access to confidential customer data. You can invite or remove individual users from your account whenever you want.
Selected Fathom staff can also access your data, for support purposes only, and only when you provide permission.
Data protection & backup
We backup customer data every 6 hours. We also retain an encrypted copy of a daily backup in multiple geographic locations to aid in disaster recovery.
Company-specific data is kept separate through logical separation at the data tier, based on application-level access permissions and roles.
How can you stay protected?
Here are some simple steps you can take to stay protected:
- Create a password nobody can guess, so no dictionary words or family names. Be cryptic or use multi-word pass phrases - easy to remember, hard to crack.
- Don’t share your password with anybody.
- Don’t write your password on a sticky note and attach it to your computer.
- Keep your browser software up to date. We use and recommend Google Chrome.
Secure Sockets Layer (SSL) is an encryption technology used to protect data as it travels over the internet.
All Fathom application communications are encrypted with 256-bit TLS, providing a level of encryption comparable to that used by banks and financial institutions.
Best practices are used in the transmission and storage of passwords within Fathom.
All users must choose a strong password and an automatic lockout is enforced when incorrect passwords are incorrectly entered.
If you are inactive for an extended period while still logged in to Fathom, you will be automatically logged out.
Third party audits and inspections
Fathom engages independent security specialists on a regular basis. Our third party audits provide penetration testing, network scanning and source code reviews.
Unless Customer has specifically notified Fathom to the contrary in writing, Fathom may disclose your company as a customer of Fathom and may use your company’s name and logo on the Website and in Fathom’s promotional content in accordance with Customer’s brand guidelines or related documentation, if provided by Customer. Fathom will be granted a revocable, non-exclusive, non-sub-licensable, non-transferable, royalty-free right and license (the "Trademark License") to use, display and reproduce such party's name, logo, trademarks and service marks (the "Trademarks"). Both acknowledge that the other party's Trademark is and will remain the exclusive property of such party.