Cyberday Service Description

  1. Service overview
    1. This Service Description ("Service Description") describes Cyberday Oy's ("Supplier") Cyberday™-service ("Service") provided by the Supplier to its customers (“Customer”) subject to orders for the Service made in a service agreement or on the Supplier's website (“Order”). 
    2. The Service has been developed by the Supplier to enhance the administrative and supervisory work of the Customer related to digital security, data protection, data management and the management of the respective requirements of the applicable laws. The Service supports the Customer in the above work and in the setting of related responsibilities and requirements, including the formation and documentation of data protection policies.
    3. The Service is a cloud service provided by the Supplier via a public data network, which includes continuously updated Template Material related to digital security ("Template Material") from which the Customer selects the desired material.
    4. The Customer enters the information concerning the Customer's activities, organisation and goals required for its utilisation ("Customer Data") into the Service.
    5. The Template Material includes, for example, individual to-do lists to fill in the requirement frameworks in question to guide implementation. The Customer can select one or more requirements frameworks, and many of the tasks required by requirements frameworks may be related to the requirements of more than one requirement framework.
    6. With the Service, the Customer can manage its own content and tasks related to information security, data protection and information management, created in the Service based on Template Material and Customer Data, defining the current state of its digital security and setting tasks to meet the desired goals. 
  2. Implementation and maintenance of the service
    1. The Supplier implements the Service as a service to be used over the network (SaaS) from a secure and high-availability cloud service environment chosen by the Supplier at any given time. 
    2. The Supplier is responsible for the technical maintenance of the Service, including the maintenance of software and the server environment, backup, security updates and the traffic and storage capacity required by the Service. 
    3. The Supplier has the right to update the Service and its implementation method at its discretion. If a change made by the Supplier materially affects the usability or features of the Service, the Supplier notifies the Customer of the change no later than thirty (30) days in advance. 
    4. The Supplier updates the Template Material from time to time in order to provide the Customer with the most up-to-date content possible.
  3. Use of the Service
    1. The use of the Service requires that the Customer has a User Account ("User Account") in the Service.
    2. Customer and its authorized persons use the Service either through a web browser or through Customer's own Microsoft Teams environment. When the Service is used through a Teams environment, the authentication to the Service is done using the person's Teams account.
    3. The Service is also available without Teams integration by logging in to the Service at https://www.cyberday.ai with separate user IDs provided by the Supplier or using provided third party login methods, from which the Service used contains the same main functionalities and tools as the Service used through the Teams environment
  4. Service users

The users of the Service are the members of different groups of the Customer's organization:

  1. Key roles are played by persons, such as the Customer's Data Protection Officer, IT Officer and Information Security Officer, whose task is to manage the whole Service and content;
  2. Persons in support roles, such as the administrators of the Customer's information systems, persons in charge of units and contact persons of registers, who have administrative area-specific tasks; and
  3. Other employees of the Customer who need to be instructed about data security and data protection requirements.
  1. Template material

The Template Material includes:

  1. The Customer's actions guided by requirement frameworks, into which, for example, the requirements of the General Data Protection Regulation have been broken down into concrete actions;
  2. Ready-made task templates for Customer Managers, based on which tasks can be assigned. Based on the status of the tasks, an overall picture of readiness is obtained and a personal task book is created for the responsible persons;
  3. Ready-made templates for collecting documentation to describe the Customer's activities and monitor changes; and
  4. Instructions for the Customer's personnel on information security and other operating instructions. The instructions form a manual for each responsible person according to their role.
  1. Deployment and training
    1. Enabling the Service does not require any installation work on users' devices. A standard and modern browser or Teams desktop application is sufficient to use the Service. The Customer's IT administrator can distribute the Service's Teams application to all desired employees.
    2. The implementation of the Service includes the amount specified in the Agreement of user training provided by the Supplier over the Teams connection to the Customer's representatives, which enables the Customer to initiate the efficient use of the Service in its organization.
    3. The Service includes regular and free webinar training. The Supplier regularly organises webinars aimed at the main users of the Service, the topics of which may include, for example, the latest digital security news, developments in the Service and usage tips. 
    4. An up-to-date list of upcoming webinars can always be found at digiturvamalli.fi/webinarit.
  2. Backup
    1. The Supplier shall delete the User Account and the Customer Data after the Service has ended. The Supplier maintains a backup copy of the Customer Data. Customer Data is backed up at least once a day and backups are stored for at least seven (7) days. The Customer who contributed to the loss of the original Customer Data may be charged for the costs of restoring the backup copy. 
    2. The Supplier ensures that all Customer Data entered into the Service by the Customer is deleted from the backup copies no later than six (6) months after the end of the Order.
  3. Support and customer service
    1. Chat support is available directly in the Service and through the Service's marketing website. Through the chat, the user receives quick support from exactly those of Supplier’s team members who are required to solve the question. 
    2. Email support is available at team@cyberday.ai. Supplier aims to reply to messages sent via email support no later than the next business day. 
  4. Terms OF USE

The use of the Service is subject to the terms of the Order and the Terms of Use of the Cyberday™ Service valid at any given time, which can always be found at https://www.cyberday.ai/terms-of-use.

Effortless compliance improvement
Widest framework library in EU
Extensive support

Start your compliance journey

Use in MS Teams or use your browser with Slack integration.
Risk free trial. No credit card required. Stop at any time.

Start free 14-day trial
Book a meeting
How it works?
SummarySecurity tasks and assuranceDocumentation workflowsEmployee guidelinesReporting templates
Use cases
By frameworkAll frameworksISO 27001NIS2 directiveNIST CSFCSA CCMISO 27701GDPRISO 27017ISO 27018
By methodCyber risk managementEmployee awarenessCompliance reportingControl managementAsset managementPrivacy managementVendor assessments
Resources
AcademyWebinarsBlogHelp articlesVideo coursesContent libraryGuidesNewsletterLeave a reviewPartner programTeamTerms of usePrivacy policy
Contact us
+358 10 231 6010
team@cyberday.ai
App works in:
Known in Finland as Digiturvamalli
© Cyberday Inc. Kalevantie 2 33100 Tampere, Finland
Cyberday.ai - Improve and certify your cyber security