Enterprise Services Agreement

2.1 Provision of the Services

Subject to the terms and conditions of this Agreement, A Dream will make the Services available to Customer and its Authorized Users during the applicable subscription term.

2.2 Availability and Modifications

A Dream may perform scheduled or emergency maintenance, updates, or modifications to the Services from time to time. A Dream will use commercially reasonable efforts to minimize service disruptions but does not guarantee uninterrupted availability.

A Dream may update, enhance, modify, or discontinue features or functionality of the Services, including AI-Enabled features, integrations, or Memory functionality, provided that such changes do not materially degrade the core functionality of the Services.

2.3 Processing and Protection of Customer Data

A Dream will process Customer Data in accordance with the Privacy Policy.

2.4 Security Measures

A Dream will implement and maintain reasonable administrative, technical, and organizational measures designed to protect Customer Data against unauthorized access, loss, misuse, or disclosure, taking into account the nature of the Services and current industry practices. Customer acknowledges that no system can be guaranteed to be completely secure and that security obligations are subject to the limitations set forth in this Agreement.

2.5 Support

A Dream will provide customer support for its Services. Customers may contact A Dream with questions regarding the Services or the operation of the product by emailing contact@popcorn.ai.

2.6 No Other Obligations

Except as expressly stated in this Agreement, A Dream has no other obligations.

3.1 Use of the Services

Customer is solely responsible for its use of the Services and for all activities conducted within its workspace(s), including all actions taken by Authorized Users, AI agents acting on Authorized User instructions, integrations, automated workflows, and credential-based actions. Customer will use the Services only in accordance with this Agreement, the User Terms of Service, the Acceptable Use Policy, the Privacy Policy, and all applicable laws.

3.2 Authorized Users

Customer must ensure that all Authorized Users comply with this Agreement, the User Terms of Service, the Acceptable Use Policy, the Privacy Policy, and any applicable workspace policies established by Customer. Any act or omission of an Authorized User will be deemed an act or omission of Customer. Customer is responsible for promptly disabling access for any Authorized User who is no longer authorized to use the Services.

3.3 Workspace Administration and Configuration

Customer controls and administers its workspace(s) and is responsible for configuring and managing all administrative settings, including without limitation: (1) user access, roles, and permissions; (2) channel creation, membership, and visibility (including public, private, shared, and restricted channels); (3) integrations and connected accounts; and (4) authentication settings.

3.4 Credentials, Tokens, and Delegated Authorization

Any action taken through the Services using credentials is deemed authorized by Customer, regardless of whether such action was initiated by: the Customer directly; an Authorized User; an AI agent acting on user instruction; or an automated workflow or integration. Customer must safeguard all credentials, promptly revoke or rotate compromised credentials, and notify A Dream without undue delay upon discovering any unauthorized access or misuse. See Section 5.3 of this Agreement for further details related to Third-Party Integrations.

3.5 Notices, Consents, and Workplace Policies

Customer is solely responsible for establishing, communicating, and enforcing its own workplace policies governing use of the Services, including policies relating to: monitoring and access; data retention and deletion; use of AI-Enabled Features and Memory systems; Third-Party Integrations; and acceptable use that fulfill its requirements under this Agreement, the User Terms of Service, Acceptable Use Policy, and the Privacy Policy.

Customer is responsible for obtaining all required notices, consents, permissions, and authorizations from Authorized Users and other data subjects for the lawful collection, use, disclosure, transfer, and processing of Customer Data, including in connection with AI Features, Memory systems, and integrations.

3.6 Sensitive, Regulated, and Confidential Information

Customer is responsible for determining whether the Services are appropriate for any particular information that can be accessed by AI agents and Authorized Users, including sensitive, regulated, privileged, proprietary, or confidential information. Customer must configure access controls, channel membership, permissions, and sharing settings accordingly and instruct Authorized Users regarding appropriate use of the Services for such information. In particular, Customer acknowledges that channel members may be able to invite additional users consistent with their workspace configuration. Customer is solely responsible for determining whether the Services and channel member access are appropriate for this information, including sensitive, regulated, privileged, proprietary, or confidential information, and for ensuring compliance with any applicable laws, regulations, contractual obligations, or internal policies governing such information.

Customer is responsible for configuring and maintaining appropriate administrative, technical, and organizational controls within the Services, including access controls, channel creation and membership, permissions, sharing settings, data retention settings, and integration settings, and for instructing Authorized Users regarding appropriate use of the Services with respect to such information.

Customer acknowledges and agrees that, subject to Customer's workspace configuration and permission settings:

• Authorized Users with sufficient privileges may create channels, modify channel membership, invite additional users (including external users, if enabled), or otherwise expand access to information within the workspace; and
• AI-Enabled Features, agents, automations, and Third-Party Integrations enabled or authorized by Customer or its Authorized Users may access, process, analyze, generate outputs from, or transmit information that is available to them within the scope of the permissions and configurations granted by Customer or Authorized Users.

Customer is solely responsible for evaluating and managing the risks associated with permitting access to such information by Authorized Users, AI-Enabled features, agents, automations, and integrations, and for restricting or disabling access where use of the Services would be inappropriate for such information.

See the User Terms of Service, Acceptable Use Policy, and Privacy Policy for more information.

Customer further acknowledges that In-Channel Apps created within a channel are accessible to all members of that channel and are not subject to the same privacy protections that apply to private messages or private channels. In-Channel Apps are workspace-accessible artifacts and should be treated accordingly for purposes of information security and privilege analysis. Customer is solely responsible for determining whether creation of an In-Channel App within a given channel is appropriate for any information accessible within that channel.

4.1 AI-Enabled Functionality Generally

Customer acknowledges that the Services include artificial intelligence-enabled features, including AI agents, automation, summarization, reasoning, memory, and action execution ("AI Features" or "AI-Enabled Features"). AI Features operate based on user inputs, workspace context, available memory, configured permissions, and authorized integrations and credentials at the time of invocation.

Customer authorizes A Dream to process Customer Data through AI Features as necessary to provide the Services in accordance with this Agreement and the Privacy Policy.

(a) Talk-Through Feature. The Services include a Talk-Through Feature that enables real-time voice interaction between an Authorized User and the AI agent, with optional screen and cursor sharing. During a Talk-Through session, the AI agent may observe, process, and respond to voice input, on-screen content, and cursor position. Talk-Through Session Data may be retained, summarized, and incorporated into workspace memory or channel context in accordance with workspace configuration and the Privacy Policy. Customer is solely responsible for ensuring that Authorized Users are informed of and consent to the capture, processing, and retention of Talk-Through Session Data, including voice recordings and screen content, and for compliance with all applicable laws governing such capture (including, without limitation, wiretapping, eavesdropping, biometric, and electronic surveillance laws).

(b) In-Channel Apps. The AI agent may create In-Channel Apps within channels in response to user prompts. In-Channel Apps are visible and accessible to all members of the channel in which they are created. Customer acknowledges that In-Channel Apps may contain, display, or reference Customer Data, and that the creation of an In-Channel App within a channel effectively publishes such data to all channel members. Customer is solely responsible for determining whether the creation of an In-Channel App within a given channel is appropriate in light of the information accessible within that channel and the membership of that channel.

(c) Workspace-Owned Computer. The Services include a Workspace-Owned Computer, a cloud-hosted virtual machine provisioned for the workspace. The AI agent may use the Workspace-Owned Computer to execute code, access files, run applications, install packages, browse the web, and perform other computational tasks on behalf of Authorized Users. Customer acknowledges that the Workspace-Owned Computer operates as a shared resource within the workspace and that files, applications, and data within the VM may be accessible to the AI agent acting on behalf of any Authorized User within the workspace. Customer is solely responsible for managing what data and credentials are stored within or accessible to the Workspace-Owned Computer.

4.2 Human Review and Decision-Making

Customer agrees that it is solely responsible for reviewing, validating, and exercising human judgment over all AI-generated outputs, summaries, recommendations, action items, or automated actions.

To ensure the continued reliability and safety of our platform, Customers agree not to deploy the Services for any purposes classified as “High-Risk” under applicable global AI regulations (such as the EU AI Act) without written authorization from A Dream. Specifically, Customer agrees not to use this system in critical infrastructure management, educational admissions or evaluation, employment recruitment or promotion, or in the administration of justice and essential public services.

4.3 Memory Systems

Customer acknowledges that the Services include Memory systems that may store and process information derived from interactions, including without limitation: workspace-level memory; channel-level or shared memory derived from conversations and Authorized User directed agent actions; and user-level memory associated with individual users. Memory may reference prior discussions, decisions, action items, participation, or user-specific context and may be used to inform future AI interactions, summaries, or automated actions, subject to workspace configuration and permissions. Customer acknowledges that memory content may be visible to, accessible by, or acted upon by other Authorized Users depending on workspace configuration, channel membership, and sharing settings. See the User Terms of Service, Acceptable Use Policy, and Privacy Policy, which are incorporated by reference here, for more information.

4.4 No Model Transparency or Audit Obligations

Customer acknowledges that A Dream has no obligation to:

• explain, interpret, or disclose AI model logic, prompts, parameters, training data, or reasoning processes;
• provide auditability, traceability, or reproducibility of AI outputs; or
• enable Customer to inspect or validate internal AI system operation.

AI outputs and system behavior may change over time without notice.

4.5 Third-Party AI Providers

Customer acknowledges that AI Features rely on third-party artificial intelligence providers ("Third-Party AI Providers"), which may include OpenAI, Anthropic, Perplexity, or other providers selected by A Dream from time to time.

Customer acknowledges and agrees that:

• Customer Data may be transmitted to and processed by Third-Party AI Providers solely to provide requested functionality;
• Third-Party AI Providers operate under their own terms, policies, and technical constraints, which may change over time; and
• A Dream does not control Third-Party AI Provider internal data handling beyond contractual commitments.

Customer is responsible for compliance with all applicable Third-Party AI Provider acceptable use policies and restrictions.

Customer further acknowledges that certain AI Features, including web browsing capabilities within the Workspace-Owned Computer, may utilize the Perplexity API or similar third-party services to retrieve, summarize, or interact with content from the public internet. A Dream does not control, endorse, or guarantee the accuracy, completeness, or legality of any content retrieved through such services. Customer is solely responsible for evaluating and verifying any information obtained through web browsing features and for ensuring that its use of such features complies with applicable law and third-party terms.

4.6 No Opt-Out of AI Processing

Customer acknowledges that use of AI Features requires processing of Customer Data by AI systems, including Third-Party AI Providers. In accordance with the Privacy Policy, Customer may not opt out of AI processing while using the Services.

4.7 No Monitoring Obligation

Customer acknowledges that A Dream does not monitor, review, or validate AI outputs, memory content, or automated actions. Customer remains solely responsible for supervising Authorized Users, reviewing AI outputs, and enforcing internal policies governing AI use.

4.8 Cross-Channel Agent Data Access – Architecture Disclosure

Customer acknowledges and agrees that the AI agent architecture operates as follows:

• (a) The AI agent operates within a shared execution environment (the Workspace-Owned Computer) that may serve multiple channels and users within a workspace.
• (b) While A Dream implements design-level constraints intended to scope the AI agent's data access to the channel and user context from which a request originates, Customer acknowledges that these constraints are enforced at the application layer and are not equivalent to hardware-level or OS-level isolation.
• (c) As with any AI system operating across shared infrastructure, there is an inherent risk that adversarial prompt injection, context manipulation, or other exploitation techniques could cause the AI agent to access, reference, or disclose data from channels or contexts other than the one in which the requesting user is operating.
• (d) A Dream will use commercially reasonable efforts to mitigate such risks through prompt engineering, access scoping, and monitoring, but does not warrant that cross-channel data leakage cannot occur.
• (e) Customer is solely responsible for evaluating whether the shared-VM architecture is appropriate for its use case, particularly where channels contain sensitive, privileged, or regulated information that must not be disclosed across channel boundaries.

4.9 Workspace-Owned Computer and Cloud Execution Environment

Customer acknowledges and agrees that:

• (a) The Workspace-Owned Computer is a shared cloud-hosted VM that the AI agent may use to execute code, access files, install software, browse the web, and perform other tasks. Files, data, applications, and credentials stored within the VM may persist across sessions and may be accessible to the AI agent acting on behalf of any Authorized User within the workspace.
• (b) The AI agent may take actions within the Workspace-Owned Computer autonomously or in response to user commands (including the /update command or equivalent invocations). Such actions may include file creation, modification, or deletion; code execution; application deployment; package installation; web browsing; and data retrieval.
• (c) A Dream does not guarantee the integrity, availability, or security of files, applications, or data stored within the Workspace-Owned Computer. Customer is solely responsible for backing up critical data and for managing what information is stored within or accessible to the VM.

4.10 Privilege and Confidentiality Considerations

Customer acknowledges and agrees that:

• (a) The use of AI Features, including the Talk-Through Feature, Memory systems, In-Channel Apps, and the Workspace-Owned Computer, may result in the creation, storage, or disclosure of information in ways that could affect legal privilege, confidentiality, or regulatory compliance.
• (b) Customer is solely responsible for determining whether use of any feature of the Services is appropriate in light of applicable privilege, confidentiality, or regulatory requirements.
• (c) A Dream makes no representation that use of the Services will preserve legal privilege or confidentiality protections that may otherwise apply to Customer's information.
• (d) Customer should consult with its own legal counsel regarding the implications of using the Services for privileged, confidential, or regulated information.

5.1 Third-Party Integrations Generally

The Services may enable Customer to connect, authorize, access, or use third-party applications, platforms, services, APIs, data sources, or tools that are not provided by A Dream, including without limitation project management tools, document repositories, ticketing systems, messaging platforms, storage services, and developer tools ("Third-Party Integrations" or "Third-Party Tools").

Third-Party Integrations are provided solely by the applicable third-party providers and operate under their own terms of service, privacy policies, security practices, and acceptable use requirements.

5.2 Customer Authorization and Delegated Access Model

Customer acknowledges that the Services operate on a delegated authorization model. When Customer or an Authorized User connects a Third-Party Integration, provides credentials, authorizes access, or enables an integration, such authorization may permit (1) AI agents, automated workflows, or system processes, and (2) other Authorized Users acting within the scope of workspace, channel, agent, or integration configuration to perform actions using the authorized credentials, tokens, API keys, OAuth grants, webhooks, or other access mechanisms. Customer acknowledges that actions performed using valid credentials are deemed authorized by Customer, regardless of the following: which individual initiated the action; whether the initiating user personally supplied the credentials; whether the action was initiated directly or via an AI agent; or whether the action occurred synchronously, asynchronously, or automatically.

5.3 Channel-Level, Agent-Level, and Contextual Scope

Customer assumes all risk arising from channel invitations, membership changes, or contextual access to integrations. Customer acknowledges that Third-Party Integrations may be scoped at the workspace, channel, agent, or user level, depending on Customer configuration and third-party capabilities. Customer acknowledges that Authorized Users may be invited to channels or collaborative contexts in which Third-Party Integrations or credentials have already been enabled.

Customer is solely responsible for:

• determining which integrations are available in which channels, agents, or contexts;
• managing channel membership and invitations, including the addition of users to channels where integrations are enabled and whether sensitive integrations or data should be exposed in shared contexts; and
• understanding how integration credentials may be reused, inherited, or invoked across contexts.

Customer acknowledges that:

• an invited user may be able to invoke an AI agent or request actions that rely on previously authorized credentials;
• such actions may succeed, fail, or require additional authorization depending on scope and permissions; and
• A Dream has no obligation to confirm whether an invited user was intended to have access to such integrations or actions.

Customer is solely responsible for all credentials used in connection with Third-Party Integrations.

Customer must:

• safeguard all credentials against unauthorized access or disclosure;
• configure credentials with appropriate scopes and permissions;
• promptly revoke, rotate, or disable compromised or unauthorized credentials; and
• notify A Dream without undue delay upon discovering any compromise or misuse.

A Dream is entitled to rely on the validity of any credentials presented to the Services and has no obligation to verify the authority, intent, or appropriateness of any action taken using such credentials.

See the User Terms of Service, Acceptable Use Policy, and Privacy Policy, which are incorporated by reference here, for more information.

5.4 Failure or Limitation of Integration Actions

Customer acknowledges that actions involving Third-Party Integrations may fail, be denied, delayed, or partially executed due to the following: insufficient permissions or scopes; expired or revoked credentials; Third-Party Integration limitations or outages; or changes to third-party APIs or terms. A Dream makes no guarantee that any integration-dependent action will succeed and has no obligation to retry, escalate, or remediate failed actions.

5.5 Compliance with Third-Party Terms

Customer is solely responsible for compliance with all applicable third-party terms, policies, and acceptable use requirements governing Third-Party Integrations, including any restrictions on data use, automation, or AI-driven actions.

5.6 Suspension or Disabling of Integrations

A Dream may suspend, limit, or disable any Third-Party Integration or integration-dependent functionality where reasonably necessary to:

• comply with applicable law or third-party restrictions;
• address security risks, abuse, or misuse;
• prevent harm to the Services or other customers; or
• maintain operational integrity.

Such suspension or limitation does not constitute a breach of this Agreement.

5.7 Allocation of Risk

Customer assumes all risk arising from the enablement, configuration, use, and reliance on Third-Party Integrations, including any claims, damages, regulatory actions, or losses resulting therefrom.

7.1 Ownership of the Services

As between the parties, A Dream and its licensors retain all right, title, and interest in and to the Services, including without limitation:

• the software, platform, and infrastructure underlying the Services;
• AI agents, workflows, automation logic, and system architecture;
• user interfaces, designs, layouts, and visual elements;
• documentation, APIs, SDKs, and developer materials; and
• all improvements, enhancements, modifications, and derivative works thereof.

Except for the limited rights expressly granted in this Agreement, no rights are granted to Customer by implication, estoppel, or otherwise.

7.2 License to Use the Services

Subject to Customer's compliance with this Agreement, A Dream grants Customer a limited, non-exclusive, non-transferable, non-sublicensable license during the applicable subscription term to access and use the Services solely for Customer's internal business purposes and in accordance with this Agreement, the User Terms of Service, Acceptable Use Policy, and Privacy Policy. Customer may permit Authorized Users to use the Services on its behalf, subject to Customer's responsibility for such use.

7.3 Restrictions

Customer shall not, and shall not permit any third party or Authorized User to:

• copy, modify, or create derivative works of the Services except as expressly permitted;
• reverse engineer, decompile, disassemble, or attempt to derive source code or underlying models except to the extent prohibited by law;
• access the Services to build or benchmark a competing product or service;
• remove, obscure, or alter proprietary notices; or
• use the Services in violation of applicable law, the User Terms of Service and Acceptable Use Policy, or third-party terms.

7.4 Customer Data Ownership

As between the parties, Customer retains all right, title, and interest in and to Customer Data, and nothing in this Agreement transfers ownership of Customer Data to A Dream.

7.5 License to Process Customer Data

In accordance with the Privacy Policy and this Agreement, Customer grants A Dream a limited, non-exclusive, worldwide, royalty-free license to process Customer Data solely as necessary to:

• provide, operate, secure, and maintain the Services;
• enable collaboration, automation, integrations, and AI-enabled functionality;
• operate memory systems and generate summaries or outputs as configured by Customer;
• comply with Customer instructions; and
• comply with applicable law.

This license terminates upon termination of the Agreement, except to the extent retention is required for legal, security, audit, or compliance purposes.

7.6 AI Outputs and Derivative Content

Customer acknowledges that:

• AI-generated outputs, summaries, action items, and memory artifacts are generated based on Customer Data, system context, and probabilistic models;
• such outputs constitute Customer Data for purposes of this Agreement; and
• A Dream does not claim ownership of AI outputs generated for Customer.

Nothing in this Agreement grants Customer any ownership or rights in A Dream's models, algorithms, prompts, system architecture, or underlying AI technology.

7.7 Feedback

If Customer or Authorized Users provide feedback, suggestions, ideas, or recommendations regarding the Services ("Feedback"), Customer grants A Dream a perpetual, irrevocable, worldwide, royalty-free license to use, incorporate, modify, and exploit such Feedback without obligation or restriction. Feedback does not create any confidentiality or compensation obligation on behalf of A Dream.

7.8 Third-Party Materials and Open Source

The Services may include or interact with third-party software, content, or services, including open-source components and Third-Party Tools. Such materials are subject to their own applicable terms, and nothing in this Agreement grants Customer rights beyond those permitted under such third-party licenses.

7.9 Reservation of Rights

All rights not expressly granted in this Agreement are reserved by A Dream and its licensors.

8.1 Definition of Confidential Information

"Confidential Information" means all non-public information disclosed by or on behalf of one party (the "Disclosing Party") to the other party (the "Receiving Party") in connection with this Agreement that (a) is designated as confidential, or (b) reasonably should be understood to be confidential given the nature of the information and the circumstances of disclosure.

Confidential Information includes, without limitation:

• Customer Data (which is Customer's Confidential Information);
• a party's business, financial, product, technical, operational, security, and compliance information;
• Order Forms and pricing;
• A Dream's Confidential Information, including the Services (including non-public features), system design, architecture, workflows, AI/memory systems, non-public documentation, roadmaps, and security measures; and
• the existence and terms of this Agreement (to the extent not publicly known through no fault of the Receiving Party).

8.2 Exclusions

Confidential Information does not include information that the Receiving Party can demonstrate is or becomes publicly available through no breach of this Agreement; was lawfully known to the Receiving Party without restriction before disclosure by the Disclosing Party; is independently developed by the Receiving Party without use of or reference to the Disclosing Party's Confidential Information; or is lawfully received from a third party without breach of a confidentiality obligation owed to the Disclosing Party.

8.3 Protection and Use Restrictions

The Receiving Party will: (1) use the Disclosing Party's Confidential Information solely to perform its obligations or exercise its rights under this Agreement; (2) protect the Disclosing Party's Confidential Information using at least reasonable care and no less than the degree of care it uses to protect its own confidential information of similar nature; and (3) not disclose the Disclosing Party's Confidential Information to any third party except as expressly permitted in Sections 8.4 and 8.5 of this Agreement.

8.4 Permitted Disclosures

The Receiving Party may disclose the Disclosing Party's Confidential Information only to the extent necessary and only to:

• its and its affiliates' employees, contractors, and agents who have a bona fide need to know for purposes of this Agreement and who are bound by written confidentiality obligations at least as protective as those herein;
• its professional advisers (e.g., legal, accounting, insurance) who are bound by professional duties of confidentiality or written confidentiality obligations; and
• in A Dream's case, its service providers and subprocessors (including hosting, infrastructure, security, support, and AI inference providers) who are bound by written confidentiality obligations at least as protective as those herein.

The Receiving Party remains responsible for any breach of this Section by the persons or entities to whom it discloses Confidential Information, except to the extent prohibited by applicable law.

8.5 Compelled Disclosure

If the Receiving Party is required by applicable law, regulation, or valid legal process to disclose the Disclosing Party's Confidential Information, the Receiving Party will (to the extent legally permitted):

• provide the Disclosing Party prompt written notice of the requirement so the Disclosing Party may seek a protective order or other remedy; and
• disclose only the portion of Confidential Information that is legally required and use commercially reasonable efforts to obtain confidential treatment for any Confidential Information so disclosed.

8.6 Customer Data as Confidential Information; Operational Access

Customer Data is Customer's Confidential Information. A Dream will treat Customer Data as Confidential Information and will access, use, and disclose Customer Data only:

• as necessary to provide, operate, secure, and support the Services;
• in accordance with Customer's documented instructions as reflected in this Agreement, Customer's configuration and Authorized User actions, and the Privacy Policy; and
• as required by applicable law.

Customer acknowledges that, consistent with the Services' design and Customer's configuration, Customer Data may be accessible to Authorized Users and administrators within Customer's workspace(s), and that Customer is responsible for managing channel membership, permissions, and sharing settings.

8.7 AI, Memory, and Confidentiality

Customer acknowledges the following. Customer Data (which may include Confidential Information) may be processed by AI-Enabled Features and memory systems to provide requested functionality (e.g., summarization, action items, recall, automation), consistent with the Services' design and Customer configuration, where applicable. AI-generated outputs, summaries, and memory artifacts may reflect or reference Customer Data (including Confidential Information) provided through use of the Services. Customer Data may be transmitted to and processed by Third-Party AI Providers and other subprocessors as necessary to provide AI-Enabled Features, subject to A Dream's contractual arrangements with such providers and the Privacy Policy.

Customer is responsible for determining whether it is appropriate to use the Services (including AI and memory features) for particular categories of Confidential Information, and for training and instructing Authorized Users regarding safe use (including private/restricted channel use for sensitive or privileged information, and careful channel membership management).

8.8 Return, Deletion, and Retention

Upon termination or expiration of the Agreement, A Dream will handle Customer Data in accordance with this Agreement (including any agreed export provisions), system behavior (including any fixed retention limits), and applicable law. Customer is responsible for exporting Customer Data prior to termination if Customer requires continued access. Notwithstanding the foregoing, the Receiving Party may retain Confidential Information to the extent required to comply with applicable law, regulation, or bona fide internal compliance requirements, provided that any retained Confidential Information remains subject to the confidentiality obligations of this Section for so long as it is retained.

8.9 Equitable Relief

Each party acknowledges that unauthorized disclosure or use of Confidential Information may cause irreparable harm for which monetary damages may be an insufficient remedy. Accordingly, the Disclosing Party may seek injunctive or equitable relief (without the necessity of posting bond, to the extent permitted by law) in addition to any other remedies available.

9.1 Mutual Representations

Each party represents and warrants that:

• it is duly organized, validly existing, and in good standing under the laws of its jurisdiction of formation;
• it has the legal power and authority to enter into this Agreement and perform its obligations hereunder; and
• this Agreement constitutes a valid and binding obligation enforceable against it in accordance with its terms.

9.2 Customer Representations and Warranties

Customer represents and warrants that:

• it has obtained and will maintain all rights, licenses, consents, notices, and authorizations necessary for Customer Data to be submitted to, processed by, and disclosed through the Services, including through AI-enabled features and Third-Party Integrations;
• Customer Data does not and will not violate applicable law or infringe, misappropriate, or otherwise violate any intellectual property, privacy, publicity, employment, or other rights of any third party;
• Customer has determined that the Services are appropriate for Customer's use of sensitive, confidential, proprietary, or regulated information, and that Customer has configured (and will maintain) channel access, permissions, sharing settings, and integrations in a manner consistent with Customer's legal, contractual, and internal obligations applicable to such information;
• Customer has informed Authorized Users of applicable workplace policies, monitoring practices, AI usage, memory behavior, retention settings, and third-party integrations as implemented within the Services;
• Customer will not use the Services or AI outputs as the sole basis for automated decisions with legal, employment, financial, medical, or similar material effects on individuals;
• Customer's use of Third-Party Integrations through the Services does not violate any third-party terms; and
• Customer's use of the Services complies with all applicable laws, regulations, and industry-specific obligations.

9.3 A Dream's Limited Warranty

A Dream warrants that it will provide the Services during the Term.

9.4 Warranty Disclaimer

EXCEPT AS EXPRESSLY PROVIDED IN THIS AGREEMENT, THE SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE."

TO THE MAXIMUM EXTENT PERMITTED BY LAW, A DREAM DISCLAIMS ALL WARRANTIES, WHETHER EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE, INCLUDING ANY IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, NON-INFRINGEMENT, OR ACCURACY.

WITHOUT LIMITING THE FOREGOING, A DREAM DOES NOT WARRANT THAT:

• the Services will be uninterrupted, error-free, or completely secure;
• AI outputs, summaries, memory artifacts, or automated actions will be accurate, complete, current, or reliable;
• AI outputs will not contain errors, hallucinations, omissions, or unintended inferences;
• AI outputs will be suitable for compliance, employment, legal, medical, or financial decisions;
• Memory systems will capture all relevant context or exclude unintended information; or
• Third-Party AI Providers or Third-Party Tools will continue to be available or unchanged.

Customer acknowledges and agrees that:

• AI outputs are probabilistic and non-deterministic;
• AI systems may generate content that is incomplete, misleading, or incorrect;
• A Dream does not guarantee explainability, auditability, or transparency of AI model logic;
• AI memory and summaries may reflect subjective interpretations of prior interactions;
• Memory systems may be incomplete, inaccurate, or context-dependent;
• Summaries, reports or periodic outputs (including daily, weekly, monthly, or annual summaries) may omit relevant information or reflect incorrect assumptions; and
• The use of generative AI may increase the risk of copyright, intellectual property, or other third-party claims.

Customer assumes all risk associated with the use, publication, disclosure, or reliance on AI-generated outputs, including claims alleging infringement, misappropriation, defamation, or unlawful content.

Customer assumes all risk associated with reliance on AI outputs or memory-derived information.

9.5 Third-Party Services - No Warranty

Without limitation, A Dream does not warrant and is not responsible for the following:

• Third-Party Tools and Integrations;
• credential misuse, inheritance, or unauthorized access resulting from Customer configuration;
• actions executed through valid credentials, tokens, or webhooks;
• availability, performance, or reliability of Third-Party Integrations;
• data loss, corruption, or unauthorized access caused by Third-Party Integrations;
• changes to third-party functionality, APIs, or terms; and
• downstream use or processing of Customer Data by Third-Party Integrations.

9.6 Exclusive Remedy

Customer's sole and exclusive remedy for breach of the limited warranty in Section 9.3 is re-performance of the affected Services, or if re-performance is not commercially reasonable, termination of the affected portion of the Services and a refund of prepaid fees for the unused portion of the applicable subscription term.

9.7 No Additional Warranties

No oral or written information or advice given by A Dream, its employees, agents, or partners creates any warranty not expressly stated in this Agreement.

10.1 Indemnification by Customer

Customer will defend, indemnify, and hold harmless A Dream and its affiliates, officers, directors, employees, contractors, and agents from and against any and all claims (including third-party claims), demands, actions, proceedings, damages, losses, liabilities, costs, and expenses (including reasonable attorneys' fees) arising out of or relating to:

• Customer Data, including any allegation that Customer Data infringes, misappropriates, or violates intellectual property rights, privacy rights, publicity rights, employment laws, or other legal obligations;
• the disclosure or use of sensitive information due to workspace configuration, user behavior, or feature use;
• use of the Services by Customer or Authorized Users, including use of AI-enabled features, memory systems, summaries, action items, or automated workflows;
• decisions or actions taken by Customer or Authorized Users in reliance on AI outputs, summaries, or memory-derived information, including employment, disciplinary, legal, compliance, financial, or operational decisions;
• failure to obtain required notices, consents, or authorizations, including employee monitoring disclosures, AI usage notices, and third-party integration permissions;
• Third-Party AI Providers or Third-Party Tools, including claims arising from Customer's use of outputs, actions, or data processed by such providers;
• credentials, integrations, or webhooks, including misuse, compromise, inheritance, or unauthorized actions deemed authorized under this Agreement;
• violation of law by Customer or Authorized Users, including employment, surveillance, data protection, export control, or consumer protection laws;
• breach of this Agreement, the User Terms of Service, Acceptable Use Policy, Privacy Policy, or applicable third-party terms;
• Use of the Talk-Through Feature, including claims arising from the capture, transcription, or retention of voice, screen, or cursor data; and
• Actions taken by the AI agent within the Workspace-Owned Computer, including file access, code execution, application creation or modification, and data retrieval, whether initiated directly or via /update command or equivalent invocation.

This indemnity applies regardless of whether the claim arises from content generated by AI, memory systems, automated actions, or human input.

10.2 Indemnification by A Dream

A Dream will defend, indemnify, and hold harmless Customer from and against any third-party claim alleging that the Services, when used in accordance with this Agreement, infringe a U.S. patent, copyright, or trademark, provided that such claim does not arise from:

• Customer Data;
• AI outputs, summaries, memory artifacts, or derivative content;
• Third-Party AI Providers or Third-Party Tools;
• modifications not made by A Dream;
• use of the Services in violation of this Agreement or applicable law; or
• combination of the Services with products or services not provided by A Dream.

10.3 Indemnification Procedure

10.3.1 Participation Rights

The Indemnified Party shall promptly notify the Indemnifying Party of any third-party claim. The Indemnifying Party shall have the right to assume the defense of such claim with counsel of its choice, subject to the Indemnified Party's prior written approval (not to be unreasonably withheld, conditioned, or delayed).

The Indemnified Party shall have the right to participate in the defense of such claim and to employ separate counsel of its own choosing and at its own expense; provided, however, that the Indemnifying Party shall bear the reasonable fees and expenses of the Indemnified Party's counsel if:

• The Indemnifying Party fails to promptly assume the defense;
• The Indemnified Party reasonably concludes that a conflict of interest exists between the parties; or
• The Indemnified Party determines that there are legal defenses available to it that are different from or additional to those available to the Indemnifying Party.

10.3.2 Settlement

The Indemnifying Party shall not, without the prior written consent of the Indemnified Party (which consent shall not be unreasonably withheld), settle or compromise any claim or consent to the entry of any judgment that:

• Does not include an unconditional release of the Indemnified Party from all liability;
• Imposes any equitable relief, injunction, or other non-monetary obligation upon the Indemnified Party; or
• Includes any admission of fault or culpability by the Indemnified Party.

10.4 Mitigation and Remedies

If A Dream reasonably believes the Services may become subject to an infringement claim, A Dream may, at its option and expense: (1) procure the right for Customer to continue using the Services; (2) modify the Services to avoid infringement without materially degrading functionality; or (3) terminate the affected Services and refund prepaid fees for the unused portion of the subscription term. This Section states Customer's sole and exclusive remedy for intellectual property infringement claims against A Dream.

11.1 Exclusion of Certain Damages

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT WILL EITHER PARTY BE LIABLE FOR ANY:

• INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, EXEMPLARY, OR PUNITIVE DAMAGES;
• LOSS OF PROFITS, REVENUE, BUSINESS, GOODWILL, OR ANTICIPATED SAVINGS;
• LOSS OF DATA, DATA CORRUPTION, OR FAILURE TO STORE OR RETRIEVE DATA;
• INTERRUPTION OF BUSINESS OR SYSTEM DOWNTIME; OR
• COSTS OF PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES,

ARISING OUT OF OR RELATING TO THIS AGREEMENT, THE SERVICES, OR ANY RELATED DOCUMENTATION, EVEN IF A PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES AND EVEN IF A REMEDY FAILS OF ITS ESSENTIAL PURPOSE.

11.2 Cap on Liability

EXCEPT FOR EXCLUDED CLAIMS IDENTIFIED IN SECTION 11.3, EACH PARTY'S TOTAL AGGREGATE LIABILITY ARISING OUT OF OR RELATING TO THIS AGREEMENT WILL NOT EXCEED THE AMOUNT PAID OR PAYABLE BY CUSTOMER TO A DREAM UNDER THIS AGREEMENT IN THE TWELVE (12) MONTHS PRECEDING THE EVENT GIVING RISE TO THE CLAIM.

11.3 Excluded Claims

The limitations in Sections 11.1 and 11.2 do not apply to the following: Customer's indemnification obligations under Section 10; Customer's breach of confidentiality obligations; Customer's violation of intellectual property rights; Customer's violation of applicable law; or amounts payable under Section 6 (Fees and Payment), if applicable.

11.4 AI-Specific Risk Allocation

WITHOUT LIMITING THE FOREGOING, CUSTOMER ACKNOWLEDGES AND AGREES THAT A DREAM SHALL HAVE NO LIABILITY FOR:

DECISIONS, ACTIONS, OR OUTCOMES BASED ON AI OUTPUTS, MEMORY-DERIVED INFORMATION, OR TALK-THROUGH SESSION DATA, INCLUDING INACCURATE OR INCOMPLETE TRANSCRIPTIONS;

EMPLOYMENT, DISCIPLINARY, LEGAL, COMPLIANCE, OR FINANCIAL DECISIONS MADE USING OR IN RELIANCE ON THE SERVICES OR ANY AI-GENERATED OUTPUT;

ACTIONS TAKEN BY THE AI AGENT WITHIN THE WORKSPACE-OWNED COMPUTER, INCLUDING FILE ACCESS, CODE EXECUTION, APPLICATION CREATION OR MODIFICATION, DATA RETRIEVAL, OR WEB BROWSING CONDUCTED VIA THE EMBEDDED BROWSER OR PERPLEXITY API, WHETHER SUCH ACTIONS SUCCEED, FAIL, OR PRODUCE UNINTENDED RESULTS; OR

ANY UNAUTHORIZED CROSS-CHANNEL ACCESS TO CUSTOMER DATA RESULTING FROM ADVERSARIAL PROMPT INJECTION OR OTHER EXPLOITATION OF THE VM ARCHITECTURE DESCRIBED IN SECTION 4.8, PROVIDED THAT A DREAM HAS IMPLEMENTED THE DESIGN-LEVEL CONSTRAINTS DESCRIBED THEREIN.

ALL SUCH USE IS AT CUSTOMER'S SOLE RISK. THESE LIMITATIONS APPLY REGARDLESS OF WHETHER THE CLAIM IS FRAMED IN CONTRACT, TORT (INCLUDING NEGLIGENCE), STRICT LIABILITY, STATUTORY LIABILITY, OR OTHERWISE.

11.5 Third-Party Services and AI Providers

A DREAM SHALL NOT BE LIABLE FOR ANY DAMAGES ARISING FROM OR RELATING TO:

• THIRD-PARTY AI PROVIDERS;
• THIRD-PARTY TOOLS, INTEGRATIONS, OR SERVICES;
• OUTAGES, API CHANGES, OR SERVICE MODIFICATIONS BY THIRD PARTIES; OR
• CUSTOMER'S USE OF THIRD-PARTY OUTPUTS OR AUTOMATED ACTIONS.

12.1 Term

This Agreement begins on the date this Agreement is signed ("Effective Date") and continues for twelve (12) months, unless otherwise terminated in accordance with this section. Thereafter, the Agreement will automatically renew for successive renewal terms of equal duration (each, a "Renewal Term") unless either party provides written notice of non-renewal at least thirty (30) days prior to the end of the then-current term.

12.2 Suspension of Services

A Dream may suspend Customer's or any Authorized User's access to the Services, in whole or in part, immediately upon notice (or without notice where legally required or operationally necessary), if A Dream reasonably determines that:

• Customer or an Authorized User has violated this Agreement, the User Terms of Service, the Acceptable Use Policy, or applicable law;
• Customer's use of the Services poses a security risk, creates risk of harm to A Dream, other customers, users, or third parties, or threatens the integrity or availability of the Services;
• credentials, integrations, tokens, webhooks, or automated workflows are being misused, compromised, or used in an unauthorized manner;
• Customer's use of AI features or memory systems presents legal, regulatory, or compliance risk;
• required fees are overdue; or
• suspension is required to comply with law, court order, or governmental request.

Where reasonably practicable, A Dream will provide notice and an opportunity to cure prior to suspension. Suspension does not relieve Customer of any payment obligations.

12.3 Termination for Cause

Either party may terminate this Agreement for cause upon written notice if the other party materially breaches this Agreement and fails to cure such breach within thirty (30) days after receiving written notice thereof, except that A Dream may terminate immediately for uncured breaches relating to security, unlawful activity, misuse of AI features, or violation of acceptable use restrictions.

12.4 Termination for Convenience

Either party may terminate this Agreement for convenience upon at least thirty (30) days' prior written notice. Termination for convenience does not entitle Customer to any refund of prepaid fees, except as expressly required by applicable law.

12.5 Effect of Termination

Upon termination or expiration of this Agreement:

• all rights and licenses granted to Customer under this Agreement immediately terminate;
• Customer's and Authorized Users' access to the Services will be disabled;
• Customer remains responsible for all fees accrued through the effective date of termination; and
• Customer Data will be handled in accordance with Section 12.6.

12.6 Customer Data After Termination

Following termination or expiration, A Dream will retain Customer Data in accordance with:

• system-defined retention limits (including fixed deletion periods for certain private communications);
• applicable law; and
• A Dream's backup, security, and audit requirements.

Unless otherwise separately agreed in writing, A Dream has no obligation to retain Customer Data beyond the applicable retention period, which is thirty (30) days (subject to any shorter system-defined deletion periods for certain private communications). Customer is solely responsible for exporting any Customer Data prior to termination.

12.7 Survival

The following sections survive termination or expiration of this Agreement: Sections relating to Fees and Payment, Proprietary Rights, Confidentiality, Representations and Warranties, Disclaimers, Indemnification, Limitation of Liability, Arbitration and Class Action Waiver, Governing Law, and any provisions that by their nature should survive.

12.8 No Liability for Termination

Except as expressly provided in this Agreement, neither party will be liable to the other for damages arising solely from termination or expiration of this Agreement, including loss of anticipated profits, data, or business opportunity.

13.1 Independent Contractors

The parties are independent contractors. Nothing in this Agreement creates any partnership, joint venture, fiduciary relationship, agency, employment, or franchise relationship between the parties. Neither party has authority to bind the other or incur obligations on the other's behalf.

13.2 No Third-Party Beneficiaries

Except as expressly provided herein, this Agreement does not confer any rights or remedies upon any third party, including Authorized Users, Third-Party AI Providers, or Third-Party Tool providers. Third-Party AI Providers and integration partners are not parties to this Agreement and are not third-party beneficiaries.

13.3 Assignment

Customer may not assign or transfer this Agreement, in whole or in part, whether by operation of law, merger, acquisition, sale of assets, or otherwise, without A Dream's prior written consent, which shall not be unreasonably withheld. A Dream may assign this Agreement without Customer's consent in connection with a merger, acquisition, corporate reorganization, or sale of all or substantially all of its assets. Any prohibited assignment is void.

13.4 Force Majeure

Neither party will be liable for failure or delay in performance (other than payment obligations) due to events beyond its reasonable control, including acts of God, natural disasters, war, terrorism, labor disputes, governmental actions, utility or network failures, or failures of Third-Party AI Providers or infrastructure providers.

13.5 Export Controls and Sanctions

Customer represents and warrants that it is not subject to sanctions or located in a jurisdiction subject to comprehensive trade sanctions. Customer agrees to comply with all applicable export control, economic sanctions, and trade laws in connection with its use of the Services, including restrictions on access to AI-enabled functionality. A Dream may suspend access as required to comply with applicable law.

13.6 Anti-Corruption

Each party agrees to comply with all applicable anti-bribery and anti-corruption laws. Neither party will offer, promise, authorize, or provide anything of value for an improper purpose in connection with this Agreement. Reasonable gifts and entertainment provided in the ordinary course of business do not violate the above restriction.

13.7 Notices

Notices under this Agreement must be in writing and will be deemed given when delivered by personal delivery, nationally recognized overnight courier, or email to the addresses specified in the applicable Order Form or otherwise designated in writing. Operational and administrative notices may be delivered electronically through the Services.

13.8 Waiver

Failure or delay by either party to enforce any provision of this Agreement will not constitute a waiver of future enforcement of that or any other provision. Any waiver must be in writing and signed by the waiving party.

13.9 Severability

If any provision of this Agreement is held invalid or unenforceable, the remaining provisions will remain in full force and effect, and the invalid provision will be reformed to the minimum extent necessary to reflect the parties' original intent.

13.10 Governing Law; Arbitration; Venue; No Class Action

This Agreement and any dispute, claim, or controversy arising out of or relating to this Agreement or the Services shall be resolved exclusively by final and binding arbitration, except that either party may seek injunctive or equitable relief in a court of competent jurisdiction to prevent actual or threatened misuse of intellectual property or breach of confidentiality. The arbitration shall be conducted in San Francisco, California under the rules of AAA, and the arbitrator shall apply the substantive law of California, without regard to conflict-of-laws principles. The parties irrevocably consent to the exclusive jurisdiction of the courts located in San Francisco, California for purposes of enforcing this arbitration provision or any arbitral award and waive any objection based on improper venue or forum non conveniens. All claims to the fullest extent allowed by law must be brought on an individual basis, and the parties waive any right to bring or participate in any class, collective, or representative action.

13.11 Entire Agreement; Order of Precedence

This Agreement, together with all exhibits and documents expressly incorporated by reference (including the User Terms of Service, Acceptable Use Policy, Privacy Policy, Cookie Policy, and Payment and Payment Terms Form), constitutes the entire agreement between the parties regarding the Services and supersedes all prior or contemporaneous agreements or understandings.

In the event of any conflict, the following order of precedence will apply (highest to lowest): (1) Payment and Payment Terms Form (but only for pricing, term, and service-level/plan-specific terms expressly stated therein); (2) this Agreement; (3) the Privacy Policy; (4) the Acceptable Use Policy; and (5) the User Terms of Service.

13.12 Updates to this Agreement

A Dream may update this Agreement from time to time. A Dream will provide notice of any updates to Customer by email, through the Services, or by other reasonable means. Unless otherwise stated in the notice, updates will become effective on the date specified by A Dream, and Customer's continued access to or use of the Services after the effective date constitutes Customer's acceptance of the updated Agreement.

13.13 Interpretation

Headings are for convenience only and have no legal effect. The words "including" and "such as" mean "including without limitation." Ambiguities shall not be construed against either party based on authorship.