These terms ("Agreement" or "Terms") govern the use of the financial management SaaS service ("Service") provided by NoCFO Oy ("NoCFO, business ID 3149769-7"). By using the Service, the Customer agrees to comply with these terms and to act in accordance with applicable law and good practice. The Terms are accepted by logging into the Service.
1. Scope of application
This Agreement concerns the delivery of the Service to the Customer. The Agreement takes effect when the Customer starts using the Service. The Agreement applies to all features and use of the Service, unless otherwise agreed in writing between the parties.
2. Definitions
Customer: The person or organisation using the Service. Service: The bookkeeping and financial management SaaS service developed and maintained by NoCFO. Business Account: The Customer's account created when the Service is activated. User: A person authorised by the Customer to use the Service. Parties: NoCFO and the Customer. DPA: The annex to this Agreement concerning the processing of personal data.
3. NoCFO's rights and obligations
NoCFO is responsible for providing the Service in accordance with these Terms and may use subcontractors as needed. NoCFO has the right to modify the content and features of the Service without separate notice, to continuously develop the Service, and to make technical or functional changes to it.
The Service may experience interruptions or changes due to development or maintenance. NoCFO is not liable for damages caused to the Customer, but will aim to notify of significant service disruptions in advance where possible.
NoCFO may restrict or block the Customer's access to the Service if the Customer endangers the operation, security, technical reliability, or lawful use of the Service, its development, or if the Customer neglects material contractual obligations such as payments, or if the Customer intentionally or unintentionally endangers the operation, security, or development of the Service
During the use of the Service, NoCFO's specialists may provide guidance on using the Service and on financial management. The Customer is responsible for what they do in or outside the Service based on this guidance. NoCFO is not responsible for the accuracy of the guidance or advice.
NoCFO has the right to process data stored in the Service — such as receipts, vouchers, invoices, bank statement data, bank transactions, customer register data, and other financial data — for the purpose of analysing, developing, automating, and improving the quality of the Service.
This processing is based on the Agreement, NoCFO's legitimate interest in developing and maintaining the Service, and the DPA annex, which is followed in all processing of personal data on behalf of the Customer.
NoCFO may discontinue the Service by notifying the Customer at least three (3) months before the termination of the Service.
4. Customer's rights and obligations
The Customer has the right to use the Service in accordance with these Terms. The Customer must review the Terms before activating the Service and ensure that use complies with applicable law and good practice.
The Customer is responsible for:
The accuracy and timeliness of data entered into the Service.
Managing and securing access rights granted to Users.
All actions taken with the Business Account credentials.
The functionality and security of their own devices and network connections.
The Customer acts as the data controller for personal data stored in the Service, and NoCFO acts as the data processor. This processing is governed by the DPA annex. The Customer is responsible for ensuring that material stored in the Service does not infringe on third-party rights or applicable legislation.
The Customer is responsible for notifying NoCFO of any errors discovered in the Service.
The Customer may use third-party services integrated or offered through the Service, such as payment services, e-invoicing services, or other external interfaces. When using such services, the Customer accepts the current terms of use of the relevant third parties and is responsible for compliance. NoCFO is not responsible for the content, functionality, or availability of third-party services.
5. Pricing and payment terms
Current prices and payment methods are available on NoCFO's website. NoCFO may change its price list without separate consent. Payments are charged in advance or arrears based on the selected service level. The minimum monthly billing is €10; amounts below this are billed quarterly.
Applicable value-added tax is added to the service price. Late payment interest is in accordance with the Finnish Interest Act. For invoice payments, the payment term is fourteen (14) days from the date of the invoice.
Third-party services may be used for payment processing
6. Intellectual property rights
All intellectual property rights related to the Service and all associated materials, software, user interface, databases, templates, documentation, and other content belong exclusively to NoCFO or its licensors. No rights to the Service or its content are transferred to the Customer, except for the limited right of use in accordance with these Terms.
The Customer has no right to copy, modify, reproduce, sell, rent, sublicence, transfer, publish, translate, disassemble, decompile, or otherwise attempt to determine the source code of the Service, unless required by mandatory legislation.
7. Confidentiality
Confidential information means all information marked as confidential or which, based on the circumstances, can be understood to be confidential. Such information may include information related to software, products, services, technology, or the Customer, as well as other information that can reasonably be considered proprietary, confidential, or sensitive.
Each Party shall keep confidential information received in connection with the Agreement confidential and shall not disclose it to third parties or use it for purposes other than those set out in the Agreement without the written consent of the other Party.
The Parties shall ensure that their employees and representatives comply with the confidentiality obligation set out in this section.
However, information is not considered confidential if it was in the recipient's possession before the Agreement was accepted, is publicly available, or was obtained from a third party without a confidentiality obligation.
This confidentiality obligation does not limit NoCFO's right to process data stored by the Customer in the Service to the extent permitted by the Agreement and its DPA annex for providing, maintaining, analysing, developing, and implementing automation in the Service.
8. Liability and limitation of liability
The Service is provided "as is." NoCFO is not liable for indirect damages resulting from the use of the Service, such as lost profits or loss of data, unless required by mandatory legislation. NoCFO's maximum liability is limited to three (3) months of the Customer's paid service fees (excluding VAT).
Liability limitations do not limit a Party's liability for intentional misconduct or gross negligence.
NoCFO is not liable for damages caused by third-party service providers' services or the Customer's own actions.
9. Term and termination
The Agreement is valid until further notice. The notice period is one (1) month, and the Service is charged until the end of the notice period. After termination of the Service, the Customer's data stored in the Service will be deleted three (3) months after termination, unless legislation requires otherwise.
10. Governing law and disputes
The Agreement is governed by Finnish law. Any disputes shall be resolved in the competent court in Finland.
11. Force majeure
Force majeure means a circumstance or event that prevents or materially hinders the fulfilment of obligations under the Agreement, and which is beyond the Party's control, could not reasonably have been foreseen, and whose consequences could not have been avoided or prevented. Examples include war, natural disaster, fire, pandemic, widespread network or power outage, government order, or other comparable exceptional event.
If NoCFO is prevented from fulfilling its obligations due to force majeure, NoCFO is released from liability to the extent and for as long as the impediment prevents it. NoCFO shall notify the Customer as soon as reasonably possible.
When the force majeure event ceases, obligations resume normally. If it continues for more than three (3) months, the Customer has the right to terminate the Agreement in writing with immediate effect.
12. Personal data processing and data protection
Each Party complies with applicable data protection legislation. NoCFO acts as the data controller for its own customer and user data in accordance with its privacy policy, available on NoCFO's website.
The Customer acts as the data controller for personal data stored in the Service, and NoCFO acts as the data processor. This processing is governed by the DPA annex, which defines the rights and obligations of the Parties.
NoCFO has the right to process personal data stored by the Customer in accordance with the Agreement and the DPA annex for providing, maintaining, analysing, developing, and implementing automation in the Service. NoCFO does not process personal data for marketing purposes without the explicit consent of the data subject.
13. Amendment of the Agreement
NoCFO may amend these Terms by notifying of changes through the Service or on its website. Continued use after the changes take effect constitutes acceptance. If the Customer does not accept the changes, either Party has the right to terminate the Agreement.
14. Deadline for claims
Claims based on the Agreement must be submitted within six (6) months of the basis for the claim.
15. Assignment of the Agreement
The Customer may not assign the Agreement without NoCFO's written consent. NoCFO may assign the Agreement to a third party.
Annex: Data Processing Agreement (DPA)
This annex is part of the NoCFO Service General Terms and supplements the Agreement between the Customer (data controller) and NoCFO Oy (data processor).
1. Subject and nature of processing
NoCFO processes personal data on behalf of the Customer for providing, maintaining, developing, analysing, and automating the Service. Processing includes the technical processing of financial management documents and data stored in the Service.
2. Personal data processed
Data processed on behalf of the Customer may include:
Names, contact, and address details of the Customer's clients, employees, partners, or other data subjects
Billing details, bank account details, and payment data
Vouchers, receipts, bank statements, transaction data, and other financial management material
Other data entered into the Service by the Customer or their end users
The Customer is responsible for ensuring that data is lawfully collected and that the Customer has the right to transfer it to NoCFO for processing.
3. Processor's obligations
NoCFO commits to processing personal data:
Only in accordance with applicable data protection legislation
Exclusively in accordance with the Agreement and this annex
Only in accordance with the Customer's documented instructions
NoCFO ensures that personal data is processed only by persons bound by a statutory or contractual confidentiality obligation.
NoCFO does not permit authorities to access data without a lawful order (such as a court order).
NoCFO notifies the Customer without delay of data security breaches so that the Customer can fulfil their statutory notification obligations. NoCFO provides the Customer, upon request, with reasonable information or certificates about the Service's data security. However, the Customer does not have the right to carry out their own physical audit of NoCFO's premises or systems without NoCFO's prior written consent.
4. Processing for service development
NoCFO has the right to process Customer material — including vouchers, receipts, bank statements, bank transactions, and other financial data — for analysing, developing, implementing automation, and improving the quality of the Service.
Development processing may include:
Technical analysis of data
Classification and modelling
Training of algorithms or machine learning models
Error detection and performance optimisation
Processing does not include the use of personal data for marketing or the disclosure of data to third parties for purposes other than those essential to providing the Service.
5. Subcontractors and data transfers
NoCFO may use authorised subcontractors for the processing of personal data. Subcontractors operate under NoCFO's supervision and only in accordance with this annex. Personal data may be transferred outside the EU/EEA if necessary for providing the Service and if transfers meet the legal protection requirements (e.g. standard contractual clauses or the EU–US Data Privacy Framework).
6. Data controller's obligations
The Customer is responsible for ensuring that:
The processing of personal data in the Service is lawful
Data stored in the Service is accurate
Data subjects' information obligations are fulfilled
Any required authority notifications are made appropriately
The Customer accepts that NoCFO acts as the data processor in accordance with the Agreement and this annex.
7. Data security
NoCFO implements appropriate technical and organisational measures to protect personal data. Data security is regularly assessed and updated.
8. Deletion or return of personal data
Customer material is deleted from the Service three (3) months after the termination of the Agreement, unless legislation requires longer retention.
The Customer is responsible for retaining their own accounting and statutory records after the termination of the Agreement.
This annex supplements the Agreement and is valid as long as the Agreement is in effect.