Whatever arrangement you need, it consists of three parts: escrow agreement, verification & deposit.
The escrow agreement is the legal document in which you record all agreements made.
We release the materials in our custody (the repository) to the beneficiary or foundation if the software vendor can no longer ensure the continuity of the software application. Then any arrangements for temporary continuation of services that may have been agreed with the service provider take effect. We release the materials under strict conditions and based on verifiable facts that must be consistent with the grounds for continuation from the escrow agreement.
Thus:
We check the material given on deposit so that software vendors and users can be sure that the material is complete and working properly. We call that Technical Verification Service (TVS). We perform these at four levels (TVS Levels), depending on the situation and supplier and user requirements.
This basic verification is standard in our services; we perform it on every submission of material. It is basic verification, including checking for material integrity. It provides assurance that the material deposited is, among other things, virus-free, accessible and of the expected type.
This is basic verification, including an audit on the material given on deposit.
With a complete verification, it can be shown that the material deposited meets the stated continuity purposes of the escrow arrangement. An escrow for SaaS has different interpretations of complete verification, depending entirely on the construction of the escrow for SaaS arrangement where the main objective is always to verify that the deposited material meets the stated continuity objectives. Thus, verification can focus on such things as the technical continuation of the application and hosting environment, re-deploying the application in another environment, rebuilding the application, up to and including a fallback similar to disaster recovery. A complete verification can be compared to a fire drill – our verification consultant simulates the steps that are also taken in an escrow situation.
The scope of the complete verification is discussed in advance with the parties involved and recorded in a project plan. In this way, it is clear to all parties what tests are being conducted and what the expected results should be. Generally, therefore, full verification of SaaS involves customisation and may include;
TVS-level 3 is performed at Escrow Alliance’s software lab or if necessary or desirable at the software vendor’s location.
Customised verification is possible, consider:
The deposit (escrow deposit) consists of materials needed to ensure continuity if the supplier goes out of business. Therefore, the material must contain everything to ensure the desired continuity.
Consider:
Thus, in escrow for SaaS, the material does not consist only of source code. In some cases, source code does not even play a role.
We like to make submitting material as easy, efficient and manageable as possible. Therefore, we look at the options available to the software vendor.
Submissions can be made, for example, via:
Escrow Alliance offers standard dual material storage. That is, we keep a copy of the deposit in two geographically separate locations.
Storage takes place in the Netherlands and can:
The vaults are ISO 9001 and ISO 27001 certified, as is Escrow Alliance itself. Only authorised and screened personnel have access to the vaults.
In the escrow agreement, we make it standard that the deposits will be returned to the supplier or go to a newly designated escrow agent if Escrow Alliance unexpectedly goes out of business. To fulfill this promise, the Continuity and Guarantee Escrow Alliance (SCWEA) Foundation manages the vaults. The foundation has the right to return materials in that case.
Find out about the possibilities, we are happy to think along with you.