Bot Manager Resources

Radware Service Provider AI
Use Undertaking

  1. Scope and Incorporation. This Responsible AI Use Undertaking applies to each supplier, subcontractor, consultant, contractor, reseller, channel partner, implementation partner, support provider, developer, professional services provider, and other third party (“Service Provider”)_ that uses, or seeks to use, any artificial intelligence, machine learning, generative AI, large language model, coding assistant, image, audio, video, data analysis, automation, agentic, retrieval, plug-in, or similar tool or service (each, an “AI Tool”) in connection with services, deliverables, support, processing, development, testing, integration, implementation, security, operations, or other work (“Service”) performed for or on behalf of Radware Ltd., its affiliates, or their customers (“Radware”). This Undertaking is incorporated into any agreement, purchase order, statement of work, order form, or other arrangement that references the applicable Radware URL or otherwise incorporates them. It supplements, and do not limit, any confidentiality, privacy, security, data protection, intellectual property, export, sanctions, audit, professional standard, or other obligation owed to Radware. Where obligations overlap, the more protective obligation applies. The version posted at the applicable Radware URL is the current version, unless the applicable contract states a different versioning rule.
  2. Permitted AI Use. The Service Provider may use an AI Tool for Radware-related work only where the use is lawful, appropriate for the Service, permitted by the applicable agreement, reviewed under the Service Provider’s internal AI governance process, and protected by controls suitable for the relevant data and use case. Consumer, public, free, trial, unmanaged, or individual AI accounts may not be used with Radware Data. Radware may require prior written approval for AI use involving confidential information, customer information, personal data, source code, credentials, security information, regulated data, production environments, or customer-facing deliverables; Radware will respond to approval requests within ten (10) business days, and in case there is no response within this time period – it will be considered as a denial of such request.
  3. Radware Data. “Radware Data” means all non-public information, materials, code, credentials, content, records, customer information, personal data, product information, security information, business information, prompts, inputs, uploaded files, retrieved context, embeddings, logs, outputs, and AI-assisted work product that relates to Radware, Radware customers, Radware systems, Radware products, or Radware matters. Radware Data must be treated as Radware Confidential Information. Access must be limited to personnel who need access to perform approved services and who are bound by appropriate confidentiality and security obligations. The Service Provider must limit AI inputs to the minimum information reasonably necessary to provide the Service and must consider redaction, masking, anonymization, aggregation, pseudonymization, or synthetic substitutes before using Radware Data. Radware Data may be retained in or through an AI Tool only for the shortest period necessary to provide the authorized service, comply with applicable law, or satisfy an agreed retention requirement. The Service Provider must be able to delete Radware Data from prompt histories, uploaded files, logs, caches, workspaces, vector databases, embeddings, repositories, and related systems when no longer needed or when requested by Radware, subject only to mandatory legal retention obligations.
  4. No Training, Sharing, or Reuse. The Service Provider must ensure that Radware Data is not used to train, fine-tune, improve, evaluate, benchmark, validate, enrich, or otherwise enhance any model, service, product, dataset, demonstration, or feature, unless Radware expressly approves in writing. This restriction applies to the AI Tool, underlying model provider, hosting provider, infrastructure provider, plug-in, connector, retrieval system, vector database, and any other component of the AI workflow. Radware Data and outputs derived from Radware Data may not be disclosed, exposed, suggested, reused, or made available to any other customer, tenant, model, user, product, or third party, except as expressly authorized for Radware’s benefit.
  5. Minimization, Retention, and Deletion. The Service Provider must limit AI inputs to the minimum information reasonably necessary to provide the Service and must consider redaction, masking, anonymization, aggregation, pseudonymization, or synthetic substitutes before using Radware Data. Radware Data may be retained in or through an AI Tool only for the shortest period necessary to provide the authorized service, comply with applicable law, or satisfy an agreed retention requirement. The Service Provider must be able to delete Radware Data from prompt histories, uploaded files, logs, caches, workspaces, vector databases, embeddings, repositories, and related systems when no longer needed or when requested by Radware, subject only to mandatory legal retention obligations.
  6. Service Provider Safeguards. Before using an AI Tool with Radware Data, the Service Provider must confirm that applicable provider terms, settings, and technical controls are appropriate for the service and data, including as to confidentiality, tenant segregation, access controls, encryption in transit and at rest, audit logging, storage limits, deletion, and data processing terms where personal data is involved. All safeguards must be consistent with the obligations set out in this Undertaking.
  7. Human Review and Output Quality. AI-assisted work product may not be delivered to Radware, a Radware customer, or any third party as final work product unless reviewed by a qualified human reviewer. The review must address accuracy, completeness, relevance, confidentiality, security, legal and contractual compliance, privacy, intellectual property, open-source implications, bias or unfairness where relevant, and fitness for the intended purpose. AI output must not be treated as an authoritative source.
  8. Restricted Uses. Unless Radware expressly approves the specific use in writing, the Service Provider must not use AI Tools to make decisions with legal, employment, financial, security, access-control, eligibility, or similarly significant effects; generate or modify production code, scripts, configurations, detection logic, security rules, cryptographic material, or infrastructure instructions for Radware environments without appropriate engineering, testing, security, and approval controls; process personal data, customer confidential information, source code, security incidents, or vulnerability information outside an approved environment; circumvent access controls, confidentiality restrictions, sanctions, export controls, privacy requirements, data loss prevention controls, or contractual restrictions; or create unlawful, deceptive, discriminatory, infringing, malicious, or policy-inconsistent content.
  9. Intellectual Property and Third-Party Rights. As between Radware and the Service Provider, Radware retains all rights in Radware Data. To the extent legally possible and subject to the applicable agreement, Radware owns or receives the full benefit of all rights in deliverables, work product, outputs, inventions, analyses, code, documentation, materials, and other results created for Radware or derived from Radware Data. The Service Provider must not use AI Tools in a manner that creates third-party ownership claims, license obligations, open-source obligations, confidentiality concerns, or infringement risk for Radware. AI-assisted code or technical deliverables must be subject to appropriate code review, security testing, dependency review, open-source review, and provenance checks before delivery.
  10. Governance, Training, and Downstream Use. The Service Provider must know which AI Tool is used, who may use it, what data categories may be entered, where data is processed or stored, and which technical and contractual safeguards apply. The Service Provider must maintain internal policies, procedures, and controls governing AI use that meet or exceed current best industry standards and must periodically reassess AI Tools used with Radware Data, including after material changes in provider terms, models, architecture, hosting location, data flows, subprocessors, functionality, or use case. The Service Provider personnel who may use AI Tools for Radware-related work must receive training before use and periodically thereafter. The Service Provider may not permit subcontractors, freelancers, affiliates, offshore resources, or downstream providers to use AI Tools with Radware Data unless permitted by the agreement with Radware and bound by written obligations at least as protective as this Undertaking. The Service Provider remains responsible for all downstream AI use and related work product, disclosures, incidents, and compliance failures.
  11. Records, Audit, Incidents, and Responsibility. The Service Provider must maintain records sufficient to demonstrate compliance and, upon Radware’s reasonable request, provide certifications, policies, assessment summaries, training records, provider assurance materials, relevant contract excerpts, data flow descriptions, or other evidence reasonably needed to verify compliance. The Service Provider must promptly notify Radware of any actual or suspected unauthorized access to, disclosure of, loss of, retention of, training on, or misuse of Radware Data through an AI Tool, or any AI-related issue that may affect confidentiality, integrity, availability, ownership, legality, accuracy, or security. Radware may require information, suspension of AI use, deletion or return of Radware Data, replacement of affected deliverables, remediation, and other measures required by the agreement or law. AI use does not reduce the Service Provider’s obligations or liability, and the Service Provider is responsible for AI-assisted work product as if created without AI assistance.

Contact Radware Sales

Our experts will answer your questions, assess your needs, and help you understand which products are best for your business.

Already a Customer?

We’re ready to help, whether you need support, additional services, or answers to your questions about our products and solutions.

Locations
Get Answers Now from KnowledgeBase
Get Free Online Product Training
Engage with Radware Technical Support
Join the Radware Customer Program

Get Social

Connect with experts and join the conversation about Radware technologies.

Blog
Security Research Center
CyberPedia