Service Level Agreement
Last Updated: 01 May 2025This SLA forms part of the Master Services Agreement between Netix Digital Ltd (Supplier) and our clients (Customer). It outlines our service commitments, responsibilities, and remedies for service failures.
Table of Contents
1. Services Covered
This agreement applies to the following managed services provided by Netix Digital:
- IT Helpdesk and User Support
- Network Monitoring and Management
- Cloud Infrastructure Services
- On-Premise Infrastructure Support
- Backup and Disaster Recovery Services
- Security Services (anti-virus, patch management)
Third-party services not explicitly listed above are excluded from this SLA.
2. Key Definitions
Business Hours: 08:30 to 18:00 GMT, Monday to Friday, excluding UK public holidays.
24/7 Support: Available if contracted; otherwise incidents outside business hours are addressed the next business day.
Incident: An unplanned service interruption or managed device failure, categorised by severity.
Response Time: Duration from incident report to initial acknowledgment and diagnosis.
Resolution Time: Duration from report to service restoration or workaround implementation.
Uptime: Service availability expressed as a monthly percentage: ((Total minutes – Unplanned Downtime) / Total minutes) × 100%.
Scheduled Maintenance: Pre-planned downtime excluded from uptime calculations.
3. Service Availability Commitment
- Core Services Uptime: 99.9% each calendar month
- 24/7 system monitoring with automatic engineer alerts
- Monthly uptime reports available upon request
Uptime Measurement: Service availability is measured by the Supplier's monitoring platform, which constitutes the authoritative source for uptime calculations. The Supplier shall make monitoring data available to the Client upon reasonable request. In the event of a dispute regarding measured downtime, the parties shall review the monitoring data together and agree the applicable measurement. If agreement cannot be reached, the dispute resolution provisions of the MSA shall apply.
4. Incident Priority Levels & Response Times
| Priority | Description | Response | Resolution Target |
|---|---|---|---|
| P1 - Critical | Major business outage, network down, security breach | 15 minutes (24/7) | 4 hours |
| P2 - High | Multiple users affected, critical feature unavailable | 1 hour (business hours) | 1 business day |
| P3 - Medium | Small user group impact, non-critical system | 4 hours (business hours) | 2–3 business days |
| P4 - Low | Minor issues, routine requests | 1 business day | 5 business days |
Security incidents are classified as P1 regardless of time of day.
5. Customer Support & Communication
Support Channels
- Phone: 📞 01788 494015
- Email: help@netix.digital
- Web Portal: portal.netix.digital
Status Update Frequency
- P1: Hourly updates during resolution
- P2: Every 4 hours
- P3/P4: Daily or upon status change
Escalation Path
Service Desk Team Leader → Service Manager → Technical Director
Planned Maintenance Notice: The Supplier shall provide the Client with at least 5 business days' written notice of scheduled maintenance that may affect Service availability. Where 5 business days' notice is not practicable (for example, where a vendor or upstream provider requires urgent maintenance, or where an emergency security patch must be applied), the Supplier shall provide as much notice as reasonably possible, and in any event not less than 24 hours.
Service Reviews: Quarterly meetings (or monthly if agreed).
6. Scheduled Maintenance & Exclusions
SLA commitments do not apply to downtime caused by:
- Scheduled Maintenance: Typically Sundays 00:00–04:00; emergency patches communicated as soon as practicable
- Customer-Approved Changes: Downtime caused by customer-authorised modifications
- Third-Party Issues: ISP outages, external service failures, customer infrastructure
- Force Majeure: Natural disasters, widespread infrastructure failures beyond our control
- Large-Scale Cyberattacks: DDoS or widespread malware where best practices were followed
7. Service Credits for SLA Breaches
Response Time Missed
5% of monthly fee per incident; capped at 20% of monthly fees in any calendar month.
Resolution Target Missed
- P1: 10% of monthly fee
- P2: 5% of monthly fee
Availability SLA Breach
- 99.0%–99.9% uptime: 5% credit
- 95.0%–98.9% uptime: 10% credit
- Below 95.0% uptime: 20% credit
Maximum Credit: 50% of monthly service fees in any given month.
Claiming Credits: Notify us in writing within 30 days of the breach. Credits are the sole compensation for SLA failures.
Resolution Credits - P3 and P4
Service credits do not apply to missed resolution targets for P3 (Medium) or P4 (Low) priority incidents. P3 and P4 resolution targets are provided as guidelines reflecting normal operating performance. Persistent failure to meet P3 or P4 targets may be raised through the service review process.
Application of Credits
Approved service credits shall be applied as a deduction against the next monthly invoice following approval. If the credit exceeds the value of the next invoice, the balance shall carry forward to subsequent invoices until fully applied. Where this Agreement or the affected SOW terminates before credits are fully applied, the Supplier shall refund any remaining credit balance within 30 days of the termination date. Service credits are the Client's sole and exclusive remedy for the relevant SLA failure and do not give rise to any further claim for damages.
8. Security & Data Protection
We comply with the Data Protection Act 2018 and UK GDPR. Our security measures include:
- Current anti-virus/anti-malware on all endpoints and servers
- Patch Management Timelines: The Supplier shall deploy security patches in accordance with the following timelines, measured from the date the patch is made generally available by the vendor:
- Zero-day / actively exploited vulnerabilities: as soon as reasonably practicable, targeting deployment within 72 hours. Where immediate patching is not feasible, the Supplier shall implement compensating controls (such as blocking rules, access restrictions, or temporary service isolation) within 24 hours and notify the Client.
- Critical severity patches (CVSS 9.0+): within 14 days of release.
- High severity patches (CVSS 7.0–8.9): within 30 days of release.
- Medium and low severity patches: within 60 days of release, or as part of the next scheduled maintenance window, whichever is sooner.
- 24/7 monitoring of critical systems
- Multi-factor authentication for all administrative access
- Encrypted backups for sensitive data
Customer Responsibilities
- Maintain strong passwords and follow security guidelines
- Coordinate third-party changes with Netix Digital
- Report suspected security breaches immediately
Security Incident Response
All security incidents are treated as P1. Customers are notified without undue delay (target: within 1 hour). A written incident report is provided post-resolution.
9. Termination for Repeated Failure
Trigger: SLA failures for 3 consecutive months, or 4 months in any rolling 6-month period.
Notice: 30 days written notice to remediate. Failure to improve allows the Customer to terminate without penalty; pro-rata refunds apply.
10. Exclusions
No SLA breach occurs when non-performance is caused by:
- Force Majeure events
- Third-party provider outages (Microsoft 365, Azure, AWS, telecom providers)
- Customer actions or omissions
- Advance-notified scheduled maintenance
11. General Terms
Review: Annual review. Amendments require written agreement from both parties.
Governing Law: England and Wales.
Acceptance: Signing the MSA, or use of our services, constitutes acceptance of this SLA.