Secure File Transfer Protocol – Services Addendum

This Secure File Transfer Protocol (“SFTP”) – Services Addendum (this “SFTP Addendum”) governs Customer’s use of the SFTP Services made available by Bank. Customer and Bank have previously entered into the Master Treasury Services Agreement. Customer has executed the Implementation Form and wishes to use the Secure File Transfer Protocol Services pursuant to the terms of this SFTP Addendum. Unless otherwise defined herein, all capitalized terms shall have the meanings set forth in the Master Treasury Services Agreement.

The SFTP Service enables secure file transfer capabilities between networked hosts. SFTP Service also provides remote file system management functionality, allowing applications to resume interrupted file transfers, list the contents of remote directories, and delete remote files.

SFTP Services provide a secure transmission channel. Depending on the applicable service, files transmitted through SFTP Services may be generated, delivered, or processed by Bank, a third-party service provider, or Customer, as further described in this SFTP Addendum.

  1. Security. A Site ID and Password may be delivered to provide access to a secure site through the SFTP process. Customer is solely responsibility for the use and confidentiality of such Site ID and Password, and such access to the data on the applicable SFTP server through use of the Site ID and Password. Bank or, as applicable, its third-party service provider may suspend or revoke the access granted to the Site at any time at its sole discretion.
  2. Data Security. Enterprise grade encryption is used for data security with all transmissions. The IP address must meet authorized requirements for approved transmission options.
  3. Third Party Agents of Customer. Customer may be using special equipment, services or software provided by a third party to assist it in processing files hereunder (“Third Party”). Customer (i) agrees that any Third Party is acting as Customer’s agent in the delivery of files to Bank or its third-party service provider, and (ii) agrees to assume full responsibility and liability for any failure of that Third Party to comply with the Applicable Laws or this Agreement. Bank or its third-party service provider will not be liable for any losses or additional costs incurred by Customer as a result of any error by a Third Party or a malfunction of equipment provided by a Third Party. Customer is solely responsible for maintaining compliance with the requirements of any Third Party, including obtaining any software updates. Bank or its third-party service provider shall not have any responsibility for any file handled by a Third Party until that point in time that Bank or its third-party service provider accepts and approves a file from such Third Party for processing.
  4. Bank Third-Party Service Providers. Notwithstanding anything to the contrary in this SFTP Addendum, following Customer’s election, certain SFTP reporting services may be provided through automated file generation and transmission by one or more third-party service providers engaged by Bank to support such automated reporting. Bank does not initiate, transmit, receive, or process such automated reporting files and does not exercise operational control over their generation or delivery. Such automated reporting services are limited to recurring, informational reporting only and do not permit or support the initiation, modification, or authorization of transactions of any kind. This Section 4 applies solely to the secure transmission of automated, informational reporting files generated and delivered by Bank’s third-party service provider, and does not expand Bank’s role or responsibilities other than those expressly set forth in this SFTP Addendum.

Last revised January 2026