Clauses
Open
Limiting each party's liability
>
Unrecoverable Damages
X.X.  Unrecoverable damages

Damages the Parties Will Not Be Liable For:

  • General Business Impact Damages. Except to the extent they fall within a party’s Uncapped Liabilities or Data Breach Liabilities, neither party will be liable for damages arising from the other party's: (i) lost revenues; (ii) diminished business value, goodwill, or reputation; or (iii) reduced future revenues, business opportunities, competitive advantages, or market share.
  • Customer Damages from Special Circumstances (Consequential Damages). Customer acknowledges that the Cloud Services are standardized and are not tailored to Customer’s special circumstances. Customer waives any right to bring a claim against Provider for damages that are foreseeable only because Customer informed Provider of those circumstances before entering into this Agreement.
  • {"name":"Exclude Damages from Generative AI","addText":"Customer Damages from Generative AI Outputs. Provider will not be liable to Customer for any damages arising from Customer’s use, reliance on, or distribution of Generative AI Outputs, including damages arising from any Claim by an Outside Entity against Customer."}
  • {"name":"Exclude damages from external tools","addText":"Customer Damages from use of external tools. Provider will not be liable to Customer for any damages caused by the actions or inactions of a provider of an External Tool. These damages may include those resulting from the loss or modification of Customer Content, or from impacts to how the Cloud Services operate. If this liability exclusion is not enforceable under applicable law, Provider’s total cumulative liability for such damages will not exceed [$5,000] U.S. dollars."}
  • {"name": "Exclude damages from high risk uses", "addText": "Customer Damages from High Risk Uses and Data Submissions. Provider will not be liable to Customer for any damages arising from: (1) any Claim by an Outside Entity that results from[ Customer’s submission of Protected Health Information to the Cloud Services without a BAA in place, or] Customer’s submission of inaccurate Customer Content to the Cloud Services; or (2) Customer’s use of the Cloud Services for High Risk Activities."}
  • {"name":"Exclude damages from trials","addText":"Customer Damages from Trials or Pre-Release Features. Provider will not be liable to Customer for any damages arising from Customer’s use of Pre-Release Features or use of the Cloud Services during a Trial. However, if this liability exclusion is not enforceable under applicable law, Provider’s total cumulative liability for such damages will not exceed [$1,000] U.S. dollars."}
Before you copy and paste
  • Is excluding lost revenues reasonable given how our customers use the Cloud Services?<endsummary>In B2C businesses, the Cloud Services may play a direct role in generating revenue — for example, powering checkout flows, ticket sales, or customer transactions. If the service goes down, the customer may miss real-time sales — and see that lost revenue as the most immediate harm. That’s one reason some B2C customers may question the “lost revenues” exclusion, especially in industries where real-time outages have caused major losses. That risk became very real in 2024, when Delta Air Lines sued cybersecurity firm CrowdStrike after a software update issue led to grounded flights and disrupted operations. In contrast, B2B customers are less likely to rely on Cloud Services for real-time revenue capture. Instead, the service may support internal workflows, collaboration, or back-office processes. If there’s an issue with the services, the disruption might slow projects or affect client relationships — but the impact is more diffuse, and direct revenue loss is less likely to occur immediately. That makes the exclusion of lost revenues feel more commercially reasonable in many B2B settings. Many customers still accept lost revenue exclusions as standard, but if you’re negotiating with customers who depend on the Cloud Services for revenue-facing operations, it’s worth considering how this will land.  And if you do remove it, remember that your monetary cap becomes the key safeguard against runaway exposure.
  • Should we exclude damages from Trials or Pre-Release Features?<endsummary>If you offer Customers free access to the full service for a limited time (as a Trial), or early access to experimental or evolving features (as Pre-Release Features), this exclusion helps clarify that Customers use those features at their own risk. Customers are typically not paying for these uses, or understand that the features may not be complete or stable. If you already have a separate section or agreement that covers Trials or Pre-Release Features, adding the exclusion here may be duplicative, or even inconsistent. Include the exclusion here if you want to consolidate all liability terms in one place.
  • Should we exclude damages from External Tools?<endsummary>
    • What problem does this carveout address? Cloud Services often depend on integrations, but when an External Tool malfunctions, it can cause ripple effects that impact how the Cloud Services behave. This carveout draws a clear line: the Provider will not be liable for damages caused by External Tools, even if those damages show up inside the Cloud Services.
    • Does this match how you present the Cloud Services? Customers may view certain External Tools as part of the Cloud Services, especially if the integration is built-in, recommended, or prominently featured. Before including this carveout, check your marketing, onboarding, and customer success materials. If they suggest that you take responsibility for integrated tools, this exclusion may feel unfair. Consider how much choice or visibility Customers have in using the tool.
    • Does this conflict with your performance warranty? If your agreement includes a warranty or commitment regarding the performance of the Cloud Services, make sure this carveout does not conflict with it. This exclusion makes clear that the Provider is not responsible for performance issues caused by External Tools, so your warranty and supporting documentation should not suggest otherwise. Align your documentation and commitments to avoid mixed signals about what the Provider stands behind.
  • Should we exclude damages from high-risk uses or data submissions?<endsummary> This exclusion might be appropriate if you are concerned that Customers could: (1) use the Cloud Services for high-risk activities, (2) submit Protected Health Information without a Business Associate Agreement, or (3) submit inaccurate Customer Content that triggers third-party claims. If only some of these risks apply to your Cloud Services, consider narrowing the exclusion to match the relevant scenarios.
  • Should we exclude damages arising from Generative AI Outputs?<endsummary>This clause limits your liability to customers for damages caused by how Customers use, rely on, or distribute Generative AI Outputs.
    • Why it could be valuable to you as a provider: A disclaimer helps clarify that provider makes no guarantees about the outputs, but it may not block claims for harm caused by flawed or risky outputs. This carveout draws a clearer line, placing responsibility for downstream harm on the Customer, who controls how outputs are used. This can be important if outputs are used in sensitive contexts or unpredictable ways.
    • Why it might be contentious: This clause doesn’t contain a lot nuance, which means the exclusion might apply even if the output issues stem from the provider’s own negligence.  Some customers will argue that it unfairly shifts all risk.
    • When it’s worth including — and whether to tailor it: If Generative AI is a core feature and you have little control over how Outputs are used, this carveout could offer important risk protection. To reduce pushback, you could Providers consider tailoring the scope — for example, excluding only certain categories of claims, or clarifying that the carveout does not apply in cases of gross negligence. But in practice, clean lines are hard to draw. Most agreements either include a broad carveout or leave it out entirely.
  • How will we make this clause conspicuous?<endsummary>We’ve used boxed formatting here to make the section stand out, but that won’t carry over when you copy it. All-caps can hurt readability, so legal teams are starting to use bold text or visual styling (like a box) to meet conspicuousness requirements. Before you paste this clause into your contract, consider either toggling on bold formatting above or applying your own styling in your document.

Why we wrote it this way
  • Why we focus on the phrase “special circumstances” as the basis for “consequential damages”<endsummary>This clause uses the term “consequential damages”, but it doesn’t rely on that label alone. Instead, it addresses the legal principle that is often used to explain when consequential damages are recoverable — a test that comes from Hadley v. Baxendale, a foundational contract case still followed by courts today. Under it, a party is only liable for losses caused by special circumstances if, at the time of contracting, those circumstances were disclosed — and the resulting losses were reasonably foreseeable.Although Hadley didn’t use the phrase “consequential damages,” that term later became a shorthand for this second category of recoverable losses. But over time, lawyers and courts have used it to mean very different things — sometimes referring to indirect or ripple effect losses, and other times to damages that are remote or unforeseeable. That kind of ambiguity leads to confusion and mismatched expectations.  Many other legal scholars and commentators have questioned the consequential damages waiver in various contexts, such as here, here, and here.That’s why this clause expresses the concept directly — and then excludes those damages, even when the legal test would otherwise allow them.Why “consequential damages” is especially confusing in cloud agreementsThe phrase “consequential damages” appears in many contracts by default, often without a shared understanding of what it actually covers. Courts interpret it inconsistently, and even experienced lawyers can’t always agree on what’s in or out. That makes it harder to know what’s really being excluded — and whether the parties actually intended that result.This is especially problematic in cloud services agreements, where data breach fallout can be a major risk. Many of the most costly consequences of a breach — such as:
    • Regulatory fines
    • Notification costs
    • Forensic investigation costs
    — are often treated as consequential damages. Yet when those costs result from a failure to meet contractual obligations, neither party typically intends to exclude them. The label creates more confusion than clarity.Why this clause takes a clearer approachRather than relying on the term “consequential damages” to carry the weight, this clause spells out what’s excluded: damages arising from special circumstances — including risks tied to a Customer’s unique operational setup, their high-value contracts with others, or their specialized regulatory obligations. These are the kinds of losses that might be foreseeable if disclosed, but the clause makes clear that the Cloud Services are a standardized offering — and that disclosure alone doesn’t make those losses recoverable.
  • Why we don’t use the phrase “special damages”<endsummary>Most drafters use the term “special damages” as a synonym for consequential damages — but this clause already addresses that concept directly. Including both terms is a common boilerplate habit, but it creates unnecessary ambiguity: if a contract waives both “special” and “consequential” damages, courts may assume they mean different things and try to distinguish them. That’s where confusion creeps in. Some courts interpret “special damages” using tort-based definitions — like specific, measurable losses — which have nothing to do with contract foreseeability. To avoid that kind of interpretive guesswork, this clause leaves the term out entirely and focuses on the well-established principle of special circumstances and foreseeability instead.
  • Why we don’t use the phrase “indirect damages”<endsummary>“Indirect damages” is a vague and inconsistently applied term. Some contracts use it as a synonym for consequential damages, while others treat it as a broader catch-all for ripple-effect losses — but few define it clearly. Courts often struggle to distinguish it from other damages categories, and the result is legal uncertainty about what’s actually being excluded. In practice, most parties who want to exclude “indirect damages” are really trying to avoid responsibility for business impact losses — like diminished goodwill, lost market share, or reduced future revenues. These are ripple-effect harms that aren’t tied to a specific failure, but instead reflect broader commercial fallout. Rather than rely on the unclear label “indirect damages,” this clause identifies those risks directly — and excludes them. That gives both parties a clearer understanding of what’s in and what’s out, without relying on an imprecise term.
  • Why we don’t use the phrase “incidental damages”<endsummary>While “incidental damages” is defined under the Uniform Commercial Code for goods, the term has no clear or consistent meaning in SaaS or service contracts. Courts have treated it differently, sometimes as a subset of consequential damages, sometimes as a separate category covering mitigation or workaround costs, like engaging a temporary vendor or restoring lost data. That vagueness creates risk. In a data breach, for example, a customer’s reasonable costs to respond—like hiring a breach response team or complying with legal notice obligations—might be labeled “incidental.” A blanket exclusion could be read to bar those entirely, even though both parties would likely expect them to be recoverable. Some providers exclude incidental damages as another method of reducing liability. But in our view, a well-scoped monetary cap already serves that purpose. Including the term risks cutting off recovery for reasonable, foreseeable costs the contract should cover—so we’ve chosen not to use it.
  • Why we don’t use the phrase “exemplary damages”<endsummary>Exemplary damages (also called punitive damages) are intended to penalize especially wrongful conduct — like fraud, bad faith, or intentional harm. Many contracts exclude exemplary damages by reflex — as part of a boilerplate list of damages categories. But including that kind of exclusion may suggest the agreement is trying to shield both parties from liability, even if they commit serious misconduct. That’s not the intent here, so we leave exemplary damages out.
  • Why we don’t use the phrase “punitive damages”<endsummary>This clause doesn’t use the phrase “punitive damages” (or its synonym, “exemplary damages”). These types of damages are meant to punish especially wrongful conduct — like fraud, bad faith, or intentional harm — and are rarely awarded in commercial contract disputes. Many contracts exclude them reflexively, as part of a boilerplate list of damages categories. But doing so may suggest that the agreement is trying to shield the parties from liability even for serious misconduct. That’s not the intent here, so this clause leaves both terms out.
  • Why we use “lost revenues” instead of “lost profits”<endsummary>This clause excludes lost revenues rather than just lost profits to draw a clearer, more defensible boundary around income-based claims. Using the phrase “lost profits” can lead to disputes, not just about how much was lost, but about what counts as profit in the first place. Determining which profits were loss depends on  assumptions about which costs would have applied, what margins would have been, and how to account for hypothetical outcomes. That complexity can make the exclusion harder to enforce. Excluding lost revenues helps avoid those definitional debates. It focuses the exclusion on the total income the customer expected to earn — without having to argue over what portion of that income would have been retained as profit. And because profits are just a portion of revenue, this exclusion still covers them by default. While revenue loss claims can still raise factual questions about the amount, this approach gives both sides a cleaner starting point for what’s in or out of scope.

Optional variations
Modify text below to replace it.
Oops! Something went wrong while submitting the form.
{"optionalVariations":{"option1":{"name":"Exclude Damages from Generative AI","default":"checked","afterText":" those circumstances before entering into this Agreement.</li>","addText":"<li><strong>Customer Damages from Generative AI Outputs.</strong>&nbsp;Provider will not be liable to Customer for any damages arising from Customer’s use, reliance on, or distribution of Generative AI Outputs, including damages arising from any Claim by an Outside Entity against Customer.</li>","displayedText":"Exclude damages arising from Generative AI Outputs"},"option2":{"name":"Exclude damages from external tools","default":"checked","afterText":" those circumstances before entering into this Agreement.</li>","addText":"<li><strong>Customer Damages from use of external tools</strong>&nbsp;Provider will not be liable to Customer for any damages caused by the actions or inactions of a provider of an External Tool. These damages may include those resulting from the loss or modification of Customer Content, or from impacts to how the Cloud Services operate. If this liability exclusion is not enforceable under applicable law, Provider’s total cumulative liability for such damages will not exceed [$5,000] U.S. dollars.</li>","displayedText":"Exclude damages from External Tools"},"option3":{"name":"Exclude damages from high risk uses","default":"checked","afterText":" those circumstances before entering into this Agreement.</li>","addText":"<li><strong>Customer Damages from High Risk Uses and Data Submissions.</strong>&nbsp;Provider will not be liable to Customer for any damages arising from: (1) any Claim by an Outside Entity that results from[ Customer’s submission of Protected Health Information to the Cloud Services without a BAA in place, or] Customer’s submission of inaccurate Customer Content to the Cloud Services; or (2) Customer’s use of the Cloud Services for High Risk Activities.</li>","displayedText":"Exclude damages from High-Risk Uses or Data Submissions"},"option4":{"name":"Exclude damages from trials","default":"checked","afterText":" those circumstances before entering into this Agreement.</li>","addText":"<li><strong>Customer Damages from Trials or Pre-Release Features.</strong>&nbsp;Provider will not be liable to Customer for any damages arising from Customer’s use of Pre-Release Features or use of the Cloud Services during a Trial.&nbsp;However, if this liability exclusion is not enforceable under applicable law, Provider’s total cumulative liability for such damages will not exceed [$1,000] U.S. dollars.</li>","displayedText":"Exclude damages from Trials or Pre-Release Features"}}}
Definitions
  • Uncapped Liabilities<endsummary>
    1. Provider’s liabilities under the “Provider’s Obligations to Handle Service Infringement Claims” Section[ and the “Customer’s Obligations to Handle Claims Arising from Misuse” Section”];
    2. either party’s liabilities from any claim that it infringed or misappropriated the other party’s Intellectual Property Rights;
    3. either party's liabilities from any claim that it breached the “Maintaining Confidentiality” Section, excluding obligations pertaining to Customer Content; and
    4. liabilities that cannot be limited by law
  • Data Breach Liabilities<endsummary>a party’s cumulative total liability for any claims resulting from its breach of the “Maintaining Confidentiality” Section (solely those obligations pertaining to Customer Content), the “Implementing Security and Privacy Measures” Section, or the DPA
Related clauses
Close Modal