This Managed Network Services Schedule (“Service Schedule”) forms part of the Master Services Agreement (“MSA”) between Empreus IT Support (“Provider”) and the Client. This Service Schedule should be read in conjunction with the MSA and all referenced legal documents.

In the event of any conflict between this Service Schedule and the MSA, the terms of this Service Schedule shall prevail to the extent of the inconsistency.

This Service Schedule governs the design, supply, installation, configuration, monitoring, and ongoing management of the Client’s network infrastructure. The Provider supplies and retains ownership of all network equipment deployed under this Service Schedule.

In addition to the definitions set out in the MSA, the following definitions apply to this Service Schedule:

• “Managed Network Service” means the network infrastructure management service provided by the Provider under this Service Schedule, including equipment supply, configuration, monitoring, and ongoing management.
• “Network Equipment” means all physical network infrastructure devices supplied by the Provider under this Service Schedule, including but not limited to routers, modems, firewalls, managed switches, wireless access points, VPN appliances, and associated cables, adapters, and mounting hardware.
• “Network Service Term” means the minimum subscription period for the Managed Network Service, which shall match the term of the Client’s active Managed IT Services – Service Schedule (EMPREUS-SS-MIT-001), unless otherwise agreed in writing.
• “Monthly Network Fee” means the recurring monthly subscription fee payable by the Client for the Managed Network Service, as detailed in the Quote.
• “Replacement Value” means the current market replacement cost of Network Equipment as reasonably determined by the Provider at the time of loss, damage, or failure to return.

3.1 Network Design and Planning

The Provider shall design and plan the Client’s network infrastructure in accordance with the Client’s requirements as identified during onboarding or as specified in the Quote. This includes network topology design, equipment selection, IP addressing schemes, and capacity planning.

3.2 Network Equipment Supply

The Provider shall supply the Client with Network Equipment as specified in the accepted Quote. Network Equipment may include:

• Routers and modems
• Firewall appliances
• Managed switches (layer 2 and/or layer 3)
• Wireless access points
• VPN concentrators or appliances
• Network cables, patch panels, and mounting hardware
• Any other network infrastructure devices specified in the Quote

3.3 Installation and Configuration

The Provider shall install, configure, and commission all Network Equipment at the Client’s premises. Configuration includes:

• Router and modem configuration for internet connectivity (NBN, Starlink, or other WAN services)
• Firewall rule sets, security policies, intrusion prevention, and content filtering
• Managed switch configuration including port assignments and link aggregation
• Wireless access point deployment, SSID configuration, and wireless security
• VLAN configuration and network segmentation
• Quality of Service (QoS) configuration for traffic prioritisation (e.g., VoIP, video conferencing)
• VPN setup and management for site-to-site and remote access connectivity
• Integration with the Client’s internet connectivity services (NBN, Starlink, or other) including failover configuration where applicable

3.4 Network Monitoring and Alerting

The Provider shall continuously monitor the Client’s network infrastructure using remote monitoring tools. Monitoring includes:

• Device availability and uptime monitoring (routers, switches, firewalls, access points)
• Bandwidth utilisation and throughput monitoring
• Network latency and packet loss detection
• Security event monitoring and alerting (e.g., intrusion attempts, unusual traffic patterns)
• Automated alerting for device failures, performance thresholds, and connectivity issues

The Provider will respond to network alerts in accordance with the service levels and rates defined in the Managed IT Services – Service Schedule (EMPREUS-SS-MIT-001).

3.5 Firmware and Software Updates

The Provider shall manage firmware and software updates for all Network Equipment, including security patches, feature updates, and bug fixes. Updates will be applied during agreed maintenance windows where possible. Emergency security patches may be applied outside maintenance windows with reasonable notice to the Client.

3.6 Ongoing Management

The Provider shall provide ongoing management of the Client’s network infrastructure, including:

• Firewall rule changes, security policy updates, and access control modifications
• VLAN and network segmentation changes as the Client’s requirements evolve
• QoS adjustments to accommodate new services (e.g., adding VoIP, video conferencing)
• VPN configuration changes (e.g., adding new remote sites, adjusting tunnel parameters)
• Wireless network changes (e.g., adding SSIDs, adjusting coverage, guest network configuration)
• Network documentation and topology diagram maintenance
• Capacity planning and upgrade recommendations

3.7 IT Support

All IT support related to the Managed Network Service — including helpdesk, troubleshooting, on-site visits, after-hours support, and associated service levels and rates — is provided under the Managed IT Services – Service Schedule (EMPREUS-SS-MIT-001). The Client must hold an active Managed IT Services subscription to receive the Managed Network Service.

3.8 Exclusions

The following are not included in the Managed Network Service:

• Internet connectivity services (provided under NBN Services, Starlink Services, or other connectivity schedules)
• Internal structured cabling, cable runs, or patch panel installation (quoted separately if required)
• Electrical works required for equipment installation
• End-user devices (desktops, laptops, phones) — covered under Managed IT Services or HaaS
• Third-party cloud or SaaS platform configuration (unless specified in the Quote)
• Physical security systems (CCTV, access control) unless integrated with the managed network and specified in the Quote

4.1 Retained Ownership

All Network Equipment supplied under this Service Schedule remains the exclusive property of the Provider at all times during and after the Network Service Term. The Client acquires no ownership interest in the Network Equipment.

4.2 No Encumbrances

The Client shall not sell, lease, sublease, mortgage, pledge, encumber, or otherwise create any security interest in the Network Equipment, nor permit the equipment to be seized, levied upon, or subject to any legal process without the Provider’s prior written consent.

4.3 Asset Register

The Provider shall maintain an asset register of all Network Equipment deployed at the Client’s premises, including device type, serial numbers, model details, firmware versions, deployment dates, and physical locations. The Client shall not remove, obscure, or alter any asset tags or identification markings.

4.4 Loss, Damage, and Theft

The Client shall notify the Provider within 24 hours of becoming aware of any loss, theft, or damage to Network Equipment. If Network Equipment is lost, stolen, or damaged beyond economical repair due to the Client’s negligence, misuse, or failure to comply with this Service Schedule, the Client shall be liable for the Replacement Value of the affected equipment, plus a $300 administrative fee per item.

4.5 Return of Equipment

Upon expiry or termination of this Service Schedule, the Client shall make all Network Equipment available for collection by the Provider within 7 days, in good working order, normal wear and tear excepted.

If the Client fails to make Network Equipment available for collection within 7 days of the termination or expiry date, the Client shall be charged the Replacement Value of the equipment, plus a $300 administrative fee per item. Monthly Network Fees shall continue to accrue until the equipment is collected or the Replacement Value is paid.

5.1 Minimum Term

The Managed Network Service is subject to a minimum Network Service Term that matches the term of the Client’s active Managed IT Services – Service Schedule (EMPREUS-SS-MIT-001), unless otherwise agreed in writing in the Quote.

5.2 Renewal

At the expiry of the Network Service Term, the Managed Network Service shall automatically renew on a month-to-month basis under the same terms, unless either party provides at least 30 days’ written notice of non-renewal prior to the expiry of the current term.

5.3 Network Changes and Upgrades

The Client may request changes or upgrades to the network infrastructure during the Network Service Term (e.g., additional access points, switch upgrades, firewall replacement). Changes may result in a variation to the Monthly Network Fee and will be documented in an amended Quote.

6.1 Monthly Network Fee

The Client shall pay the Monthly Network Fee as specified in the accepted Quote. Monthly Network Fees are invoiced in advance in accordance with the Payment – Terms & Conditions.

6.2 Inclusions

Unless otherwise stated in the Quote, the Monthly Network Fee includes:

• Use of all Network Equipment for the duration of the Network Service Term
• Network design, installation, and initial configuration
• Continuous network monitoring and alerting
• Firmware and software updates for all Network Equipment
• Ongoing network management, configuration changes, and optimisation
• Network documentation and topology diagram maintenance
• Asset register maintenance

6.3 Exclusions

The following are excluded from the Monthly Network Fee and may be charged separately:

• Internet connectivity services (NBN, Starlink, or other — separate schedules)
• Structured cabling, cable runs, or patch panel installation
• Electrical works required for equipment installation
• IT support services (provided under Managed IT Services)
• Network Equipment damaged due to the Client’s negligence
• Major network redesign or expansion projects beyond normal configuration changes (quoted separately)

6.4 Payment Terms

All payment obligations under this Service Schedule are subject to the Payment – Terms & Conditions published at empreusitsupport.com.au/payment-terms-and-conditions, which are incorporated by reference.

7.1 Premises and Access

The Client shall provide the Provider with access to the premises, server rooms, network cabinets, and ceiling spaces as required for installation, maintenance, and equipment collection. The Client shall ensure Network Equipment is housed in a secure, clean, ventilated, and temperature-controlled environment.

7.2 Power and Environment

The Client is responsible for providing stable power supply to all Network Equipment locations, including uninterruptible power supply (UPS) where recommended by the Provider. The Provider is not liable for network outages caused by power failures at the Client’s premises.

7.3 Change Management

The Client shall not modify, reconfigure, disconnect, relocate, or tamper with any Network Equipment without the Provider’s prior written consent. Unauthorised changes may compromise network security, cause service disruptions, and void any applicable warranties. The Provider is not liable for issues arising from unauthorised changes.

7.4 Notification of Changes

The Client shall promptly notify the Provider of any changes to the premises, business operations, or IT environment that may affect the network, including office relocations, fit-outs, new tenants, additional users, or new applications requiring network resources.

7.5 Third-Party Access

The Client shall not grant third-party vendors, contractors, or service providers access to the Provider’s Network Equipment or network configuration without the Provider’s prior written consent. If third-party access is required (e.g., for cabling works or telephony installation), the Provider should be notified in advance to coordinate and protect the network environment.

7.6 Acceptable Use

The Client shall use the network infrastructure in compliance with all applicable laws and the Provider’s acceptable use guidelines. The Client shall not use the network for any unlawful, abusive, or fraudulent activities, or in a manner that compromises network security or the Provider’s ability to manage the network.

7.7 Timely Reporting of Issues

The Client agrees to promptly report any network issues, connectivity problems, or performance concerns through the Provider’s designated support channels as set out in the Managed IT Services – Service Schedule.

8.1 Security Management

The Provider shall implement and maintain network security measures in accordance with industry best practices and the Client’s requirements as identified in the Quote. Security measures may include:

• Firewall configuration and rule management
• Intrusion detection and prevention systems (IDS/IPS)
• Content filtering and web access policies
• Network segmentation via VLANs to isolate sensitive systems
• VPN encryption for site-to-site and remote access connectivity
• Wireless security (WPA3/WPA2-Enterprise, RADIUS authentication where applicable)
• Regular security reviews and recommendations

8.2 Security Limitations

While the Provider implements industry-standard network security measures, no security system is infallible. The Provider does not warrant or guarantee complete protection against all cyber threats, network intrusions, data breaches, or malicious attacks. Network security is a shared responsibility between the Provider and the Client.

The Client must follow the Provider’s security recommendations, including maintaining strong passwords, applying endpoint security (covered under Managed IT Services), and training staff on security best practices.

8.3 Security Incidents

In the event of a suspected or confirmed network security incident, the Provider will investigate, contain, and remediate the incident as promptly as possible. The Provider will notify the Client of any material security incident and provide details of the nature, scope, and recommended actions.

9.1 Definitions

“Confidential Information” means any non-public, proprietary, or sensitive information disclosed by one party to the other, including trade secrets, client lists, business strategies, financial data, technical documentation, network designs, firewall configurations, VPN credentials, and any information clearly identified or reasonably understood as confidential.

“Data Protection Laws” means all applicable legislation relating to the protection of personal data and privacy, including the Australian Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and if applicable, the General Data Protection Regulation (GDPR) (EU) 2016/679.

9.2 Confidentiality Obligations

Each party shall use Confidential Information solely for the purpose of fulfilling obligations under this Agreement. Neither party shall disclose Confidential Information to any third party without prior written consent, except as necessary to perform under this Agreement or as required by law.

9.3 Network Configuration Confidentiality

The Client’s network configuration, firewall rules, VLAN structure, VPN parameters, and IP addressing schemes are Confidential Information. The Provider shall protect this information with the highest degree of care and shall not disclose it to any third party without the Client’s express written consent.

9.4 Data Privacy and Protection

Both parties shall comply with all applicable Data Protection Laws. The Provider shall process personal data only to the extent necessary to perform the Services or as instructed by the Client. The Provider shall implement commercially reasonable technical, administrative, and organisational measures to safeguard Client data traversing the managed network.

9.5 Data Breach Notification

In the event of a confirmed or reasonably suspected data breach affecting the Client’s personal data or network security within the Provider’s control, the Provider shall promptly notify the Client and provide sufficient details about the nature and scope of the breach.

9.6 Survival

The confidentiality and data protection obligations under this section shall survive termination of this Service Schedule for as long as the Receiving Party possesses or controls any Confidential Information or personal data belonging to the Disclosing Party.

10.1 Provider Warranty

The Provider warrants that the Managed Network Service will be performed in a professional and workmanlike manner, consistent with generally recognised industry standards. The Provider warrants that Network Equipment will be in good working order at the time of installation.

10.2 Third-Party Equipment

Network Equipment may be manufactured by third parties (e.g., Ubiquiti, Fortinet, Cisco, Draytek). The Provider does not make any representations or warranties beyond those provided by the original equipment manufacturer. Where applicable, the benefit of manufacturer warranties is passed through to the Client to the extent permissible.

10.3 Security Disclaimer

The Provider implements industry-standard security measures but does not warrant complete protection against all cyber threats. The Client must follow the Provider’s security recommendations. The Provider disclaims liability for security incidents arising from the Client’s failure to adhere to security best practices or from vulnerabilities in third-party products.

10.4 Disclaimer of Implied Warranties

Except as expressly set out in this Service Schedule and the MSA, the Provider disclaims all implied warranties, including warranties of merchantability, fitness for a particular purpose, and non-infringement, to the maximum extent permitted by law. Nothing in this Service Schedule excludes or limits any consumer guarantee or statutory right that cannot be excluded under Australian Consumer Law.

11.1 The Provider shall not be liable for any indirect, incidental, consequential, or special damages arising from the use or inability to use the Managed Network Service, including lost profits, lost data, business interruption, or loss of goodwill, regardless of the legal theory, even if advised of the possibility of such damages.

11.2 The Provider’s aggregate liability under this Service Schedule shall not exceed the total Monthly Network Fees actually paid by the Client in the six (6) months immediately preceding the date on which the claim arose.

11.3 The Provider shall not be liable for network outages or performance degradation caused by internet connectivity failures (NBN, Starlink, or other WAN services), power failures, or any factor outside the Provider’s managed network environment.

11.4 The Provider shall not be liable for security breaches, data loss, or cyber attacks that exploit vulnerabilities in third-party products, the Client’s endpoint devices, or user behaviour, unless the breach was directly caused by the Provider’s gross negligence or wilful misconduct.

11.5 Any claim must be brought within twelve (12) months from the date on which the Client first became aware, or reasonably should have become aware, of the basis for such claim.

11.6 The limitations in this section shall not apply to damages resulting from the Provider’s gross negligence or wilful misconduct, or any liability that cannot be excluded by law.

12.1 By the Provider: The Provider shall indemnify and hold the Client harmless from any third-party claims arising from the Provider’s gross negligence or wilful misconduct in performing Services under this Service Schedule.

12.2 By the Client: The Client shall indemnify and hold the Provider harmless from any third-party claims arising from the Client’s misuse of the network infrastructure, unauthorised changes to Network Equipment, failure to comply with this Service Schedule, or violation of applicable laws or regulations.

Neither party shall be liable for delays or failures due to events beyond their reasonable control, including natural disasters, war, strikes, pandemics, governmental actions, internet service provider outages, or widespread cyber attacks. The affected party shall notify the other promptly and use reasonable efforts to resume performance as soon as feasible.

If a Force Majeure event prevents performance for more than 30 days, either party may terminate this Service Schedule upon written notice. The Client remains liable for all fees accrued up to the termination date.

14.1 Early Termination by Client

If the Client terminates this Service Schedule (or the MSA) prior to the expiry of the Network Service Term, the Client shall be liable for the Early Termination Cost as defined in the Termination – Terms & Conditions, which includes one hundred percent (100%) of the remaining Monthly Network Fees for the unexpired portion of the Network Service Term.

14.2 Equipment Return on Termination

Upon early termination, the Client shall make all Network Equipment available for collection in accordance with Section 4.5 within 7 days of the effective termination date.

14.3 Network Configuration

Upon termination, the Provider is not obligated to provide network configuration files, firewall rule exports, or other proprietary configuration data to the Client or a successor provider, unless the Client has paid all outstanding fees in full. Where configuration data is provided, it is provided as-is without warranty.

Termination of this Service Schedule is governed by the Termination – Terms & Conditions published at empreusitsupport.com.au/termination-terms-conditions, which are incorporated by reference.

This includes termination by the Provider (for non-payment, material breach, misuse, or insolvency), termination by the Client (for convenience with 30 days’ notice, or for uncured material breach by the Provider), automatic renewal, post-termination services, and the Provider’s retention of rights.

16.1 Relationship to MSA

This Service Schedule supplements and forms part of the Master Services Agreement. All terms of the MSA (including the Director’s Guarantee, Governing Law and Dispute Resolution, and Privacy Policy reference) apply to this Service Schedule as if set out in full herein.

16.2 Prerequisite Service Schedule

The Client acknowledges that an active Managed IT Services – Service Schedule (EMPREUS-SS-MIT-001) is required to receive the Managed Network Service. The Managed Network Service cannot operate independently of the Managed IT Services subscription.

If the Managed IT Services subscription is terminated or expires, the Provider may terminate this Service Schedule concurrently, as the Provider cannot deliver helpdesk, troubleshooting, or on-site support for the network infrastructure without an active Managed IT Services agreement.

16.3 Cross-References

This Service Schedule is subject to the following Empreus IT Support legal documents, all of which are incorporated by reference:

• Master Services Agreement (EMPREUS-MSA-001)
• Managed IT Services – Service Schedule (EMPREUS-SS-MIT-001)
• Payment – Terms & Conditions (empreusitsupport.com.au/payment-terms-and-conditions)
• Termination – Terms & Conditions (empreusitsupport.com.au/termination-terms-conditions)
• Quote – Terms & Conditions (empreusitsupport.com.au/quote-terms-conditions)
• Privacy Policy (empreusitsupport.com.au/privacy-policy)

16.4 Amendments

No modification to this Service Schedule shall be valid unless made in writing and signed by both parties.

16.5 Severability

If any provision of this Service Schedule is found to be unenforceable, the remaining provisions shall remain in full force and effect.

16.6 Entire Agreement

This Service Schedule, together with the MSA and all incorporated documents, constitutes the entire agreement between the parties regarding the Managed Network Services described herein and supersedes all prior agreements, representations, and understandings on this subject matter.