Voted Best Answer
May 05, 2017 - 03:16 AM
And - in general - the vendor should have accepted the existance of the 'third party' software during the assessment ( how would they have recongnized it as '3rd party' without you telling them in the first place) and redacted them from the 'audit'.
And - in general - the vendor should have accepted the the delcaration of licenses from the 3rd party.
BUT there may be a clause in the vendor's licensing that precludes the license holder ( the 3rd party) from using the software in way that's outside their own network and/or devices. If that is the case, then then onus may be on the 3rd party - not you! - for using the software outside the bounds of the agreement!
So, the answer is not cut & dry; there are too many 'unknown' elements in this particular situation. Some of the things to consider.
1) Is the 3rd party's license analagous to a 'site' license or have restrictions that bind the use of the software outside a domain or network?
If so, how is this different than YOUR license for the same product?
2) Is the software on the devices that belong to the 3rd party?
3) what is the magnitude and 'value' of this software? If it isn't much, the vendor rep is being a jerk and may be using this as negotiation leverage for some other scenario ( like selling a maintenance agreement)