Terms of Service

By accessing or using CodeSec ("Service"), you agree to be bound by these Terms of Service ("Terms"). If you are using the Service on behalf of an organization, you agree to these Terms on behalf of that organization.

If you do not agree to these Terms, do not access or use the Service. We may update these Terms from time to time — continued use of the Service constitutes acceptance of the updated Terms.

CodeSec is an AI-powered security scanning platform that helps developers and startups identify vulnerabilities in their web applications, APIs, and infrastructure configurations. The Service includes:

• Automated security scans (website, API, headers, auth, secrets, compliance)
• AI-powered vulnerability analysis and remediation guidance
• Scan history, reporting, and alerting
• Team collaboration features
• API access for CI/CD integration

To use the Service you must create an account. You agree to:

• Provide accurate, complete, and current account information
• Maintain the security of your account credentials
• Promptly notify us of any unauthorized account access
• Not share your account credentials with third parties
• Be responsible for all activity that occurs under your account

You must be at least 16 years old to use the Service.

You are responsible for:

• Ensuring you have proper authorization before scanning any target
• The accuracy of targets and configurations you provide
• How you use, interpret, and act on scan results
• Maintaining the confidentiality of your scan reports
• Complying with all applicable laws and regulations
• Your team members' use of the Service under your account

You may use the Service only for lawful purposes and in accordance with these Terms. The Service is designed for security testing of systems you own or have explicit written permission to test.

You may not use the Service to:

• Scan systems you do not own or do not have explicit written authorization to test
• Conduct denial-of-service attacks or overload target systems
• Exploit or attempt to exploit vulnerabilities found in scans
• Scan government, critical infrastructure, or financial systems without authorization
• Use scan results to harm, blackmail, or extort any party
• Attempt to access data or systems beyond your authorized scope
• Circumvent, disable, or interfere with security features of the Service
• Reverse engineer, decompile, or disassemble the Service
• Create accounts with false identities or misrepresent your authority
• Resell or sublicense access to the Service without written permission
• Use the Service to violate any applicable law or regulation

Violation of these prohibitions may result in immediate account termination and may be reported to law enforcement.

Security scanning is inherently limited. You understand and agree that:

• No security scan guarantees complete vulnerability coverage
• Scan results reflect the state of targets at the time of scanning
• False positives and false negatives are inherent to automated scanning
• Remediation guidance is advisory and should be reviewed by qualified security professionals
• CodeSec is not responsible for damages arising from undetected vulnerabilities
• Scans may intermittently fail due to network conditions or target availability
• AI-generated analysis may contain errors and should not be the sole basis for security decisions

We strive for high availability but do not guarantee uninterrupted service. The Service is provided "as is" and "as available." We may:

• Perform scheduled maintenance with advance notice where possible
• Modify or discontinue features with reasonable notice
• Impose rate limits and fair-use restrictions
• Suspend access for violations of these Terms

Paid subscriptions are billed in advance on a monthly or annual basis. By providing payment information, you authorize us to charge your payment method for the applicable subscription fee.

• Prices are in USD and exclude applicable taxes
• Subscriptions auto-renew unless cancelled before the renewal date
• Downgrades take effect at the end of the current billing period
• Upgrades take effect immediately and are prorated
• We reserve the right to change pricing with 30 days notice

See our Refund Policy for cancellation and refund terms.

TO THE MAXIMUM EXTENT PERMITTED BY LAW, CODESEC SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING BUT NOT LIMITED TO LOST PROFITS, DATA LOSS, SECURITY BREACHES, OR BUSINESS INTERRUPTION ARISING FROM YOUR USE OF THE SERVICE.

OUR TOTAL LIABILITY FOR ANY CLAIM ARISING FROM THE SERVICE SHALL NOT EXCEED THE AMOUNTS YOU PAID TO US IN THE 12 MONTHS PRECEDING THE CLAIM.

SOME JURISDICTIONS DO NOT ALLOW LIMITATION OF LIABILITY, SO THESE LIMITATIONS MAY NOT APPLY TO YOU.

You agree to indemnify, defend, and hold harmless CodeSec and its officers, directors, employees, and agents from any claims, damages, liabilities, costs, and expenses (including legal fees) arising from:

• Your use of the Service
• Your violation of these Terms
• Your scanning of unauthorized targets
• Your violation of any applicable law
• Your infringement of any third-party rights

These Terms are governed by applicable law. Any disputes shall first be attempted to be resolved through good-faith negotiation. You may contact us at [email protected] to initiate dispute resolution.

If informal resolution fails, disputes shall be resolved through binding arbitration, except for claims eligible for small claims court. You waive the right to participate in class-action lawsuits.

• These Terms constitute the entire agreement between you and CodeSec
• If any provision is found unenforceable, the remainder stays in effect
• Our failure to enforce a provision does not waive our right to do so later
• You may not assign these Terms without our written consent
• We may assign these Terms in connection with a merger or acquisition