DEFENSCOPE TERMS OF SERVICE (TERMS OF USE)
Last updated: January 30, 2026
These Terms of Service ("Terms") govern access to and use of the DefenScope website, cloud software-as-a-service platform, web application, dashboards, APIs, integrations, reports, and any endpoint agent, collector, or related software that DefenScope makes available (collectively, the "Service").
By creating an account, accessing or using the Service, clicking "Get Started", "Sign In", or similar, or otherwise indicating acceptance, you agree to be bound by these Terms. If you do not agree, do not use the Service.
If you use the Service on behalf of an organization, you represent that you have authority to bind that organization. In that case, "Customer" means that organization, and you agree to these Terms on its behalf.
1. COMPANY DETAILS
The Service is operated by Defenscope LLC, a Wyoming limited liability company ("DefenScope", "we", "us", "our").
Registered office address: 30 N Gould St, Ste R, Sheridan, WY 82801, USA.
Contact:
2. DEFINITIONS
"Account" means a Customer account and any Authorized User accounts provisioned under it.
"Authorized User" means an individual Customer authorizes to access and use the Service on Customer's behalf.
"Cloud Account" means a connected cloud provider account, subscription, project, or tenant (including AWS, Azure, or GCP) configured by Customer for posture assessment.
"Confidential Information" means any non-public information disclosed by one party to the other that is designated as confidential or that reasonably should be understood as confidential, including security findings, product roadmaps, pricing, and Customer Data.
"Customer Data" means any data, content, telemetry, metadata, findings, or other information submitted to the Service, collected from Customer's endpoints, cloud accounts, or integrations, or otherwise provided by or on behalf of Customer, including asset inventory, software inventory, posture signals, misconfiguration findings, vulnerability findings, and remediation status.
"Documentation" means DefenScope user guides, technical documentation, and materials made available for the Service.
"Endpoint" means any device, system, workload, or host monitored by the Service, including managed and unmanaged endpoints.
"Output" means reports, dashboards, risk scores, evidence exports, alerts, tickets, recommendations, and other outputs produced by the Service, including AI-generated content.
"Subscription" means Customer's paid plan and associated entitlements (including limits such as endpoint count, cloud accounts, scan frequency, integrations, storage, and export features).
"Subscription Term" means the period during which Customer is subscribed to a paid plan.
3. ELIGIBILITY AND COMPLIANCE
3.1 Eligibility.
You must be legally capable of entering into a binding contract to use the Service.
3.2 Authorized environments only.
Customer may use the Service only to monitor, assess, or collect data from systems, endpoints, networks, and cloud accounts that Customer owns or for which Customer has explicit authorization to assess. Customer is solely responsible for obtaining and maintaining all permissions, consents, and authorizations required for lawful use.
3.3 Legal compliance.
Customer is responsible for complying with all applicable laws and regulations relating to its use of the Service, including employment monitoring laws, privacy and data protection laws, and sector-specific security requirements.
3.4 Sanctions and export compliance.
Customer represents that it is not subject to sanctions or export restrictions that prohibit access to or use of the Service and agrees to comply with applicable U.S. export controls and sanctions laws.
4. ACCOUNTS, ACCESS, AND SECURITY
4.1 Account registration.
Customer must provide accurate and complete information when creating an Account and must keep Account information current.
4.2 Credentials.
Customer is responsible for maintaining the confidentiality of usernames, passwords, multi-factor authentication factors, and API keys. Customer is responsible for all activities that occur under its Accounts and credentials.
4.3 API keys.
If the Service provides API keys or tokens, Customer must safeguard them, use them only for authorized purposes, and promptly revoke or rotate credentials upon suspected compromise.
4.4 Security.
DefenScope maintains reasonable administrative, technical, and organizational measures designed to protect the security, confidentiality, and integrity of the Service and Customer Data. No system is entirely secure, and DefenScope does not guarantee absolute security.
4.5 Incident notifications.
Where required by applicable law or as agreed under a separate Data Processing Addendum ("DPA"), DefenScope will provide notification of a confirmed security incident affecting Customer Data.
5. LICENSE GRANT; ACCEPTABLE USE
5.1 License grant.
Subject to these Terms and payment of all applicable fees, DefenScope grants Customer a limited, non-exclusive, non-transferable, non-sublicensable right during the Subscription Term to access and use the Service for Customer's internal security posture monitoring, risk management, and compliance purposes.
5.2 Acceptable use.
Customer will not, and will not permit any Authorized User or third party to: (a) reverse engineer, decompile, or attempt to discover source code or underlying ideas of the Service, except to the extent prohibited by law; (b) copy, modify, create derivative works of, or distribute the Service except as expressly permitted; (c) interfere with, disrupt, or attempt to gain unauthorized access to the Service, systems, or networks; (d) bypass or circumvent security controls, rate limits, access controls, or usage limits; (e) use the Service to perform scanning, monitoring, collection, or assessment of assets without authorization; (f) transmit malware, exploit code, or unlawful content through the Service; (g) use the Service to build or benchmark a competing product or service, or to provide the Service to third parties as a service bureau without DefenScope's written permission.
5.3 Usage limits.
Subscriptions may include limits and entitlements. Customer must not exceed these limits. If Customer exceeds limits, DefenScope may throttle usage, suspend features, or require an upgrade or additional fees.
6. SERVICE FEATURES: ENDPOINTS, CLOUD, INTEGRATIONS
6.1 Endpoint monitoring.
The Service may collect and display endpoint attributes and posture telemetry, such as OS and hardware attributes, device identifiers, IP addresses, last-seen timestamps, installed software inventory, misconfigurations, vulnerability findings, and related status information.
6.2 Location inference.
The Service may infer approximate location using IP-based geolocation and may provide map links (e.g., OpenStreetMap). Customer is responsible for ensuring a lawful basis, notices, and consents for collection and use of such data.
6.3 Cloud connectors and permissions.
The Service may connect to Customer's Cloud Accounts to evaluate security posture and identify misconfigurations and exposures. Customer is responsible for configuring access, roles, and permissions and for ensuring such access is appropriate and authorized.
6.4 No changes without authorization.
Unless expressly stated in an order form or written agreement, the Service is intended for assessment and reporting and does not make changes to Customer environments. Customer retains sole responsibility for remediation actions.
6.5 Integrations.
Customer may enable integrations with third-party services (e.g., ticketing, SIEM, webhooks). Enabling an integration instructs DefenScope to share Customer Data and/or Output with the third-party service as configured by Customer.
6.6 Third-party services.
Third-party services are governed by their own terms and privacy policies. DefenScope is not responsible for third-party services, their availability, or their security.
7. AI FEATURES
7.1 AI assistance.
The Service may provide AI-assisted functionality to summarize findings, propose remediation steps, draft tickets, and generate reporting narratives.
7.2 Human oversight required.
AI-generated Output may be inaccurate, incomplete, or not suitable for Customer's environment. Customer must review, validate, and approve AI Output before acting on it.
7.3 No guarantees.
AI Output is informational and does not constitute security, legal, or compliance advice and does not guarantee detection, remediation, or compliance outcomes.
8. CUSTOMER DATA; PRIVACY; CONFIDENTIALITY
8.1 Ownership.
Customer retains all right, title, and interest in Customer Data.
8.2 Processing.
DefenScope will process Customer Data to provide, maintain, secure, and improve the Service; provide support; and comply with applicable law, as further described in DefenScope's Privacy Policy and any applicable DPA.
8.3 Customer responsibilities.
Customer represents and warrants that it has all rights and lawful bases necessary to provide Customer Data to DefenScope and to authorize DefenScope to process Customer Data under these Terms, including providing any required notices and obtaining any required consents from employees, contractors, or other data subjects.
8.4 Confidentiality obligations.
Each party will: (a) use the other party's Confidential Information only to perform its obligations or exercise its rights under these Terms; (b) protect the other party's Confidential Information using reasonable care; and (c) not disclose the other party's Confidential Information to any third party except to its employees, contractors, and professional advisors who have a need to know and are bound by confidentiality obligations.
8.5 Exclusions.
Confidential Information does not include information that the receiving party can demonstrate: (a) is or becomes publicly available without breach; (b) was known by the receiving party before disclosure; (c) is received from a third party without breach; or (d) is independently developed without use of the disclosing party's Confidential Information.
8.6 Compelled disclosure.
A party may disclose Confidential Information if required by law or court order, provided it gives prompt notice (where lawful) and cooperates in seeking protective treatment.
9. REPORTS, EXPORTS, AND DATA RETENTION
9.1 Reports and exports.
The Service may generate reports and exports (including PDF, CSV, and API outputs). Customer is responsible for verifying Output and maintaining its own archives of exported materials.
9.2 Retention and deletion.
DefenScope retains Customer Data in accordance with its standard retention practices and as described in the Privacy Policy and/or DPA. Following termination, DefenScope may provide a limited period to export Customer Data, after which DefenScope may delete Customer Data in accordance with its retention practices, unless legally prohibited.
10. FEES, BILLING, AND TAXES
10.1 Fees.
Customer will pay all fees associated with its Subscription in accordance with the pricing presented at purchase, the applicable order form, or other written agreement.
10.2 Billing via Paddle.
Payments are processed through Paddle. Paddle may act as the merchant of record for certain transactions. Customer authorizes DefenScope and Paddle (as applicable) to charge the selected payment method for subscription fees, renewals, and applicable taxes.
10.3 Taxes.
Fees are exclusive of taxes unless otherwise stated. Paddle may calculate, collect, and remit taxes (including VAT, GST, or sales tax) as required.
10.4 Late payments.
If payment is overdue, DefenScope may suspend access to the Service after providing notice.
10.5 Refunds.
Except as required by applicable law or expressly stated in an order form, fees are non-refundable.
11. SUSPENSION; TERMINATION
11.1 Suspension.
DefenScope may suspend or restrict access to the Service if: (a) required by law; (b) Customer breaches these Terms; (c) Customer's use poses a security risk or threatens the availability of the Service; or (d) fees are overdue.
11.2 Termination for cause.
Either party may terminate these Terms if the other party materially breaches and fails to cure the breach within thirty (30) days after written notice.
11.3 Effect of termination.
Upon termination, Customer's right to access and use the Service ends. Sections that by their nature should survive termination will survive, including confidentiality, intellectual property, disclaimers, limitations of liability, indemnification, and dispute resolution.
12. INTELLECTUAL PROPERTY
12.1 DefenScope IP.
DefenScope and its licensors retain all right, title, and interest in and to the Service, Documentation, and all related intellectual property, including improvements, enhancements, and derivatives.
12.2 Feedback.
If Customer provides suggestions or feedback, Customer grants DefenScope a perpetual, irrevocable, worldwide, royalty-free license to use and incorporate the feedback without restriction or obligation.
13. WARRANTIES; DISCLAIMERS
13.1 Performance.
DefenScope will provide the Service in a professional and workmanlike manner.
13.2 Disclaimers.
EXCEPT AS EXPRESSLY STATED, THE SERVICE AND OUTPUT ARE PROVIDED "AS IS" AND "AS AVAILABLE". DEFENSCOPE DISCLAIMS ALL IMPLIED WARRANTIES, INCLUDING MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.
13.3 No guarantee of detection or compliance.
DefenScope does not warrant that the Service will detect all vulnerabilities, misconfigurations, exposures, or security events, or that use of the Service will ensure compliance with any law, regulation, or standard.
14. LIMITATION OF LIABILITY
TO THE MAXIMUM EXTENT PERMITTED BY LAW: (a) NEITHER PARTY WILL BE LIABLE FOR INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR FOR LOST PROFITS, LOST REVENUE, LOST BUSINESS, OR LOSS OF DATA, EVEN IF ADVISED OF THE POSSIBILITY. (b) EACH PARTY'S TOTAL LIABILITY ARISING OUT OF OR RELATING TO THESE TERMS WILL NOT EXCEED THE FEES PAID OR PAYABLE BY CUSTOMER FOR THE SERVICE IN THE TWELVE (12) MONTHS PRECEDING THE EVENT GIVING RISE TO LIABILITY.
Nothing in these Terms limits liability for fraud, willful misconduct, or liability that cannot be limited under applicable law.
15. INDEMNIFICATION
15.1 By Customer.
Customer will indemnify, defend, and hold harmless DefenScope and its affiliates, officers, directors, employees, and agents from any claims, damages, liabilities, costs, and expenses (including reasonable attorneys' fees) arising out of or relating to: (a) Customer Data; (b) Customer's or its Authorized Users' misuse of the Service; (c) Customer's breach of these Terms; or (d) Customer's failure to obtain required authorizations, notices, or consents.
15.2 By DefenScope.
DefenScope will indemnify and defend Customer from third-party claims alleging that the Service infringes a third party's U.S. intellectual property rights, and will pay damages awarded by a court or agreed in settlement. DefenScope's obligations do not apply to claims arising from: (a) Customer's use of the Service in violation of these Terms; (b) modifications not made by DefenScope; (c) combination of the Service with non-DefenScope products or services where the claim would not have arisen but for the combination; or (d) Customer Data.
15.3 Process.
The indemnified party must provide prompt written notice of the claim, allow the indemnifying party to control the defense and settlement, and cooperate reasonably.
16. EXPORT CONTROLS
Customer agrees to comply with applicable export control and sanctions laws and will not use the Service in a manner that would cause DefenScope to violate such laws.
17. CHANGES TO THE SERVICE OR TERMS
DefenScope may update the Service and these Terms from time to time. If DefenScope makes changes that materially affect Customer's rights, DefenScope will provide reasonable notice (for example, by posting within the Service or by email). Continued use after the effective date constitutes acceptance.
18. GOVERNING LAW; ARBITRATION; WAIVER OF JURY TRIAL
18.1 Governing law.
These Terms are governed by the laws of the State of Wyoming, excluding conflict of laws rules.
18.2 Informal resolution.
Before initiating arbitration, a party must send a written notice of dispute and allow thirty (30) days to attempt to resolve the dispute informally. Notices to DefenScope must be sent to legal@defenscope.io and include sufficient detail to identify the Account, the issue, and the requested relief.
18.3 Binding arbitration.
Except for the carve-outs in Section 18.6, any dispute, claim, or controversy arising out of or relating to these Terms or the Service will be resolved by binding arbitration administered by the American Arbitration Association (AAA) under its Commercial Arbitration Rules (and, where applicable, the Expedited Procedures). The arbitration will be conducted in English before one arbitrator.
18.4 Seat and format.
The seat (legal place) of arbitration is Sheridan, Wyoming, USA, unless the parties agree otherwise. The hearing may be conducted by video conference or based on written submissions, at the arbitrator's discretion.
18.5 Authority and award.
The arbitrator may award the same damages and relief that a court of competent jurisdiction could award, consistent with these Terms. The arbitrator must follow these Terms. The award is final and binding, and judgment on the award may be entered in any court having jurisdiction.
18.6 Injunctive relief carve-out.
Either party may seek temporary or permanent injunctive or other equitable relief in a court of competent jurisdiction to prevent or stop: (a) unauthorized access to the Service; (b) misuse or disclosure of credentials or API keys; (c) violations of intellectual property rights; or (d) misuse or disclosure of Confidential Information, without waiving arbitration for the remainder of the dispute.
18.7 Waiver of jury trial.
EACH PARTY WAIVES THE RIGHT TO A TRIAL BY JURY.
18.8 Class and collective actions waiver.
To the maximum extent permitted by law, disputes must be brought in the parties' individual capacities only and not as a plaintiff or class member in any class, collective, representative, or private attorney general proceeding.
18.9 Federal Arbitration Act.
This arbitration agreement is governed by the U.S. Federal Arbitration Act.
19. MISCELLANEOUS
19.1 Assignment.
Customer may not assign these Terms without DefenScope's prior written consent. DefenScope may assign these Terms in connection with a merger, acquisition, corporate reorganization, or sale of substantially all assets.
19.2 Force majeure.
Neither party is liable for delays or failures due to events beyond reasonable control.
19.3 Notices.
Legal notices to DefenScope must be sent to legal@defenscope.io. DefenScope may provide notices to Customer by email, within the Service, or through the Account.
19.4 Injunctive relief.
Nothing in these Terms prevents either party from seeking injunctive relief as set forth in Section 18.6.
19.5 Entire agreement.
These Terms, together with any order form, the Privacy Policy, and any applicable DPA, constitute the entire agreement between the parties regarding the Service and supersede all prior or contemporaneous agreements.
19.6 Severability.
If any provision is unenforceable, the remaining provisions remain in effect.
19.7 Waiver.
A waiver of any breach is not a waiver of any other breach.