Legal

Terms of Service

Binding legal terms governing access to and use of the AISHIPSAFE security scanning service.

Last updated: March 25, 2026

1. Definitions

  • "Service" means the AISHIPSAFE website, scanning engine, APIs, reports, and all related tools and features.
  • "We," "us," "our" refer to AISHIPSAFE, an independent business based in Grenoble, France.
  • "You," "your," "User" refer to any individual or entity accessing or using the Service.
  • "Target" means any URL, domain, IP address, web application, or digital asset submitted for scanning.
  • "Scan" means any automated security analysis, check, or assessment performed by the Service on a Target.
  • "Report" means the security findings, scores, and recommendations generated by the Service.
  • "Free Scan" means a complimentary, limited-scope scan available without payment.
  • "Content" means all text, data, graphics, code, and materials available through the Service.

2. Acceptance and Contract Formation

These Terms of Service ("Terms") form a legally binding agreement between you and AISHIPSAFE. By accessing, browsing, or using the Service in any manner — including submitting a scan, viewing a report, or making a payment — you confirm that you:

  • Have read, understood, and agree to be bound by these Terms in their entirety.
  • Have the legal capacity to enter into a binding agreement (or, if acting for an entity, that you have the authority to bind that entity).
  • Are at least 16 years of age (or the age of digital consent in your jurisdiction).
  • Accept our Privacy Policy as incorporated herein.

If you do not agree with any part of these Terms, you must immediately cease all use of the Service.

3. Service Description and Scope

AISHIPSAFE provides automated, public-surface security analysis of web applications and related reporting. The Service performs non-intrusive checks against publicly accessible resources, including but not limited to: HTTP headers, TLS/SSL configuration, exposed files, client-side secrets, technology stack fingerprinting, and known vulnerability patterns.

The Service is strictly informational and assistive in nature. It is NOT:

  • A penetration test, intrusion test, or full security audit.
  • A legal opinion, compliance certification, or regulatory attestation.
  • A guarantee that all vulnerabilities have been identified or that your system is secure.
  • A substitute for professional security consulting, code review, or manual assessment.

You acknowledge that false positives, false negatives, incomplete results, and scoring inaccuracies may occur, and you agree not to rely exclusively on the Service for any security or business decision.

4. Strict Authorization Requirement

You represent and warrant that you own or have explicit, documented authorization to perform security analysis on every Target you submit. This is a material condition of your use of the Service.

  • You must maintain written proof of authorization and provide it upon request.
  • Authorization must cover the specific scope and nature of scanning performed by the Service.
  • If you are acting on behalf of an organization, you represent that your organization has authorized you to submit the Target.
  • Any scan of a Target you do not own or are not authorized to assess constitutes a material breach of these Terms and may expose you to civil and criminal liability.

AISHIPSAFE assumes no liability for any unauthorized scan initiated by you. You agree to fully indemnify us for any claim, damage, or cost arising from unauthorized scanning.

5. User Duties and Risk Allocation

You acknowledge and agree that:

  • Target selection: you are solely responsible for the legality and appropriateness of every Target you submit.
  • Remediation decisions: you are solely responsible for deciding whether and how to act on any finding, recommendation, or report generated by the Service.
  • Independent verification: you must independently verify all findings before making any production, operational, or security decision.
  • Compliance: you are responsible for ensuring that your use of the Service complies with all applicable laws, regulations, contracts, and third-party agreements.
  • Credential and access security: you are responsible for safeguarding any internal credentials, secrets, or scan data under your control.
  • Data accuracy: you are responsible for the accuracy of information you provide to us, including email addresses and billing details.

6. Prohibited Conduct

You must not, directly or indirectly:

  • Submit Targets you do not own or are not authorized to scan.
  • Use the Service for any unlawful, abusive, fraudulent, threatening, harassing, or deceptive purpose.
  • Attempt to disrupt, degrade, or interfere with the Service, its infrastructure, or any third-party system.
  • Use scan results to exploit vulnerabilities, attack systems, or cause harm to any person or entity.
  • Deliver malware, engage in credential stuffing, brute-force attacks, or data exfiltration using the Service.
  • Reverse engineer, decompile, disassemble, or attempt to derive source code from the Service.
  • Extract, scrape, or systematically collect data from the Service for commercial purposes without authorization.
  • Resell, redistribute, sublicense, or white-label the Service or its output without prior written consent.
  • Circumvent, disable, or interfere with any technical limits, rate limits, access controls, or security features.
  • Impersonate any person or entity, or misrepresent your affiliation with any person or entity.
  • Use the Service to generate spam, phishing content, or misleading security claims.
  • Submit content that infringes the intellectual property or privacy rights of others.

Violation of this section may result in immediate suspension or termination of access, and referral to law enforcement where appropriate.

7. Acceptable Use and Rate Limits

You may only scan targets that you own or for which you have explicit, documented authorization from the owner. Scanning a system without proper authorization is potentially illegal under the laws of most jurisdictions and may expose you to civil and criminal liability. AISHIPSAFE acts solely as a tool at your direction — the responsibility for ensuring you have the right to scan a target rests entirely with you.

The Service may apply temporary usage caps, anti-abuse protections, and operational safeguards to ensure fair access for all users. Excessive usage that degrades the experience for other users may result in throttling or temporary suspension.

8. Vulnerability Disclosure

If you discover a security vulnerability in the AISHIPSAFE Service itself (not in a target you scanned), we encourage responsible disclosure. Report it via our contact form with "Security Vulnerability Report" in the message. Do not publicly disclose the vulnerability before we have had a reasonable opportunity to address it (minimum 90 days). We will not take legal action against researchers acting in good faith.

9. Free Scans

Free Scans provide a limited-scope analysis at no cost. Free Scan reports may include partial or summary findings and should be independently verified before any production or security decision.

We reserve the right to modify, limit, or discontinue Free Scans at any time without notice or liability. Free Scans do not create any obligation on our part to provide continued or equivalent service.

10. Paid Features — Fees, Payment, and Refunds

If the Service offers paid features, they are billed at the price displayed at checkout. By completing a purchase, you authorize us (through our payment processor, Stripe) to charge the applicable fee.

  • Non-refundable: fees are generally non-refundable once processing has started, except where: (a) the purchased feature completely fails to produce any result due to a defect attributable solely to us, or (b) a refund is required by applicable consumer protection law.
  • Taxes: all prices are exclusive of applicable taxes (VAT, sales tax, etc.) unless stated otherwise. You are responsible for all applicable taxes in your jurisdiction.
  • Price changes: we may change pricing at any time. Price changes do not affect scans already purchased.
  • Payment disputes: if you believe a charge is incorrect, reach out via our contact form before initiating a chargeback. Fraudulent chargebacks may result in account termination and collection action.

11. Reports and Availability

Reports are generated from automated analysis and are provided on an "as available" basis. We may change report structure, findings presentation, scoring, and retention at any time as the Service evolves.

  • You are responsible for preserving any report data you need for your records.
  • We may limit, redact, expire, or remove report access at any time for operational, legal, or abuse-prevention reasons.
  • Reports are informational outputs and must be independently verified before use.

12. Intellectual Property

All intellectual property rights in the Service — including but not limited to software, algorithms, scanning methodologies, templates, branding, design, documentation, and Content — are and remain the exclusive property of AISHIPSAFE or its licensors.

  • No license is granted except a limited, non-exclusive, non-transferable, revocable right to use the Service in accordance with these Terms.
  • Reports generated for you may be used internally and shared via the Service's sharing features. You may not represent them as originating from any source other than AISHIPSAFE.
  • You retain ownership of any data you submit (Targets, configurations). By submitting data, you grant us a limited license to process it solely for the purpose of delivering the Service.
  • "AISHIPSAFE" and related marks are our trademarks. You may not use them without prior written consent.

13. Third-Party Services

The Service integrates with or relies on third-party services (hosting, payment processing, AI providers, email delivery). These third parties operate under their own terms and privacy policies. We are not responsible for their availability, accuracy, or conduct. Your use of third-party services is at your own risk.

14. Service Availability and Modifications

We strive to maintain high availability but do not guarantee uninterrupted, error-free, or continuous access. The Service may be temporarily unavailable due to:

  • Scheduled or emergency maintenance.
  • Infrastructure incidents, hardware failures, or network issues.
  • Force majeure events (see Section 22).
  • Actions by third-party providers beyond our control.

We reserve the right to modify, suspend, or discontinue any feature of the Service at any time, with or without notice, without incurring any liability to you.

15. Warranty Disclaimer

TO THE FULLEST EXTENT PERMITTED BY APPLICABLE LAW:

THE SERVICE IS PROVIDED "AS IS" AND "AS AVAILABLE," WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE. WE SPECIFICALLY DISCLAIM ALL IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, NON-INFRINGEMENT, AND ANY WARRANTIES ARISING FROM COURSE OF DEALING, USAGE, OR TRADE PRACTICE.

WITHOUT LIMITING THE FOREGOING, WE DO NOT WARRANT THAT:

  • THE SERVICE WILL DETECT ALL VULNERABILITIES, THREATS, OR SECURITY ISSUES.
  • REPORTS WILL BE ACCURATE, COMPLETE, CURRENT, OR ERROR-FREE.
  • THE SERVICE WILL BE UNINTERRUPTED, SECURE, OR FREE OF VIRUSES OR OTHER HARMFUL COMPONENTS.
  • RESULTS WILL MEET YOUR REQUIREMENTS OR EXPECTATIONS.
  • ANY DEFECTS WILL BE CORRECTED.

YOU USE THE SERVICE AT YOUR OWN RISK. THIS DISCLAIMER DOES NOT AFFECT MANDATORY STATUTORY RIGHTS THAT CANNOT BE WAIVED UNDER APPLICABLE LAW.

16. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW:

  • Exclusion of indirect damages: AISHIPSAFE SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, PUNITIVE, OR EXEMPLARY DAMAGES, INCLUDING BUT NOT LIMITED TO: LOSS OF PROFITS, LOSS OF REVENUE, LOSS OF DATA, LOSS OF BUSINESS OPPORTUNITY, LOSS OF GOODWILL, COST OF SUBSTITUTE SERVICES, SECURITY INCIDENTS, BREACHES, REGULATORY FINES, CONTRACTUAL PENALTIES, REPUTATIONAL DAMAGE, OR BUSINESS INTERRUPTION — REGARDLESS OF THE THEORY OF LIABILITY (CONTRACT, TORT, NEGLIGENCE, STRICT LIABILITY, OR OTHERWISE) AND EVEN IF WE HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
  • Cap on direct damages: OUR TOTAL AGGREGATE LIABILITY FOR ALL CLAIMS ARISING OUT OF OR RELATING TO THESE TERMS OR THE SERVICE SHALL NOT EXCEED THE GREATER OF: (A) EUR 100, OR (B) THE TOTAL AMOUNTS PAID BY YOU TO AISHIPSAFE IN THE 12 MONTHS IMMEDIATELY PRECEDING THE EVENT GIVING RISE TO THE CLAIM.
  • Basis of the bargain: THE LIMITATIONS IN THIS SECTION REFLECT A FAIR ALLOCATION OF RISK AND ARE A FUNDAMENTAL ELEMENT OF THE BASIS OF THE BARGAIN BETWEEN YOU AND AISHIPSAFE. THE SERVICE WOULD NOT BE PROVIDED WITHOUT THESE LIMITATIONS.

NOTHING IN THESE TERMS EXCLUDES OR LIMITS LIABILITY FOR: (I) DEATH OR PERSONAL INJURY CAUSED BY NEGLIGENCE, (II) FRAUD OR FRAUDULENT MISREPRESENTATION, OR (III) ANY OTHER LIABILITY THAT CANNOT BE EXCLUDED UNDER MANDATORY APPLICABLE LAW.

17. Indemnification

You agree to defend, indemnify, and hold harmless AISHIPSAFE, its operators, affiliates, and their respective officers, directors, employees, agents, and successors from and against any and all claims, demands, actions, liabilities, losses, damages, judgments, settlements, fines, penalties, costs, and expenses (including reasonable attorneys' fees) arising out of or relating to:

  • Your use or misuse of the Service.
  • Your Targets, scans, or any data you submit.
  • Unauthorized scanning of third-party systems.
  • Your violation of these Terms, any applicable law, or the rights of any third party.
  • Any claim by a third party that your actions caused them harm.
  • Your disclosure or misuse of report data in a way that harms third parties.

This indemnification obligation survives the termination of these Terms and your use of the Service.

18. Suspension, Blocking, and Termination

We may, at our sole discretion, immediately suspend, rate-limit, block, or permanently terminate your access to the Service, without prior notice or liability, if we reasonably believe that:

  • You have breached any provision of these Terms.
  • Your use poses a security risk to the Service or any third party.
  • Your use is fraudulent, abusive, or potentially unlawful.
  • You have initiated a fraudulent chargeback.
  • Continued provision of the Service to you would expose us to legal risk.
  • Suspension or termination is required by applicable law or a governmental order.

Upon termination, your right to use the Service ceases immediately. We may preserve and disclose data and logs as required by law. Provisions that by their nature should survive termination (including Sections 4, 5, 12, 15, 16, 17, and 19–24) shall survive.

19. Compliance, Export Controls, and Sanctions

You must comply with all applicable local, national, and international laws and regulations, including but not limited to:

  • Cybersecurity and computer fraud laws in your jurisdiction.
  • Data protection and privacy regulations (GDPR, CCPA, and equivalents).
  • Export control and economic sanctions laws (EU, U.S., and other applicable regimes).
  • Anti-money laundering and anti-corruption laws.

You represent that you are not located in, organized under the laws of, or a resident of any country or territory subject to comprehensive sanctions, and that you are not a Specially Designated National or otherwise blocked under any sanctions program.

20. Confidentiality and Sensitive Data

  • You must not submit any data to the Service that you have obtained unlawfully or that you are not entitled to process.
  • You must not submit passwords, API keys, secrets, personally identifiable information of third parties, or classified material as scan targets.
  • You are responsible for redacting sensitive or confidential material from reports before sharing them externally.
  • Scan results may reveal information about your Target's security posture. You acknowledge that generating and sharing this information is at your own risk.

21. Dispute Resolution

Before initiating any formal legal proceedings, you agree to first reach out via our contact form and attempt to resolve the dispute informally for at least 30 days.

If the dispute cannot be resolved informally, and subject to mandatory consumer protection provisions in your jurisdiction, disputes shall be submitted to the exclusive jurisdiction of the competent courts of Grenoble, France.

For EU consumers: you may also use the European Commission's Online Dispute Resolution platform at ec.europa.eu/consumers/odr.

22. Force Majeure

Neither party shall be liable for any failure or delay in performance resulting from events beyond its reasonable control, including but not limited to: natural disasters, pandemics, wars, terrorism, government actions, cyberattacks, internet or telecommunications failures, power outages, or third-party service failures. If a force majeure event continues for more than 60 days, either party may terminate these Terms upon written notice.

23. Governing Law

These Terms are governed by and construed in accordance with the laws of France, without regard to its conflict of laws principles. The application of the United Nations Convention on Contracts for the International Sale of Goods (CISG) is expressly excluded.

This choice of law does not deprive you of mandatory consumer protections afforded by the laws of your country of habitual residence, where applicable.

24. Modifications to Terms

We reserve the right to modify these Terms at any time. Updated Terms become effective upon publication on this website with a revised "Last updated" date. We will make reasonable efforts to notify users of material changes (e.g., via email or prominent website notice).

Your continued use of the Service after publication of updated Terms constitutes acceptance. If you do not agree with the modified Terms, you must discontinue use of the Service.

25. Severability

If any provision of these Terms is held to be invalid, illegal, or unenforceable by a court of competent jurisdiction, the remaining provisions shall continue in full force and effect. The invalid provision shall be modified to the minimum extent necessary to make it valid and enforceable while preserving its original intent.

26. No Waiver

Our failure or delay in exercising any right, remedy, or power under these Terms shall not operate as a waiver thereof. A single or partial exercise of any right shall not preclude further exercise of that right or the exercise of any other right.

27. Assignment

You may not assign, transfer, or delegate your rights or obligations under these Terms without our prior written consent. We may assign these Terms in whole or in part to any successor in interest, affiliate, or acquirer without your consent.

28. Entire Agreement

These Terms, together with the Privacy Policy, constitute the entire agreement between you and AISHIPSAFE with respect to the subject matter hereof. They supersede all prior or contemporaneous communications, proposals, and agreements, whether oral or written, between you and AISHIPSAFE regarding the Service.

29. Contact

For any questions or legal notices relating to these Terms, please contact:

Please use our contact form and include "Legal – Terms of Service" in your message.

Need help with legal or data requests? Use the contact form on our homepage.

Quick links: Terms of ServicePrivacy Policy