CyTrusted – Terms of Service (Summary)

1. Overview

CyTrusted provides a SaaS platform for external attack surface discovery, third-party cyber risk scoring, and portfolio-level analytics (the “Solution”).

The Solution is an informational decision-support tool and does not constitute an audit, certification, penetration testing service, or legal or compliance advice.

2. Access and Use

Access to the Solution is granted on a subscription basis and is limited to authorized users within the customer’s organization.

Customers must use the Solution in compliance with applicable laws and these Terms.

3. Acceptable Use

Customers may not:
– Reverse engineer or attempt to extract CyTrusted’s methodologies or data;
– Use the Solution to build competing products or train AI models;
– Perform intrusive or disruptive security testing without authorization;
– Publish benchmarking or performance comparisons without prior consent;
– Share sensitive vulnerability data externally without authorization.

Non-intrusive testing through publicly accessible interfaces is permitted, provided it does not affect system integrity or access protected data.

4. Data and Intellectual Property

Customers retain ownership of their submitted data (“Customer Data”).

CyTrusted retains full ownership of its platform, algorithms, scoring models, datasets, and analytics (“CyTrusted Data”).

CyTrusted may use aggregated and anonymized data for product improvement and analytics.

5. Security and Data Protection

CyTrusted implements commercially reasonable technical and organizational security measures.

CyTrusted acts:
– as a data processor for Customer Data; and
– as an independent data controller for CyTrusted Data.

Detailed data protection terms are governed by a Data Processing Addendum (DPA).

6. Service Availability

CyTrusted targets 99.5% monthly availability for the production environment.

Service credits may apply in case of downtime and constitute the sole remedy for service level failures.

7. Fees and Billing

Subscription fees are defined in the applicable order form and may be invoiced:
– directly by CyTrusted; or
– through an authorized reseller.

Subscriptions are generally non-refundable.

8. Third-Party Monitoring

Customers are responsible for ensuring they have a lawful basis to monitor third parties (e.g., suppliers).

Customers agree to defend and indemnify CyTrusted against claims arising from such monitoring.

9. Limitation of Liability

To the maximum extent permitted by law:
– CyTrusted excludes liability for indirect damages (e.g., loss of profit, business interruption, reputational harm);
– Total liability is capped at fees paid in the preceding 12 months.

10. Suspension and Termination

CyTrusted may suspend access in case of:
– security risks;
– misuse;
– non-payment; or
– material breach.

11. Governing Law

These Terms are governed by French law.

Any dispute falls under the exclusive jurisdiction of the Commercial Court of Paris.

12. Full Terms

This page provides a summary only. The full contractual terms, including detailed provisions on security, data protection, service levels, and liability, can be obtained upon request at: sales@cytrusted.eu

Important note: By using the CyTrusted platform, customers agree to be bound by the applicable contractual terms.