LEGAL
Terms of Service
Last updated: March 30, 2026
These Terms of Service (“Terms”) govern your access to and use of the Aertous platform and services provided by Aertous (“we,” “us,” or “our”). By accessing or using our services, you agree to these Terms.
If you are using the services on behalf of an organization, you represent that you have authority to bind that organization to these Terms.
1. Definitions
- “Services” means the Aertous platform, including the web application at app.aertous.com, APIs, and related services.
- “Customer” means the organization that subscribes to the Services.
- “User” means any individual authorized by the Customer to access the Services.
- “Customer Data” means all data submitted by Customer or Users to the Services, including risk assessments, compliance controls, policies, incidents, vendor assessments, and other content.
- “Subscription” means the paid plan selected by the Customer, including the tier, billing interval, and employee bracket.
2. Account Registration
- You must provide accurate and complete information when creating an account.
- You are responsible for maintaining the confidentiality of your credentials and for all activities under your account.
- Multi-factor authentication (MFA) is mandatory for all user accounts. You are responsible for securing your authenticator device and backup codes.
- You must notify us immediately at [email protected] if you suspect unauthorized access to your account.
3. Use of Services
Permitted Use
You may use the Services solely for your organization's internal security, risk management, compliance, and governance purposes in accordance with your Subscription and these Terms.
Prohibited Use
You agree not to:
- Use the Services for any unlawful purpose
- Attempt to gain unauthorized access to the Services, other accounts, or our systems
- Reverse engineer, decompile, or disassemble any part of the Services
- Share your account credentials with unauthorized individuals
- Use the Services to store or transmit malicious code
- Interfere with or disrupt the integrity or performance of the Services
- Resell, sublicense, or redistribute the Services without our written consent
- Scrape, crawl, or use automated tools to extract data from the Services beyond authorized API usage
4. Customer Data
Ownership
You retain all rights to your Customer Data. We do not claim ownership of any data you submit to the Services.
License
You grant us a limited, non-exclusive license to host, store, process, and display your Customer Data solely to provide and improve the Services. This license terminates when your Customer Data is deleted from our systems.
Data Protection
We process Customer Data in accordance with our Privacy Policy and applicable data protection laws, including GDPR. Where we act as a data processor on your behalf, we will enter into a Data Processing Agreement (DPA) upon request.
Data Export and Deletion
You may request a data export at any time through Settings. Upon termination of your Subscription, we will retain your data for 30 days to allow for export, after which it will be permanently deleted unless required by law.
5. Subscriptions and Payment
Plans and Pricing
The Services are offered on a subscription basis. Current pricing is available at aertous.com/pricing. We reserve the right to modify pricing with 30 days' advance notice.
Billing
- Subscriptions are billed monthly or annually, depending on your selection.
- Payment is processed through Stripe. You authorize us to charge your payment method on a recurring basis.
- All fees are stated in euros (EUR) and are exclusive of applicable taxes.
Cancellation
- You may cancel your Subscription at any time from Settings.
- Cancellation takes effect at the end of the current billing period. No partial refunds are provided for unused time within a billing period.
- Annual subscriptions are non-refundable after the first 15 days.
Free Trial
We may offer a free trial period. At the end of the trial, your Subscription will convert to a paid plan unless you cancel before the trial expires. No payment is charged during the trial.
6. Service Levels
We aim to maintain high availability of the Services. However, we do not guarantee uninterrupted access. Planned maintenance will be communicated in advance where possible. Enterprise customers may be eligible for a separate Service Level Agreement (SLA).
7. Intellectual Property
The Services, including all software, content, designs, trademarks, and documentation, are owned by Aertous and protected by intellectual property laws. These Terms do not grant you any rights to our intellectual property except the limited right to use the Services under your Subscription.
The risk library, KPI templates, policy templates, compliance control definitions, and framework mappings provided within the platform are proprietary to Aertous. You may use them within the platform but may not extract, redistribute, or commercialize them independently.
8. Confidentiality
Each party agrees to keep confidential any non-public information received from the other party in connection with the Services. This includes Customer Data, business plans, pricing, and technical information. Confidentiality obligations survive termination of these Terms for a period of 3 years.
9. Limitation of Liability
To the maximum extent permitted by law:
- Our total liability for any claims arising from or related to the Services is limited to the amount you paid us in the 12 months preceding the claim.
- We are not liable for indirect, incidental, consequential, special, or punitive damages, including loss of profits, data, or business opportunities.
- The Services are provided “as is.” We make no warranties, express or implied, regarding the accuracy, reliability, or completeness of the Services or any content provided through them.
Nothing in these Terms excludes liability for fraud, gross negligence, or any liability that cannot be limited under applicable law.
10. Indemnification
You agree to indemnify and hold us harmless from claims, damages, and expenses (including reasonable legal fees) arising from your use of the Services, your violation of these Terms, or your violation of any third-party rights.
11. Termination
- Either party may terminate these Terms by canceling the Subscription through the platform or by providing written notice.
- We may suspend or terminate your access immediately if you breach these Terms, fail to pay fees, or engage in activities that threaten the security or integrity of the Services.
- Upon termination, your right to access the Services ceases. Customer Data will be available for export for 30 days, after which it will be permanently deleted.
12. Governing Law and Dispute Resolution
These Terms are governed by and construed in accordance with the laws of the European Union and the applicable member state where Aertous is established. Any disputes arising from these Terms shall be resolved through the competent courts of that jurisdiction.
Before initiating formal proceedings, both parties agree to attempt to resolve disputes through good-faith negotiation for a period of 30 days.
13. Changes to These Terms
We may modify these Terms from time to time. Material changes will be communicated at least 30 days in advance via email or through a notice on the platform. Your continued use of the Services after changes take effect constitutes acceptance.
14. Severability
If any provision of these Terms is found to be unenforceable, the remaining provisions will continue in full force and effect.
15. Entire Agreement
These Terms, together with our Privacy Policy and any applicable DPA, constitute the entire agreement between you and Aertous regarding the Services.