1. Provider Information

These Terms of Service (the "Terms") govern the use of Safe in Cyber Space services provided by [LEGAL_ENTITY_NAME], NIF/CIF [NIF_OR_CIF], with registered office at [REGISTERED_ADDRESS], registered in [REGISTRY_DETAILS] (the "Provider", "we", "us", or "our").

Contact email for legal notices and support: hello@safeincyber.space.

2. Acceptance of Terms

By creating an account, purchasing a subscription, or otherwise using the service, you confirm that you have authority to bind your organization and agree to these Terms.

3. License and Subscription

Subject to your compliance with these Terms and payment of applicable fees, we grant you a revocable, non-exclusive, non-transferable, non-sublicensable right to access and use the service during your subscription term for your internal business purposes.

You may not reverse engineer, copy, redistribute, resell, or misuse the service, except as expressly allowed by mandatory law.

4. Service Scope and Availability

The service provides domain monitoring, analysis, and related security workflows. We may maintain, update, and improve functionality over time. We aim for high availability but do not guarantee uninterrupted service.

5. Account Responsibilities and Acceptable Use

You are responsible for safeguarding account credentials and all actions taken under your account. You agree to use the service lawfully and not to attempt unauthorized access, disrupt systems, or process unlawful data.

6. Fees, Billing, Taxes, and Renewal

Subscription fees are billed in advance according to your selected plan and billing period. Unless otherwise agreed, subscriptions renew automatically for successive terms.

Prices are exclusive of applicable taxes unless explicitly stated. You are responsible for VAT, IGIC, or other applicable taxes under relevant law.

We use Paddle as merchant of record for payment operations. Paddle may process billing identity, invoice, and transaction metadata as an independent controller according to Paddle legal terms.

7. Data Processing (DPA)

We process company and personal data only as necessary to provide and secure the service, deliver support, and comply with legal obligations. We implement technical and organizational measures proportionate to the risks of processing.

We use Hanko as our authentication provider for account login and session identity management. Authentication-related personal data is processed only to the extent necessary to provide secure access to the service.

We commit to processing data in line with applicable data protection laws, including GDPR and, where applicable, CCPA principles. If required by law or contract, the parties may execute a separate Data Processing Agreement (DPA) governing processing instructions, subprocessors, and transfer safeguards.

Customers can request company data export and company deletion from the product settings. Deletion removes operational company data and anonymizes retained records where legal or accounting retention duties apply.

8. Intellectual Property

You own your data; we own the software. As between the parties, you retain all rights to your submitted or generated business data, and we retain all rights, title, and interest in the platform, code, models, documentation, trademarks, and related intellectual property.

9. Confidentiality

Each party may receive confidential information from the other party. Both parties agree to protect the other's confidential information with reasonable care, use it only for purposes of performing under these Terms, and not disclose it except as required by law or with prior written consent.

10. Suspension and Termination

We may suspend or terminate access for material breach, non-payment, security abuse, or legal necessity. You may terminate by discontinuing use and cancelling subscription renewal in accordance with plan terms.

11. Warranties and Disclaimer

Except where prohibited by law, the service is provided on an "as is" and "as available" basis. We do not warrant that the service will be uninterrupted, error-free, or suitable for every regulatory requirement without configuration by your team.

12. Limitation of Liability

To the fullest extent permitted by law, neither party is liable for indirect, incidental, special, punitive, or consequential damages. Our aggregate liability for claims arising out of these Terms is limited to the fees paid by you in the twelve (12) months preceding the event giving rise to liability.

13. Marketing and Product Communications

When you create an organisation account, you agree by default to receive product updates and marketing communications from Safe in Cyber Space about the service, security features, and related offerings.

You may change this preference in your company settings while your organisation has an active paid subscription. If you cancel your subscription, your marketing agreement will reset to accepted (opt-in) for future communications permitted under applicable law.

Processing of contact details for these communications is described in our Privacy Policy. You may withdraw consent or object to marketing at any time using the preference controls in the product or by contacting hello@safeincyber.space.

14. Changes to Terms

We reserve the right to modify these terms. We will notify you of any material changes via email or an in-app notification 30 days before they take effect.

15. Governing Law and Jurisdiction

These Terms are governed by the laws of Spain, with particular reference to mandatory regulations applicable in the Canary Islands where relevant. Unless mandatory consumer law states otherwise, disputes are subject to the courts of [CANARIAS_JURISDICTION_CITY].

16. Miscellaneous

If any provision of these Terms is held invalid, the remaining provisions remain in effect. Failure to enforce a provision is not a waiver. These Terms, together with any applicable order form and DPA, constitute the entire agreement between the parties regarding the service.