Terms of Service

1. Acceptance of Terms

1.1 Agreement

By accessing or using the Achilleus Security Monitoring Service ("Service"), you agree to be bound by these Terms of Service ("Terms"). If you disagree with any part of these terms, you may not access the Service.

1.2 Service Provider

The Service is provided by Richard Angapin, an individual operator based in France ("we," "us," or "our").

1.3 Eligibility

• You must be at least 16 years old to use this Service
• You must provide accurate and complete information
• You must not be prohibited from using the Service under applicable law

2. Service Description

2.1 Core Features

• SSL/TLS Monitoring: Certificate validation and expiry tracking
• Security Headers Analysis: HTTP security header compliance checking
• DNS Security Scanning: DNS configuration and email security validation
• Automated Reports: Regular security reports and recommendations
• Alert Notifications: Email alerts for critical security issues

2.2 Service Limitations

• Domain Limit: Maximum 10 domains per account
• Scan Rate: 10 scans per minute per user
• Report Generation: 10 reports per day per user
• API Calls: 60 requests per minute per user
• Authentication: 5 login attempts per minute, 20 per hour
• External Dependencies: Scans depend on third-party DNS and web services
• No Guarantees: Service provided "as-is" without warranties

3. Account Terms

3.1 Account Creation

• You are responsible for maintaining account security
• You must provide accurate contact information
• One account per person or organization
• You are responsible for all activity under your account

3.2 Acceptable Use

Permitted Uses:

• Monitor security of domains you own or manage
• Generate reports for security compliance
• Use data for internal security improvements

Prohibited Uses:

• Scan domains without proper authorization
• Use the service for malicious security research
• Attempt to reverse engineer or hack the service
• Share account credentials with unauthorized users
• Violate any applicable laws or regulations

4. Payment Terms

4.1 Subscription Model

• Price: $27 USD per month
• Billing: Automatic monthly billing via Stripe
• Trial: 14-day free trial for new accounts
• Taxes: Prices exclude applicable taxes (VAT added for EU customers)

4.2 Payment Processing

• Payments processed securely through Stripe
• We do not store your payment information
• Failed payments may result in service suspension
• Refunds handled according to Section 4.3

4.3 Refunds and Cancellation

Cancellation:

• Cancel anytime through your account settings
• Service continues until end of current billing period
• No charges after cancellation
• Data retained for 90 days, then permanently deleted

Refund Policy:

• 14-Day Cooling-Off Period: French/EU law provides 14 days to cancel with full refund from date of purchase
• Trial Period: No charges during your 14-day free trial
• Monthly Billing: No refunds for partial months; service continues until period end
• Technical Issues: Refunds evaluated case-by-case for significant service outages exceeding 24 hours
• Refund Requests: Email support@achilleus.so with your cancellation request

5. Data and Privacy

5.1 Your Data

• You retain ownership of all domain and account data
• We process data according to our Privacy Policy
• You can export your data at any time
• Data deleted 90 days after account closure (except where legal retention required)

5.2 Service Data

• Scan results stored for historical analysis (maximum 12 months)
• Aggregated, anonymized data may be used for service improvement
• No personal data sold or shared with third parties for marketing
• GDPR and privacy law compliance maintained at all times

5.3 Third-Party Subprocessors

We use the following trusted third-party services to deliver our Service:

• Stripe (United States): Payment processing - PCI DSS Level 1 certified
• Resend (European Union): Email delivery - GDPR compliant
• Laravel Cloud/AWS (European Union regions): Hosting infrastructure - SOC 2 Type II certified
• PostgreSQL (European Union): Database storage - encrypted at rest

For detailed subprocessor information, visit: https://achilleus.so/subprocessors

6. Intellectual Property

6.1 Service Content

• All service content, technology, and software owned by us or our licensors
• You receive a limited, non-exclusive, non-transferable license to use the service
• No rights to modify, copy, distribute, or create derivative works
• Trademarks, logos, and brand elements remain our exclusive property

6.2 User Content

• You retain all rights to your domain and configuration data
• You grant us a limited license to process data solely for service delivery
• You represent that you have proper authorization to add domains for monitoring
• You will not upload or transmit any content that infringes third-party intellectual property rights

7. Service Availability

7.1 Uptime and Maintenance

• We strive for 99.9% uptime but do not guarantee continuous availability
• Scheduled maintenance communicated with reasonable advance notice when possible
• Emergency maintenance may occur without prior notice
• Service interruptions do not extend billing periods or entitle refunds except as stated in Section 4.3

7.2 Changes to Service

• We may modify, suspend, or discontinue features with reasonable notice
• Material changes communicated via email to registered address
• Continued use after notification constitutes acceptance of changes
• You may cancel without penalty if you disagree with significant changes

8. Limitation of Liability

8.1 Service Disclaimers

The service is provided "as-is" and "as-available" without warranties of any kind, either express or implied, including but not limited to:

• Warranties of merchantability or fitness for a particular purpose
• Guarantees of complete or accurate security detection
• Warranties that the service will be uninterrupted or error-free
• Professional security advice or consultation services

Results provided are informational only and should not be considered professional security advice. External factors may affect scan accuracy and completeness.

8.2 Liability Limits

To the maximum extent permitted by applicable law:

• Our total liability is limited to the amount you paid in the past 12 months
• We are not liable for indirect, incidental, consequential, or punitive damages
• We are not liable for loss of profits, data, business opportunities, or goodwill
• We are not liable for third-party actions, security breaches of monitored domains, or force majeure events

French Consumer Protection:

Nothing in these terms limits statutory consumer rights under French or EU law, including liability for death or personal injury caused by our negligence, fraud, or fraudulent misrepresentation.

9. Indemnification

You agree to indemnify, defend, and hold harmless Richard Angapin and the Service from any claims, damages, liabilities, costs, or expenses (including reasonable legal fees) arising from:

• Your use of the service in violation of these terms
• Your violation of applicable laws or regulations
• Unauthorized scanning of domains you do not own or control
• Your breach of third-party rights, including intellectual property rights
• Any content or data you submit to the Service

This indemnification obligation survives termination of your account and these Terms.

10. Termination

10.1 Termination by You

• Cancel subscription anytime through account settings or by emailing support@achilleus.so
• Service access continues until end of current billing period
• Data export available during 90-day grace period
• Account and data permanently deleted after 90 days

10.2 Termination by Us

We may terminate or suspend your access for:

• Material breach of these Terms
• Non-payment of subscription fees
• Fraudulent or illegal activity
• Violation of third-party rights
• Abusive or threatening behavior toward staff

Notice Periods:

• 30 days written notice for termination without cause
• 7 days notice for non-payment issues
• Immediate termination for serious violations (illegal activity, security threats, abuse)

Effect of Termination:

• Immediate loss of access to the Service
• All outstanding fees become immediately due
• Data retained for 30 days for recovery, then permanently deleted
• No refunds except as required by Section 4.3

11. Dispute Resolution

11.1 Governing Law

• These Terms are governed by the laws of France
• EU consumer protection laws apply where relevant (particularly GDPR, Consumer Rights Directive)
• Vienna Convention on the International Sale of Goods (CISG) explicitly excluded

11.2 Jurisdiction

• Disputes resolved in the competent courts of France
• EU consumers may bring proceedings in their country of residence as provided by EU law
• Nothing in these Terms affects your statutory rights as a consumer

11.3 Alternative Dispute Resolution

• Good faith negotiation preferred as first step
• Mediation available through the European Commission's Online Dispute Resolution platform: https://ec.europa.eu/consumers/odr
• French consumers may contact DGCCRF (consumer protection authority)

12. Miscellaneous

12.1 Entire Agreement

These Terms, together with our Privacy Policy and Security Policy, constitute the complete agreement between you and us regarding the Service. They supersede all prior agreements, understandings, and communications.

12.2 Severability

If any provision of these Terms is found invalid or unenforceable, that provision will be limited or eliminated to the minimum extent necessary, and the remaining provisions will remain in full effect.

12.3 No Waiver

Our failure to enforce any right or provision of these Terms does not constitute a waiver of that right or provision. Any waiver must be in writing and signed by us.

12.4 Assignment

You may not assign or transfer these Terms or your account without our prior written consent. We may assign these Terms to any successor or affiliate without restriction.

12.5 Force Majeure

We are not liable for any failure or delay in performance due to circumstances beyond our reasonable control, including natural disasters, war, terrorism, riots, embargoes, acts of civil or military authorities, fire, floods, accidents, pandemics, network infrastructure failures, or strikes.

13. Contact Information

13.1 General Support

• Email: support@achilleus.so
• Response Time: Within 48 business hours

13.2 Legal Inquiries

• Email: support@achilleus.so (marked "Legal Department")
• Response Time: Within 7 business days
• Postal Address: Available upon request for formal legal proceedings

14. Updates to Terms

14.1 Modification Rights

We reserve the right to modify these Terms at any time. Changes may be necessary to reflect:

• Changes in our Service features or functionality
• Legal, regulatory, or security requirements
• Business practice updates

14.2 Notification Process

• Material Changes: Email notification to your registered email address
• Website Notice: Updates posted at https://achilleus.so/terms
• Advance Notice: Minimum 30 days notice for significant changes
• Effective Date: Changes become effective on the date specified in the notification

14.3 Acceptance

Continued use of the Service after the effective date constitutes acceptance of modified Terms. If you do not agree with modifications, you must discontinue use and cancel your account before the effective date.

15. French Consumer Rights (Code de la consommation)

As a service provider based in France offering services to French consumers, you benefit from specific consumer protections:

15.1 Right of Withdrawal (Droit de rétractation)

• 14-day cooling-off period from date of subscription
• No reason required for cancellation
• Full refund of any amounts paid within 14 days of withdrawal notice

15.2 Clear Information Requirements

• All pricing displayed includes applicable taxes
• Service features and limitations clearly described
• Contact information readily available
• Terms available in French upon request

15.3 Consumer Protection Authority

For unresolved disputes, French consumers may contact:

• DGCCRF (Direction Générale de la Concurrence, de la Consommation et de la Répression des Fraudes)
• European Consumer Centre France: https://www.europe-consommateurs.eu