Products

🔄
PTaaS Platform
DAST Scanner
☁️
Cloud Vulnerability Scanner
🔌
API Security Platform

Pentest

🌐
Web Pentest
🔌
API Pentest
☁️
Cloud Pentest
📱
Mobile Pentest

Company

💰
Pricing
🏢
About Us
💼
Careers
📧
Contact
Talk to Sales →
Legal

Terms & Conditions

Please read these Terms and Conditions carefully before using Astrolabe Security's platform and services. By accessing our Services, you agree to be bound by these terms.

📅 Effective: January 1, 2025
🔄 Last Updated: April 15, 2025
📋 Version 4.1
⚖️ Governing Law: Texas, USA
✓ By using Astrolabe's services, you confirm you have read and agree to these Terms & Conditions and our Privacy Policy.
Contact Us with Questions →

1Agreement & Acceptance

📋 Plain English By signing up or using any Astrolabe service, you're entering a legal agreement with us. These Terms govern that relationship. If you're agreeing on behalf of a company, you confirm you have authority to bind that company.

These Terms and Conditions ("Terms", "Agreement") constitute a legally binding agreement between Astrolabe Security Inc. ("Astrolabe", "Company", "we", "us", "our"), a Texas corporation with its principal place of business at 553 Sierra Ridge, Lavon, TX 75166, and you ("Customer", "User", "you") regarding your access to and use of Astrolabe's security testing platform, products, and services.

By (a) clicking "I Agree" or similar acceptance mechanisms, (b) signing an Order Form that references these Terms, (c) accessing or using any Astrolabe Service, or (d) paying for a subscription, you acknowledge that you have read, understood, and agree to be bound by these Terms and our Privacy Policy, which is incorporated herein by reference.

If you are accepting these Terms on behalf of a company, organization, or other legal entity, you represent and warrant that you have the authority to bind such entity to these Terms. If you do not have such authority, or if you do not agree with these Terms, you must not use the Services.

⚠ Important These Terms contain a binding arbitration clause and class action waiver (Section 15) that affect your legal rights. Please read Section 15 carefully before accepting these Terms.

2Definitions

The following capitalized terms have the meanings set forth below:

TermDefinition
"Services"All Astrolabe products including the PTaaS Platform, DAST Scanner, API Security Platform, Cloud Vulnerability Scanner, Mobile App Pentesting service, and any associated APIs, dashboards, reports, and documentation.
"Subscription"A time-limited right to access and use the Services, as specified in an Order Form or online purchase confirmation.
"Order Form"A written or electronic order referencing these Terms that specifies the Services purchased, subscription term, fees, and other commercial terms.
"Customer Data"All data submitted to or generated by the Services in connection with Customer's use, including target application data, scan configurations, vulnerability reports, and credentials.
"Authorized User"Any individual authorized by Customer to access and use the Services under Customer's account.
"Confidential Information"Any non-public information disclosed by either party that is designated as confidential or that reasonably should be understood to be confidential given the nature of the information and circumstances of disclosure.
"Intellectual Property"All patents, copyrights, trademarks, trade secrets, and other intellectual property rights worldwide.
"Pentest Report"The vulnerability findings, technical analysis, and recommendations generated by Astrolabe's security testing services for Customer's designated target applications.

3Services & Subscriptions

3.1 Service Delivery

Astrolabe will provide the Services as specified in the applicable Order Form or subscription plan. Services include access to our security testing platform, automated scanning capabilities, expert manual pentesting (where included), vulnerability reports, and customer support as described in the applicable service tier.

3.2 Subscription Plans

🔄 Starter / Basic

  • 1 target application
  • Automated DAST scanning
  • Basic compliance reports
  • 2 fix re-scans included
  • Shared Slack channel
  • Manual pentest expert
  • Named account manager

🏆 PTaaS / Growth

  • 1+ target applications
  • DAST + certified manual pentest
  • Full compliance reports (SOC2/ISO)
  • Unlimited re-scans
  • Verifiable certificate
  • Named account manager
  • Custom SLA options

🏢 Enterprise

  • Unlimited targets
  • Full platform access
  • Custom scope & SLAs
  • Dedicated security team
  • Custom deployment options
  • Priority support
  • Custom contracts & billing

3.3 Service Level Agreement

ServiceUptime TargetResponse Time (Support)
Platform Dashboard99.9% monthly uptimeWithin 24 hours
DAST Scanning Engine99.5% monthly uptimeWithin 24 hours
Pentest Report DeliveryPer agreed timelineWithin 4 business hours
Emergency Security IssuesN/AWithin 2 hours
Enterprise SLA (custom)Up to 99.99%Within 1 hour (dedicated)

3.4 Modifications to Services

Astrolabe reserves the right to modify, update, or discontinue features of the Services with 30 days' notice for material changes. We will not make changes that materially reduce the core functionality of Services during a paid subscription term without providing a prorated refund or alternative.

4Acceptable Use Policy

🔒 Security Testing Authorization Astrolabe's services are security testing tools. You must have explicit authorization to test any application, system, or infrastructure before configuring it as a target in our platform. Unauthorized security testing is illegal and violates these Terms.

4.1 Permitted Uses

You may use the Services only for:

  • Security testing of applications and infrastructure that you own or have written authorization to test
  • Generating vulnerability reports for compliance purposes (SOC 2, ISO 27001, PCI-DSS, HIPAA)
  • Integrating scan results into your development pipeline for your own applications
  • Providing security assessment services to your clients using our platform (partners only, with appropriate agreements)

4.2 Prohibited Uses

You must NOT use the Services to:

  • Test, scan, or attack any application, system, or network without explicit written authorization from the owner
  • Conduct denial-of-service attacks, network flooding, or disruptive testing that could harm third parties
  • Attempt to gain unauthorized access to Astrolabe's systems, other customers' accounts, or any third-party systems
  • Reverse engineer, decompile, or derive source code from the Astrolabe platform
  • Resell, sublicense, or transfer access to the Services without written authorization
  • Use the Services for any illegal purpose or in violation of applicable law
  • Transmit malware, viruses, or malicious code through the Services
  • Circumvent any rate limiting, access controls, or security measures of the Services
  • Use automated bots or scrapers to access the Services beyond normal API usage

Violation of this Acceptable Use Policy may result in immediate account suspension or termination without refund and may be reported to appropriate law enforcement authorities.

5Account Responsibilities

5.1 Account Security

You are responsible for maintaining the security of your Astrolabe account, including your login credentials, API keys, and any access credentials you configure within the platform. You must:

  • Use strong, unique passwords and enable multi-factor authentication (MFA) — strongly recommended for all accounts
  • Not share account credentials with individuals who are not Authorized Users
  • Promptly notify Astrolabe at security@astdb.com of any suspected unauthorized access or security breach
  • Ensure that Authorized Users comply with these Terms

5.2 Account Information Accuracy

You agree to provide accurate, current, and complete information when registering and to keep your account information updated. Astrolabe is not liable for any loss resulting from your failure to maintain accurate account information.

5.3 Responsibility for Users

You are responsible for all activities that occur under your account, including actions by Authorized Users. You agree to ensure that Authorized Users comply with these Terms and that their use of the Services is within the scope of your subscription.

6Fees & Payment

6.1 Subscription Fees

You agree to pay all fees specified in your Order Form or subscription plan. Fees are quoted in US Dollars unless otherwise specified. All fees are exclusive of applicable taxes (VAT, GST, sales tax, etc.), which are your responsibility.

6.2 Billing Cycles & Auto-Renewal

Subscriptions are billed annually in advance unless otherwise agreed in an Order Form. Subscriptions auto-renew at the end of each term at the then-current rates unless you provide written notice of non-renewal at least 30 days before the renewal date.

6.3 Late Payments

Overdue invoices accrue interest at 1.5% per month (or the maximum rate permitted by law, if lower) from the due date. Astrolabe may suspend access to the Services for accounts with invoices overdue by more than 30 days, with 10 days' prior notice.

6.4 Refund Policy

ScenarioRefund Treatment
Cancellation within 14 days of purchase (no scans run)Full refund
Service unavailability exceeding SLA commitmentsProrated service credit
Cancellation after 14 daysNo refund; access continues until end of term
Termination for Astrolabe's material breachProrated refund of unused subscription period
Termination for Customer's breach of TermsNo refund

6.5 Price Changes

Astrolabe may update pricing for new subscriptions at any time. For existing subscribers, price changes take effect at the next renewal date with at least 60 days' advance written notice.

7Intellectual Property

7.1 Astrolabe Platform IP

Astrolabe retains all rights, title, and interest in and to the Services, including all underlying technology, algorithms, AI models, scanning engines, test case libraries, software, documentation, and other intellectual property. These Terms do not grant you any ownership rights in the Services.

7.2 License to Use Services

Subject to your compliance with these Terms and payment of applicable fees, Astrolabe grants you a limited, non-exclusive, non-transferable, non-sublicensable license to access and use the Services for your internal business purposes during the subscription term.

7.3 Customer Data Ownership

You retain all rights to Customer Data. You grant Astrolabe a limited license to process Customer Data solely to provide the Services to you. Astrolabe will not use Customer Data for any other purpose, including product development, marketing, or to benefit other customers.

7.4 Feedback

If you provide suggestions, feedback, or ideas about the Services ("Feedback"), you grant Astrolabe a perpetual, irrevocable, worldwide, royalty-free license to use such Feedback for any purpose without obligation to you. Feedback does not constitute Confidential Information.

7.5 Pentest Reports

Vulnerability reports and pentest certificates generated by the Services for your applications are your property. You may share them with auditors, investors, customers, and other stakeholders as you see fit.

8Confidentiality

Each party agrees to protect the other party's Confidential Information using the same degree of care it uses to protect its own confidential information, but in no event less than reasonable care. Neither party shall disclose the other's Confidential Information to third parties without prior written consent, except:

  • To employees, contractors, or advisors with a need to know, bound by confidentiality obligations at least as protective as these Terms
  • As required by law, court order, or governmental authority (with prompt prior written notice to the other party where legally permissible)
  • As necessary to enforce rights under these Terms
🔐 Vulnerability Data Confidentiality Astrolabe treats all vulnerability findings, security scan results, and infrastructure configuration data as strictly confidential. This data is never shared with other customers, used for marketing, published publicly, or accessed by Astrolabe personnel beyond what is necessary to provide the Services.

Confidentiality obligations survive termination of this Agreement for a period of 5 years, except for trade secrets which are protected indefinitely.

9Data & Privacy

9.1 Data Processing

Astrolabe processes personal data in accordance with our Privacy Policy. For customers subject to GDPR or other data protection laws, Astrolabe will enter into a Data Processing Agreement (DPA) upon request.

9.2 Data Security

Astrolabe implements appropriate technical and organizational security measures to protect Customer Data, including AES-256 encryption at rest, TLS 1.3 in transit, access controls, and regular security assessments of our own platform.

9.3 Data Breach Notification

In the event of a security breach affecting Customer Data, Astrolabe will notify you within 72 hours of discovery (or such shorter period as required by applicable law), providing details of the breach, data affected, and remediation steps taken.

9.4 Data Retention & Deletion

Upon termination of your subscription, Astrolabe will retain Customer Data for 90 days to allow you to export it. After this period, Customer Data will be securely deleted unless retention is required by law. You may request earlier deletion by contacting privacy@astdb.com.

10Security Commitments

As a security company, we hold ourselves to a higher standard. Our security commitments include:

1

SOC 2 Type II Certified

Annually audited by an independent third party. Certificate and audit report available to customers on request under NDA.

2

ISO 27001 Certified

Our information security management system is certified to ISO 27001. Certification documentation available on request.

3

Quarterly Self-Pentesting

We pentest our own platform quarterly using our own tools — we eat our own cooking and publish summary findings internally.

4

Responsible Disclosure Program

We operate a responsible disclosure program for security researchers. Report vulnerabilities to security@astdb.com and we respond within 24 hours.

5

Penetration Test Reports Available

Our most recent third-party penetration test reports are available to Enterprise customers under NDA during procurement.

11Warranties & Disclaimers

11.1 Astrolabe Warranties

Astrolabe warrants that: (a) the Services will perform materially as described in our documentation; (b) we will implement and maintain appropriate security measures as described in Section 10; and (c) we will not knowingly introduce malicious code into the Services.

11.2 Customer Warranties

You warrant that: (a) you have the legal right and authorization to test all applications configured as targets in the Services; (b) your use of the Services will comply with applicable law; and (c) you have the authority to enter into this Agreement.

11.3 DISCLAIMER OF WARRANTIES

⚠ Legal Disclaimer EXCEPT AS EXPRESSLY SET FORTH IN SECTION 11.1, THE SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE." ASTROLABE EXPRESSLY DISCLAIMS ALL OTHER WARRANTIES, EXPRESS OR IMPLIED, INCLUDING IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT. ASTROLABE DOES NOT WARRANT THAT THE SERVICES WILL BE UNINTERRUPTED, ERROR-FREE, OR THAT ALL SECURITY VULNERABILITIES IN YOUR APPLICATIONS WILL BE IDENTIFIED. SECURITY TESTING IS INHERENTLY IMPERFECT AND NO PENTEST GUARANTEES COMPLETE SECURITY.

12Limitation of Liability

12.1 Liability Cap

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, ASTROLABE'S TOTAL CUMULATIVE LIABILITY TO YOU FOR ALL CLAIMS ARISING OUT OF OR RELATED TO THESE TERMS OR THE SERVICES SHALL NOT EXCEED THE GREATER OF: (A) THE TOTAL FEES PAID BY YOU TO ASTROLABE IN THE 12 MONTHS PRECEDING THE CLAIM; OR (B) US $1,000.

12.2 Exclusion of Consequential Damages

🚫 Excluded Damages

IN NO EVENT SHALL EITHER PARTY BE LIABLE FOR INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, PUNITIVE, OR EXEMPLARY DAMAGES, INCLUDING LOST PROFITS, LOSS OF DATA, OR BUSINESS INTERRUPTION, EVEN IF ADVISED OF THE POSSIBILITY.

✓ Exceptions to Exclusion

The exclusion of consequential damages does not apply to: (a) death or personal injury caused by negligence; (b) fraud or willful misconduct; (c) Customer's indemnification obligations; or (d) as prohibited by applicable law.

12.3 Essential Basis of Bargain

The parties acknowledge that the limitations of liability in this Section reflect a reasonable allocation of risk and are an essential element of the basis of the bargain between the parties. Astrolabe would not have entered into this Agreement without these limitations.

13Indemnification

13.1 Customer Indemnification

You agree to defend, indemnify, and hold harmless Astrolabe and its officers, directors, employees, and agents from and against any claims, damages, losses, and expenses (including reasonable attorneys' fees) arising out of or relating to: (a) your violation of these Terms; (b) your use of the Services in an unauthorized or unlawful manner; (c) your violation of any third-party rights; or (d) your testing of applications you did not have authorization to test.

13.2 Astrolabe Indemnification

Astrolabe agrees to defend you against any third-party claim that the Services, as delivered, infringe such third party's intellectual property rights, and to pay damages finally awarded against you in such a claim, provided that you promptly notify Astrolabe of the claim, give Astrolabe sole control of the defense, and cooperate with our defense.

14Term & Termination

14.1 Term

These Terms commence on the date you first access the Services or sign an Order Form and continue until your subscription expires or is terminated in accordance with this Section.

14.2 Termination for Convenience

Either party may terminate a subscription for convenience with 30 days' written notice before the renewal date. Termination does not entitle you to a refund except as specified in Section 6.4.

14.3 Termination for Cause

Either party may terminate these Terms immediately upon written notice if the other party: (a) materially breaches these Terms and fails to cure within 30 days of written notice; (b) becomes insolvent or files for bankruptcy; or (c) engages in fraudulent or illegal conduct.

14.4 Effect of Termination

Upon termination: (a) all licenses granted to you immediately cease; (b) you must cease using the Services; (c) Astrolabe will make Customer Data available for export for 90 days; (d) each party will return or destroy the other's Confidential Information on request; and (e) all provisions that by their nature should survive termination shall survive, including Sections 7, 8, 11, 12, 13, 15, and 16.

15Dispute Resolution

⚠ Binding Arbitration & Class Action Waiver This section requires you to resolve disputes through binding arbitration rather than in court and waives your right to participate in class action lawsuits. Please read carefully.

15.1 Informal Resolution

Before initiating arbitration, you agree to first attempt to resolve the dispute informally by contacting us at legal@astdb.com. We will attempt to resolve the dispute informally within 30 days.

15.2 Binding Arbitration

If informal resolution fails, any dispute, claim, or controversy arising out of or relating to these Terms or the Services shall be resolved by binding arbitration administered by JAMS under its Streamlined Arbitration Rules, except that either party may seek injunctive relief in a court of competent jurisdiction for intellectual property or confidentiality breaches.

15.3 Class Action Waiver

ALL DISPUTES SHALL BE RESOLVED ON AN INDIVIDUAL BASIS. YOU AND ASTROLABE WAIVE THE RIGHT TO PARTICIPATE IN ANY CLASS ACTION LAWSUIT OR CLASS-WIDE ARBITRATION. This waiver is a material term of this Agreement.

15.4 Governing Law & Venue

These Terms are governed by the laws of the State of Texas, without regard to conflict of law principles. For disputes not subject to arbitration, you consent to exclusive jurisdiction in the state and federal courts in Dallas County, Texas.

15.5 Enterprise Customers

Enterprise customers with signed Order Forms containing alternative dispute resolution provisions will have those provisions apply instead of Section 15.2 and 15.3.

16General Provisions

16.1 Entire Agreement

These Terms, together with any Order Forms and our Privacy Policy, constitute the entire agreement between the parties regarding the Services and supersede all prior agreements, representations, and understandings.

16.2 Modifications

Astrolabe may modify these Terms by providing 30 days' notice via email or in-platform notification. Continued use of the Services after the effective date constitutes acceptance. Material changes will require active acknowledgment.

16.3 Severability

If any provision is found invalid or unenforceable, it shall be modified to the minimum extent necessary to make it enforceable. All other provisions remain in full force.

16.4 Waiver

No failure or delay in exercising any right constitutes a waiver of that right. Waivers must be in writing and signed by an authorized representative.

16.5 Assignment

You may not assign these Terms without Astrolabe's prior written consent. Astrolabe may assign these Terms in connection with a merger, acquisition, or sale of substantially all of its assets. These Terms bind and benefit the parties' successors and permitted assigns.

16.6 Force Majeure

Neither party is liable for failure to perform obligations (other than payment) if such failure is caused by events beyond reasonable control, including natural disasters, acts of government, pandemics, cyberattacks on infrastructure providers, or internet outages, provided the affected party gives prompt notice and uses reasonable efforts to resume performance.

16.7 Export Compliance

You agree to comply with all applicable export laws and regulations. You may not use the Services if you are in a country subject to US embargo or if you are on any US government restricted party list.

16.8 Relationship of Parties

The parties are independent contractors. Nothing in these Terms creates a partnership, joint venture, agency, employment, or franchise relationship between the parties.

17Contact & Notices

All notices under these Terms shall be in writing and delivered by email (with read receipt or delivery confirmation) or by registered mail.

Legal Inquiries & Notices to Astrolabe

For legal notices, contract questions, DPA requests, or Terms-related inquiries, contact our legal team. For privacy matters, contact our privacy team. For security disclosures, use our security contact.

⚖️ legal@astdb.com
🔒 privacy@astdb.com
🛡 security@astdb.com
📞 +1 (972) 379-8459
Postal address: Astrolabe Security Inc., Legal Department
553 Sierra Ridge, Lavon, TX 75166, United States

Related Legal Documents

Privacy Policy → Contact Sales →