Proud to be featured in the OWASP GenAI Security Solutions Landscape – Test & Evaluation category. View Report

VeriGenAI Security Platform Terms of Service

Effective Date: January 1st, 2025

1. Acceptance of Terms

Welcome to VeriGenAI ("VeriGenAI", "we", "us", or "our"). By accessing or using our advanced security intelligence platform, including our website, security assessment tools, APIs, and related services (collectively, the "Platform" or "Services"), you agree to be bound by these Terms of Service ("Terms"). If you do not agree to these Terms, please do not use our Platform.

These Terms constitute a legally binding agreement between you (and the organization you represent) and VeriGenAI regarding your use of our GenAI security assessment and OWASP LLM Top 10 compliance platform.

2. Description of Security Platform

VeriGenAI operates an advanced security intelligence platform that provides:

  • Automated GenAI Security Assessments: Comprehensive vulnerability testing using 31 specialized attack agents
  • OWASP LLM Top 10 Compliance: Automated testing and reporting for industry-standard security frameworks
  • Continuous Security Monitoring: Ongoing assessment and threat intelligence for your GenAI systems
  • Enterprise Security APIs: Programmatic access to security assessment capabilities
  • Executive Reporting: Compliance dashboards and security analytics for governance teams

Our Platform is provided as a Software-as-a-Service (SaaS) solution, accessible via secure web interfaces and APIs.

3. Eligibility and Account Requirements

You must be at least 18 years old and have the authority to enter into these Terms on behalf of your organization. To access our Platform, you may need to create an enterprise security account. You agree to:

  • Provide accurate and complete business contact information during registration
  • Maintain and promptly update your account and security team information
  • Implement strong authentication measures and keep login credentials secure
  • Designate authorized security personnel for platform access
  • Notify us immediately of any unauthorized access or security incidents
  • Comply with your organization's security policies when using our Platform

4. Authorized Use and Security Compliance

Our Platform is designed for legitimate security assessment and compliance testing. You agree to use our Services only for:

  • Security assessment of GenAI systems you own or have explicit authorization to test
  • OWASP LLM Top 10 compliance validation and reporting
  • Internal security research and vulnerability management
  • Security awareness training and education within your organization

Prohibited Uses: You may not use our Platform for:

  • Testing systems without proper authorization or legal right
  • Malicious attacks against third-party systems
  • Circumventing security measures of systems you do not own
  • Any activities that violate applicable laws or regulations
  • Reverse engineering or attempting to extract our attack methodologies

5. Data Security and Confidentiality

As a security-first organization, we implement enterprise-grade protections for all customer data:

  • Data Isolation: Your security assessment data is logically separated and encrypted
  • Encryption Standards: AES-256 encryption at rest and TLS 1.3 for data in transit
  • Access Controls: Role-based access management
  • Confidentiality: We do not share your vulnerability findings with third parties
  • Data Retention: Security findings retained according to your subscription terms

By using our Platform, you acknowledge that we may process security-related data necessary for assessment services. See our Privacy Policy for detailed information handling practices.

6. Intellectual Property and Security Research

Our Platform, including all security assessment methodologies, attack agents, compliance frameworks, and related intellectual property, is owned by VeriGenAI and protected by intellectual property laws. You receive a limited, non-exclusive license to use our Platform in accordance with these Terms.

Security Research: Any security research or findings generated through our Platform remain your property. However, you grant us permission to use anonymized, aggregated threat intelligence to improve our security assessment capabilities.

7. Subscription Terms and Security Services

Our Platform is offered through various subscription tiers designed for different security requirements:

  • Assessment Credits: Most plans include monthly security assessment credits
  • API Access: Programmatic access to security testing capabilities
  • Compliance Reporting: OWASP LLM Top 10 and custom compliance reports
  • Enterprise Features: Advanced threat intelligence and custom security policies

Subscription fees are billed in advance and are non-refundable except as required by law. You may cancel your subscription at any time, with cancellation taking effect at the end of the current billing period.

8. Service Level and Security Availability

We strive to maintain high availability for our security platform:

  • Platform Availability: We target 99.5% uptime for our security assessment services
  • Assessment Speed: Most security assessments complete within 30 minutes
  • Support Response: Security-related support inquiries receive priority handling
  • Maintenance Windows: Scheduled maintenance will be announced in advance

Service credits may be available for extended outages as detailed in your enterprise agreement.

9. Security Incident Response and Liability

Platform Security: We maintain comprehensive security monitoring and incident response procedures. In the event of a security incident affecting our Platform, we will notify affected customers promptly and provide detailed incident reports.

Customer Responsibility: You are responsible for:

  • Securing your own GenAI systems and infrastructure
  • Acting on security findings and vulnerability reports provided by our Platform
  • Implementing appropriate security controls based on assessment results
  • Notifying relevant stakeholders of security findings as required by your policies

Limitation of Liability: Our Platform provides security assessment tools and intelligence. We do not guarantee that our assessments will identify all vulnerabilities or prevent all security incidents. To the maximum extent permitted by law, our liability is limited to the amount paid for our Services in the 12 months preceding any claim.

10. Compliance and Regulatory Requirements

Our Platform is designed to support various compliance frameworks:

  • OWASP Standards: Built-in support for OWASP LLM Top 10 compliance testing
  • Industry Frameworks: Support for security frameworks relevant to your industry
  • Audit Support: Detailed reporting and documentation for security audits
  • Data Protection: Compliance with applicable data protection regulations

You remain responsible for ensuring your use of our Platform complies with all applicable laws, regulations, and industry standards relevant to your organization.

11. Termination and Data Handling

Either party may terminate these Terms:

  • For Convenience: With 30 days' written notice
  • For Cause: Immediately upon material breach that remains uncured after 30 days' notice
  • Security Violations: Immediately for unauthorized or malicious use of our Platform

Upon termination, you will retain access to your security findings and reports for 90 days to allow for data export. After this period, we will securely delete your data according to our data retention policies.

12. Updates and Platform Evolution

We regularly enhance our Platform with new security capabilities:

  • Security Updates: Regular updates to attack agents and detection capabilities
  • Compliance Framework: Updates to reflect evolving security standards
  • Threat Intelligence: Enhanced threat detection based on latest security research
  • Terms Updates: Material changes to these Terms will be communicated 30 days in advance

13. Enterprise and API Terms

Enterprise customers and API users are subject to additional terms:

  • API Rate Limits: Reasonable usage limits apply to prevent service disruption
  • Data Processing Agreements: Enterprise customers receive comprehensive DPAs
  • Custom Security Policies: Enterprise plans support custom assessment configurations
  • Integration Support: API documentation and integration assistance available

14. Governing Law and Dispute Resolution

These Terms are governed by the laws of the State of Texas, without regard to conflict of law provisions. Any disputes arising from these Terms or your use of our Platform shall be resolved through:

  • Good Faith Negotiation: Initial attempt to resolve disputes through direct communication
  • Binding Arbitration: Unresolved disputes subject to binding arbitration in Dallas, Texas
  • Confidentiality: All dispute resolution proceedings shall remain confidential

15. Contact Information and Security Support

For questions about these Terms or our Platform:

VeriGenAI Security Platform
United States of America

16. Effective Date and Acceptance

These Terms are effective as of January 1st, 2025. By using our Platform, you acknowledge that you have read, understood, and agree to be bound by these Terms and our commitment to providing enterprise-grade security assessment services.

For Enterprise Customers: These Terms are supplemented by your Master Service Agreement and any applicable Data Processing Agreements, which provide additional protections and controls specific to enterprise security requirements.