Terms of Service

Last updated: April 1, 2026

1. Agreement to Terms

By accessing and using the Egida website and services (collectively, the "Service"), you agree to be bound by these Terms of Service ("Terms"). If you do not agree to all of these Terms, do not use the Service.

2. Description of Service

Egida provides AI-powered security scanning services for web applications and websites. Our Service includes:

  • Automated vulnerability scanning of web applications via URL submission
  • Plain-language security reports identifying critical, high, medium, and low-severity issues
  • Security certificates and embeddable trust badges for verified applications
  • Continuous monitoring and automated scanning on code pushes (for paid tiers)
  • Integration with GitHub and other third-party services (for paid tiers)
  • Proactive security outreach — passive scanning of publicly accessible websites and notification of findings to website owners (see Section 2a)

The Service is provided "as is" and is intended to supplement — not replace — professional security audits, penetration testing, or comprehensive security reviews.

2a. Passive Security Scanning and Outreach

Egida may perform passive, non-intrusive security scans of publicly accessible websites as part of our security outreach program. These scans:

  • Only check publicly accessible information (HTTP headers, DNS records, TLS configuration, publicly accessible URLs)
  • Do not attempt authentication, do not inject payloads, and do not access any non-public resources
  • Are limited to a maximum of 15 HTTP requests per domain with a minimum of 500ms between requests
  • Identify themselves via a User-Agent header containing "EgidaSec" and a link to our website

If we discover publicly visible security issues, we may send the website owner a single informational email with a summary of findings and a link to our free scanning tool. Website owners can opt out at any time via the unsubscribe link included in every email. See our Privacy Policy Section 3a for full details.

3. Account Registration

You may use our free scanning service without creating an account. To access paid services, you must create an account and provide accurate, complete, and current information. You are responsible for maintaining the confidentiality of your account credentials and for all activity that occurs under your account. You agree to notify us immediately of any unauthorized use of your account.

4. Free and Paid Services

Free Tier (Instant Scan): You may perform up to 3 free scans per day per IP address without creating an account. Free scans run 25 checks and show the top 3 critical issues in plain-language format. No credit card is required.

Launch Certificate: A one-time $29 fee runs the same 25 surface checks and reveals all results, plus provides a PDF security certificate valid for 90 days, embeddable trust badge, public certificate page, and copy-paste fix guides. Certificates represent security status at the time of scan only.

Founder Pro: Recurring monthly subscription at $49/month. Includes 130 security checks across code, config, and surface analysis via GitHub integration, weekly automated re-scans, email alerts, trend tracking, and priority support.

Paid subscriptions automatically renew each month on the same date you purchased. You may cancel at any time, effective at the end of your current billing cycle.

5. Launch Certificate Disclaimer — CRITICAL

Egida Certificates Represent Point-in-Time Scan Results Only. Security certificates issued by Egida represent automated scanning results at the specific time the scan was performed. They are NOT:

  • A guarantee that all vulnerabilities have been detected or fixed
  • A comprehensive security assessment or professional security audit
  • A promise that your application is completely free from security flaws
  • Applicable to code or infrastructure changes made after the scan date
  • A guarantee against future breaches or data exposure

Egida is not liable for:

  • Vulnerabilities not detected by our scanning engine
  • Breaches, data exposure, or security incidents that occur after certification
  • Vulnerabilities introduced after a certificate is issued
  • False sense of security resulting from certificate display
  • Any damage, liability, or loss of data resulting from security issues in your application

You remain solely responsible for your application's security. Our Service is a security tool, not a replacement for professional security practices, regular code reviews, security training, or proactive vulnerability management.

6. Payment Terms

Payments are processed through Stripe and are charged at the billing frequency you select (monthly for subscriptions). We accept all major credit and debit cards. You authorize us to charge your payment method for all fees and charges you incur.

Monthly subscriptions renew automatically each month unless cancelled. You may cancel at any time, effective at the end of your current billing period. Refunds are not available for partial months or cancelled subscriptions.

If a payment fails, we will attempt to charge your account again. If payment fails after multiple attempts, we reserve the right to suspend or terminate your account.

We reserve the right to change pricing with 30 days' notice. Price changes apply to new subscriptions and renewals after the notice period.

7. Intellectual Property

The Service, including all software, source code, designs, graphics, and content ("Egida IP"), is the property of Egida or our licensors. You are granted a limited, non-exclusive, non-transferable license to use the Service for your personal or business purposes, subject to these Terms.

You may not copy, modify, distribute, sell, or rent any part of the Service. You may not reverse-engineer, decompile, or attempt to derive the source code of our scanning engine.

You retain all intellectual property rights to your application code and any content you submit for scanning. By submitting code for scanning, you grant Egida the right to analyze and process that code solely to provide the Service.

8. User Responsibilities

When you submit a URL or repository for scanning via the Egida website or API, you are responsible for:

  • Providing accurate, valid URLs or repository information
  • Ensuring you have authorization to scan the application or code you submit
  • Maintaining accurate account information
  • Acting on security recommendations provided by Egida in a timely manner
  • Not circumventing security measures or rate limits
  • Complying with all applicable laws and regulations

Note: Section 2a describes Egida-initiated passive scans of publicly accessible websites as part of our security outreach program. These scans are conducted by Egida, not by users, and are governed by separate policies described in Section 2a and our Privacy Policy.

9. Prohibited Uses

You agree not to:

  • Submit URLs or code for scanning of applications you do not own or lack authorization to test
  • Use the Service for unauthorized penetration testing or active exploitation
  • Attempt to scan competitor applications without their permission
  • Reverse-engineer, decompile, or attempt to discover the source code of Egida
  • Attack, overwhelm, or attempt to disrupt Egida's infrastructure
  • Interfere with other users' use of the Service
  • Transmit malware, viruses, or harmful code through the Service
  • Violate any applicable laws, regulations, or intellectual property rights
  • Impersonate other users or misrepresent your identity
  • Use the Service for illegal purposes or to facilitate illegal activity

10. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, EGIDA SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING BUT NOT LIMITED TO LOSS OF PROFITS, DATA, BUSINESS INTERRUPTION, OR REPUTATIONAL HARM, ARISING FROM YOUR USE OF OR INABILITY TO USE THE SERVICE, EVEN IF EGIDA HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

IN NO EVENT SHALL EGIDA'S TOTAL LIABILITY FOR ALL CLAIMS ARISING FROM OR RELATING TO THIS AGREEMENT EXCEED THE AMOUNT YOU PAID TO EGIDA IN THE 12 MONTHS IMMEDIATELY PRECEDING THE CLAIM. IF YOU HAVE PAID NOTHING, LIABILITY IS LIMITED TO $100.

Some jurisdictions do not allow the exclusion of certain warranties or limitation of liability, so some of these limitations may not apply to you.

11. Disclaimer of Warranties

THE SERVICE IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. EGIDA DISCLAIMS ALL WARRANTIES, INCLUDING BUT NOT LIMITED TO:

  • Warranties of merchantability, fitness for a particular purpose, or non-infringement
  • That the Service will be uninterrupted, error-free, or free from bugs or vulnerabilities
  • That the Service will identify all security vulnerabilities in your application
  • That results will be accurate, complete, or timely
  • That any certificate or badge guarantees the security of your application

You acknowledge that security scanning is imperfect and that no automated tool can detect all vulnerabilities. Our Service is designed to identify common issues but may miss edge cases, logic flaws, or novel attack vectors.

12. Indemnification

You agree to defend, indemnify, and hold harmless Egida and its officers, directors, employees, and agents from any claims, damages, losses, liabilities, and expenses (including attorneys' fees) arising from:

  • Your use of the Service
  • Your violation of these Terms
  • Your violation of any law or the rights of a third party
  • Intellectual property infringement claims related to content you submit
  • Security breaches or incidents in applications you scanned

13. Termination

We may terminate or suspend your account immediately, without prior notice or liability, for any reason, including if you violate these Terms. Upon termination, your access to the Service will be revoked and you will not be entitled to any refunds.

You may terminate your account at any time by contacting us at [email protected] or by deleting your account through the dashboard.

14. Governing Law and Jurisdiction

These Terms are governed by and construed in accordance with the laws of the Commonwealth of Massachusetts, USA, without regard to its conflicts of law principles. Any disputes arising under these Terms shall be subject to the exclusive jurisdiction of the state and federal courts located in Massachusetts, USA.

15. Changes to Terms

We reserve the right to modify these Terms at any time. Changes will be effective upon posting to the website. Your continued use of the Service after changes constitutes acceptance of the new Terms. We will provide notice of material changes via email or by prominently displaying notice on the website.

16. Contact

For questions about these Terms of Service, please contact us at:

Email: [email protected]

Postal Address: Egida LLC, Needham, MA 02492, USA

17. Severability

If any provision of these Terms is found to be invalid or unenforceable, that provision will be modified to the minimum extent necessary to make it valid, and the remaining provisions will remain in full force and effect.

18. Entire Agreement

These Terms constitute the entire agreement between you and Egida regarding the Service and supersede all prior or contemporaneous communications, understandings, and agreements.