Terms of Service

Last updated: January 2026

These Terms of Service ("Terms") govern your access to and use of Kira and related services provided by Offgrid Security ("Company", "we", "us", "our"). By accessing or using our services, you agree to be bound by these Terms.

1. Acceptance of Terms

By creating an account, accessing, or using Kira, you acknowledge that you have read, understood, and agree to be bound by these Terms and our Privacy Policy. If you are using our services on behalf of an organization, you represent that you have authority to bind that organization to these Terms.

2. Description of Services

Kira is an advanced security analysis platform that maps software architecture, traces data flows, and identifies potential security vulnerabilities. Our services include:

  • Automated code architecture analysis and threat modeling
  • Data flow mapping, visualization, and attack surface identification
  • Security vulnerability detection, validation, and prioritization
  • Integration with development workflows, CI/CD pipelines, and security tools
  • Security reporting, compliance documentation, and remediation guidance

3. Account Registration

To use Kira, you must create an account and provide accurate, complete information. You are responsible for:

  • Maintaining the confidentiality of your account credentials
  • Implementing appropriate access controls (MFA is strongly recommended)
  • All activities that occur under your account
  • Notifying us immediately of any unauthorized use or security breach

4. Authorization and Acceptable Use

Authorization Requirements

You represent and warrant that you have all necessary rights, permissions, and authorizations to submit code and systems for analysis. You may only use Kira to analyze:

  • Code and systems that you own
  • Code and systems for which you have explicit written authorization from the owner
  • Open source code in accordance with its applicable license

Prohibited Uses

You agree not to:

  • Use our services on any code or systems without proper authorization
  • Use vulnerability findings to exploit, attack, or harm any system or entity
  • Use our services for any unlawful purpose or in violation of any applicable laws
  • Attempt to gain unauthorized access to our systems or other users' accounts
  • Interfere with or disrupt the integrity or performance of our services
  • Reverse engineer, decompile, or disassemble any part of our services
  • Use our services to develop competing products or security tools
  • Share your account credentials or allow unauthorized third parties to access your account
  • Upload malicious code or content designed to harm our systems
  • Resell, sublicense, or redistribute our services without authorization

5. Security Testing of Our Platform

If you wish to conduct security testing on Kira itself, you must obtain prior written authorization from Offgrid Security. Unauthorized security testing, penetration testing, or vulnerability scanning of our systems is strictly prohibited. For authorized security research, please contact us at contact@offgridsec.com.

6. Your Data and Code

Ownership

You retain all ownership rights to your code and data. We do not claim any ownership over your intellectual property or vulnerability findings generated from your code.

License to Us

You grant us a limited, non-exclusive license to access and analyze your code solely for the purpose of providing our services. This license terminates when you stop using our services and your data is deleted.

Data Handling

We process your code and data in accordance with our Privacy Policy. We implement enterprise-grade security measures to protect your information, including:

  • Encryption at rest (AES-256) and in transit (TLS 1.3)
  • Strict access controls and audit logging
  • Regular security assessments and penetration testing
  • Secure cloud infrastructure with continuous monitoring

We do not use your code to train machine learning models or share it with third parties except as necessary to provide our services.

Vulnerability Data

Security findings and vulnerability reports generated by Kira are treated as confidential information. We do not share your vulnerability data with any third parties. You are solely responsible for decisions regarding remediation and disclosure of identified vulnerabilities.

7. Subscription and Payment

Fees

Subscription fees are based on your selected plan and are billed in advance on a monthly or annual basis. All fees are non-refundable except as expressly stated in these Terms or required by applicable law.

Changes to Pricing

We may change our pricing with 30 days' notice. Price changes will take effect at the start of your next billing cycle. Enterprise customers with annual contracts are protected from mid-term price increases.

Cancellation

You may cancel your subscription at any time. Cancellation takes effect at the end of your current billing period. Upon cancellation, you may request export of your data and vulnerability reports.

8. Service Levels and Support

Service level commitments and support response times are defined in your subscription plan or separate Service Level Agreement (SLA). Enterprise customers may negotiate custom SLAs with enhanced uptime guarantees and dedicated support.

9. Third-Party Integrations

Kira integrates with third-party services including source code repositories, CI/CD platforms, and security tools. Your use of these integrations is subject to the respective third-party terms of service. We are not responsible for the availability, security, or practices of third-party services.

10. Intellectual Property

Kira, including its design, features, documentation, security rules, detection logic, and underlying technology, is owned by Offgrid Security and protected by intellectual property laws. These Terms do not grant you any rights to our trademarks, logos, or other brand features.

11. Disclaimer of Warranties

OUR SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.

SECURITY ANALYSIS DISCLAIMER: Kira is a security analysis tool designed to assist in identifying potential vulnerabilities. However, no automated security tool can guarantee detection of all vulnerabilities or security issues. Our services:

  • May not detect all vulnerabilities, including zero-day exploits, complex business logic flaws, or novel attack vectors
  • May produce false positives or false negatives
  • Should not be your sole security measure
  • Do not replace comprehensive security programs, manual code reviews, or penetration testing

You remain solely responsible for your overall security posture, remediation decisions, and compliance with applicable security standards and regulations.

12. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, OFFGRID SECURITY SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR ANY LOSS OF PROFITS, REVENUE, DATA, OR USE, ARISING OUT OF OR RELATED TO THESE TERMS OR YOUR USE OF OUR SERVICES.

WITHOUT LIMITING THE FOREGOING, WE SHALL NOT BE LIABLE FOR ANY DAMAGES ARISING FROM:

  • Security incidents or breaches in your systems, whether or not detected by our services
  • Vulnerabilities not identified by our analysis
  • Your decisions regarding remediation or disclosure of vulnerabilities
  • Third-party claims related to your security practices

Our total liability for any claims arising under these Terms shall not exceed the amount you paid us in the twelve (12) months preceding the claim.

13. Indemnification

You agree to indemnify and hold harmless Offgrid Security and its officers, directors, employees, and agents from any claims, damages, losses, or expenses (including reasonable attorneys' fees) arising from:

  • Your use of our services
  • Your violation of these Terms
  • Your analysis of code or systems without proper authorization
  • Any third-party claims related to your security practices or decisions
  • Your failure to remediate identified vulnerabilities

14. Export Controls and Compliance

Our services may be subject to export control laws and regulations. You agree to comply with all applicable export laws and not to export or re-export our services to any prohibited countries, entities, or individuals. You represent that you are not located in a sanctioned country and are not on any government restricted party list.

15. Confidentiality

Both parties agree to maintain the confidentiality of any proprietary or confidential information exchanged during the use of our services. This includes but is not limited to: your source code, vulnerability findings, security reports, and our proprietary detection methodologies.

16. Termination

We may suspend or terminate your access to our services immediately for:

  • Violation of these Terms, particularly unauthorized security testing
  • Use of our services for malicious purposes
  • Non-payment of fees
  • Any other reason with 30 days' notice

Upon termination:

  • Your right to use our services ceases immediately
  • You may request export of your data within 30 days
  • We will delete your data within 90 days unless legally required to retain it
  • Provisions that by their nature should survive termination will survive

17. Modifications to Terms

We may modify these Terms at any time. We will notify you of material changes via email or through our services at least 30 days before they take effect. Your continued use after such notice constitutes acceptance of the modified Terms. If you do not agree to the modified Terms, you may terminate your subscription.

18. Governing Law and Disputes

These Terms are governed by the laws of the State of Delaware, United States, without regard to conflict of law principles. Any disputes shall be resolved in the state or federal courts located in Delaware. For enterprise customers, alternative dispute resolution mechanisms may be negotiated.

19. General Provisions

  • Entire Agreement: These Terms, together with any applicable SLA or enterprise agreement, constitute the entire agreement between you and Offgrid Security regarding our services.
  • Severability: If any provision is found unenforceable, the remaining provisions will continue in effect.
  • Waiver: Our failure to enforce any right or provision does not constitute a waiver.
  • Assignment: You may not assign these Terms without our consent. We may assign our rights and obligations in connection with a merger or acquisition.
  • Force Majeure: Neither party shall be liable for delays or failures due to circumstances beyond reasonable control.
  • Notices: Legal notices should be sent to contact@offgridsec.com or your registered email address.

20. Contact Us

If you have questions about these Terms, please contact us at:

Email: contact@offgridsec.com