📄

Terms of Service

Last updated: 30 April 2025

Vibe Security – Terms of Service

Last updated: 30 April 2025

About usVibe Security is a product created and operated by 6GL Software Inc. (“Vibe Security,” “6GL,” “we,” “us”)
Address: 1505 Laperriere Ave, Suite 509, Ottawa ON K1Z 7T1, Canada • Email: [email protected]

By accessing or using vibesecurity.io or any related software, plug-in, or service (collectively, the “Service”), you accept these Terms of Service (“Terms”) on behalf of yourself or the entity you represent.

1. Eligibility

  • You must be at least 18 years old and able to form a legally binding contract.
  • You must comply with all applicable laws, including Canadian export-control rules.

2. Account & Access

  • Sign-in methods. Today we offer sign-in via GitHub OAuth. We may add other authentication methods (e-mail/password, Google, Apple, SSO, etc.) in the future.
  • Integrations. To run scans you currently install the Vibe Security GitHub App with read-only access to repositories you choose. Future options (e.g., an IDE plug-in, CLI upload, cloud-drive sync) may allow you to grant access to code in other ways. You agree to complete whatever installation or permission steps your chosen integration requires.
  • Your responsibility. You are responsible for safeguarding your credentials—whether GitHub, e-mail, or other—and for everything that happens under your account. We send service e-mails (alerts, receipts, etc.) to the address associated with your login method.

3. User-Generated Content & Code Licence

3.1 What counts as "User Content"

  • Code & repositories or workspaces you connect via any integration.
  • Profile data we fetch from your sign-in provider (e.g., GitHub username, avatar) or that you supply directly.
  • Any other material you upload or display through future features (comments, screenshots, logs, etc.).

3.2 Your rights & licence to us

By providing User Content you:

  1. Grant us a worldwide, royalty-free licence to clone, store, copy, analyse, display, format, and otherwise use your Content solely to operate, maintain, and improve the Service.
  2. Confirm you have all rights needed to give us that licence.
  3. Acknowledge that some or all of your code (the "scan context") is sent to a large-language model (LLM) for automated analysis and that the LLM may train on submitted data. We have no contractual data-processing guarantees with the LLM provider.
  4. Consent to our engineers or automated systems reviewing vulnerability findings (including code snippets) for accuracy and to our creation of anonymised vulnerability descriptions—stripped of personal or project identifiers—so we can reduce false positives and train or improve our software. We will never disclose your proprietary code or secrets in that process.

We make a best effort to redact secrets, but you remain fully responsible for keeping keys or sensitive data out of your code.

3.3 Content retention & removal

  • Deleting a repository or workspace from the dashboard does not delete existing scan data.
  • To erase stored scan artefacts you must e-mail [email protected] with the project name(s); we will delete associated data within a reasonable period unless retention is required by law or for backup integrity.

4. Acceptable-Use Policy (AUP)

You agree not to:

  • Violate any law or third-party right.
  • Submit code or data you do not have permission to share.
  • Upload malware, secrets, or personal data you're not entitled to share.
  • Reverse-engineer, probe, or overload the Service.
  • Use the Service to build or train a competing product.
  • Misrepresent the origin of any Content.

We may investigate, suspend, or terminate accounts that break this AUP.

5. Third-Party Links & Services

The Service may link to external sites or embed third-party components (e.g., GitHub, Stripe dashboards). We are not responsible for those sites or services; their own terms and privacy policies apply.

6. Plans, Billing & Refunds

  • Payments are processed by Stripe. Prices, features, and usage limits are shown in-app.
  • Automatic renewal — subscriptions renew at the end of each billing cycle unless you cancel first.
  • Failed payment — we may retry; continued failure may lead to downgrade, suspension, or termination.
  • Cancellations or downgrades take effect at the next renewal; no pro-rated refunds.
  • Refunds — provided where required by consumer-protection law; otherwise at our sole discretion.

7. Support, Availability & Service Changes

  • The Service is offered as-is; we have no ongoing duty to provide feature updates, maintenance, or support.
  • We may modify, suspend, or discontinue features at any time. If we sunset a paid plan entirely, we will give you at least 30 days' notice and refund any prepaid, unused fees.

8. Security Findings, Errors & Disclaimers

  • Scans are best-effort informational tools. They may contain errors, omissions, or false positives/negatives and must not be relied upon as a comprehensive security guarantee.
  • You remain solely responsible for auditing your code, managing secrets, and maintaining security practices.
  • We expressly disclaim liability for any loss, damage, or breach arising from (i) reliance on scan results, (ii) undetected vulnerabilities, or (iii) errors or omissions in our findings.
  • The Service is provided "as is" and "as available." To the extent any non-waivable warranties apply, their duration is limited to the shorter of thirty (30) days or the minimum period required by law.
  • While we implement reasonable safeguards, we are not liable for unauthorised access to your code resulting from a compromise of our infrastructure (including any integration secrets), except to the extent liability cannot be disclaimed under applicable law.

9. Export-Control Compliance

You agree not to export, re-export, or transfer the Service or any technical data in violation of Canadian, U.S., or other applicable export-control laws.

10. Indemnity

You will indemnify, defend, and hold harmless Vibe Security and its officers, employees, and agents from any claim, loss, or liability (including legal fees) arising out of or related to:

  • Your User Content or code,
  • Your use or misuse of the Service,
  • Your breach of these Terms or the law, or
  • Your violation of any third-party right (including IP or privacy).

11. Limitation of Liability

To the fullest extent allowed by law:

  • Our total liability for all claims within any 12-month period is limited to the fees you paid us in that period.
  • We are not liable for indirect, special, incidental, consequential, punitive, or exemplary damages, or loss of profits, data, or goodwill—even if advised of the possibility.
  • We are not liable for any security incident or breach that arises from third-party systems, hosting providers, or malicious actors, including any unauthorised access to your code via stolen credentials or secrets.

Some jurisdictions do not allow certain exclusions; parts of this section may not apply to you.

12. Termination

  • You may stop using the Service at any time.
  • We may suspend or terminate your access for AUP or Terms breaches, non-payment, or legal requirements.
  • Sections that by nature survive (e.g., licences, disclaimers, indemnity, limits of liability) will continue after termination.

13. Electronic Communications

You consent to receive all notices and communications electronically (e-mail, in-app banners, or dashboard messages). Such notices satisfy any legal requirement that communications be "in writing."

14. Cookies & Tracking

See our Privacy Policy for details on cookies and analytics practices.

15. Copyright (Notice-and-Notice) Policy

If you believe content hosted by Vibe Security infringes your copyright, please send a notice to [email protected] or the postal address above containing:

  1. Your contact information and signature;
  2. Identification of the copyrighted work;
  3. The URL or precise location of the allegedly infringing material;
  4. A statement of good-faith belief that the use is not authorised;
  5. A statement that the information is accurate and you are the owner or authorised agent.

We will respond under Canada's Notice-and-Notice regime and disable or remove the material as required.

16. Updates to These Terms

We may change these Terms. We will give you 14 days' notice by e-mail and an in-app banner. Continued use after the effective date means you accept the new Terms.

17. Governing Law & Dispute Resolution

These Terms are governed by the laws of Ontario, Canada, excluding conflict-of-law rules. You and Vibe Security agree to the exclusive jurisdiction of the courts in Ottawa, Ontario.

18. Miscellaneous

  • Force Majeure — neither party is liable for events outside reasonable control.
  • Severability — if any clause is unenforceable, the rest remain in effect.
  • Assignment — you may not transfer these Terms without our consent; we may assign them as part of a merger or sale.
  • Entire Agreement — these Terms (plus referenced policies) constitute the whole agreement between you and us regarding the Service.

Questions? E-mail us at [email protected].

Back to Home