Terms of Service

Terms.

These Terms of Service govern your access to and use of the Smpl Security platform, website, and related services.

Last updated: July 2026
1

Acceptance of these Terms

These Terms of Service (“Terms”) form a binding agreement between you (“you”, “Customer”) and Smpl Security (“Smpl”, “we”, “us”), a product of Praxis Global. By accessing or using the Service, including the free Quick Scan, you agree to these Terms. If you do not agree, do not use the Service.

These Terms apply to your use of the Smpl Security website and platform. For the software license governing our integrations and connectors, see our End User License Agreement. For how we handle your data, see our Privacy Policy.

2

Eligibility

You must be at least 18 years of age and able to form a binding contract to use the Service. If you use the Service on behalf of an organization, you represent that you have authority to bind that organization to these Terms.

3

Accounts and access

Some features require a Smpl Security account. You are responsible for maintaining the confidentiality of your credentials and for all activity under your account. You agree to notify us immediately at legal@smplsecurity.ai if you suspect unauthorized access.

We may suspend or terminate your account if we reasonably believe you have violated these Terms or if your account has been compromised.

4

Description of Service

Smpl Security is a cloud security posture management (CSPM) platform that provides automated security monitoring for engineering teams. The Service connects to third-party platforms (“Connected Services”) you authorize — including Google Workspace, GCP, AWS, GitHub, GitLab, Slack, Salesforce, HubSpot, Stripe, Supabase, Vercel, Resend, and Cloudflare — scans configuration metadata using read-only access, and surfaces security findings with remediation guidance.

The Service is a security monitoring and advisory tool. Findings are informational and should be evaluated by qualified personnel before acting on them. We do not guarantee that the Service will detect all security issues.

5

Free Quick Scan

The Quick Scan feature allows you to run a one-time security scan of a Connected Service without creating an account. Quick Scan results are temporarily stored and accessible via a signed token. By using Quick Scan, you authorize Smpl to access the Connected Service using the credentials you provide for the duration of the scan.

Quick Scan data is retained for up to 30 days. You may convert to a full account to retain your findings permanently.

6

Subscriptions and billing

Paid plans are billed on a monthly recurring basis via Stripe. All fees are stated in US dollars and are non-refundable except as required by law or as described in our cancellation policy.

New accounts start with a 30-day free trial. You may cancel at any time through the billing portal. Cancellation takes effect at the end of the current billing period.

We reserve the right to change pricing with 30 days’ notice. Price changes apply at the next renewal, not during an active billing period.

7

Acceptable use

You agree not to:

  • use the Service to scan systems you do not own or have authorization to scan;
  • attempt to gain unauthorized access to the Service or its infrastructure;
  • reverse-engineer, decompile, or disassemble any part of the Service;
  • use the Service in violation of any applicable law or regulation;
  • interfere with or disrupt the Service or impose an unreasonable load on our infrastructure;
  • resell, sublicense, or commercially distribute the Service or its output without written consent.
8

Intellectual property

The Service, including its software, design, documentation, and branding, is owned by Smpl Security (Praxis Global) and protected by intellectual property laws. These Terms do not transfer any ownership rights to you.

You retain ownership of all data you provide to the Service. You grant us a limited license to process your data solely to provide the Service.

9

Third-party services

The Service integrates with third-party platforms (Google Workspace, GCP, AWS, GitHub, GitLab, Slack, Salesforce, HubSpot, Stripe, Supabase, Vercel, Resend, Cloudflare, and others). Your use of those platforms is governed by their respective terms. We are not responsible for the availability or conduct of third-party services.

If you install Smpl through a third-party marketplace (e.g., Vercel Marketplace, Stripe App Marketplace), the marketplace operator’s terms also apply.

10

Data handling

We process your data as described in our Privacy Policy. Key points:

  • We access Connected Services using read-only permissions wherever technically possible.
  • OAuth tokens and API keys are encrypted at rest using AES-256-GCM.
  • Data is stored in Supabase PostgreSQL and processed on Vercel infrastructure in the United States.
  • We do not sell your data to third parties.
11

Service availability

We aim for high availability but do not guarantee uninterrupted service. Scheduled maintenance will be communicated in advance when possible. We are not liable for downtime caused by factors outside our control, including third-party service outages.

12

Disclaimers

THE SERVICE IS PROVIDED “AS IS” AND “AS AVAILABLE” WITHOUT WARRANTIES OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.

WE DO NOT WARRANT THAT THE SERVICE WILL BE ERROR-FREE, THAT ALL SECURITY ISSUES WILL BE DETECTED, OR THAT REMEDIATION GUIDANCE WILL RESOLVE ALL IDENTIFIED ISSUES.

13

Limitation of liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, SMPL SECURITY’S TOTAL LIABILITY FOR ANY CLAIM ARISING OUT OF OR RELATED TO THESE TERMS SHALL NOT EXCEED THE GREATER OF (A) THE AMOUNT YOU PAID US IN THE TWELVE MONTHS PRECEDING THE CLAIM, OR (B) ONE HUNDRED US DOLLARS ($100).

IN NO EVENT SHALL WE BE LIABLE FOR INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING LOSS OF PROFITS, DATA, OR GOODWILL, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

14

Termination

You may stop using the Service at any time. We may suspend or terminate your access if you violate these Terms, if required by law, or if we discontinue the Service with reasonable notice.

Upon termination, your right to access the Service ends. We will delete your data within 90 days of account closure, unless required by law to retain it.

15

Modifications to these Terms

We may update these Terms from time to time. Material changes will be communicated via email or a prominent notice on the Service at least 30 days before taking effect. Continued use after the effective date constitutes acceptance of the updated Terms.

16

Governing law

These Terms are governed by the laws of the State of Delaware, USA, without regard to its conflict-of-laws principles. Any disputes arising under these Terms shall be subject to the exclusive jurisdiction of the state and federal courts located in Delaware.

17

Contact

Questions about these Terms should be sent to legal@smplsecurity.ai or support@praxisglobal.ai.

Smpl Security is a product of Praxis Global.
Website: smplsecurity.ai

Not legal advice

This document is a working draft published for Marketplace listing purposes. It has not yet been reviewed by counsel. Smpl Security will replace it with a counsel-reviewed version prior to general availability. If you are evaluating these Terms for procurement, contact legal@smplsecurity.ai for the current signed version.