Terms & Conditions

1. Introduction and Acceptance

These Terms and Conditions ("Terms") govern your access to and use of CoreVista Technologies Inc's cybersecurity services, software, platforms, and websites (collectively, the "Services"). By accessing or using our Services, you agree to be bound by these Terms and our Privacy Policy.

CoreVista Technologies Inc ("CoreVista", "we", "our", or "us") is a Delaware corporation providing enterprise cybersecurity solutions including threat detection, security operations center (SOC) services, penetration testing, compliance consulting, and related security services.

If you are entering into these Terms on behalf of a company or other legal entity, you represent that you have the authority to bind such entity to these Terms. If you do not have such authority, or if you do not agree with these Terms, you must not accept these Terms and may not use the Services.

2. Service Description

CoreVista provides comprehensive cybersecurity solutions designed to protect enterprise networks, systems, and data. Our Services include but are not limited to:

• Advanced Threat Detection: AI-powered real-time monitoring and identification of cyber threats using machine learning, behavioral analysis, and threat intelligence.
• 24/7 Security Operations Center (SOC): Round-the-clock monitoring by certified security analysts, incident response, threat hunting, and digital forensics services.
• Zero Trust Architecture: Implementation and management of zero-trust security models including identity verification, micro-segmentation, and continuous authentication.
• Cloud Security Platform: Multi-cloud security posture management (CSPM) for AWS, Azure, and GCP environments, including container and serverless security.
• Penetration Testing: Comprehensive security assessments including network penetration testing, web application testing, mobile app security, and red team exercises.
• Compliance Consulting: Support for achieving and maintaining compliance with ISO 27001, SOC 2, GDPR, HIPAA, PCI-DSS, and other security standards.

Service availability, features, and specifications may vary based on your subscription tier and service agreement. We reserve the right to modify, suspend, or discontinue any aspect of the Services at any time with reasonable notice.

3. User Obligations and Responsibilities

As a user of CoreVista's Services, you agree to:

• Provide accurate, current, and complete information during registration and maintain the accuracy of such information.
• Maintain the security and confidentiality of your account credentials, API keys, and access tokens.
• Notify CoreVista immediately of any unauthorized access to or use of your account.
• Use the Services only for lawful purposes and in accordance with these Terms and all applicable laws and regulations.
• Not attempt to gain unauthorized access to any portion of the Services, other users' accounts, or computer systems or networks connected to the Services.
• Not use the Services to transmit malware, viruses, or any other malicious code.
• Cooperate with CoreVista's security assessments, incident response procedures, and compliance audits as specified in your service agreement.
• Implement reasonable security measures on your end to complement CoreVista's Services.

You are responsible for all activities that occur under your account. Failure to comply with these obligations may result in suspension or termination of your access to the Services.

4. Account Security and Access Management

Account security is critical for maintaining the integrity of our Services. You must implement strong authentication practices including:

• Using strong, unique passwords that meet our minimum security requirements (minimum 12 characters, combination of uppercase, lowercase, numbers, and special characters).
• Enabling multi-factor authentication (MFA) on all accounts where available.
• Regularly rotating passwords and access credentials according to security best practices.
• Limiting access to the Services to authorized personnel only and implementing role-based access controls.

CoreVista implements industry-leading security measures including encryption at rest and in transit, regular security audits, and compliance with SOC 2 Type II standards. However, you acknowledge that no security system is impenetrable and CoreVista cannot guarantee absolute security.

In the event of a suspected security breach affecting your account, you must immediately notify CoreVista at security@corevista.com and take all reasonable steps to mitigate the breach.

5. Payment Terms and Billing

CoreVista Services are provided on a subscription basis with transparent monthly or annual pricing as specified in your service agreement. Payment terms include:

• Subscription Fees: You agree to pay all fees associated with your selected service tier. Fees are billed in advance on a monthly or annual basis.
• Payment Methods: We accept major credit cards, ACH transfers, and wire transfers. Enterprise customers may arrange for invoice-based billing.
• Automatic Renewal: Subscriptions automatically renew at the end of each billing period unless you cancel before the renewal date.
• Price Changes: We may adjust pricing with 60 days advance notice. Continued use of the Services after a price change constitutes acceptance of the new pricing.
• Late Payments: Late payments may incur interest charges of 1.5% per month or the maximum rate permitted by law, whichever is less.
• Taxes: All fees are exclusive of applicable taxes, duties, and governmental charges, which you are responsible for paying.

Refunds are provided only as specified in your service level agreement (SLA). Generally, subscription fees are non-refundable except in cases where CoreVista fails to meet guaranteed uptime or service levels as specified in your SLA.

6. Intellectual Property Rights

All intellectual property rights in the Services, including software, algorithms, threat intelligence databases, security tools, documentation, and user interfaces, are owned by CoreVista or our licensors. These Terms do not grant you any ownership rights in the Services.

Subject to your compliance with these Terms, CoreVista grants you a limited, non-exclusive, non-transferable, revocable license to access and use the Services solely for your internal business purposes.

• You may not copy, modify, distribute, sell, or lease any part of our Services or included software.
• You may not reverse engineer, decompile, or attempt to extract the source code of our software.
• You may not remove or alter any proprietary notices or labels on the Services.
• Security reports, threat intelligence, and recommendations provided to you may be used for your internal purposes but may not be shared with third parties without our consent.

You retain all rights to your data and information submitted to the Services. By using the Services, you grant CoreVista a license to use your data solely to provide and improve the Services as described in our Privacy Policy.

7. Service Availability and Performance

CoreVista strives to maintain high service availability and performance standards. Our standard service level agreements (SLAs) include:

• Uptime Guarantee: 99.99% uptime for our core security platform and SOC services, measured monthly.
• Incident Response Time: Average response time of less than 1 minute for critical security incidents.
• SOC Availability: 24/7/365 monitoring by our Security Operations Center with no scheduled downtime.

Scheduled maintenance windows are communicated at least 72 hours in advance when possible. Emergency maintenance for security patches may be performed with shorter notice.

Service availability excludes downtime resulting from: (a) circumstances beyond our reasonable control, including acts of God, natural disasters, war, terrorism, or Internet disruptions; (b) issues with your network, systems, or equipment; (c) your violation of these Terms; or (d) scheduled maintenance performed during designated maintenance windows.

8. Data Usage and Privacy

CoreVista processes various types of data to provide security services, including network traffic data, system logs, security event data, and configuration information. Our data practices are governed by our Privacy Policy, which is incorporated into these Terms by reference.

Key data usage principles:

• Data Collection: We collect only data necessary to provide security services, detect threats, and improve our platform.
• Data Security: All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption.
• Data Retention: Security event data is retained for 13 months by default to support threat analysis and compliance requirements. Specific retention periods may vary based on your service agreement and regulatory requirements.
• Data Ownership: You retain ownership of your data. CoreVista does not sell or share your data with third parties for marketing purposes.
• Aggregated Data: We may use anonymized, aggregated data for threat research, product improvement, and industry reporting.
• Data Location: Data is processed and stored in secure data centers located in the United States and European Union, with geo-redundancy for disaster recovery.

For enterprise customers in regulated industries (healthcare, finance, government), we offer enhanced data controls including data residency options, custom retention policies, and dedicated encryption keys.

9. Limitation of Liability and Disclaimers

DISCLAIMER OF WARRANTIES: THE SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, EITHER EXPRESS OR IMPLIED. TO THE MAXIMUM EXTENT PERMITTED BY LAW, COREVISTA DISCLAIMS ALL WARRANTIES, INCLUDING IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.

While CoreVista employs industry-leading security measures and expert personnel, we cannot guarantee that the Services will be completely free from vulnerabilities, errors, or interruptions, or that the Services will detect or prevent all security threats.

LIMITATION OF LIABILITY: To the maximum extent permitted by applicable law, CoreVista's total liability arising out of or related to these Terms or the Services shall not exceed the amount paid by you to CoreVista in the twelve (12) months preceding the claim.

IN NO EVENT SHALL COREVISTA BE LIABLE FOR:

• Indirect, incidental, special, consequential, or punitive damages.
• Loss of profits, revenue, data, or business opportunities.
• Business interruption or system downtime.
• Cost of substitute services or procurement.
• Damages resulting from unauthorized access to your systems or data by third parties.

These limitations apply regardless of the legal theory (contract, tort, negligence, strict liability, or otherwise) and even if CoreVista has been advised of the possibility of such damages.

10. Indemnification

You agree to indemnify, defend, and hold harmless CoreVista Technologies Inc, its subsidiaries, affiliates, officers, directors, employees, agents, and licensors from and against any claims, liabilities, damages, losses, costs, expenses, or fees (including reasonable attorneys' fees) arising from:

• Your use or misuse of the Services.
• Your violation of these Terms or any applicable law or regulation.
• Your violation of any third-party rights, including intellectual property rights or privacy rights.
• Any data or content you submit, post, or transmit through the Services.
• Negligence or willful misconduct by you or your employees, contractors, or agents.

CoreVista reserves the right to assume exclusive defense and control of any matter subject to indemnification by you, and you agree to cooperate with our defense of such claims.

11. Termination and Suspension

These Terms remain in effect until terminated by either party. Termination provisions include:

• Termination for Convenience: You may terminate your subscription at any time by providing 30 days written notice. Termination will be effective at the end of your current billing period.
• Termination for Cause: CoreVista may terminate or suspend your access immediately if you breach these Terms, engage in fraudulent activity, or pose a security risk to the Services or other users.
• Termination for Non-Payment: If payment is overdue by more than 30 days, CoreVista may suspend or terminate your access to the Services.
• Effect of Termination: Upon termination, your right to access and use the Services immediately ceases. You remain responsible for all fees incurred prior to termination.

Upon termination, CoreVista will provide you with access to export your data for a period of 30 days. After this period, CoreVista may delete your data in accordance with our data retention policies, unless a longer retention period is required by law or your service agreement.

Sections of these Terms that by their nature should survive termination will survive, including provisions related to intellectual property, limitation of liability, indemnification, and dispute resolution.

12. Dispute Resolution and Arbitration

We prefer to resolve disputes amicably through good faith negotiations. If a dispute arises, you agree to first contact us at legal@corevista.com to attempt informal resolution.

Binding Arbitration: If informal resolution is unsuccessful within 60 days, any dispute, claim, or controversy arising out of or relating to these Terms or the Services shall be settled by binding arbitration administered by the American Arbitration Association (AAA) under its Commercial Arbitration Rules.

• The arbitration will be conducted in English in Wilmington, Delaware, unless both parties agree to another location.
• The arbitrator's decision will be final and binding, and judgment may be entered in any court of competent jurisdiction.
• Each party will bear its own costs and attorneys' fees unless the arbitrator determines otherwise.
• You agree to waive any right to a jury trial or to participate in a class action lawsuit.

Exceptions: Either party may seek injunctive or other equitable relief in any court of competent jurisdiction to prevent actual or threatened infringement, misappropriation, or violation of intellectual property rights or confidentiality obligations.

13. Governing Law and Jurisdiction

These Terms and any disputes arising out of or related to these Terms or the Services shall be governed by and construed in accordance with the laws of the State of Delaware, United States, without regard to its conflict of law principles.

For international customers, the United Nations Convention on Contracts for the International Sale of Goods (CISG) shall not apply to these Terms.

If you are using the Services from outside the United States, you acknowledge that you are transferring data to the United States and consent to such transfer. You are responsible for compliance with all local laws and regulations applicable to your use of the Services.

14. Changes to Terms and Contact Information

CoreVista reserves the right to modify these Terms at any time. When we make material changes, we will notify you by:

• Posting the updated Terms on our website with a new "Last Updated" date.
• Sending email notification to the primary contact on your account at least 30 days before the changes take effect.
• Displaying a prominent notice in the Services dashboard.

Your continued use of the Services after the effective date of the revised Terms constitutes acceptance of the changes. If you do not agree to the modified Terms, you must discontinue use of the Services and may terminate your subscription.

Contact Information: For questions about these Terms, please contact: