1. Acceptance of Terms

1.1 Consent to Terms By accessing, registering for an account, or otherwise using the CSFaaS platform (the "Service"), you ("you", the "User" or "Customer") acknowledge that you have read, understood, and agree to be bound by these Terms of Use (the "Terms"), along with all referenced policies, including our Privacy Policy. The Service is provided by **Dark Protect Limited**, a company registered under the laws of Malta, with its principal place of business at Level 5, St. Julians Business Centre, Elija Zammit Street, St. Julians, STJ3153, and registered with the Registrar of Companies (Malta) under number C108959. For the purposes of this Agreement, **"CSFaaS" refers to Dark Protect Limited operating under the CSFaaS brand, and may be used interchangeably with "we", "us", or "our" throughout these Terms**. If you are accepting these Terms on behalf of a company or other legal entity, you represent and warrant that you are authorized to bind that entity. If you do not agree to these Terms, you must not access or use the Service.

1.2 Binding Agreement These Terms form a legally binding agreement between you (as an individual or representative of a legal entity) and CSFaaS (Dark Protect Limited). This Agreement becomes effective as of the date you first access or use the Service (the "Effective Date"). Continued use of the Service after any updates to these Terms constitutes your acceptance of those changes.

1.3 Scope and Precedence These Terms govern all access to and use of the Service and supersede any prior or contemporaneous oral or written agreements regarding the same subject matter, unless explicitly stated otherwise in a written agreement signed by both parties. In the event of conflict between these Terms and any separate signed agreement between you and CSFaaS, the signed agreement shall prevail.

2. Scope of Services

2.1 Service Description CSFaaS is a cloud-based cybersecurity risk and compliance management platform designed to help organizations identify, assess, monitor, and mitigate cybersecurity threats. The Service may include access to software modules, dashboards, automation tools, and analytics capabilities (collectively, the "Service"), provided to the User on a subscription or access-limited basis, depending on the chosen plan or Order.

2.2 Rights of Use Subject to your compliance with these Terms and any applicable Plan or Order, CSFaaS grants you a limited, non-exclusive, non-transferable, and non-sublicensable license to access and use the Service. This includes the right to create and manage multiple workspaces for your internal use or on behalf of third-party organizations with whom you maintain a direct business relationship (e.g., clients, subsidiaries, or affiliates), provided you remain fully responsible for their use of the Service and ensure their compliance with these Terms. You may use the Service to deliver services to such third parties (e.g., cybersecurity assessments or compliance monitoring), but you may not sublicense, rebrand, white-label, or offer the CSFaaS platform as a standalone product or SaaS offering under your own name without our prior written approval.

2.3 Intellectual Property All rights, title, and interest in and to the Service, including all software, technology, architecture, user interfaces, documentation, content, and all intellectual property therein or related thereto, are and shall remain the exclusive property of CSFaaS (Dark Protect Limited) or its licensors. These Terms do not grant you any ownership rights in the Service or any component thereof. You retain all rights to the data and content you submit, upload, or store within your workspaces ("Customer Data"), subject to CSFaaS's right to use such data solely as necessary to provide, maintain, and improve the Service, as further described in our Privacy Policy. CSFaaS may use anonymized and aggregated data derived from Customer Data and usage patterns for analytical and benchmarking purposes, provided it does not identify any individual or organization. You acknowledge and agree that any suggestions, feedback, or recommendations you provide relating to the Service may be used by CSFaaS without restriction or compensation, and CSFaaS will own all rights in any resulting improvements or derivative works.

2.4 Data Processing In the course of providing the Service, CSFaaS may collect, access, store, or otherwise process personal, sensitive, or corporate data on behalf of Users and their authorized workspace participants (collectively, "Customer Data"). Such processing is governed by our Privacy Policy and, where applicable, by relevant data protection laws including the General Data Protection Regulation (GDPR) and equivalent frameworks. To the extent applicable under law, the User (or the entity they represent) acts as the data controller, and CSFaaS acts as a data processor. You are solely responsible for ensuring that any Customer Data you provide or submit to the Service has been collected and is shared in compliance with applicable laws, including by obtaining all necessary consents and authorizations from data subjects and/or third parties.

2.5 Service Changes and Updates CSFaaS reserves the right to modify, enhance, update, discontinue, or otherwise change any part of the Service at any time, including for purposes of improvement, performance, security, legal compliance, or user experience. Such changes may affect the appearance, features, functionality, or availability of certain components. While CSFaaS will make reasonable efforts to provide advance notice where practicable and to minimize disruption, CSFaaS shall not be liable for any modification, suspension, or discontinuation of any part of the Service. CSFaaS does not guarantee the continued availability of any specific feature or component, unless expressly stated in a separate written agreement.

2.6 Usage Plans and Limitations Your access to the Service, including the scope of features, number of users, storage capacity, workspace limits, API usage, and other operational thresholds, is determined by your selected subscription plan or any applicable Order. CSFaaS reserves the right to monitor usage and enforce these limits. If your usage exceeds the thresholds permitted under your current plan or Order, CSFaaS may require you to upgrade your subscription, pay additional fees, or restrict or suspend access to certain features until compliance is restored. CSFaaS may modify plan tiers, included feature sets, or usage limits at any time, including reducing or removing entitlements in free or paid plans. Where such changes materially affect your ongoing use of the Service, CSFaaS will make reasonable efforts to provide advance notice to allow for adjustment or upgrade where necessary.

3. Registration and Account Management

3.1 Account Registration To access certain features of the Service, you must create an account with CSFaaS. You agree to provide accurate, current, and complete information during registration and to keep such information up to date at all times. You must be at least 18 years old (or the age of legal majority in your jurisdiction) and have the legal capacity to enter into these Terms. You are responsible for all activity conducted through your account, including any activity by users you invite or authorize to access workspaces under your account.

3.2 Account Security You are responsible for maintaining the confidentiality of your account credentials, including passwords and access keys. You agree to notify CSFaaS immediately of any unauthorized access or suspected breach of security. CSFaaS shall not be liable for any loss or damage arising from your failure to adequately safeguard your account credentials. All activities performed using your account or any associated credentials shall be deemed to have been performed by you, whether or not authorized by you.

3.3 Account Suspension and Termination CSFaaS may suspend or terminate your account or access to the Service, in whole or in part, with or without notice, if (a) you breach these Terms or any applicable laws or regulations; (b) your account is used in a manner that threatens the security, stability, or integrity of the Service; (c) your usage exceeds the limits permitted under your subscription plan or Order; or (d) CSFaaS suspects fraud, abuse, or misuse. In such cases, CSFaaS may suspend or terminate access immediately and shall not be required to provide prior notice, justification, or further explanation regarding its decision. Upon termination, your access to the Service shall immediately cease, and CSFaaS may delete or anonymize any data associated with your account in accordance with its data retention policies. Termination of your account shall not affect any provisions of these Terms that by their nature or context are intended to survive termination, including those relating to confidentiality, data ownership, intellectual property, disclaimers, limitations of liability, indemnification, and dispute resolution. Such provisions shall remain in full force and effect notwithstanding the termination of your access to the Service.

3.4 Multiple Accounts and Abuse You may not create, operate, or use multiple accounts for the purpose of circumventing plan limitations, avoiding fees, gaining unauthorized access to features, or otherwise misusing the Service. CSFaaS supports legitimate use of multiple accounts or workspaces to manage distinct organizations or client environments; however, any unauthorized or abusive use may result in the suspension or termination of all associated accounts.

4. Service Availability and Uptime

4.1 Uptime Commitment CSFaaS targets a minimum of 99% uptime for the Service on a monthly basis, excluding scheduled maintenance and any downtime caused by factors outside of CSFaaS's reasonable control, including but not limited to force majeure events, network or infrastructure failures, or outages caused by third-party service providers. This uptime target is not a guarantee or service level agreement unless explicitly stated in a separate signed agreement.

4.2 Scheduled Maintenance and Updates CSFaaS may perform scheduled maintenance, upgrades, or platform updates as necessary to maintain or improve the Service. Where feasible, CSFaaS will attempt to provide advance notice of such maintenance; however, such notice is not guaranteed. While CSFaaS will make reasonable efforts to perform maintenance during off-peak hours and minimize disruptions, temporary interruptions or reduced functionality may occur, and CSFaaS shall not be held liable for any resulting impact.

4.3 Service Interruptions In the event of an unscheduled service disruption, CSFaaS will use commercially reasonable efforts to restore access and resume normal operations as quickly as possible. CSFaaS shall not be liable for any delay, failure, or interruption in Service due to circumstances beyond its reasonable control, including but not limited to natural disasters, acts of government, civil unrest, cyberattacks, failure of internet service providers, or failure of third-party hosting providers.

5. Data Handling and Security

5.1 Data Hosting and Geographic Scope Customer Data is currently hosted in data centers located within the European Union. CSFaaS may update its data hosting infrastructure in the future but will ensure that any such changes continue to comply with applicable data protection laws, including the General Data Protection Regulation (GDPR) where relevant.

5.2 Security Measures CSFaaS implements technical and organizational measures designed to protect Customer Data against unauthorized access, loss, alteration, or disclosure. While CSFaaS strives to maintain a secure and resilient infrastructure, absolute security cannot be guaranteed. Customers are responsible for safeguarding their own systems, credentials, and data configurations when accessing the Service.

5.3 Data Use and Processing CSFaaS only accesses or processes Customer Data to deliver, operate, and support the Service. This includes maintaining platform performance, resolving technical issues, and enhancing user experience. CSFaaS may use aggregated and anonymized usage data for analytics, benchmarking, or to improve the Service, provided such data cannot be used to identify any individual or organization.

5.4 Third-Party Processors and Legal Disclosures CSFaaS does not sell Customer Data to third parties in a personally identifiable form. Customer Data may be shared with trusted sub-processors solely for the purpose of providing, maintaining, and supporting the Service, subject to appropriate contractual and technical safeguards. A list of sub-processors is available upon request or as otherwise required under applicable law. The identities of CSFaaS sub-processors are disclosed solely for compliance purposes and remain confidential business information. Customers receiving such disclosures agree not to publicly share, distribute, or otherwise disclose the identity or role of any sub-processor without express written consent from CSFaaS. CSFaaS may use aggregated, anonymized, or de-identified data derived from Customer Data for business analytics, product development, or to support advertising or sponsorship features in the Service. Such data will not be used to directly identify any individual or organization without explicit consent. Additionally, CSFaaS may disclose Customer Data as required by law, regulation, subpoena, or court order, provided such disclosures are subject to applicable privacy protections.

6. Disclaimers of Warranties

6.1 No Warranty The Service, including the CSFaaS platform and all related features, content, and integrations, is provided on an "as is" and "as available" basis, without warranties of any kind. CSFaaS expressly disclaims, to the fullest extent permitted by law, all warranties) express, implied, statutory, or otherwise (including any implied warranties of merchantability, fitness for a particular purpose, title, accuracy, or non-infringement.

6.2 Availability and Security Disclaimer While CSFaaS implements commercially reasonable technical and organizational measures to protect Customer Data and ensure reliable access to the Service, it does not guarantee that the Service will be uninterrupted, error-free, or completely secure. The performance and availability of the Service may be affected by factors beyond CSFaaS's control, including internet connectivity, third-party services, and force majeure events. You acknowledge that cybersecurity and continuity are shared responsibilities.

6.3 Third-Party Content and Integrations The Service may include links to or integrations with third-party content, APIs, or services. CSFaaS makes no warranties or representations regarding the accuracy, quality, legality, or reliability of such third-party materials and disclaims any liability arising from your use of or reliance on them.

6.4 No Endorsement Any mention of or access to third-party products, services, or providers through the Service does not imply endorsement, sponsorship, or recommendation by CSFaaS unless explicitly stated. Your dealings with third parties are solely between you and the third party and are governed by their respective terms.

7. Limitation of Liability

7.1 Exclusion of Certain Damages To the fullest extent permitted by applicable law, neither party (including CSFaaS, its officers, employees, affiliates, or agents) shall be liable for any indirect, incidental, consequential, special, exemplary, or punitive damages, including but not limited to loss of profits, revenue, data, business opportunities, goodwill, or the cost of substitute goods or services, arising from or relating to your use of, or inability to use, the Service, even if such damages were foreseeable or if the party was advised of the possibility of such damages.

7.2 Cap on Liability Except for the exclusions listed in Section 7.3, the total cumulative liability of CSFaaS arising out of or in connection with these Terms, whether in contract, tort, or otherwise, shall not exceed the total amount of fees actually paid by you to CSFaaS for the Service during the six (3) months immediately preceding the event giving rise to the claim.

7.3 Specific Exclusions The limitations set forth in this section do not apply to: (a) breaches of confidentiality obligations; (b) indemnification obligations expressly set forth in these Terms; (c) acts of gross negligence, fraud, or willful misconduct.

7.4 Force Majeure CSFaaS shall not be liable for any failure or delay in performance resulting from causes beyond its reasonable control, including but not limited to acts of God, natural disasters, war, terrorism, labor disputes, government actions, power failures, or Internet or network outages.

8. Indemnification

8.1 User Indemnity You agree to indemnify, defend, and hold harmless CSFaaS, its affiliates, officers, directors, employees, and agents from and against any third-party claims, demands, actions, proceedings, damages, losses, liabilities, costs, and expenses (including reasonable attorneys' fees) arising out of or relating to: (a) your use of the Service in violation of these Terms or applicable law; (b) your infringement or misappropriation of any third-party rights, including intellectual property, privacy, or data protection rights; or (c) any content or data submitted through your account, including that of your end users, clients, or workspace members.

8.2 Indemnification Procedure CSFaaS will promptly notify you of any claim for which it seeks indemnification (provided that failure to provide prompt notice will not relieve you of your obligations unless materially prejudiced). CSFaaS reserves the right to control the defense and settlement of any claim, but you agree to cooperate in good faith as reasonably requested in the defense or settlement of any such matter. You may not settle any claim without our prior written consent unless it releases CSFaaS unconditionally.

9. User Responsibilities and Prohibited Conduct

9.1 Compliance with Laws You are solely responsible for ensuring that your use of the Service complies with all applicable laws, regulations, and industry standards, including those governing data privacy, cybersecurity, and intellectual property in the jurisdictions where you and your end users operate.

9.2 Prohibited Use You agree not to, directly or indirectly: (a) Use the Service to store, process, or transmit any content that is unlawful, harmful, deceptive, defamatory, harassing, or that infringes upon the intellectual property or privacy rights of any person or entity, or that CSFaaS reasonably determines to be inappropriate in light of the intended use of the Service; (b) Access the Service in order to build a competing product or service, or for benchmarking or competitive analysis; (c) Attempt to gain unauthorized access to the Service or related systems or networks; (d) Interfere with or disrupt the integrity, performance, or availability of the Service; (e) Circumvent, disable, or otherwise interfere with any security or access controls; (f) Use automated systems (including bots, scrapers, or crawlers) to access the Service without prior written consent from CSFaaS; (g) Share login credentials or allow access to the Service by unauthorized third parties.

9.3 Data Responsibility You are responsible for the accuracy, legality, and quality of the data you input into the Service, including any personal or sensitive data from third parties. You represent and warrant that you have obtained all necessary consents, rights, and authorizations to provide such data to CSFaaS and that its use in connection with the Service will not violate any applicable law or third-party rights.

10. Intellectual Property Rights

10.1 CSFaaS Intellectual Property You acknowledge that all rights, title, and interest in and to the Service, including the platform software, technology, designs, trademarks, logos, and any other content or intellectual property, are and shall remain the exclusive property of CSFaaS (a brand of Dark Protect Limited) or its licensors. Except for the limited rights expressly granted in these Terms, no rights are granted to you by implication, estoppel, or otherwise.

10.2 Customer Data As between you and CSFaaS, you retain all rights, title, and interest in and to the data, content, or materials you submit to the Service ("Customer Data"). By using the Service, you grant CSFaaS a non-exclusive, royalty-free, worldwide license to use, process, host, reproduce, and display Customer Data solely to operate, maintain, and improve the Service. You represent that you have all necessary rights and consents to grant this license.

10.3 Aggregated and Anonymized Data CSFaaS may generate and use aggregated, anonymized, or de-identified data derived from your use of the Service, including metadata and system-level metrics, for purposes such as analytics, service optimization, product development, or benchmarking. Such data will not include any information in a form that directly or indirectly identifies you, your organization, your users, or any sensitive business content. All rights, title, and interest in such aggregated data shall belong exclusively to CSFaaS.

11. Governing Law and Jurisdiction

11.1 Governing Law These Terms and any dispute or claim (including non-contractual disputes or claims) arising out of or in connection with them or their subject matter shall be governed by and construed in accordance with the laws of Malta, without regard to its conflict of law principles.

11.2 Jurisdiction You agree that the courts of Malta shall have exclusive jurisdiction to settle any dispute or claim (including non-contractual disputes or claims) arising out of or in connection with these Terms or their subject matter or formation. You waive any objection to the jurisdiction and venue of such courts.

12. Modifications to These Terms

12.1 Right to Modify CSFaaS reserves the right to modify or update these Terms at any time, at its sole discretion. If we make material changes, we will notify you by posting the updated Terms on the CSFaaS website and may also notify you by email or through the Service. The "Last Updated" date at the top of the Terms will indicate the date of the latest revisions. CSFaaS reserves the right to modify or update these Terms at any time, at its sole discretion. If we make material changes, we will notify you by posting the updated Terms on the CSFaaS website or through the Service. The "Last Updated" date will indicate the effective date of the revised Terms.

12.2 Acceptance of Changes Your continued use of the Service after the updated Terms are posted constitutes your acceptance of the changes. If you do not agree to the modified Terms, you must stop using the Service.

13. Termination and Suspension

13.1 Termination by User You may terminate your account and discontinue use of the Service at any time by using the account termination functionality provided within the Service. Upon termination, your access to the Service will immediately cease. You are solely responsible for exporting any Customer Data prior to termination. CSFaaS may delete or anonymize Customer Data associated with your account in accordance with its data retention policies and applicable law. Unless otherwise required by law, no refunds, credits, or proration will be provided for any unused portion of a subscription term upon termination.

13.2 Suspension or Termination by CSFaaS CSFaaS may suspend or terminate your access to the Service, in whole or in part, at its sole discretion, with or without notice, including in cases of actual or suspected violation of these Terms, applicable law, abusive conduct, or if required for legal or operational reasons. Where feasible, CSFaaS will endeavor to provide prior notice.

13.3 Effects of Termination Termination of your account or access to the Service shall not affect any rights or obligations that have accrued prior to termination. Provisions of these Terms that by their nature or context are intended to survive termination, including, without limitation, those relating to intellectual property, confidentiality, disclaimers, limitations of liability, indemnification, and dispute resolution, shall remain in full force and effect.

14. Miscellaneous Provisions

14.1 Severability If any provision of these Terms is found to be invalid, illegal, or unenforceable, the remaining provisions shall remain in full force and effect.

14.2 Entire Agreement These Terms, together with any referenced policies or agreements (such as the Privacy Policy or applicable Order Forms), constitute the entire agreement between you and CSFaaS regarding the use of the Service and supersede all prior or contemporaneous understandings.

14.3 Waiver The failure of either party to enforce any right or provision under these Terms shall not constitute a waiver of such right or provision unless expressly acknowledged in writing.

14.4 Assignment You may not assign or transfer these Terms, in whole or in part, without the prior written consent of CSFaaS. Any attempt to do so without such consent will be null and void. CSFaaS may assign or transfer these Terms without restriction.

14.5 Notices All notices under these Terms must be in writing and shall be deemed properly given when delivered by hand, sent by recognized courier, or by email to the address associated with your account or as otherwise notified by CSFaaS.

14.6 Language and Interpretation These Terms are provided in English. In the event of any inconsistency between the English version and a translation, the English version shall prevail. Headings are for convenience only and do not affect interpretation.

15. Contact Information

If you have any questions, concerns, or notices regarding these Terms of Use or your use of the Service, you may contact us at: **CSFaaS Legal Department** Email: legal@csfaas.com Mailing Address: Dark Protect Limited, Level 5, St. Julians Business Centre, Elija Zammit Street, St. Julians, STJ3153, Malta.