Terms of Use
Last updated 25/09/2025
Preamble: Acceptance of Terms
This Terms of Service document, including all documents, policies, and addenda incorporated by reference (collectively, the "Agreement" or "Terms"), constitutes a legally binding contract between SentraDMARC ("SentraDMARC," "we," "us," or "our") and the entity or individual creating an account or using the Services ("Customer," "you," or "your"). By accessing the SentraDMARC website, creating an account, or using the Service, you signify that you have read, understood, and agree to be bound by this Agreement. This Agreement expressly incorporates the SentraDMARC Privacy Policy and the SentraDMARC Data Processing Addendum (DPA).
1. Definitions
- Service(s) means the comprehensive suite of web security and compliance tools and services provided by SentraDMARC. This includes, but is not limited to, the DMARC Scanner, SPF Evaluator, DKIM Builder, the report endpoints, and any related websites (including sentradmarc.io), software, Application Programming Interfaces (APIs), Documentation, and technical support services offered by SentraDMARC. The definition of Service(s) shall also encompass all updates, modifications, and new features that may be introduced from time to time.
- Customer Data refers to all electronic data and information submitted to or generated by the Service by or for the Customer. This is comprised of two distinct categories: (a) data provided by the Customer, including but not limited to website URLs, existing DMARC/SPF/DKIM records for analysis, information entered into web forms; and (b) data generated for the Customer through the use of the Service, such as analysis reports, security and compliance scores, vulnerability assessments, and the final recommended records created by the Builder.
- Personal Data means any information that constitutes 'personal data,' 'personal information,' or a similar term as defined under applicable Data Privacy and Security Laws, including but not limited to the General Data Protection Regulation (GDPR). This may include Authorized User account information (e.g., name, email address) and any personal data incidentally contained within reports.
- Authorized User(s) means an individual, such as an employee, consultant, or contractor of the Customer, who is authorized by the Customer to access and use the Service under the rights granted to the Customer pursuant to this Agreement.
- Documentation means the official user guides, educational resources, articles, and other technical or functional documentation for the Service provided by SentraDMARC.
- Intellectual Property Rights means any and all registered and unregistered rights granted, applied for, or otherwise now or hereafter in existence under or related to any patent, copyright, trademark, trade secret, database protection, or other intellectual property rights laws, and all similar or equivalent rights or forms of protection, in any part of the world.
- Confidential Information means all non-public information disclosed by one party (the "Disclosing Party") to the other (the "Receiving Party"), whether orally or in writing, that is designated as confidential or that reasonably should be understood to be confidential given the nature of the information and the circumstances of disclosure. SentraDMARC's Confidential Information includes the non-public aspects of the Service and its underlying technology. Customer's Confidential Information includes Customer Data.
- Order Form means an ordering document or online order specifying the Service(s) to be provided hereunder that is entered into between Customer and SentraDMARC. Each Order Form shall incorporate this Agreement by reference and will detail the subscription term, applicable fees, and any specific usage parameters or limitations.
2. The Service
2.1 Access and Use
SentraDMARC grants a limited, non-exclusive, non-transferable right to access the Service for internal business purposes during the subscription term.
2.2. Acceptable Use Policy
- Reverse engineer, decompile, disassemble, or otherwise attempt to discover the source code, object code, or underlying structure, ideas, or algorithms of the Service or any software, Documentation, or data related to the Service.
- Access or use the Service for the purpose of monitoring its availability, performance, or functionality, or for any other benchmarking or competitive purpose, including to design, create, or build a competitive product or service.
- Use the Service's scanning or analysis tools on any website, application, or digital property for which the Customer does not have explicit, verifiable, and legal authorization to conduct such security assessments. This is a critical obligation. This policy contractually places the legal burden of authorization squarely on the Customer, providing SentraDMARC a basis for account termination and a defense against claims of misuse of its platform for malicious reconnaissance.
- Use the Service to transmit, upload, or distribute any computer viruses, worms, malicious code, or any software intended to damage or alter a computer system or data.
- Attempt to gain unauthorized access to the Service, other accounts, computer systems, or networks connected to the Service, through password mining or any other means.
- Submit false, misleading, or malicious data to the Service, including but not limited to fabricated violation reports, with the intent to disrupt or degrade the Service's performance or analytical capabilities.
2.3 Forbidden Activities
To protect the stability and security of our system, and comply with laws and regulations, the following activities are forbidden. This list may not be exhaustive. All local laws and regulations apply even if not mentioned explicitly here. Engaging in forbidden activities will likely result in a permanent ban, and reporting to law enforcement agencies if appropriate.
- Hacking. Attempting (successful or otherwise) to circumvent security measures to access systems or data you shouldn't.
- Flooding with illegitimate traffic. Attempting (successful or otherwise) to overwhelm the service with illegitimate traffic. For example: a (D)DoS attack.
- Breaking the law. For example, transmitting illegal material.
2.4 Implementation
Customers are responsible for the correct implementation of the DMARC/SPF reporting endpoint code and deployment of generated policies. SentraDMARC is not liable for damages from incorrect implementation.
2.5 Free Trial
Provided "AS IS" without warranty or support.
3. Customer Obligations
Customers responsible for account security, Authorized Users' acts, and warranting they have the rights to process Customer Data.
4. Fees and Payment
Fees are based on subscription plans, not actual usage. Late payments may accrue 1.5% interest per month.
5. Intellectual Property
5.1 SentraDMARC Ownership
SentraDMARC retains all rights to the Service and technology.
5.4 Service Improvement
Customers grant a perpetual, irrevocable license to SentraDMARC to use aggregated and de-identified data for improving the service and research (the "data flywheel effect").
6. Confidentiality, Privacy, and Security
Includes a commitment to the Privacy Policy, DPA, and administrative/technical safeguards based on industry standards (NIST).
7. Warranties and Disclaimers
Services provided "as is." SentraDMARC disclaims all implied warranties and does not guarantee that the service will prevent all security vulnerabilities. This is essential to manage legal risk.
8. Limitation of Liability
Liability is capped at the total amount paid by the customer in the 12 months preceding the claim. Indirect damages are excluded.
10. Term and Termination
Covers termination for cause (material breach) and convenience (effective at the end of the billing period).
11. General Provisions
Governed by the laws of France. Disputes are subject to the exclusive jurisdiction of French courts and ICC arbitration.