1. Acceptance of Terms
By accessing or using Beyond PCI's services, you agree to be bound by these Terms of Service. If you do not agree to these terms, do not use our services.
2. Description of Services
Beyond PCI provides PCI DSS compliance tools including:
- Approved Scanning Vendor (ASV) vulnerability scanning
- Self-Assessment Questionnaire (SAQ) guidance
- Compliance reporting and documentation
- API access for programmatic scanning
3. Account Registration
To use our services, you must:
- Provide accurate and complete registration information
- Maintain the security of your account credentials
- Promptly notify us of any unauthorized access
- Be at least 18 years old or the legal age in your jurisdiction
You are responsible for all activities that occur under your account.
4. Acceptable Use
You agree to use our services only for lawful purposes. You may not:
- Scan IP addresses or domains you do not own or have authorization to scan
- Use our services to attack, disrupt, or compromise third-party systems
- Attempt to bypass security measures or access restrictions
- Resell or redistribute our services without authorization
- Submit false or misleading information in compliance questionnaires
5. Scanning Authorization
By submitting IP addresses or domains for scanning, you represent and warrant that you have proper authorization to conduct security scans against those targets. You agree to indemnify Beyond PCI against any claims arising from unauthorized scanning.
6. Payment Terms
- Subscriptions are billed monthly in advance
- Prices are in US dollars unless otherwise specified
- You authorize us to charge your payment method on a recurring basis
- Refunds are provided at our discretion
7. Service Availability
We strive to maintain high availability but do not guarantee uninterrupted service. We may perform maintenance or updates that temporarily affect availability. We are not liable for any damages resulting from service interruptions.
8. Compliance Disclaimer
Our services are tools to assist with PCI DSS compliance. Using our services does not guarantee PCI compliance. You remain responsible for implementing and maintaining all required security controls. Compliance determinations are ultimately made by your acquiring bank or payment processor.
9. Intellectual Property
All content, features, and functionality of our services are owned by Beyond PCI and protected by intellectual property laws. You retain ownership of your data but grant us a license to use it to provide our services.
10. Limitation of Liability
To the maximum extent permitted by law, Beyond PCI shall not be liable for any indirect, incidental, special, consequential, or punitive damages, including loss of profits, data, or business opportunities.
11. Termination
Either party may terminate service at any time. Upon termination, your access will be revoked and data may be deleted according to our retention policies. Sections regarding liability, indemnification, and intellectual property survive termination.
12. Changes to Terms
We may modify these terms at any time. Material changes will be communicated via email or service notification. Continued use after changes constitutes acceptance of the new terms.
13. Contact
For questions about these Terms of Service, contact us at: