Terms of Service

By accessing or using Certentia ("the Service"), you agree to be bound by these Terms of Service. If you do not agree, do not use the Service. We may update these terms at any time; continued use after changes constitutes acceptance.

Certentia is an AI-assisted gap analysis platform for ISO 27001:2022 auditors. You upload documents, and our AI maps document content to the 93 Annex A controls, highlights potential gaps, and presents structured findings for your professional review.

Certentia is an auditor support tool. It does not perform audits, issue certifications, or replace professional judgment. All findings are suggestions for your review and do not constitute audit opinions.

All control descriptions and assessment criteria used in the Service are written in our own words as an interpretive framework. We do not reproduce, quote, or distribute text from the ISO/IEC 27001 standard. "ISO 27001" and "ISO/IEC 27001" are trademarks of the International Organization for Standardization. Certentia is not affiliated with, endorsed by, or certified by ISO or IEC.

You must create an account to use the Service. You are responsible for maintaining the security of your account credentials and for all activity under your account. You must provide a valid email address and accurate information.

You must be at least 18 years old and have the legal authority to accept these terms. If you use the Service on behalf of an organization, you represent that you have authority to bind that organization.

You agree not to:

• Upload malicious files, malware, or content designed to exploit the system
• Attempt to access other users' data or bypass security controls
• Use the Service for any illegal purpose or in violation of applicable laws
• Reverse-engineer, scrape, or extract AI model outputs for training competing services
• Share your account credentials with unauthorized parties
• Upload documents you do not have the right to process
• Exceed reasonable usage limits or abuse the free tier

You retain full ownership of all documents you upload and all data you create within the Service (auditor notes, overrides, findings annotations). We do not claim any intellectual property rights over your content.

You grant us a limited license to process your documents solely for the purpose of providing the analysis service. This includes sending document text to our AI provider (currently Google Gemini) for analysis. We do not use your content for any other purpose.

The AI-generated findings, conformity assessments, and evidence mappings are provided as-is for your professional review. They are not audit opinions, legal advice, or certification decisions.

You are solely responsible for reviewing, validating, and acting on AI-generated output. Certentia does not guarantee the accuracy, completeness, or correctness of AI analysis. Professional auditor judgment must be applied to all findings before use in any audit report or certification process.

The free tier includes a limited number of analyses. The Pro plan provides unlimited analyses at the price listed on our pricing page. Prices may change with 30 days' notice to existing subscribers.

Pro subscriptions are billed monthly. You may cancel at any time; access continues through the end of the current billing period. Refunds are not provided for partial months.

Your data is handled as described in our Privacy Policy. Key points:

• Documents are encrypted at rest (AES-256) and in transit (TLS 1.3)
• Data is hosted in the EU (Frankfurt)
• Documents are automatically purged after 30 days
• Your documents are never used for AI model training
• You can delete your data at any time

We aim to provide reliable service but do not guarantee uninterrupted availability. The Service may be temporarily unavailable for maintenance, updates, or due to circumstances beyond our control. We are not liable for any downtime or service interruptions.

To the maximum extent permitted by law, Certentia is provided "as is" without warranties of any kind, express or implied. We do not warrant that the Service will be error-free, secure, or meet your specific requirements.

In no event shall Certentia be liable for any indirect, incidental, special, consequential, or punitive damages, including but not limited to loss of profits, data, or business opportunities, arising from your use of the Service.

Our total liability for any claim arising from the Service shall not exceed the amount you have paid us in the 12 months preceding the claim, or $100, whichever is greater.

You agree to indemnify and hold Certentia harmless from any claims, damages, or expenses arising from your use of the Service, your violation of these terms, or your violation of any third-party rights (including uploading documents you do not have the right to process).

You may close your account at any time. We may suspend or terminate your account if you violate these terms or engage in abusive behavior. Upon termination, your data will be deleted in accordance with our Privacy Policy.

These terms are governed by the laws of the European Union and the jurisdiction in which Certentia operates. Any disputes shall be resolved in the courts of competent jurisdiction.

For questions about these terms, contact us at support@certentia.io.