Terms of Service
Last updated: July 11, 2026
These Terms govern your use of the Veritrail service provided by Veritrail ("we", "us"). By creating an account or using Veritrail, you agree to them. If you use Veritrail on behalf of an organization, you represent that you are authorized to bind it.
The service
Veritrail is a read-only, scanning-only compliance-evidence tool. You connect your cloud providers (AWS, Google Cloud, Azure) and developer tools (such as GitHub, GitLab, identity providers, ticketing, and vulnerability scanners) using read-only access you authorize; Veritrail collects configuration and metadata, ranks findings, maps them to compliance frameworks, and produces auditor-ready evidence. Veritrail never modifies your customer environments. Remediation guidance shown alongside findings is informational only — any changes are made by you, in your own accounts. The "Verify fix" feature is a read-only re-check of a finding after you apply a fix yourself.
Your account
You are responsible for the accuracy of your account information, for safeguarding your credentials, and for all activity under your account. Notify us promptly of any unauthorized use.
Your connected accounts
You are responsible for creating and maintaining the read-only roles, service accounts, or tokens you authorize, and for confirming you have the right to connect each cloud account or tool you add. You may disconnect any connected account or integration at any time.
Data hosting
Application data and evidence data are hosted on Hetzner infrastructure in the European Union. See our Privacy Policy for details on what we collect and how we protect it.
No compliance or audit guarantee
Veritrail helps you prepare and evidence your security posture. It is not an auditor, does not issue certifications, and does not guarantee that you will pass any audit or meet any standard (including SOC 2, CIS, or ISO). Findings, control statuses, and scores are informational aids, not legal, compliance, or professional advice. A licensed assessor — not Veritrail — determines audit outcomes.
Acceptable use
You agree not to misuse the service, including by attempting to:
- access accounts or data you are not authorized to access;
- disrupt, probe, or reverse engineer the service except as permitted by law;
- use the service to violate any law or third-party rights.
Fees
Paid plans are billed as described at the time of purchase (for example, a per-account subscription, with a free trial where offered). Fees are non-refundable except where required by law.
Intellectual property
We own the Veritrail software and service. You own your data. You grant us the limited rights needed to operate the service and provide it to you.
Disclaimers
The service is provided "as is" and "as available," without warranties of any kind, whether express or implied, including merchantability, fitness for a particular purpose, and non-infringement. We do not warrant that the service will be uninterrupted, error-free, or that it will detect every misconfiguration or risk.
Limitation of liability
To the maximum extent permitted by law, Veritrail will not be liable for any indirect, incidental, special, consequential, or punitive damages, or for lost profits or data. Our total liability for any claim relating to the service will not exceed the amount you paid us in the twelve months before the claim.
Indemnification
You will indemnify Veritrail against claims arising from your misuse of the service or your violation of these Terms or applicable law.
Termination
You may stop using Veritrail and delete your account at any time. We may suspend or terminate access for breach of these Terms or to protect the service and its users.
Governing law
These Terms are governed by the laws of the State of Israel, without regard to conflict-of-laws rules.
Changes
We may update these Terms. We will revise the "Last updated" date and, for material changes, notify you in the app or by email. Continued use after changes take effect means you accept them.
Contact
Questions? Email support@veritrail.io.