Legal

Terms of service

Effective: TBD — pending counsel review

Draft template. This document is a working draft and has not been reviewed by counsel. Do not rely on it for legal purposes. Before launch we will replace this with a reviewed version. Questions in the meantime: hello@certsafe.ai.

These Terms of Service ("Terms") govern your access to and use of the CertSafe website at certsafe.ai, the CertSafe issuer portal, the CertSafe worker web wallet, the CertSafe mobile app, and the public certificate verification flow (collectively, the "Services"), provided by CertSafe, a company registered in the State of Utah, USA ("CertSafe", "we", "us").

By creating an account or using the Services, you agree to these Terms. If you are entering into these Terms on behalf of an organisation, you represent that you have authority to bind that organisation, and "you" in these Terms means both you and the organisation.

1. Definitions

  • Issuer: an organisation that holds a paid subscription to the CertSafe issuer portal and uses it to issue certifications.
  • Worker: an individual who holds a worker account and uses CertSafe to receive, store, and display certifications.
  • Verifier: anyone who scans a CertSafe QR code to verify a certificate. Verifiers do not need an account.
  • Customer Data: any data you, your team members, your workers, or your verifiers submit to or through the Services.

2. Description of the Services

CertSafe is a two-sided certification platform. The issuer portal lets organisations issue, track, renew, and revoke certifications. The worker wallet (web and mobile) lets workers store certifications — both certifications issued to them through CertSafe and certifications they upload themselves. The public verification flow lets supervisors check a certificate without an account. CertSafe is not an issuing authority, an accrediting body, a learning management system, or a substitute for your own legal, safety, or compliance judgement.

3. Account registration

You must provide accurate information when creating an account and keep that information current. You are responsible for maintaining the confidentiality of your credentials and for all activity under your account. Notify us immediately of any unauthorised use at hello@certsafe.ai.

You must be at least 18 years old to use the Services.

4. Acceptable use

You agree not to:

  • Use the Services in violation of any applicable law or regulation.
  • Upload information about any individual without their knowledge and consent, except as permitted by your employment or contractual relationship and applicable law.
  • Impersonate any person or misrepresent your affiliation with any person or organisation.
  • Issue certifications you are not authorised to issue, or present certifications you do not hold.
  • Attempt to interfere with, compromise, or disrupt the integrity or performance of the Services.
  • Reverse engineer, scrape, or otherwise extract source code or underlying data, except where permitted by law.
  • Resell or sublicense the Services without our written consent.

5. Worker accounts

Worker accounts are free. Workers may receive certifications from any number of issuers, may upload their own certifications, and may delete their account at any time from the worker wallet. Deletion removes the worker's account, self-uploaded certifications and files, training records, notification history, push tokens, and authentication record.

Certifications issued to a worker by an issuer remain in the issuer's system after a worker deletes their wallet account. The worker must contact the issuer directly to request removal from the issuer's records.

6. Issuer subscriptions, billing, and cancellation

Paid issuer plans are billed per unique recipient (per worker you have issued at least one certification to), in advance on a monthly or annual basis. A worker who holds any number of certifications from you within the billing period counts as one billing unit. Renewals and reissues to an existing recipient do not change your billing count.

Fees are non-refundable except where required by law. You may cancel your subscription at any time from the billing section of the issuer portal. Cancellation takes effect at the end of the current billing period; you retain access until then.

Certifications you have already issued remain valid in workers' wallets after your subscription ends — these are a worker-side asset and we will not revoke them on your behalf for billing reasons. You will not be able to issue, revoke, renew, or reissue certifications while your account is cancelled or unpaid.

We may change pricing or plan features. Material pricing changes for active customers will be communicated at least 30 days before they take effect.

7. Free trials

Free trials are offered at our discretion and are limited to one trial per organisation. If you have not added a payment method by the end of the trial, your issuer account may be suspended; data is retained per the data-retention policy in the privacy policy.

8. Public verification flow

Workers can share a public profile QR or per-certificate QR with verifiers. The corresponding public page is read-only and accessible to anyone with the URL. Workers control whether and when to share these URLs. Issuers acknowledge that certifications they issue may be presented to verifiers via this flow.

9. Customer Data and ownership

You retain all rights to Customer Data. You grant CertSafe a worldwide, non-exclusive, royalty-free licence to host, process, transmit, and display Customer Data solely to provide the Services to you and to the other parties to whom you have directed disclosure (for example, workers when an issuer issues a certification to them, or verifiers when a worker shares a QR).

You are responsible for ensuring that you have the rights and consents needed to upload Customer Data and to authorise CertSafe to process it on your behalf, including consent under applicable privacy laws.

10. Sub-processors

We use third-party service providers to run the Services. A current list (Supabase, Vercel, Stripe, Resend, Expo Push Service, Upstash) is in the privacy policy. We are responsible for sub-processors' performance of their obligations under the data-processing terms we have with each of them.

11. Intellectual property

CertSafe and its licensors retain all rights, title, and interest in the Services, including software, content, designs, logos, and trademarks. Nothing in these Terms grants you rights in CertSafe's intellectual property beyond the right to use the Services as described.

If you submit feedback or suggestions, you grant us a non-exclusive, perpetual, royalty-free licence to use them without obligation to you.

12. Confidentiality

Each party agrees to protect the other's confidential information with the same care it uses to protect its own (and at minimum reasonable care), and to use it only for the purpose of performing under these Terms.

13. Warranties and disclaimers

We provide the Services on an "as is" and "as available" basis. To the maximum extent permitted by law, we disclaim all warranties, express or implied, including warranties of merchantability, fitness for a particular purpose, and non-infringement. We do not warrant that the Services will be uninterrupted, error-free, or perfectly secure.

The Services support credential management workflows. They do not verify that the underlying training, examination, or competency actually occurred. CertSafe verifies that an issuer's issuance is authentic and untampered; it does not verify that the training behind the issuance happened.

14. Limitation of liability

To the maximum extent permitted by law, CertSafe's aggregate liability arising out of or relating to these Terms or the Services is limited to the fees you paid to us for the Services in the 12 months preceding the event giving rise to the claim. For users who pay nothing (workers and verifiers), our aggregate liability is limited to US$100.

Neither party is liable for indirect, incidental, special, consequential, exemplary, or punitive damages, including lost profits or lost data.

15. Indemnification

You agree to defend, indemnify, and hold harmless CertSafe and its officers, employees, and affiliates from any third-party claim arising out of (a) your use of the Services in violation of these Terms or law, (b) Customer Data you upload, including a third party's claim that Customer Data infringes their rights, or (c) your violation of a third party's rights.

16. Termination

You may stop using the Services at any time. Workers can delete their accounts from inside the wallet; issuers can cancel subscriptions from the billing portal.

We may suspend or terminate your access to the Services if you materially breach these Terms and do not cure the breach within a reasonable period after notice, or immediately if the breach creates an imminent security or legal risk.

Upon termination, your right to use the Services ends. You may request export of your data prior to or for up to 30 days after termination, after which data may be deleted in accordance with the privacy policy.

17. Changes to these Terms

We may update these Terms from time to time. Material changes will be communicated to active customers by email and posted on this page with an updated effective date. Continued use of the Services after a change constitutes acceptance.

18. Governing law and disputes

These Terms are governed by the laws of the State of Utah, USA, without regard to its conflict of laws principles. Each party consents to the exclusive jurisdiction of the state and federal courts located in Utah for any dispute arising out of or relating to these Terms, subject to any mandatory dispute resolution procedure required by your local law.

19. Contact

Questions about these Terms: hello@certsafe.ai.

See also: Privacy · Terms · Security