Features
STRIDE Detection AI Analysis Multi-Cloud Support
Security Documentation
Documentation Get Started

Terms of Service

Terms of Service

Effective Date: January 2026 Last Updated: January 2026

1. Agreement to Terms

By accessing, downloading, or using ThreatMitigator software (“Software”), you agree to be bound by these Terms of Service (“Terms”). If you do not agree to these Terms, do not use the Software.

These Terms constitute a legally binding agreement between you (either an individual or an entity) and ThreatMitigator (“Company,” “we,” “us,” or “our”).

2. License Grant

2.1 Community Edition

Subject to these Terms, we grant you a non-exclusive, non-transferable, revocable license to:

  • Download and install the Software
  • Use the Software for your internal business purposes
  • Generate security reports and threat models

2.2 Professional & Enterprise Editions

Professional and Enterprise licenses include additional features and support. Specific terms and pricing are provided in your commercial agreement.

2.3 Restrictions

You may NOT:

  • Reverse engineer, decompile, or disassemble the Software
  • Remove or modify any proprietary notices or labels
  • Distribute, sublicense, or transfer the Software to third parties
  • Use the Software to develop competing products
  • Use the Software in violation of applicable laws or regulations

3. Intellectual Property Rights

3.1 Ownership

The Software, including all code, algorithms, designs, and documentation, is the exclusive property of ThreatMitigator and is protected by copyright, trademark, and other intellectual property laws.

3.2 Trademarks

“ThreatMitigator” and related logos are trademarks of ThreatMitigator. You may not use these trademarks without our prior written permission.

3.3 Your Content

You retain all rights to your infrastructure configurations, threat models, and security reports generated by the Software. We do not claim ownership of your data.

4. Data Privacy and Security

4.1 Local Processing

The Software processes your infrastructure data locally on your systems. We do not collect, store, or transmit your infrastructure configurations or threat models to our servers.

4.2 Optional AI Features

If you enable optional AI features:

  • Data is sent directly to your chosen LLM provider (OpenAI, Anthropic, or Ollama)
  • You use your own API keys and are subject to your provider’s terms
  • We do not see, store, or process AI queries or responses

4.3 Privacy Policy

Our data collection and privacy practices are described in our Privacy Policy, which is incorporated into these Terms by reference.

5. Support and Maintenance

5.1 Community Edition

Community Edition is provided “as-is” without support or maintenance guarantees. Documentation and community resources are available at docs.threatmitigator.app.

5.2 Professional & Enterprise

Professional and Enterprise customers receive support as specified in their commercial agreements.

6. Updates and Modifications

6.1 Software Updates

We may release updates, patches, or new versions of the Software. You are responsible for installing updates to maintain security and functionality.

6.2 Terms Updates

We reserve the right to modify these Terms at any time. Changes will be effective upon posting to our website. Continued use of the Software after changes constitutes acceptance of the modified Terms.

7. Warranty Disclaimer

THE SOFTWARE IS PROVIDED “AS IS” WITHOUT WARRANTY OF ANY KIND.

WE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO:

  • MERCHANTABILITY
  • FITNESS FOR A PARTICULAR PURPOSE
  • NON-INFRINGEMENT
  • ACCURACY OR COMPLETENESS OF RESULTS

We do not warrant that:

  • The Software will be error-free or uninterrupted
  • Defects will be corrected
  • The Software will meet your specific requirements
  • Security vulnerabilities will be detected or prevented

YOU ASSUME ALL RISK ASSOCIATED WITH USE OF THE SOFTWARE.

8. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW:

IN NO EVENT SHALL THREATMITIGATOR BE LIABLE FOR:

  • INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES
  • LOSS OF PROFITS, DATA, OR BUSINESS OPPORTUNITIES
  • SECURITY BREACHES OR UNDETECTED VULNERABILITIES
  • DAMAGES RESULTING FROM USE OR INABILITY TO USE THE SOFTWARE

OUR TOTAL LIABILITY SHALL NOT EXCEED:

  • Community Edition: $0 (zero dollars)
  • Professional/Enterprise: Fees paid in the 12 months preceding the claim

This limitation applies regardless of the legal theory (contract, tort, negligence, strict liability, or otherwise) and even if we were advised of the possibility of such damages.

9. Indemnification

You agree to indemnify, defend, and hold harmless ThreatMitigator and its officers, directors, employees, and agents from any claims, damages, losses, liabilities, and expenses (including legal fees) arising from:

  • Your use or misuse of the Software
  • Your violation of these Terms
  • Your violation of applicable laws or regulations
  • Security incidents resulting from your infrastructure configurations

10. Export Compliance

The Software may be subject to export control laws and regulations. You agree to comply with all applicable export laws and will not export, re-export, or transfer the Software to:

  • Prohibited countries or regions
  • Individuals or entities on restricted party lists
  • End-users engaged in prohibited activities

11. Termination

11.1 Termination by You

You may stop using the Software at any time by uninstalling it from your systems.

11.2 Termination by Us

We may terminate or suspend your license immediately if you:

  • Violate these Terms
  • Engage in illegal activities using the Software
  • Fail to pay fees (Professional/Enterprise)

11.3 Effect of Termination

Upon termination:

  • Your license to use the Software immediately ends
  • You must cease all use and uninstall the Software
  • Provisions that by their nature should survive (Sections 3, 7, 8, 9, 12) remain in effect

12. Governing Law and Dispute Resolution

12.1 Governing Law

These Terms are governed by the laws of [Your Jurisdiction - Update This], without regard to conflict of law principles.

12.2 Dispute Resolution

Any disputes arising from these Terms or your use of the Software shall be resolved through:

  1. Good-faith negotiation between the parties
  2. If negotiation fails, binding arbitration in [Your Jurisdiction]

12.3 Class Action Waiver

You agree to bring claims only in your individual capacity and not as a plaintiff or class member in any class or representative action.

13. Miscellaneous

13.1 Entire Agreement

These Terms, together with our Privacy Policy and any commercial agreements, constitute the entire agreement between you and ThreatMitigator regarding the Software.

13.2 Severability

If any provision of these Terms is held invalid or unenforceable, the remaining provisions remain in full force and effect.

13.3 No Waiver

Our failure to enforce any right or provision does not constitute a waiver of that right or provision.

13.4 Assignment

You may not assign or transfer these Terms or your license without our written consent. We may assign these Terms without restriction.

13.5 Force Majeure

We are not liable for delays or failures in performance resulting from circumstances beyond our reasonable control.

14. Security Tool Disclaimer

IMPORTANT SECURITY NOTICE:

ThreatMitigator is a security analysis tool designed to identify potential vulnerabilities in Infrastructure as Code. However:

  • Not a Substitute for Security Expertise: The Software does not replace human security review and expertise
  • Detection Limitations: The Software may not detect all vulnerabilities or threats
  • False Positives/Negatives: Results may include false positives or miss actual vulnerabilities
  • No Security Guarantee: Use of the Software does not guarantee security or prevent breaches
  • Your Responsibility: You are solely responsible for your infrastructure security

ALWAYS:

  • Review and validate all findings before taking action
  • Implement additional security controls and best practices
  • Conduct comprehensive security reviews beyond automated scanning
  • Maintain security expertise and incident response capabilities

15. Contact Information

For questions about these Terms:

Email: legal@threatmitigator.app

Support: support@threatmitigator.app

Sales: sales@threatmitigator.app

16. Definitions

  • Software: ThreatMitigator CLI tool and associated documentation
  • Infrastructure as Code (IaC): Terraform configurations and related files
  • Threat Model: Security vulnerability reports generated by the Software
  • Community Edition: Free version with core features
  • Professional/Enterprise Editions: Paid versions with additional features and support

BY USING THREATMITIGATOR, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO BE BOUND BY THESE TERMS OF SERVICE.

Last Updated: January 2026