Terms of Service

Anguardia is a read-only AWS infrastructure scanning platform. The Service connects to your AWS account via IAM AssumeRole, performs security assessments of your IAM configuration, and presents findings as a prioritised backlog with remediation guidance.

The Service does not create, modify, or delete any resources in your AWS environment. All access is read-only and uses temporary credentials that expire after each scan.

• You must provide accurate and complete information when creating an account.
• You are responsible for maintaining the security of your account credentials.
• You must notify us immediately of any unauthorised use of your account.
• You must be at least 18 years old to use the Service.
• One person or legal entity may not maintain more than one account.

By connecting an AWS account to Anguardia, you represent and warrant that:

• You are authorised to grant read-only access to the AWS account.
• The IAM role you provision grants only the permissions specified in our CloudFormation template.
• You understand that Anguardia will make API calls to AWS services on your behalf using the provisioned role.
• You are responsible for any AWS API costs incurred by scanning (typically negligible for IAM-only scans).

You may revoke Anguardia's access at any time by deleting the IAM role in your AWS account or removing the account from Anguardia.

• Paid plans are billed monthly through Stripe. By subscribing, you authorise recurring charges to your payment method.
• Plan limits (number of AWS accounts) are enforced at the time of account creation. Exceeding your plan limit requires an upgrade.
• You may change or cancel your plan at any time. Cancellation takes effect at the end of the current billing period.
• Refunds are handled on a case-by-case basis. Contact us within 14 days of a charge for refund requests.
• We reserve the right to change pricing with 30 days' notice. Existing subscriptions will be honoured until the end of the current billing period.

You agree not to:

• Use the Service to scan AWS accounts you do not own or are not authorised to assess.
• Attempt to access other users' data or accounts.
• Reverse-engineer, decompile, or disassemble any part of the Service.
• Use the Service to violate any applicable law or regulation.
• Automate access to the Service beyond normal usage (e.g., scraping, automated bulk scanning via the UI).
• Resell or redistribute the Service without written permission.

• You retain full ownership of your AWS data and any findings generated from scanning your accounts.
• Anguardia retains ownership of the platform, scanning engine, rules, scoring algorithms, and all intellectual property therein.
• We may use aggregated, anonymised data (not attributable to any individual account) to improve the Service.

Anguardia is provided "as is" without warranty of any kind, express or implied.

• The Service is not a compliance certification tool. Findings and remediation guidance are informational only and do not constitute legal, security, or compliance advice.
• We do not guarantee that all security issues will be detected. The Service scans for known IAM finding patterns and may not cover all possible misconfigurations.
• We are not responsible for any actions taken (or not taken) based on the Service's findings.
• In no event shall Anguardia's total liability exceed the amount you paid for the Service in the 12 months preceding the claim.
• We are not liable for any indirect, incidental, special, consequential, or punitive damages.

We strive to maintain high availability but do not guarantee uninterrupted access. The Service may be temporarily unavailable for maintenance, updates, or circumstances beyond our control. We will make reasonable efforts to notify you of planned downtime.

• You may close your account at any time by contacting us. Upon closure, all your data (accounts, findings, scans) will be permanently deleted.
• We may suspend or terminate your account if you violate these Terms, with or without prior notice depending on severity.
• Upon termination, your right to use the Service ceases immediately. Provisions that by their nature should survive (liability, data ownership, dispute resolution) will survive termination.