Terms of Service
Last Updated: April 11, 2026 Effective Date: April 11, 2026
Last Updated: April 11, 2026 Effective Date: April 11, 2026
These Terms of Service ("Terms") govern your access to and use of the Shielda platform operated by Shielda Security, Inc. ("Shielda," "we," "us," or "our"). By accessing or using the Service, you agree to be bound by these Terms.
---
Definitions
"Service" — The Shielda platform, including the SaaS control-plane, self-hosted agent software, CLI tools, IDE extensions, MCP server, API, and documentation. "Customer" / "You" — The entity or individual that registers for an account and uses the Service. "Organization" — A multi-tenant workspace within Shielda, associated with your account. "Agent" — The self-hosted Shielda Agent software that runs within your infrastructure to perform security scans. "Findings" — Security vulnerabilities, misconfigurations, and compliance gaps identified by the Agent and reported through the Service. "Plan" — The subscription tier selected by the Customer (Starter, Pro, Business, or Enterprise).
---
Service Description
Shielda is an AI-powered security engineering platform that provides:
Automated Security Scanning — The self-hosted Agent runs 21+ open-source security tools organized into 9 scan bundles (network, web, container, code, secrets, cloud, compliance, API, and AI safety). Vulnerability Management — Centralized findings dashboard with severity scoring (CVSS/EPSS), deduplication, root cause analysis, and AI-powered remediation guidance. Compliance Evaluation — Automated assessment against 6 frameworks: SOC 2, ISO 27001, HIPAA, GDPR, PCI-DSS, and NIS2. AI Security Agents — 6 specialized AI agents: Guardian (discovery), Verifier (triage), Scout (attack paths), Patch (fixes), Counselor (chat), and Auditor (AI security). Compliance Document Generation — AI-assisted generation of security documentation, certification packages, and vendor assessments. Integrations — GitHub, GitLab, Slack, Jira, and custom webhook integrations.
---
Account Registration
3.1. You must provide accurate and complete registration information. You are responsible for maintaining the confidentiality of your account credentials.
3.2. You must be at least 16 years old to use the Service. If you are registering on behalf of an organization, you represent that you have authority to bind that organization to these Terms.
3.3. Each user must have a unique account. Account sharing is not permitted.
3.4. You are responsible for all activity that occurs under your account, including actions by team members you invite to your Organization.
---
Subscription Plans and Billing
4.1 Plans We offer four subscription tiers:
Feature Starter Pro Business Enterprise Endpoints Up to 10 Up to 50 Up to 250 Unlimited Scan frequency Weekly Daily Continuous Continuous AI agents Guardian only All 6 All 6 + custom All + custom Compliance docs Posture overview All individual Full packages Full + white-label Support Community Email Priority Dedicated
4.2 Billing Subscriptions are billed monthly or annually in advance. Annual subscriptions receive a discount as displayed on the pricing page. All fees are exclusive of taxes. You are responsible for applicable taxes. We use Stripe for payment processing. By providing payment information, you authorize recurring charges.
4.3 Credits Certain actions (AI agent calls, compliance doc generation) consume credits. Credits are included in your plan and may be purchased additionally. Unused credits expire at the end of each billing period (monthly plans) or roll over within the annual period (annual plans).
4.4 Free Trial New accounts receive a 14-day free trial of the Pro plan. No credit card is required during the trial. At trial expiration, you may select a paid plan or your account will be downgraded to Starter.
4.5 Payment Failure and Grace Period If a payment fails, we will retry up to 3 times over 7 days. During the grace period, the Service remains accessible. After the grace period, the account will be frozen (read-only access to findings; no new scans). Accounts frozen for more than 30 days may be scheduled for data deletion with 14 days' prior notice.
---
Acceptable Use
You agree NOT to:
5.1. Use the Service to conduct unauthorized security testing against systems you do not own or have explicit written permission to test.
5.2. Reverse engineer, decompile, or disassemble any part of the Service (except as permitted by applicable law).
5.3. Attempt to gain unauthorized access to the Service, other accounts, or the underlying infrastructure.
5.4. Use the Service to store or transmit malware, viruses, or other malicious code (outside of legitimate security research within your own scoped environment).
5.5. Resell, sublicense, or redistribute the Service without written authorization (agency/MSSP arrangements require a Business or Enterprise plan).
5.6. Use the Service in any manner that violates applicable laws or regulations.
5.7. Interfere with or disrupt the Service or the servers/networks connected to it.
5.8. Exceed your Plan's rate limits or endpoint quotas. Systematic abuse of rate limits may result in account suspension.
---