Terms of Service

1. Acceptance

By requesting access, receiving API credentials, or using the Governance Assessment Engine in any form, you agree to these Terms on behalf of yourself and your organisation. If you do not agree, do not request access.

2. Decision Support Scope

The Engine is decision support infrastructure, not regulatory authority. Specifically:

• Assessment outputs do not constitute legal compliance determinations under any regulatory framework.
• Validation plans generated by the Engine require review and approval by qualified validation personnel before execution.
• Governance decisions must be evaluated against your organisation’s specific operating context, product portfolio, and regulatory history.
• Trust scores are governance signals, not audit results or inspection readiness certificates.
• No output from the Engine constitutes a completed, approved, or executed validation package.

This scope is not a disclaimer. It is the accurate description of what the Engine does and does not do.

3. Permitted Use

Your access is granted for the purpose described in your access request. Permitted use includes:

• Generating governance assessments and validation plans for regulated systems within your organisation
• Integrating Engine outputs into your organisation’s validation documentation and quality system records
• Using API outputs to inform compliance decisions made by qualified personnel
• Evaluating the Engine for potential organisational adoption

4. Prohibited Use

The following uses are prohibited:

• Reverse engineering, decompiling, or extracting the Engine’s underlying logic, requirement templates, or regulatory mapping methodology
• Systematic or automated extraction of assessment outputs to build, train, or inform a competing product or service
• Representing Engine outputs as certified, approved, or independently verified compliance determinations to any regulator, auditor, or third party
• Sharing API credentials with any person or organisation not authorised under your access tier
• Using the Engine to generate outputs for organisations other than your own without an explicit reseller or integration agreement
• Submitting false or misleading information in the access request process

5. API Credentials

API keys are issued per organisation and per environment (production / test). You are responsible for:

• Keeping credentials confidential and not sharing them outside authorised users within your organisation
• Immediately notifying mylavarapu8@gmail.com if credentials are compromised
• Any use of the API under your credentials, whether authorised by you or not

Keys may be suspended or revoked for violation of these Terms, non-payment, or inactivity exceeding 90 days without notice.

6. Data You Submit

You own all data you submit to the Engine. By submitting data, you grant a limited licence to process it solely to provide the assessment service. The Engine does not use your submitted data to train models, derive competitive intelligence, or serve any purpose other than returning your assessment output. See the Data Handling page for full detail.

7. Intellectual Property

The Engine’s regulatory methodology, requirement templates, system type taxonomy, trust scoring logic, and all associated intellectual property are proprietary and confidential. Nothing in these Terms grants you any licence to that intellectual property beyond the right to use the outputs for your internal compliance purposes.

Assessment outputs generated for your systems are yours to use within your organisation. You may include them in your validation documentation, quality records, and regulatory submissions, with the understanding that they constitute decision support reviewed and approved by your qualified personnel.

8. No Warranty

The Engine is provided “as is.” No warranty is made that outputs will be free from error, that they will satisfy any specific regulatory requirement, or that reliance on them will result in inspection success or regulatory approval. Regulatory requirements are subject to change; templates are reviewed periodically but may not reflect the most current guidance at the time of any given assessment.

9. Limitation of Liability

To the maximum extent permitted by applicable law, liability for any claim arising from use of the Engine is limited to the fees paid in the twelve months preceding the claim. In no event will there be liability for indirect, incidental, consequential, or punitive damages, including loss of regulatory approval, inspection failure, or product recall costs.

This limitation reflects the decision support nature of the service. Regulated organisations are responsible for their own compliance programmes and the qualified personnel who operate them.

10. Confidentiality

Both parties agree to treat as confidential: (a) API credentials and account information; (b) proprietary methodology and template content accessed through the Engine; (c) any non-public information disclosed during access request review. This obligation survives termination of access.

11. Changes to These Terms

Terms may be updated with 30 days’ notice by email to the address provided during access request. Continued use of the API after notice constitutes acceptance of the updated terms.

12. Governing Law

These Terms are governed by the laws of the Commonwealth of Massachusetts, United States, without regard to conflict of law principles. Disputes will be resolved in the courts of Worcester County, Massachusetts.

Questions

For questions about these Terms, contact mylavarapu8@gmail.com. For questions about data handling specifically, see the Data Handling page.