Terms of Service

Last updated: March 2026

1. Acceptance of Terms

By accessing and using the Arbitium website and services, you agree to be bound by these Terms of Service. If you do not agree to these terms, please do not use our website or services. Arbitium reserves the right to modify these terms at any time with notice to users.

2. Description of Services

Arbitium provides an AI-driven autonomous cybersecurity execution platform designed for enterprise security operations. Our platform:

  • Ingests security signals from multiple sources including SIEM (Security Information and Event Management), EDR (Endpoint Detection and Response), IAM (Identity and Access Management), Cloud infrastructure, and Email systems
  • Applies advanced AI reasoning to analyze threats and security events in real-time
  • Executes automated remediation actions via API integrations with your existing security infrastructure
  • Reduces response time and human error in security incident handling
  • Operates within your security and compliance requirements

These services are provided exclusively to enterprise customers under separate commercial agreements. This website and these general terms govern use of the website itself.

3. Enterprise License Agreement

Access to the Arbitium platform services is granted exclusively to enterprise customers who have executed a separate Master Service Agreement (MSA) or similar commercial agreement with Arbitium. The terms of the applicable commercial agreement, including pricing, service levels, term, and termination provisions, take precedence over these website terms for platform use.

These website terms govern use of the Arbitium website, marketing materials, and public resources. Enterprise customers using the platform must comply with both these terms and their separate commercial agreement.

4. Account and Access Credentials

For enterprise customers with platform access, you are responsible for:

  • Maintaining the confidentiality of all access credentials, API keys, and authentication tokens
  • Ensuring only authorized personnel have access to platform credentials
  • Promptly notifying Arbitium of any unauthorized access or suspected compromise of credentials
  • Revoking access for employees or contractors who no longer require platform access
  • Monitoring and logging all platform access within your environment
  • Implementing proper access controls and least-privilege principles for API key distribution

Arbitium will not be liable for unauthorized access resulting from your failure to protect credentials or maintain proper access controls.

5. Acceptable Use Policy

You agree not to use Arbitium services for any of the following purposes:

  • Reverse Engineering: Attempting to reverse engineer, decompile, disassemble, or otherwise derive the source code, algorithms, or AI models powering the platform
  • Unauthorized Attacks: Using Arbitium to attack, test, or compromise systems, networks, or endpoints that you do not own or have explicit authorization to test
  • Circumventing Security Controls: Attempting to bypass or circumvent the platform's security controls, authentication mechanisms, or API rate limiting
  • Illegal Activities: Using the platform to facilitate any illegal activities, including unauthorized access to systems, data theft, or extortion
  • Malicious Automation: Automating malicious security actions or using the platform's autonomous execution capabilities to cause harm
  • Competitive Extraction: Attempting to extract competitive intelligence or proprietary algorithms from the platform
  • Disruption: Taking actions designed to disrupt, degrade, or disable the platform or its infrastructure

Violation of the Acceptable Use Policy may result in immediate suspension or termination of platform access and potential legal action.

6. Intellectual Property Rights

Arbitium Ownership: Arbitium retains all rights, title, and interest in:

  • All platform software, code, and technology
  • All AI models, machine learning algorithms, and neural networks
  • All analytical engines and reasoning systems
  • All patents, trade secrets, and proprietary methodologies
  • All improvements, modifications, and enhancements to the platform
  • All documentation, specifications, and technical materials

You may not copy, modify, distribute, or create derivative works based on the platform or any Arbitium intellectual property. Your use is limited to operating the platform as provided and in accordance with your commercial agreement.

Customer Data Ownership: You retain all ownership rights to your security telemetry data, threat intelligence, and any other data you provide to the platform. Arbitium does not claim ownership of your data.

7. Customer Data and Privacy

Data Ownership: You own all security telemetry, event logs, alert data, and other information you input or provide to the Arbitium platform.

Data Processing: Arbitium processes your data strictly according to your documented instructions and in compliance with applicable privacy laws. We will not use your data for any purpose except to:

  • Provide the platform services you have contracted for
  • Maintain and improve the platform infrastructure
  • Comply with legal obligations
  • Enforce our agreements

Data Locality: Your security data remains within your environment and infrastructure. Arbitium platform instances run within your designated cloud environment or on-premises infrastructure as specified in your commercial agreement. We do not transmit or store your data on external Arbitium infrastructure without your explicit consent.

Data Retention: Upon termination of your agreement, Arbitium will delete or return all customer data within 30 days, as specified in your commercial agreement or as required by law.

For detailed information about data handling, processing, and privacy, please refer to our separate Privacy Policy and Data Processing Agreement (DPA).

8. Confidentiality

Both Arbitium and Customer agree to protect each other's Confidential Information, which includes:

  • Proprietary technology, algorithms, and source code
  • Business plans, strategies, and financial information
  • Customer data, security configurations, and threat intelligence
  • Terms and pricing of commercial agreements
  • All other information marked as confidential or that reasonably should be understood as confidential

Each party agrees to maintain the confidentiality of the other's Confidential Information and not disclose it to third parties except as required by law or with prior written consent. This obligation survives termination of the relationship for a period of three (3) years.

9. Service Availability and Service Level Agreement

Uptime Commitment: Arbitium commits to maintain commercially reasonable uptime for the platform services, as specified in your commercial agreement. Specific Service Level Agreements (SLAs) are defined in the applicable MSA.

Maintenance Windows: Arbitium reserves the right to conduct planned maintenance on the platform, including updates, patches, and infrastructure improvements. Maintenance windows will be scheduled during off-peak hours when practical, and customers will receive advance notice of scheduled maintenance.

Emergency Maintenance: In the event of security threats, critical bugs, or other emergencies, Arbitium may conduct emergency maintenance with minimal notice.

Exclusions: SLA commitments do not apply to:

  • Issues resulting from customer's systems, network, or misconfigurations
  • Issues caused by third-party integrations or APIs
  • Scheduled maintenance and emergency maintenance
  • Force majeure events or circumstances beyond Arbitium's control

10. Limitation of Liability

Cap on Liability: Except as prohibited by law, Arbitium's total liability to Customer arising out of or related to this agreement or the services shall not exceed the amounts paid by Customer to Arbitium in the twelve (12) months preceding the event giving rise to liability.

Excluded Damages: In no event shall either party be liable for:

  • Indirect, incidental, special, or consequential damages
  • Lost profits, revenue, or business opportunities
  • Loss of data or business interruption
  • Damages arising from third-party claims
  • Any damages not directly caused by a party's breach

Essential Terms: These limitations apply even if a party has been advised of the possibility of such damages and even if limited remedies fail of their essential purpose.

11. Indemnification

Customer Indemnification: Customer agrees to defend, indemnify, and hold harmless Arbitium from any claims, damages, and costs (including reasonable attorneys' fees) arising from:

  • Customer's violation of these terms or applicable law
  • Customer's use of the platform in violation of the Acceptable Use Policy
  • Customer data or content provided by Customer
  • Third-party claims that Customer's use of the platform infringes third-party rights

Arbitium Indemnification: Arbitium agrees to defend, indemnify, and hold harmless Customer from any claims, damages, and costs (including reasonable attorneys' fees) arising from:

  • Claims that the Arbitium platform as provided infringes third-party intellectual property rights
  • Arbitium's violation of applicable law
  • Arbitium's breach of this agreement

The indemnifying party must receive prompt notice of claims and be given reasonable control of the defense and settlement, provided the indemnified party may participate in the defense at its own expense.

12. Term and Termination

Term: For enterprise customers, the term of platform services is defined in your separate commercial agreement (MSA). These website terms are effective upon acceptance and continue until terminated.

Termination for Cause: Either party may terminate the services and this agreement for material breach if the breaching party fails to cure the breach within thirty (30) days of written notice.

Termination for Convenience: Either party may terminate services for convenience as specified in the commercial agreement, typically with 60 or 90 days' written notice, depending on contract terms.

Immediate Termination: Arbitium may terminate services immediately without notice if Customer:

  • Violates the Acceptable Use Policy
  • Fails to pay invoices for more than fifteen (15) days after due date
  • Uses the platform for illegal purposes
  • Creates immediate security or safety risks

Effect of Termination: Upon termination, all licenses and rights granted to Customer terminate. Arbitium will delete or return Customer data as specified in the commercial agreement or within 30 days of termination.

13. Governing Law and Jurisdiction

These Terms of Service and all related agreements shall be governed by and construed in accordance with the laws of the State of Delaware, without regard to its conflict of laws principles. Both parties consent to the exclusive jurisdiction and venue of the state and federal courts located in Delaware for resolution of any disputes.

Notwithstanding the above, either party may seek equitable relief (such as injunctions) in any court of competent jurisdiction to prevent irreparable harm.

14. Changes to These Terms

Arbitium reserves the right to modify these Terms of Service at any time. Changes will be effective immediately upon posting to the website. For material changes that negatively affect customer rights, we will provide at least thirty (30) days' notice to customers.

Your continued use of the Arbitium website or platform services after changes become effective constitutes your acceptance of the modified terms. If you do not agree with modifications, your sole remedy is to discontinue use.

Enterprise customers should refer to their commercial agreements for procedures regarding modifications to those terms.

15. Contact Information

For questions about these Terms of Service, legal inquiries, or to report violations, please contact:

Arbitium Legal Team
Email: info@arbitium.com

We will respond to inquiries within five (5) business days.

16. Severability

If any provision of these Terms of Service is found to be invalid, illegal, or unenforceable by a court of competent jurisdiction, that provision shall be modified to the minimum extent necessary to make it valid and enforceable, and the remaining provisions shall continue in full force and effect.

17. Entire Agreement

These Terms of Service, together with the Privacy Policy, Data Processing Agreement, and for enterprise customers, the applicable Master Service Agreement, constitute the entire agreement between you and Arbitium regarding the use of the website and services. These terms supersede all prior agreements, understandings, and communications, whether written or oral.