Terms and Conditions
Last updated: 2026-05-21
Main
CodeHalo
TERMS AND CONDITIONS
Effective Date: May 15, 2026
1. DEFINITIONS
For the purposes of these Terms:
"CodeHalo" refers to CodeHalo, a cybersecurity audit services company.
"User" means any individual or entity accessing or using the Service.
"Service" means the CodeHalo automated code security analysis platform.
"Scan" means a single execution of CodeHalo's automated analysis on a User's repository.
"Full Security Audit" means a Scan that completes successfully and generates a full report including vulnerability findings and scoring outputs.
"Scan Credit" means a prepaid entitlement to perform one Scan.
"Report" means any output generated by the Service, including findings, scores, recommendations, and mappings.
"Halo Score" means CodeHalo's proprietary scoring methodology.
"Confidential Information" means all non-public information submitted by the User, including source code.
"Business User" means a User accessing the Service for commercial, professional, or organisational purposes.
"Consumer" means a natural person accessing the Service for purposes outside of trade, business, or profession.
2. ACCEPTANCE OF TERMS AND ELIGIBILITY
By accessing or using the Service, the User agrees to be bound by these Terms. If the User is entering into these Terms on behalf of an entity, the User represents that they have authority to bind that entity.
The Service is intended for users who are at least 18 years of age. By using the Service, you represent and warrant that you meet this requirement. CodeHalo reserves the right to terminate access if it has reason to believe a User does not meet this age requirement.
If you are a Consumer located in a jurisdiction that provides statutory rights that cannot be excluded by contract (including but not limited to the European Union, United Kingdom, Australia, or Malaysia), nothing in these Terms is intended to limit or override those rights. To the extent any provision of these Terms conflicts with applicable mandatory consumer protection law, the applicable law shall prevail.
3. SERVICE DESCRIPTION
CodeHalo provides automated security analysis of software repositories using a combination of static analysis and AI-assisted techniques. The Service generates Reports intended to assist in identifying potential vulnerabilities and improving code quality.
Users acknowledge that AI-assisted analysis techniques are subject to inherent limitations, including the possibility of false positives, missed findings, and outputs influenced by the quality and completeness of submitted code. The Service is designed to augment, not replace, professional security review.
4. USER REPRESENTATIONS AND ACCEPTABLE USE
The User represents and warrants that:
They have full legal rights and authorisation to submit any code or repository for analysis.
They will not use the Service to scan code they do not own or are not authorised to analyse.
They will not use the Service for unlawful, harmful, or abusive purposes.
They will comply with all applicable laws and regulations when using the Service.
Please refer to our Acceptable Use Policy, incorporated herein by reference, for further detail on prohibited uses and usage restrictions.
CodeHalo reserves the right to suspend or terminate access for violations of this section or the Acceptable Use Policy.
5. DATA HANDLING, PRIVACY, AND SECURITY
5.1 Processing of Code The Service processes User-submitted code in temporary compute environments for the purpose of analysis.
5.2 Data Storage and Retention CodeHalo does not intentionally store User source code in persistent databases. Code may be processed transiently and may be temporarily retained in system logs strictly for debugging, system integrity, and security purposes. Such log data is retained for a maximum of 90 days, after which it is deleted or anonymised. CodeHalo will not use log-retained code for any purpose beyond the operation and improvement of the Service.
5.3 AI Training CodeHalo does not use User-submitted code for training AI models.
5.4 Security Measures CodeHalo implements commercially reasonable technical and organisational safeguards to protect User data, including encryption of data in transit and access controls limiting internal access to User submissions. However, no system can be guaranteed to be completely secure.
5.5 Privacy Policy The collection, use, and handling of personal data is governed by our Privacy Policy, which is incorporated into these Terms by reference. By using the Service, you acknowledge that you have read and understood our Privacy Policy. Users in applicable jurisdictions (including the European Union, United Kingdom, Singapore, and California) may have rights to access, correct, or request deletion of their personal data in accordance with applicable data protection law.
6. CONFIDENTIALITY
CodeHalo agrees to treat all Confidential Information as strictly confidential and will not disclose such information to third parties except:
as necessary to provide the Service,
as required by law or legal process, or
with the User's prior written consent.
This obligation survives termination of these Terms.
7. REPORTS AND LIMITATIONS OF OUTPUT
Reports generated by CodeHalo:
are based on automated and AI-assisted analysis techniques,
may not identify all vulnerabilities or issues,
may include false positives or incomplete findings, and
reflect the state of the submitted code at the time of the Scan only.
The User acknowledges that a "zero vulnerabilities" result reflects only the findings of the Service at the time of the Scan and does not guarantee the absence of security risks. Reports should be used as one input among several in a broader security review process.
8. NO PROFESSIONAL ADVICE / NO RELIANCE
The Service and all Reports are provided for informational and technical guidance purposes only.
They do not constitute legal, compliance, or professional cybersecurity advice.
The User agrees not to rely solely on the Service for securing production systems and to conduct independent security testing and reviews before deploying any application or system in a production environment.
9. FEES, PAYMENTS, AND REFUNDS
9.1 Finality of Sale All purchases are generally final due to the immediate consumption of computational resources upon initiating a Scan.
9.2 Zero-Finding Refund Policy If a Full Security Audit completes successfully and returns zero (0) vulnerability findings, the User may submit a written refund request within 14 days of the Scan completion date. The refund amount shall not exceed the effective per-scan price paid for that Scan.
CodeHalo reserves the right to review all refund requests for eligibility. Requests may be declined where, in CodeHalo's reasonable assessment, the submitted repository was trivially small, substantially empty, pre-processed to remove content, obfuscated, or otherwise not representative of a genuine codebase intended for security analysis. This clause is intended to protect the integrity of the Service and shall not be used to unreasonably deny legitimate refund requests.
9.3 Failed Scans If a Scan fails due to a system error or timeout attributable to CodeHalo's platform, CodeHalo may, at its sole discretion:
issue a replacement Scan Credit, or
provide a monetary refund for the affected Scan.
9.4 Future Subscription Plans CodeHalo may in the future offer subscription-based access tiers. Terms applicable to subscriptions, including billing cycles, auto-renewal, cancellation rights, and prorated refunds, will be specified in a Subscription Addendum or updated version of these Terms. Users will be notified in advance of any subscription offering and no subscription charges will be applied without the User's explicit consent.
10. INTELLECTUAL PROPERTY
All rights, title, and interest in the Service, including Reports, Halo Score, methodologies, and analysis frameworks, remain the exclusive property of CodeHalo.
The User is granted a limited, non-exclusive, non-transferable licence to use Reports for internal purposes only. For the avoidance of doubt, "internal purposes" includes use by the User's own employees, contractors, auditors, legal counsel, regulators, and board members in connection with the User's own systems and operations.
The User may not:
resell, sublicense, or redistribute Reports to third parties outside of the above,
reverse engineer or attempt to replicate the Service or its underlying methodologies,
commercially exploit the Halo Score or methodologies, or
publish or publicly disclose Reports without CodeHalo's prior written consent.
11. SERVICE AVAILABILITY
CodeHalo does not guarantee uninterrupted or error-free operation of the Service.
The Service may be suspended or limited due to scheduled maintenance, upgrades, system failures, or Force Majeure Events (as defined in Section 22).
12. DISCLAIMER OF WARRANTIES
The Service is provided on an "AS IS" and "AS AVAILABLE" basis.
To the maximum extent permitted by applicable law, CodeHalo disclaims all warranties, whether express or implied, including warranties of merchantability, fitness for a particular purpose, and non-infringement.
Nothing in this section shall limit any statutory rights that apply to Consumers under applicable mandatory consumer protection law that cannot be excluded by contract.
13. LIMITATION OF LIABILITY
13.1 Exclusion of Certain Damages To the maximum extent permitted by applicable law, CodeHalo shall not be liable for indirect, incidental, special, or consequential damages, including but not limited to loss of profits, revenue, business opportunity, data, or security breaches in User systems arising from use of or reliance on the Service.
13.2 Liability Cap CodeHalo's total aggregate liability to the User for any and all claims arising under or in connection with these Terms shall not exceed the total amount paid by the User to CodeHalo in the twelve (12) months preceding the event giving rise to the claim.
13.3 Consumer Rights Carve-Out Nothing in this Section 13 shall limit CodeHalo's liability for: (a) death or personal injury caused by CodeHalo's negligence; (b) fraud or fraudulent misrepresentation; or (c) any other liability that cannot be excluded or limited under applicable mandatory law, including statutory consumer rights applicable in the User's jurisdiction.
14. INDEMNIFICATION
The User agrees to indemnify and hold harmless CodeHalo and its affiliates, officers, employees, and agents from any claims, damages, costs, or losses (including reasonable legal fees) arising from:
misuse of the Service or breach of these Terms,
unauthorised scanning of third-party code,
the User's implementation or deployment of Report recommendations, or
deployment or operation of the User's applications.
This indemnification obligation does not apply to the extent that any such claim arises from CodeHalo's own negligence, wilful misconduct, or breach of these Terms.
15. TERMINATION
CodeHalo may suspend or terminate a User's access to the Service at any time for violation of these Terms, security risks, or at its sole discretion with reasonable notice except where immediate termination is required for security or legal reasons.
Upon termination, all licences granted to the User under these Terms cease immediately.
Sections 6, 10, 13, 14, 17, 20, 21, and 22 shall survive termination of these Terms.
16. COMPLIANCE WITH LAWS
The User agrees to comply with all applicable laws and regulations, including export control laws, cybersecurity regulations, and applicable data protection laws. The User is solely responsible for ensuring that their use of the Service complies with the laws of their jurisdiction.
17. GOVERNING LAW AND DISPUTE RESOLUTION
17.1 Governing Law These Terms shall be governed by and construed in accordance with the laws of Singapore, without regard to its conflict of law principles.
17.2 Dispute Resolution Process In the event of any dispute, controversy, or claim arising out of or in connection with these Terms, the parties agree to follow this escalation process before initiating formal proceedings:
Step 1 — Written Notice: The party raising the dispute shall provide written notice to the other party, setting out the nature of the dispute and the remedy sought.
Step 2 — Good-Faith Negotiation: The parties shall attempt to resolve the dispute through good-faith negotiation within thirty (30) days of the written notice being received.
Step 3 — Mediation: If the dispute is not resolved through negotiation, either party may refer the matter to mediation administered by the Singapore International Mediation Centre (SIMC) in accordance with its prevailing rules.
Step 4 — Litigation: If mediation is unsuccessful or either party declines to participate, the dispute shall be subject to the exclusive jurisdiction of the courts of Singapore.
17.3 Consumer Rights Nothing in this Section 17 prevents a Consumer from bringing a claim in the courts of their country of residence where mandatory applicable law permits them to do so.
18. MODIFICATIONS TO THESE TERMS
CodeHalo reserves the right to modify these Terms at any time. Updated Terms will be posted on the website with a revised effective date.
For material changes — including changes that affect User rights, payment terms, or data handling practices — CodeHalo will provide at least thirty (30) days' advance notice via email to registered Users before the changes take effect. Users who object to material changes may terminate their account prior to the effective date of the updated Terms; continued use of the Service after that date constitutes acceptance of the updated Terms.
For non-material changes (such as clarifications or corrections), updated Terms take effect upon posting.
In the event of a dispute, the version of the Terms in effect at the time of the relevant transaction or event shall govern.
19. ENTIRE AGREEMENT
These Terms, together with the Privacy Policy and Acceptable Use Policy incorporated herein by reference, constitute the entire agreement between the User and CodeHalo with respect to the subject matter hereof and supersede all prior agreements, representations, or understandings, whether written or oral.
20. SEVERABILITY
If any provision of these Terms is found by a court of competent jurisdiction to be invalid, illegal, or unenforceable, that provision shall be modified to the minimum extent necessary to make it enforceable, or if modification is not possible, severed from these Terms. The remaining provisions shall continue in full force and effect.
21. WAIVER
Failure or delay by either party to enforce any provision of these Terms, or to exercise any right or remedy under these Terms, shall not constitute a waiver of that party's right to enforce that provision or exercise that right or remedy at any subsequent time.
22. FORCE MAJEURE
Neither party shall be liable for any delay or failure to perform its obligations under these Terms to the extent that such delay or failure is caused by a Force Majeure Event. A "Force Majeure Event" means any event beyond a party's reasonable control, including but not limited to natural disasters, acts of government or regulatory authority, war, civil unrest, cyberattacks on third-party infrastructure, internet or telecommunications failures, pandemic, or failure of third-party service providers.
The party affected by a Force Majeure Event shall: (a) provide prompt written notice to the other party; (b) use reasonable efforts to mitigate the effects of and overcome the Force Majeure Event; and (c) resume performance as soon as reasonably practicable.
If a Force Majeure Event affecting CodeHalo's ability to deliver the Service continues for more than thirty (30) days, the User may request a pro-rata refund for any unused prepaid Scan Credits.
23. ASSIGNMENT
The User may not assign, transfer, or delegate any rights or obligations under these Terms without CodeHalo's prior written consent.
CodeHalo may assign these Terms, in whole or in part, in connection with a merger, acquisition, corporate restructuring, or sale of substantially all of its assets, provided that the acquiring or successor entity assumes all of CodeHalo's obligations under these Terms. CodeHalo will notify Users of any such assignment.
[END OF TERMS AND CONDITIONS]