Terms of Service

1. Acceptance of Terms

By accessing or using Certman, you agree to be bound by these Terms. If you disagree with any part of the terms, you may not access the Service.

2. Description of Service

Certman is a cloud-based certificate authority management platform that allows users to:

• Create and manage root certificate authorities (CAs)
• Issue TLS/SSL certificates for internal infrastructure
• Manage certificate lifecycle (renewal, revocation)
• Access certificates via web interface and REST API

3. Account Registration

To use Certman, you must create an account using a supported authentication provider (Google, GitHub, or Apple). You agree to:

• Provide accurate information during registration
• Maintain the security of your authentication credentials
• Notify us immediately of any unauthorized account access
• Accept responsibility for all activities under your account

4. Acceptable Use

You agree not to use Certman to:

• Issue certificates for domains or systems you do not own or control
• Impersonate any person or entity
• Conduct fraudulent or illegal activities
• Interfere with or disrupt the Service or servers
• Attempt to gain unauthorized access to any part of the Service
• Use the Service in violation of any applicable laws or regulations
• Issue certificates for malware, phishing, or other malicious purposes

5. Certificate Usage

5.1 Intended Use

Certman is designed for managing certificates for internal infrastructure, home labs, development environments, automated deployments, and private networks. Certificates issued by Certman are self-signed (or signed by your own root CA) and are not publicly trusted.

5.2 Your Responsibility

You are solely responsible for:

• Determining the appropriate use of certificates for your infrastructure
• Properly installing and configuring your root CA on trusting devices
• Managing certificate expiration and renewal
• Revoking compromised certificates promptly
• Securing your private keys (especially in BYOK mode)
• Remembering your passphrase if you enable zero-trust mode (we cannot recover it)

5.3 No Public Trust

Certificates issued by Certman are not included in browser or operating system trust stores. They will only be trusted on devices where you have manually installed your root CA certificate.

6. API Usage

If you use the Certman API, you agree to:

• Keep your API keys confidential and secure
• Use API keys only for their intended purpose
• Respect rate limits and usage quotas
• Revoke compromised API keys immediately

7. Data and Security

7.1 Your Data

You retain ownership of all certificates, keys, and data you create using Certman. We process your data only to provide the Service as described in our Privacy Policy.

7.2 Security Measures

We implement reasonable security measures to protect your data, including:

• Encryption of private keys at rest using AES-256
• Encryption of data in transit (TLS)
• Row-level security for tenant isolation
• Audit logging of sensitive operations
• Optional zero-trust mode where CA private keys are encrypted with your passphrase (we cannot decrypt without it)

7.3 No Absolute Guarantee

While we strive to protect your data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

8. Service Availability

We strive to maintain high availability of Certman but do not guarantee uninterrupted access. The Service may be temporarily unavailable due to:

• Scheduled maintenance (with advance notice when possible)
• Emergency maintenance or security updates
• Factors beyond our control (internet outages, third-party service failures)

9. Intellectual Property

The Service, including its original content, features, and functionality, is owned by Certman and is protected by international copyright, trademark, and other intellectual property laws.

10. Disclaimer of Warranties

The Service is provided "as is" and "as available" without warranties of any kind, either express or implied, including but not limited to implied warranties of merchantability, fitness for a particular purpose, non-infringement, or course of performance.

We do not warrant that:

• The Service will meet your specific requirements
• The Service will be uninterrupted, timely, secure, or error-free
• The results from using the Service will be accurate or reliable
• Any errors in the Service will be corrected

11. Limitation of Liability

In no event shall Certman, its directors, employees, partners, agents, suppliers, or affiliates be liable for any indirect, incidental, special, consequential, or punitive damages, including without limitation, loss of profits, data, use, goodwill, or other intangible losses, resulting from:

• Your access to or use of (or inability to access or use) the Service
• Any conduct or content of any third party on the Service
• Any content obtained from the Service
• Unauthorized access, use, or alteration of your transmissions or content
• Compromise or exposure of your private keys or certificates

12. Indemnification

You agree to defend, indemnify, and hold harmless Certman and its officers, directors, employees, and agents from any claims, damages, obligations, losses, liabilities, costs, or debt arising from:

• Your use of the Service
• Your violation of these Terms
• Your violation of any third-party rights
• Certificates you issue using the Service

13. Termination

We may terminate or suspend your account immediately, without prior notice or liability, for any reason, including breach of these Terms.

Upon termination:

• Your right to use the Service will immediately cease
• You may request export of your data before termination
• We may delete your data after a reasonable retention period

14. Governing Law

These Terms shall be governed by and construed in accordance with the laws of the jurisdiction in which Certman operates, without regard to its conflict of law provisions.

15. Changes to Terms

We reserve the right to modify or replace these Terms at any time. We will provide notice of any significant changes by posting the new Terms on this page and updating the "Last updated" date.

Your continued use of the Service after any changes constitutes acceptance of the new Terms.

16. Severability

If any provision of these Terms is held to be unenforceable or invalid, such provision will be modified to the minimum extent necessary to make it enforceable, and the remaining provisions will continue in full force and effect.

17. Contact Us

If you have any questions about these Terms, please contact us at legal@certman.app.