Terms of Service
The agreement between you and IdentiQube for use of the Provenant hosted service.
IdentiQube · Effective 9 July 2026
1. Agreement to these Terms
These Terms of Service (the "Terms") are a binding agreement between you and IdentiQube LLC (QFC No. 04577) ("Provenant", "we", "us", or "our"), the operator of the Provenant hosted service. They govern your access to and use of our websites, dashboard, APIs, SDKs, and related services (together, the "Service").
By creating an account, clicking to accept, or otherwise accessing or using the Service, you agree to these Terms and to our Privacy Policy, which is incorporated by reference. If you do not agree, do not use the Service.
If you accept these Terms on behalf of an organization, you represent that you have authority to bind that organization, and "you" and "Customer" refer to that organization. The individual who creates an organization becomes its initial administrator.
2. Definitions
- "Affiliate" means any entity that controls, is controlled by, or is under common control with a party, where "control" means ownership of more than 50% of the voting interests.
- "Agent" means an autonomous or automated software program that you connect to and govern through the Service.
- "Customer Data" means data you or your Agents submit to, or generate within, the Service, including account data, configuration (mandates, policies, budgets, connectors), and action and audit-ledger records.
- "Connector" means a configured downstream target or credential source through which an Agent acts.
- "Documentation" means the usage documentation we make available for the Service.
- "Member" (or "Authorized User") means an individual you permit to access the Service under your account.
- "Order Form" means an ordering document or online checkout describing the Plan, quantities, and fees you subscribe to.
- "Plan" means the subscription tier (Free, Team, Scale, Enterprise) you select, with its associated limits and features.
3. The Service
Provenant is a control plane and tamper-evident audit ledger for autonomous AI Agents. It lets you define what your Agents may do (mandates, org policies, spend budgets, connector scope), evaluates each proposed action against those rules, permits an action only when your rules allow it, and records every decision to an append-only, hash-chained ledger.
The Service governs and records the actions your Agents propose. It is a policy-enforcement and evidence layer — it does not itself operate your Agents, decide your rules, or guarantee any particular outcome of an action it permits. You are responsible for configuring your rules correctly and for the behaviour of your Agents (see Section 7).
We may improve, modify, add, or remove features of the Service over time. We will not materially reduce the core functionality of a paid Plan during your paid term without providing a comparable alternative or a pro-rata refund of the unused, prepaid portion.
4. Accounts and security
You must provide accurate, current, and complete registration information and keep it up to date. You are responsible for all activity under your account and for maintaining the confidentiality of your credentials, API keys, and second-factor devices.
- Keep credentials and Agent API keys secret; rotate them if compromised.
- Enable multi-factor authentication where offered, and require it for your members where appropriate.
- Notify us promptly at [email protected] of any suspected unauthorized access.
- Ensure each of your members complies with these Terms; you are responsible for their acts and omissions.
The Service is offered only to organizations and business users. By accessing or using it you represent that you are acting for purposes of your trade, business, or profession and not as a consumer, that you are of the age of majority in your jurisdiction, and that you are legally able to enter into these Terms. The Service is not directed to children.
5. Plans, trials, fees, and billing
Paid Plans are billed in advance, monthly or annually, in the currency shown at checkout (EUR), through our payment processor (Stripe). Payments are billed and collected by our Affiliate PEAK Consulting Services GmbH (Mannheim, Germany) as our billing agent and merchant of record, and its name may appear on your payment statement. By subscribing you authorize recurring charges to your payment method until you cancel.
- Trials. New organizations start with a time-limited trial of the paid Team plan. Unless you subscribe before it ends, your organization moves to the Free Plan's limits.
- Auto-renewal. Subscriptions renew automatically for the same term at the then-current price unless cancelled before the renewal date. You can cancel any time in Billing; cancellation takes effect at the end of the current paid period.
- Taxes. Fees are exclusive of taxes; you are responsible for applicable taxes other than taxes on our net income.
- Price changes. We may change prices; changes apply to the next renewal after reasonable notice.
- Downgrades and non-payment. On downgrade, cancellation, or failed payment past any grace period, your organization reverts to Free-tier limits; resources beyond those limits stop authorizing new actions, and ledger retention follows the Free window. We warn before pruning history.
- Refunds. Except where required by law or expressly stated, fees are non-refundable.
6. Acceptable use
You will not, and will not permit your members or Agents to, use the Service to:
- violate any law or regulation, or infringe or misappropriate any third party's rights;
- send spam, malware, or unlawful, harmful, deceptive, harassing, or infringing content;
- gain unauthorized access to any system or data, or conduct security testing of systems you are not authorized to test;
- interfere with or disrupt the integrity or performance of the Service, or circumvent its rate limits, quotas, entitlement checks, or usage metering;
- reverse engineer, decompile, or attempt to derive source code except to the extent this restriction is prohibited by applicable law;
- resell, sublicense, or provide the Service to third parties except as expressly permitted; or
- use the Service to build a competing product, or to authorize Agent actions that are illegal or that you are not entitled to authorize.
We may investigate suspected violations and may suspend or terminate access as described in Section 14.
7. Your Agents and the actions you authorize
You are solely responsible for: (a) the Agents you connect; (b) the mandates, policies, budgets, and connector scopes you configure; (c) the credentials and connectors you provide; and (d) every action your Agents take, including actions the Service permits under your rules and actions performed with credentials it brokers.
The Service decides "allow", "hold for approval", or "deny" strictly according to the configuration you supply. A permitted action is an action you authorized through your rules. We are not responsible for the consequences of actions you authorize, for overly-permissive rules you set, for approvals your users grant, or for the acts of the downstream systems your Agents reach.
You must maintain appropriate human oversight for high-risk actions, test your configuration (including with the simulator and shadow policies we provide), and set budgets and approval thresholds appropriate to your risk. You are responsible for compliance obligations that apply to your Agents' activities (for example, in payments, communications, or regulated data).
8. Customer Data and content
As between the parties, you own your Customer Data. You grant us a worldwide, non-exclusive licence to host, process, transmit, and display Customer Data solely to provide, secure, and support the Service, to prevent or address technical or security issues, and as otherwise permitted by these Terms and our Privacy Policy.
You are responsible for the lawfulness of Customer Data and for having the rights and, where required, consents to submit it. Do not submit data you are not permitted to process. Where we process personal data on your behalf, our Data Processing Addendum applies.
Audit ledger. The Service records decisions and configuration changes to an append-only, hash-chained ledger designed to be tamper-evident. You can export and independently verify this record. Retention follows your Plan; the ledger is preserved and re-anchored under our retention controls.
Feedback. If you give us feedback or suggestions, you grant us a perpetual, irrevocable, royalty-free licence to use it without restriction.
9. Connectors and third-party services
The Service lets you configure Connectors and integrate third-party services and credentials that you control. Your use of any third-party service is governed by that third party's terms, and we are not responsible for third-party services, their availability, or their handling of your data.
You are responsible for the credentials you supply, the scopes you grant, and any charges those third parties impose (for example, model providers or payment rails your Agents reach).
10. Intellectual property and licence
The Service, including all software, APIs, SDKs, Documentation, and their look and feel, and all intellectual property rights in them, are and remain our property or that of our licensors. We grant you a limited, non-exclusive, non-transferable, revocable right to access and use the Service during your subscription, solely for your internal business purposes and subject to these Terms.
Except as expressly permitted, you may not copy, modify, distribute, sell, or lease any part of the Service, and the restrictions in Section 6 apply. Our names, logos, and marks may not be used without our prior written consent.
11. Confidentiality
Each party may access confidential information of the other. The receiving party will protect it with reasonable care, use it only to perform under these Terms, and not disclose it except to personnel and advisers who need it and are bound by confidentiality. This does not apply to information that is public, already known, independently developed, or lawfully received from a third party, or where disclosure is legally required.
12. Privacy and data protection
Our handling of personal data is described in the Privacy Policy. Where we process personal data on your behalf as a processor, the Data Processing Addendum forms part of these Terms and governs that processing.
13. Availability, support, and beta features
We aim to keep the Service available and will use commercially reasonable efforts to do so, but the Service is provided on an "as available" basis and may be subject to downtime for maintenance, updates, or factors beyond our control. Any service-level commitments apply only if expressly agreed in a separate written order. Support is available at [email protected]; the level and channels of support depend on your Plan.
Features labelled beta, preview, or experimental are provided "as is", may change or be withdrawn, and are excluded from any availability or support commitment.
14. Suspension and termination
You may stop using the Service and cancel at any time in Billing. We may suspend or terminate your access, in whole or in part, if: you materially breach these Terms (including non-payment or a Section 6 violation) and do not cure it within a reasonable period where curable; your use poses a security, legal, or operational risk; or we are required to by law.
On termination, your right to use the Service ends. For a limited period after termination (typically 30 days, unless a shorter period is required for legal or security reasons), you may export your Customer Data; after that we may delete it, subject to backups that expire on their normal cycle and to records we must retain by law. If you delete your organization in-product (Settings → danger zone), all Customer Data — including the audit ledger — is erased immediately at your instruction, and no post-termination export period applies: export before deleting. Any payment obligations accrued under Section 5, and the sections that by their nature should survive (including 8 (feedback), 10, 11, 12, and 15–21), survive termination.
15. Disclaimers
TO THE MAXIMUM EXTENT PERMITTED BY LAW, THE SERVICE IS PROVIDED "AS IS" AND "AS AVAILABLE", WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS, IMPLIED, OR STATUTORY, INCLUDING IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, AND NON-INFRINGEMENT.
WITHOUT LIMITING THE ABOVE, WE DO NOT WARRANT THAT THE SERVICE WILL BE UNINTERRUPTED OR ERROR-FREE, THAT IT WILL PREVENT ALL UNDESIRED, HARMFUL, OR UNAUTHORIZED AGENT ACTIONS, OR THAT ITS DECISIONS OR RECORDS WILL MEET YOUR LEGAL OR COMPLIANCE REQUIREMENTS. THE SERVICE ENFORCES THE RULES YOU CONFIGURE; IT DOES NOT GUARANTEE OUTCOMES. Some jurisdictions do not allow certain exclusions, so parts of this section may not apply to you.
This includes the Service's own evaluation of your rules and any credentials it brokers on your behalf: these are provided without warranty, and any liability arising from them is subject to the limits in Section 16.
16. Limitation of liability
TO THE MAXIMUM EXTENT PERMITTED BY LAW, NEITHER PARTY WILL BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR EXEMPLARY DAMAGES, OR FOR LOST PROFITS, REVENUE, DATA, OR GOODWILL, ARISING OUT OF OR RELATED TO THE SERVICE, EVEN IF ADVISED OF THE POSSIBILITY.
EACH PARTY'S TOTAL AGGREGATE LIABILITY ARISING OUT OF OR RELATED TO THESE TERMS WILL NOT EXCEED THE AMOUNTS YOU PAID US FOR THE SERVICE IN THE TWELVE (12) MONTHS BEFORE THE EVENT GIVING RISE TO THE LIABILITY (OR, FOR A FREE PLAN, EUR 100).
These limits do not apply to: a party's liability for death or personal injury caused by its negligence, for fraud or fraudulent misrepresentation, or for any liability that cannot be limited or excluded by law; your payment obligations; or your indemnification obligations under Section 17. The parties agree these limits are a reasonable allocation of risk and a basis of the bargain.
17. Indemnification
You will defend, indemnify, and hold us and our Affiliates harmless from and against third-party claims, and related losses, damages, and reasonable costs (including legal fees), arising out of or related to: (a) your Customer Data; (b) your Agents and the actions they take; (c) your configuration, credentials, and Connectors; (d) your use of the Service in breach of these Terms or applicable law; or (e) your violation of a third party's rights. We will notify you of the claim, give you control of the defence (with our right to participate with our own counsel), and reasonably cooperate — provided you may not settle any claim in a way that admits fault by, imposes any obligation or restriction (including non-monetary or injunctive) on, or fails to fully and unconditionally release, us or our Affiliates, without our prior written consent (not to be unreasonably withheld).
18. Governing law and disputes
These Terms are governed by the laws of the Qatar Financial Centre, State of Qatar, without regard to conflict-of-laws rules. The parties will first try in good faith to resolve any dispute informally by contacting [email protected]. If unresolved within 30 days, the dispute will be subject to the exclusive jurisdiction of the Civil and Commercial Court of the Qatar Financial Centre, except that either party may seek injunctive relief in any court of competent jurisdiction to protect its intellectual property or confidential information. Nothing here removes any mandatory consumer-protection rights you have where you live.
19. Changes to these Terms
We may update these Terms from time to time. For material changes we will provide reasonable notice (for example, by email or an in-product notice) before they take effect. Your continued use of the Service after the effective date constitutes acceptance. If you do not agree, stop using the Service and cancel.
20. General
- Assignment. You may not assign these Terms without our consent; we may assign them to an Affiliate or in connection with a merger, acquisition, or sale of assets.
- Entire agreement. These Terms, the Privacy Policy, the DPA, and any Order Form are the entire agreement and supersede prior agreements on their subject matter. An Order Form's negotiated terms prevail over conflicting terms here.
- Order of precedence. If these documents conflict, the following order controls: a signed Order Form, then the DPA (on data-protection matters), then these Terms, then the Privacy Policy, then the Documentation.
- Severability and waiver. If a provision is unenforceable, the rest remains in effect; failure to enforce a provision is not a waiver.
- Force majeure. Neither party is liable for delay or failure due to causes beyond its reasonable control.
- Notices. We may give notice by email or in-product; you give notice to [email protected], and, for formal legal notices (dispute, termination, or intellectual-property claims), also in writing to IdentiQube LLC (QFC No. 04577), Qatar Financial Centre, Doha, State of Qatar. Email notices are deemed received on the next business day. You must keep your account contact details current.
- Third-party rights. Except that our Affiliates may enforce the provisions expressed to benefit them, these Terms confer no rights on any third party, and any legislation permitting third-party enforcement of contract terms is excluded to the maximum extent permitted.
- Publicity. We may identify you as a customer and use your name and logo in customer lists and marketing, subject to your brand guidelines and your right to opt out on written notice to [email protected].
- Export and sanctions. You will comply with applicable export-control and sanctions laws and will not use the Service where prohibited.
- Anti-corruption. Each party will comply with applicable anti-bribery and anti-corruption laws (including, where relevant, the UK Bribery Act 2010 and the U.S. FCPA) in connection with these Terms.
- Independent contractors. The parties are independent contractors; these Terms create no partnership, agency, or employment relationship.
21. Contact
Questions about these Terms: [email protected]. IdentiQube LLC (QFC No. 04577), Qatar Financial Centre, Doha, State of Qatar.