Terms of Service

These Terms of Service ("Terms") govern your access to and use of the GRCTrack compliance management platform and related services. By accessing or using our services, you agree to be bound by these Terms.

1. Acceptance of Terms

By creating an account, accessing, or using GRCTrack services, you acknowledge that you have read, understood, and agree to be bound by these Terms and our Privacy Policy. If you are using the services on behalf of an organisation, you represent that you have the authority to bind that organisation to these Terms.

2. Description of Services

GRCTrack provides a cloud-based compliance management platform designed to help organisations manage, track, and maintain compliance with various regulatory frameworks including, but not limited to, PCI DSS, ISO 27001, SOC 2, HIPAA, and GDPR. Our services include:

• Compliance workflow management and tracking
• Policy creation and management tools
• Evidence collection and storage
• Gap analysis and remediation tracking
• Network diagram creation
• AI-assisted compliance guidance
• Reporting and documentation generation

3. Account Registration and Security

3.1 Account Creation

To use our services, you must create an account with accurate, complete, and current information. You are responsible for maintaining the confidentiality of your account credentials and for all activities that occur under your account.

3.2 Account Security

You agree to immediately notify GRCTrack of any unauthorised use of your account or any other security breach. GRCTrack cannot and will not be liable for any loss or damage arising from your failure to maintain the security of your account credentials.

4. Acceptable Use

You agree not to:

• Use the services for any unlawful purpose or in violation of applicable laws
• Upload content that infringes intellectual property rights of others
• Attempt to gain unauthorised access to any part of the services
• Interfere with or disrupt the integrity or performance of the services
• Reverse engineer, decompile, or disassemble any part of the services
• Use automated systems to access the services without permission
• Share account credentials with unauthorised parties
• Misrepresent your identity or affiliation with any person or organisation

5. Intellectual Property

5.1 GRCTrack Property

The services, including all software, content, features, and functionality, are owned by GRCTrack and are protected by intellectual property laws. You are granted a limited, non-exclusive, non-transferable licence to use the services in accordance with these Terms.

5.2 Your Content

You retain ownership of all content you upload to the platform. By uploading content, you grant GRCTrack a licence to use, store, and process that content solely for the purpose of providing the services to you.

6. Payment Terms

6.1 Fees

Certain features of our services require payment. All fees are stated in your subscription agreement and are exclusive of applicable taxes. Fees are non-refundable except as expressly stated in these Terms or required by law.

6.2 Billing

Subscription fees are billed in advance on a monthly or annual basis. You authorise us to charge your designated payment method for all fees incurred. Failure to pay may result in suspension or termination of your access to the services.

6.3 Price Changes

We may change our fees upon thirty (30) days' notice. Such notice may be provided via email or through the platform. Continued use of the services after a price change constitutes acceptance of the new fees.

7. Data and Privacy

Your use of the services is also governed by our Privacy Policy, which describes how we collect, use, and protect your information. By using the services, you consent to such processing and warrant that all data provided by you is accurate.

8. Disclaimer of Warranties

THE SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.

GRCTrack does not warrant that the services will meet your specific requirements, operate without interruption, be error-free, or that defects will be corrected. The services provide tools to assist with compliance management but do not guarantee compliance with any regulatory framework.

9. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, GRCTRACK SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR ANY LOSS OF PROFITS OR REVENUES, WHETHER INCURRED DIRECTLY OR INDIRECTLY, OR ANY LOSS OF DATA, USE, GOODWILL, OR OTHER INTANGIBLE LOSSES.

In no event shall GRCTrack's total liability exceed the amount paid by you for the services during the twelve (12) months preceding the claim.

10. Indemnification

You agree to indemnify, defend, and hold harmless GRCTrack and its officers, directors, employees, and agents from and against any claims, liabilities, damages, losses, and expenses arising from your use of the services, violation of these Terms, or infringement of any third-party rights.

11. Term and Termination

11.1 Term

These Terms are effective until terminated by either party. Your subscription continues for the subscription period specified in your plan unless terminated earlier.

11.2 Termination by You

You may terminate your account at any time through your account settings or by contacting support. Termination does not entitle you to a refund of prepaid fees.

11.3 Termination by GRCTrack

We may suspend or terminate your access to the services immediately, without prior notice, for conduct that violates these Terms, is harmful to other users, or is otherwise objectionable.

11.4 Effect of Termination

Upon termination, your right to use the services ceases immediately. You may request export of your data within thirty (30) days of termination. After this period, we may delete your data in accordance with our data retention policies.

12. Governing Law and Disputes

These Terms shall be governed by and construed in accordance with the laws of England and Wales. Any disputes arising from these Terms or your use of the services shall be subject to the exclusive jurisdiction of the courts of England and Wales.

13. Changes to Terms

We reserve the right to modify these Terms at any time. We will provide notice of material changes through the platform or by email. Your continued use of the services after changes become effective constitutes acceptance of the revised Terms.

14. General Provisions

• Entire Agreement: These Terms, together with the Privacy Policy, constitute the entire agreement between you and GRCTrack.
• Severability: If any provision is found unenforceable, the remaining provisions shall continue in effect.
• Waiver: Failure to enforce any right does not constitute a waiver of that right.
• Assignment: You may not assign your rights under these Terms without our consent.

15. Contact Information

For questions about these Terms, please contact:

GRCTrack Legal
Email: legal@grctrack.com
Address: GRCTrack Ltd, London, United Kingdom