These Terms of Service (“Terms”) are a legal agreement between you and ScanOrbit, a trade name of Maria Elina, registered as a sole proprietorship (eenmanszaak) at the Dutch Chamber of Commerce (KVK) under number 99611252, with BTW-ID NL005398711B41, with registered address at Keizersgracht 241, Amsterdam, 1016EA Netherlands.
These Terms govern your use of the ScanOrbit website (scanorbit.cloud), application, and related services (together, the “Service”). Please read them carefully before creating an account or using the Service.
1. Service Description
1.1 What ScanOrbit Does
ScanOrbit is an agentless AWS infrastructure scanner. It connects to your AWS account through a read-only IAM role you create, scans your resources across all regions, and generates findings about security misconfigurations, compliance gaps, cost waste, and orphaned resources. Results are displayed in a web dashboard.
1.2 Early-Stage Product
ScanOrbit is an early-stage product. This means:
- Features may be added, changed, or removed as the product evolves
- Bugs and issues may exist
- Support is provided on a best-effort basis
- There is no guaranteed uptime SLA at this time (we target 99.5% but do not guarantee it)
- We will notify you of major changes when reasonably possible
Report bugs or issues to: support@scanorbit.cloud
1.3 What ScanOrbit Is Not
ScanOrbit is not a substitute for professional security advice, a comprehensive security audit, or legal counsel. Findings are generated by automated rules and may be incomplete or inaccurate. You are responsible for verifying findings and deciding what action to take.
2. Eligibility and Account
2.1 Who Can Use ScanOrbit
To use ScanOrbit, you must be legally capable of entering into a binding agreement and not prohibited by applicable law from using the Service.
If you are using ScanOrbit on behalf of a company or other legal entity, you represent that you have authority to bind that entity to these Terms.
If you are under 18 but at least 16 (the minimum age for independent consent to data processing under Dutch law), you may use the Service only with involvement and consent of a parent or legal guardian and only to the extent permitted by applicable law. We do not knowingly process personal data of children under 16, in accordance with the Dutch Uitvoeringswet AVG.
2.2 Account Registration
When you create an account, you agree to provide accurate and current information, keep your login credentials confidential, notify us promptly if you suspect unauthorized access to your account, and accept responsibility for all activity that occurs under your account.
2.3 Account Suspension and Termination by Us
We may suspend or terminate your account if you violate these Terms, use the Service for illegal activity, abuse the Service or interfere with its operation, or if we are required to do so by law.
Before terminating your account (except in cases of illegal activity or urgent security concerns), we will notify you by email and give you a reasonable opportunity to address the issue.
3. AWS Account Access
3.1 IAM Role
To use ScanOrbit, you create a read-only IAM role in your AWS account and provide us with the role ARN. We assume this role temporarily during scans. We never store AWS access keys or secret keys.
3.2 What We Can Access
With the read-only role, ScanOrbit can view resource metadata and configuration for: EC2 instances, EBS volumes, snapshots, security groups, and images; RDS instances and snapshots (metadata, not database contents); S3 buckets (configuration and tags, not object contents); Application Load Balancers and target groups; ACM certificates; Lambda functions and configuration; CloudWatch alarms and log groups; IAM users, roles, and access key metadata (not credentials or secret values); KMS keys and rotation status; Secrets Manager secrets (metadata, not secret values); and resource tags across all supported services.
3.3 What We Cannot Do
ScanOrbit cannot modify, create, or delete any resource in your AWS account. The IAM role is strictly read-only. We cannot access S3 object contents, database contents, secret values, or any credentials.
3.4 Your Responsibility
You are responsible for creating and maintaining the IAM role with appropriate permissions, revoking access at any time by deleting the role, any AWS API costs incurred by ScanOrbit scans (these are typically minimal for read-only calls), and compliance with your own AWS account terms and agreements.
4. Acceptable Use
4.1 You Agree Not To
- Use the Service for any illegal purpose or in violation of any applicable law
- Scan AWS accounts you do not own or do not have explicit written authorization to scan
- Attempt to reverse-engineer, decompile, or extract source code from the Service
- Bypass or circumvent security measures, rate limits, or access controls
- Use automated tools to access the Service except through our documented API
- Resell or redistribute the Service without written permission
- Transmit malware, spam, or any harmful content through the Service
- Interfere with the operation of the Service or overload it with excessive requests
- Harass, abuse, or threaten other users
4.2 Scanning Authorization
By connecting an AWS account, you represent that you own the account or have explicit written authorization from the account owner to conduct security scans.
4.3 Violations
We may suspend or terminate access for violations of this section. In cases of suspected illegal activity, we may preserve evidence and report to the appropriate authorities.
5. Subscription Plans and Payment
5.1 Plans
ScanOrbit offers the following plans:
Free: One AWS account. One successful scan (retries allowed on errors). Shows finding count and severity summary. Does not include detailed resource lists, finding details, or infrastructure map.
Pro: Three AWS accounts. Unlimited scans with 60-minute cooldown. Full access to resources, findings, and infrastructure map. Email support.
Team: 10 AWS accounts. Unlimited scans with no cooldown. All Pro features plus multi-user organization access with role-based permissions, organization overview dashboard, access to API, audit logs, and priority support. You can add up to 5 team members included for free, and pay for additional members.
Current pricing is published at scanorbit.cloud. These Terms do not lock in any specific price.
5.2 Trials
Pro and Team plans include a 7-day free trial. A valid payment method is required to start the trial. You will not be charged during the trial period. If you do not cancel before the trial ends, your subscription begins and you will be charged at the published rate.
5.3 Billing and Auto-Renewal
Subscriptions are billed monthly and renew automatically at the end of each billing period at the then-current price. You authorize us to charge your payment method on file for each renewal.
You can cancel your subscription at any time through your account settings or the Stripe billing portal. Cancellation takes effect at the end of the current billing period. You retain access to paid features until then.
5.4 Price Changes
We may change our prices. If we increase the price of your current plan, we will notify you by email at least 30 days before the change takes effect. The new price applies at the start of your next billing period after the notice period. If you do not agree to the new price, you can cancel before it takes effect.
5.5 Refunds
Unless required otherwise by mandatory consumer protection law, subscription payments are non-refundable for partial billing periods. If you cancel, you keep access until the end of your current billing period but will not receive a refund for the remainder.
If we terminate your account for reasons other than a Terms violation, we will refund the unused portion of your current billing period.
Nothing in this Section limits rights that cannot be waived under applicable law, including statutory consumer rights in the EU.
5.6 Taxes
All prices are exclusive of taxes unless stated otherwise. You are responsible for any applicable VAT, sales tax, or other taxes. Stripe calculates and collects the applicable tax at checkout based on your location and business status.
6. Right of Withdrawal (EU Consumers)
If you are a consumer in the European Union, you may have a statutory right to withdraw from distance contracts within 14 days, subject to the exceptions and conditions in the EU Consumer Rights Directive (2011/83/EU) as implemented in your country.
For free trials: You can cancel at any time during the trial at no cost.
For paid subscriptions (digital service): At checkout, we will ask you to expressly consent to immediate performance before the 14-day withdrawal period ends and to acknowledge that this consent results in the loss of your right of withdrawal once performance has been fully completed, as required by Article 6:230p of the Dutch Civil Code (Burgerlijk Wetboek) and the EU Consumer Rights Directive.
Where immediate performance starts during the withdrawal period with your express consent, refund entitlement may be reduced to account for the service already provided, as required by applicable law. Any mandatory consumer rights remain unaffected.
If you do not consent to immediate performance, service access will begin after the withdrawal period expires.
To exercise your right of withdrawal (where applicable), email support@scanorbit.cloud within 14 days of purchase with a clear statement of your decision. We will process any refund owed under applicable law within 14 days, using the original payment method unless otherwise agreed.
7. Intellectual Property
7.1 ScanOrbit
The Service, including its software, design, documentation, detection rules, and methodology, is owned by or licensed to ScanOrbit. These Terms grant you a limited, non-exclusive, non-transferable right to use the Service for its intended purpose during your subscription.
You may not copy, modify, reverse-engineer, decompile, or create derivative works from the Service.
7.2 Your Data
You retain ownership of all data you provide to ScanOrbit and all data generated from your AWS scans (resource data, findings, reports).
You grant ScanOrbit a non-exclusive license to store, process, and analyze your data as necessary to provide the Service. We may also use aggregated and fully anonymized statistics derived from scan data to improve our detection rules (for example: “X% of scanned accounts have unencrypted EBS volumes”). This license ends when you delete your account and your data has been fully removed in accordance with our Privacy Policy.
We will never sell your data, share identifiable data with third parties, or use your data for advertising.
8. Limitation of Liability
8.1 No Warranty
The Service is provided “as is” and “as available.” To the maximum extent permitted by applicable law, we disclaim all warranties, whether express, implied, or statutory, including warranties of merchantability, fitness for a particular purpose, and non-infringement.
We do not warrant that the Service will be uninterrupted, error-free, or that all security issues in your AWS account will be detected.
8.2 Liability Cap
To the maximum extent permitted by applicable law, our total aggregate liability to you for any claims arising from or related to these Terms or the Service is limited to the total amount you paid to ScanOrbit in the 12 months immediately preceding the event giving rise to the claim.
8.3 Exclusion of Certain Damages
To the maximum extent permitted by applicable law, we are not liable for any indirect, incidental, special, consequential, or punitive damages, including loss of revenue, profit, data, or business opportunity, regardless of whether we were advised of the possibility of such damages.
8.4 Exceptions
Nothing in these Terms excludes or limits liability for death or personal injury caused by negligence, fraud or fraudulent misrepresentation, intentional misconduct or gross negligence, or any other liability that cannot be excluded or limited under applicable Dutch or EU law.
9. Indemnification (Business Users)
If you are using ScanOrbit as a business (not as a consumer), you agree to indemnify and hold harmless ScanOrbit from claims, damages, and expenses (including reasonable legal fees) arising from your violation of these Terms, your unauthorized scanning of AWS accounts, or your violation of any applicable law.
This section does not apply to consumers.
10. Data and Privacy
Our collection, use, and protection of your personal data is governed by our Privacy Policy. By using the Service, you acknowledge that you have read the Privacy Policy.
For Team tier users: other members of your organization can see your name, email address, and the AWS resources, findings, and scan results associated with accounts connected to the organization. The organization administrator controls membership. See our Privacy Policy, Section 5.2 for details.
11. Third-Party Services
11.1 AWS
ScanOrbit integrates with Amazon Web Services. You must comply with AWS’s own terms of service. We are not responsible for changes to AWS APIs, pricing, or policies.
11.2 Payment Processing
Payments are processed by Stripe. Your payment information is handled directly by Stripe and is subject to Stripe’s terms and privacy policy. We do not store your credit card details.
11.3 Other Integrations
The Service uses additional third-party services (Resend for email, Google and GitHub for OAuth authentication). These are listed with their privacy policies in our Privacy Policy, Section 5.
12. Changes to These Terms
We may update these Terms from time to time. When we do:
Material changes (changes to your rights, liability, payment terms, or data handling): We will notify you by email at least 30 days before the changes take effect. You will be asked to accept the updated Terms to continue using the Service. If you do not accept, you may cancel your subscription before the new terms take effect. If you cancel for this reason during a paid billing period, we will refund the unused portion.
Non-material changes (clarifications, formatting, updated contact information): We will update the “last updated” date at the top of this page. These changes are effective upon posting.
We will not retroactively reduce your rights under these Terms without your consent.
13. Termination
13.1 By You
You can cancel your subscription and delete your account at any time through your account settings, or by emailing support@scanorbit.cloud. Cancellation of a paid subscription takes effect at the end of the current billing period. Account deletion follows the process described in our Privacy Policy (30-day grace period, then permanent deletion).
13.2 By Us
We may terminate your account in the circumstances described in Section 2.3. For paid subscribers, if we terminate your account for any reason other than a violation of these Terms or illegal activity, we will refund the unused portion of your current billing period.
13.3 Free Tier Inactivity
We may delete free tier accounts that have been inactive for more than 12 months. We will send a notification email at least 30 days before deletion. Logging in or performing any action resets the inactivity period. This does not apply to paid subscribers.
13.4 What Survives Termination
The following sections survive termination: Section 7 (Intellectual Property), Section 8 (Limitation of Liability), Section 9 (Indemnification), Section 14 (Governing Law), and any accrued payment obligations.
14. Governing Law and Disputes
14.1 Governing Law
These Terms are governed by the laws of the Netherlands, without regard to conflict of law principles. GDPR and other applicable EU law apply.
14.2 Dispute Resolution
If you have a dispute regarding the Service:
- Contact us first. Email support@scanorbit.cloud and we will attempt to resolve the issue within 30 days.
- Mediation. If direct communication does not resolve the dispute, either party may propose mediation in Amsterdam, Netherlands.
- Courts. If the dispute is not resolved through mediation, it may be brought before the competent courts in Amsterdam, Netherlands. If you are a consumer in the EU, you may also bring a claim in the courts of your place of residence.
14.3 EU Consumer Dispute Resolution Information
If you are a consumer in the EU, you may use your local consumer dispute resolution bodies and consumer protection channels available in your country of residence. Information about EU consumer redress and national dispute resolution bodies is available at: https://consumer-redress.ec.europa.eu/
15. Export and Sanctions Compliance
ScanOrbit complies with applicable EU sanctions regulations and Dutch export control laws. You may not use the Service if you are located in a country subject to comprehensive EU sanctions, are listed on any EU restrictive measures list, or are otherwise prohibited from receiving services under applicable sanctions law.
16. General Provisions
16.1 Severability
If any provision of these Terms is found to be invalid or unenforceable by a court of competent jurisdiction, that provision will be limited or removed to the minimum extent necessary, and the remaining provisions will continue in full force.
16.2 Entire Agreement
These Terms, together with the Privacy Policy, Cookie Policy, and (where applicable) the Data Processing Agreement, constitute the entire agreement between you and ScanOrbit regarding the Service and supersede any prior agreements or understandings.
16.3 No Waiver
Our failure to enforce any provision of these Terms does not constitute a waiver of that provision.
16.4 Assignment
You may not assign or transfer your rights under these Terms without our written consent. We may assign our rights and obligations under these Terms in connection with a merger, acquisition, or sale of assets, provided that the assignee agrees to honor these Terms.
17. Contact
General questions about these Terms: Email: hello@scanorbit.cloud
Support and account issues: Email: support@scanorbit.cloud
Business address: ScanOrbit Keizersgracht 241, Amsterdam, 1016EA Netherlands KVK: 99611252 BTW-ID: NL005398711B41
Version: 2.0 Effective Date: March 26, 2026