CUSTODIAAIPolicyReady← Back to Home
Legal

Terms of Service

Effective Date: March 20, 2026

1. Agreement to Terms

These Terms of Service (“Terms”) constitute a legally binding agreement between you (“User,” “Customer,” or “Organization”) and Custodia GRC, Inc. (“Company,” “we,” “us,” or “our”), the operator of AIPolicyReady (the “Platform”), located at aipolicyready.com.

By registering for an account, selecting a subscription plan, or otherwise accessing or using the Platform, you agree to be bound by these Terms and our Privacy Policy. If you are accessing the Platform on behalf of an organization, you represent and warrant that you have the authority to bind that organization to these Terms.

If you do not agree to these Terms, you must not access or use the Platform.

2. Description of Services

AIPolicyReady is an AI governance platform that provides organizations with tools to generate, manage, distribute, and enforce AI Acceptable Use Policies (AUPs), conduct employee training and attestation workflows, and produce audit-ready compliance evidence. The Platform supports alignment with recognized frameworks including NIST AI Risk Management Framework (AI RMF), ISO 42001, and the EU AI Act.

Service features include but are not limited to: policy generation, policy distribution and e-signature collection, cryptographic attestation records, compliance officer ticketing, departmental attestation workflows, audit-ready PDF exports, and framework gap analysis.

The Platform is not a law firm, does not provide legal advice, and use of the Platform does not create an attorney-client relationship. Policy templates and compliance frameworks provided are for informational and operational governance purposes only. You are solely responsible for ensuring that your AI governance program satisfies applicable legal and regulatory requirements.

3. Eligibility and Account Registration

You must be at least 18 years of age and have the legal authority to enter into binding contracts to register for and use the Platform. Accounts are intended for organizations and business entities, not individual consumers.

You agree to provide accurate, current, and complete information at registration and to maintain and update that information to keep it accurate, current, and complete. You are responsible for maintaining the confidentiality of your account credentials and for all activity that occurs under your account.

You must immediately notify us at compliance@aipolicyready.com of any unauthorized use of your account or any other breach of security.

4. Subscription Plans, Fees, and Billing

Access to certain features requires selection of a paid subscription plan. Paid plans include a seven (7) day free trial period, after which you will be billed at the applicable monthly rate unless you cancel prior to the end of the trial.

Current plans and pricing:

  • Starter: Up to 15 employees — $149.00 USD/month
  • Professional: Up to 50 employees — $399.00 USD/month
  • Business: Up to 150 employees — $799.00 USD/month
  • Scale: Up to 300 employees — $1,499.00 USD/month

All fees are billed monthly in advance. Subscription fees are non-refundable except as required by applicable law. We reserve the right to modify pricing upon thirty (30) days written notice. Continued use of the Platform after a price change constitutes acceptance of the updated pricing.

Failure to pay applicable fees may result in suspension or termination of your account. You are responsible for all applicable taxes, levies, or duties imposed by taxing authorities on your use of the Platform.

5. Acceptable Use and Prohibited Conduct

You agree not to use the Platform to:

  • Violate any applicable federal, state, local, or international law or regulation
  • Infringe, misappropriate, or violate the intellectual property rights of any third party
  • Upload, transmit, or store any content that is unlawful, harmful, defamatory, obscene, fraudulent, or otherwise objectionable
  • Impersonate any person or entity or misrepresent your affiliation with any person or entity
  • Attempt to gain unauthorized access to any portion of the Platform, other accounts, or connected systems
  • Introduce any virus, malware, Trojan horse, worm, backdoor, or other harmful code
  • Use the Platform to generate, distribute, or facilitate AI policies intended to deceive regulators or auditors
  • Use automated means to scrape, crawl, or extract data from the Platform
  • Reverse engineer, decompile, or disassemble any software component of the Platform
  • Resell, sublicense, or otherwise commercialize access to the Platform without written authorization

6. AI Governance and Human-in-the-Loop (HITL) Requirements

The Platform is built on the principle that artificial intelligence systems must not approve, attest to, or finalize their own outputs without human review (“Human-in-the-Loop” or “HITL”). By using the Platform, you acknowledge and agree that:

  • All AI-generated policy content must be reviewed and approved by a qualified human before distribution to employees or external parties
  • Employee attestations and signatures must be collected from actual human individuals and may not be automated or fabricated
  • Audit artifacts produced by the Platform reflect your organization's actual governance activities and must not be falsified or misrepresented
  • The Platform's compliance officer ticketing system facilitates human oversight and does not constitute legal advice

Use of the Platform to produce misleading compliance documentation, to bypass regulatory oversight, or to falsify audit evidence is strictly prohibited and may result in immediate account termination and reporting to applicable authorities.

7. Customer Data and Data Processing

“Customer Data” means all data, content, and information submitted to the Platform by you or your users, including employee records, organizational information, policy documents, attestation records, and audit artifacts.

You retain all ownership rights in your Customer Data. You grant us a limited, non-exclusive, royalty-free license to process, store, and transmit Customer Data solely to the extent necessary to provide the Platform services.

We process Customer Data in accordance with our Privacy Policy. We do not sell Customer Data to third parties. We do not use Customer Data to train AI models without your express written consent. Employee personal data processed through the Platform is subject to all applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (as amended by the CPRA).

You are the data controller for all Customer Data. We act as a data processor on your behalf. You are responsible for obtaining all necessary consents from your employees and other individuals whose data is processed through the Platform. Upon request, we will enter into a Data Processing Agreement (DPA) as required under GDPR Article 28.

8. Intellectual Property

The Platform, including all software, algorithms, AI models, designs, text, graphics, interfaces, and other content developed by us, is owned by Custodia GRC, Inc. and is protected by copyright, trademark, patent, trade secret, and other intellectual property laws. These Terms do not transfer any intellectual property rights to you.

Policy templates, framework mappings, and governance artifacts generated by the Platform for your organization become part of your Customer Data and are licensed to you for your internal compliance purposes. You may not resell or distribute such artifacts as standalone products.

9. Confidentiality

Each party agrees to maintain the confidentiality of the other party's non-public information disclosed in connection with the Platform and not to disclose such information to third parties without prior written consent, except as required by law or as necessary to provide or use the Platform.

10. Disclaimers and Limitation of Liability

THE PLATFORM IS PROVIDED “AS IS” AND “AS AVAILABLE” WITHOUT WARRANTY OF ANY KIND. WE EXPRESSLY DISCLAIM ALL WARRANTIES, EXPRESS, IMPLIED, OR STATUTORY, INCLUDING WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.

WE DO NOT WARRANT THAT THE PLATFORM WILL BE UNINTERRUPTED, ERROR-FREE, OR THAT DEFECTS WILL BE CORRECTED. WE DO NOT WARRANT THAT AI-GENERATED POLICY CONTENT WILL SATISFY ALL APPLICABLE LEGAL REQUIREMENTS IN YOUR JURISDICTION.

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL CUSTODIA GRC, INC. BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR FOR ANY LOSS OF PROFITS, REVENUE, DATA, BUSINESS, OR GOODWILL, EVEN IF WE HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

OUR AGGREGATE LIABILITY TO YOU FOR ALL CLAIMS ARISING UNDER OR RELATED TO THESE TERMS SHALL NOT EXCEED THE AMOUNTS PAID BY YOU TO US DURING THE TWELVE (12) MONTHS PRECEDING THE EVENT GIVING RISE TO THE CLAIM.

11. Indemnification

You agree to indemnify, defend, and hold harmless Custodia GRC, Inc. and its officers, directors, employees, and agents from and against any claims, liabilities, damages, losses, and expenses (including reasonable attorneys' fees) arising out of or in any way connected with: (a) your use of the Platform; (b) your violation of these Terms; (c) your Customer Data; (d) your violation of any third-party rights, including intellectual property or privacy rights; or (e) your use or misuse of AI governance artifacts produced by the Platform.

12. Term and Termination

These Terms commence on the date you create an account and continue until terminated. You may terminate your account at any time by canceling through the billing settings or by contacting us at compliance@aipolicyready.com.

We may suspend or terminate your account immediately and without notice if: (a) you materially breach these Terms; (b) you fail to pay applicable fees; (c) you engage in conduct that poses a security risk; or (d) we are required to do so by law or court order.

Upon termination, you may export your Customer Data for thirty (30) days following termination, after which we may delete it in accordance with our data retention policy. Sections 7, 8, 9, 10, 11, 13, and 14 survive termination.

13. Governing Law and Dispute Resolution

These Terms are governed by the laws of the State of Delaware, United States, without regard to its conflict of law provisions. Any dispute arising out of or relating to these Terms shall be resolved by binding arbitration administered by the American Arbitration Association (AAA) under its Commercial Arbitration Rules, except that either party may seek injunctive relief in a court of competent jurisdiction.

You waive any right to participate in a class action lawsuit or class-wide arbitration. The arbitration shall take place in Delaware, and the language of arbitration shall be English.

14. General Provisions

Modifications: We may update these Terms at any time. We will notify you of material changes via email or conspicuous notice on the Platform at least thirty (30) days before they take effect. Continued use after the effective date constitutes acceptance.

Entire Agreement: These Terms, together with the Privacy Policy and any applicable DPA, constitute the entire agreement between the parties regarding the Platform and supersede all prior agreements.

Severability: If any provision is held unenforceable, the remaining provisions remain in full force.

Waiver: Failure to enforce any right or provision does not constitute a waiver.

Assignment: You may not assign these Terms without our written consent. We may assign our rights and obligations in connection with a merger, acquisition, or sale of assets.

15. Contact

Questions about these Terms should be directed to:

Custodia GRC, Inc.

Email: compliance@aipolicyready.com

Website: aipolicyready.com

© 2026 Custodia GRC
Privacy PolicyContact