Terms of Service

1.1 Agreement to Terms

These Terms of Service ("Terms") govern your access to, and use of the services, software, and website (collectively, the "Services") provided by CloudWrangler.io ("CloudWrangler.io", "we", "us", or "our").

By accessing or using our Services, you agree to be bound by these Terms. If you do not agree to these Terms, you may not access or use our Services.

1.2 Modifications to Terms

We reserve the right to modify these Terms at any time. We will provide notice of any material changes through the Services or by sending you an email. Your continued use of the Services after such modifications will constitute your acknowledgment and agreement to the modified Terms.

1.3 Definitions

Throughout these Terms, the following definitions apply:

• "Account" means a registered user account that enables access to the Services.
• "AWS" means Amazon Web Services and related services.
• "Cloud Environment" means your cloud computing infrastructure and services hosted by providers such as AWS.
• "Recommendations" means suggestions, analyses, or reports generated by the Services regarding potential cost savings or security improvements.
• "Scripts" means the automated processes that CloudWrangler.io uses to analyse your Cloud Environment.
• "User", "you", "your" refers to the individual or entity accessing or using the Services.
• "VPC Flow Logs" means Virtual Private Cloud flow log data from your AWS environment.

2.1 Service Overview

CloudWrangler.io is a cloud cost optimisation service that helps users identify potential savings in their Cloud Environment. The Services operate by running various automated Scripts and checks using cloud provider APIs with read-only access to your Cloud Environment. Additionally, the Services may provide security assessment features to identify potential security improvements.

2.2 Advisory Nature of Services

The Services are advisory in nature only. All Recommendations generated by our Services, including but not limited to cost savings suggestions and security assessments, are provided for informational purposes only. You acknowledge and agree that:

• Recommendations are based on automated analysis and may not identify all potential cost saving opportunities
• Recommendations may suggest changes that could adversely affect your Cloud Environment if implemented without proper review
• You are solely responsible for evaluating, verifying, and testing any Recommendations before implementation
• The Services do not guarantee specific cost savings or security outcomes

2.3 Read-Only Access

The Services require read-only access to your Cloud Environment through the deployment of a role with specific permissions. You acknowledge that:

• You are responsible for creating and maintaining this role in accordance with our documentation
• You must use the external ID mechanism provided by CloudWrangler.io for enhanced security
• You must ensure that the role grants only the minimum necessary permissions for the Services to function
• You are responsible for revoking access if you terminate your Account

2.4 Data Processing

To provide the Services, we collect and process data from your Cloud Environment, including but not limited to:

• Resource utilisation metrics
• Configuration information
• Cost data
• VPC Flow Logs (if you enable this optional feature)
• CloudTrail logs (if you enable this optional feature)

All data is processed in accordance with our Privacy Policy and the Data Processing terms in Section 5 of these Terms.

3.1 Account Creation

To use the Services, you must create an Account by providing accurate and complete information. You are responsible for maintaining the confidentiality of your Account credentials and for all activities that occur under your Account.

3.2 Eligibility Requirements

By creating an Account, you represent and warrant that you:

• Are at least 18 years of age or have the legal capacity to enter into these Terms
• Have the authority to bind any entity on whose behalf you are using the Services
• Will comply with all applicable laws and regulations in your use of the Services

3.3 Account Security

You agree to:

• Provide accurate, current, and complete information during the registration process
• Update your information to keep it accurate, current, and complete
• Keep your password and access credentials confidential and secure
• Notify us immediately of any unauthorised access to or use of your Account

We reserve the right to disable any user Account at any time, including if we believe you have violated any provision of these Terms.

3.4 Service Tiers and Limitations

The Services are available in multiple tiers with different features and usage limitations.

Our Free Tier (Sponsored) includes:

• Limited cost saving checks (one per day or week)
• VPC Flow Log data retained for 30 days
• Other restrictions as specified on our website
• Sponsorship by third parties with advertising displayed on the site

Our Paid Tier ($20 per AWS account per month) includes:

• More frequent cost saving checks
• Access to additional cost saving findings not available in free tier
• VPC Flow Log data saved for 180 days
• Other enhanced features as specified in your subscription plan

All tiers can purchase additional storage to keep data longer than the standard retention period at a rate of $0.10 per GB per month.

Usage limits are enforced automatically and attempts to circumvent these limits constitute a violation of these Terms.

3.5 Authentication and Teams

We provide multiple authentication methods to access the Services, including:

• Email and password
• Magic link sent to your email address
• Third-party OAuth providers including Google and GitHub

The Services include team and organisation features that allow you to share access to your Account with other users. When using these features:

• You may set up a team or organisation and invite other users to access your AWS accounts within the Services
• Team administrators can invite and remove members and manage permissions
• Team members can view all information related to the AWS accounts within their team
• Your data is protected by row-level security in our database to ensure only your team members can access your data

You are responsible for:

• Managing membership in your teams
• Ensuring that only authorised individuals are granted access
• Promptly removing individuals who should no longer have access
• Any activities performed by team members you have invited

4.1 General Responsibilities

You are responsible for:

• Providing accurate information about your Cloud Environment
• Ensuring you have all necessary rights and permissions to grant us access to your Cloud Environment
• Implementing proper security measures to protect your own systems and data
• Complying with all applicable laws and regulations in your use of the Services

4.2 Cloud Environment Setup

You must:

• Follow our documentation for setting up the necessary roles and permissions
• Use the external ID mechanism we provide to prevent confused deputy scenarios
• Ensure that roles created for our Services have the minimum necessary permissions
• Verify access is correctly configured before using the Services

4.3 Implementation of Recommendations

Before implementing any Recommendations generated by the Services, you must:

• Thoroughly review and understand each Recommendation
• Validate that the Recommendation is appropriate for your specific Cloud Environment
• Test implementations in non-production environments when possible
• Develop a rollback plan in case implementation causes adverse effects

4.4 Acceptable Use

You shall not:

• Use the Services to attempt to access data you are not authorised to access
• Use the Services in any manner that could damage, disable, overburden, or impair our servers or networks
• Use the Services to violate any third-party terms of service, including AWS terms
• Attempt to reverse engineer or extract the source code of our Services
• Use the Services to transmit any malware, spyware, or other harmful code
• Sell, license, or transfer your access to the Services to any third party

5.1 Data Storage Locations

Data collected from your Cloud Environment is processed and stored as follows:

• EU Customers: Data is processed on servers located in Germany and stored in Germany
• US Customers: Data is processed on servers located in Germany and stored in the United States
• Failover Processing: In the event of service disruption, data processing may occur in Helsinki or other EU locations

5.2 Role-Based Data Access

We implement strict role-based access controls restricting access to your data only to authorised CloudWrangler.io personnel who require such access to provide the Services. All access to customer data is logged and monitored.

5.3 Data Processing Activities

Our processing activities are limited to:

• Analysing resource utilisation patterns to identify cost savings
• Evaluating security configurations against best practices
• Storing historical data for trend analysis
• Generating recommendations and reports
• Creating anonymised benchmarks and statistics from aggregated data

5.4 Data Retention and Deletion

We retain your data as follows:

• Active Account data: For as long as your Account remains active
• Free Tier: Limited historical data retention (typically 30 days)
• Paid Tiers: Extended historical data retention according to your subscription plan

Upon Account termination, we will delete your data in accordance with our data retention policy, typically within 30 days of Account closure. Upon written request, we can provide a certificate of deletion.

5.5 Data Security Measures

We implement and maintain robust technical and organisational security measures aligned with industry best practices and the key principles of ISO27001, including:

• Encryption of data at rest using AES-256 encryption and in transit using TLS 1.2 or higher
• Access controls limiting data access to authorised personnel only
• Regular security assessments of our infrastructure
• Monitoring for unauthorised access attempts
• Secure development practices
• Regular security training for all staff
• Physical security measures for all data centres

5.6 Security Incident Response

In the event of a security incident affecting your data, we will:

• Notify you without undue delay and in any event within 72 hours of becoming aware of the incident
• Provide you with a description of the incident, likely consequences, and measures being taken to address it
• Cooperate with your reasonable requests for information regarding the incident
• Take appropriate measures to mitigate any potential damage

5.7 Security Development Roadmap

We are committed to ongoing security improvements, including:

• Regular third-party security assessments
• Continuous enhancement of security controls
• Working toward formal security certifications
• Annual penetration testing by independent security experts

5.8 Sub-processors

We use a limited number of third-party service providers to assist us in providing the Services. Our current sub-processors include:

• Hetzner and Netcup for infrastructure hosting
• Supabase for database services
• PostHog for analytics
• Stripe for payment processing

5.9 Data Analytics

We may use anonymised and aggregated data derived from the Services to:

• Improve our Services
• Generate industry benchmarks and statistics
• Create marketing materials stating aggregate savings across services

No identifiable customer information will be disclosed in such analytics. All analytics activities comply with applicable data protection laws.

6.1 Service Fees and Pricing Structure

Fees for the Services are as specified on our pricing page or in a separate written agreement. Our standard pricing structure includes:

• Free Tier: sponsored access with basic features at no cost
• Paid Tier: $20 per AWS account per month with enhanced features
• Usage-based billing: $0.10 per GB per month for additional data storage beyond standard retention periods

We reserve the right to change our fees by providing at least thirty (30) days' prior written notice to you. All fees are exclusive of applicable taxes, which will be charged additionally where required by law.

6.2 Billing Cycles and Payment Methods

The Services are available with the following billing options:

• Monthly billing, with automatic payments processed at the start of each billing period
• Annual billing, which may include discounts compared to monthly billing

Payment is accepted via:

• Stripe as our primary payment processor
• Bank transfer via IBAN for specifically negotiated arrangements, which must be agreed in advance

6.3 Customer-Incurred Cloud Provider Charges

Your use of the Services may result in charges from your cloud provider (e.g., AWS). You acknowledge and agree that:

• CloudWatch queries and API calls made by our Scripts may result in small charges on your AWS bill
• Extraction of VPC Flow Logs from S3 buckets will incur charges of approximately $0.09 per GB on your AWS bill
• Initial data ingestion may result in larger one-time charges depending on your data volume
• Ongoing collection of logs will result in continued AWS charges
• You are solely responsible for all such charges incurred in your Cloud Environment as a result of using our Services
• We shall not be liable for any unexpected or excessive charges that may result from your use of the Services

6.4 Payment Terms

For paid subscriptions, payments are processed through Stripe or via bank transfer if specifically arranged. Subscription fees are charged in advance for each billing period. You authorise us to charge your payment method for all fees incurred.

All fees are non-refundable except as required by law or as explicitly stated in these Terms.

If you upgrade your subscription plan, you will be charged the new rate immediately, with a pro-rated credit for the unused portion of your current billing period. If you downgrade your subscription plan, the new rate will apply from the start of your next billing period.

6.5 Updating Payment Information

You may update your payment information at any time by accessing the billing section of your Account. From there, you will be redirected to our payment processor's secure environment to enter your new payment details. You are responsible for keeping your payment information current and valid.

6.6 Failed Payments and Consequences

If your payment cannot be processed:

• For new subscriptions, you will be redirected to a failed payment page asking you to try again
• For existing subscriptions, we will send an email notification requesting you to update your payment information
• If payment remains unsuccessful, your account will be suspended after three (3) days
• If payment is not received within seven (7) days, your data may be deleted

If payment cannot be processed, we reserve the right to:

• Suspend or terminate your access to the Services
• Charge late fees or interest at the rate of 4% above the base rate of the Bank of England
• Require payment of all outstanding balances before restoring access
• Recover any reasonable costs incurred in collecting overdue amounts

6.7 Invoicing

We will make invoices available to you electronically after successful payment processing. You agree to provide and maintain accurate, complete, and up-to-date billing information. For enterprise customers, we may agree to specific invoicing arrangements as set out in a separate written agreement.

7.1 Ownership of Services

CloudWrangler.io owns and retains all right, title, and interest in and to the Services, including all software, algorithms, methodologies, recommendation engines, cost optimisation techniques, user interfaces, visual elements, designs, compilations, trademarks, logos, and other intellectual property incorporated into or related to the Services.

7.2 License to Use Services

Subject to your compliance with these Terms, we grant you a limited, non-exclusive, non-transferable, revocable license to access and use the Services solely for your internal business purposes.

7.3 Customer Data Ownership

You retain all right, title, and interest in and to the data you upload, transmit, or otherwise make available to us through the Services ("Customer Data").

7.4 License to Customer Data

You grant CloudWrangler.io a non-exclusive, worldwide, royalty-free license to use, copy, transmit, store, analyse, and process your Customer Data for the purposes of providing, maintaining, and improving the Services.

7.5 Ownership of Recommendations and Reports

All recommendations, reports, visualisations, and other outputs generated by the Services are owned by CloudWrangler.io. We grant you a non-exclusive, non-transferable license to use Service Outputs for your internal business purposes only.

8.1 Term

These Terms commence on the date you first accept them and continue until terminated as described herein.

8.2 Termination by You

You may terminate these Terms at any time by emailing support@cloudwrangler.io with your termination request. Upon receiving your request, your account will be placed into "leaving mode" for a period of 30 days, after which your account will be fully terminated.

8.3 Cancellation of Subscription

You may cancel your paid subscription without terminating your account by accessing the billing area on CloudWrangler.io and clicking the "cancel subscription" button, or by emailing support@cloudwrangler.io with your cancellation request.

8.4 Termination by Us

We may terminate or suspend your access to the Services immediately, without prior notice or liability, for any reason, including violation of these Terms, failure to pay fees, or if we discontinue the Services.

8.5 Effect of Termination

Upon termination, your right to access and use the Services will immediately cease, and we will delete your data in accordance with our data retention policy.

8.6 Data Retention and Deletion

Following account termination, we will delete all your data from our active systems. Data stored in our backup systems will be automatically deleted within 30 days as part of our normal backup rotation.

9.1 Refund Policy

You may request a refund within 3 days of upgrading to a paid subscription tier if you are not satisfied with the service. Usage-based billing charges are never refundable under any circumstances.

9.2 Refund Process

To request a refund, you must email support@cloudwrangler.io within the 3-day period, include your account information, and provide the reason for your refund request.

9.3 Business Customers and Statutory Rights

The Services are provided exclusively for business use. You acknowledge and agree that you are entering into these Terms in the course of your business, trade, or profession, and that the Consumer Contracts (Information, Cancellation and Additional Charges) Regulations 2013 do not apply to these Terms.

10.1 Service Availability

We will use commercially reasonable efforts to make the Services available 24 hours a day, 7 days a week, except for planned maintenance, force majeure events, and unforeseen circumstances.

10.2 Disclaimer of Warranties

The Services are provided "as is" and "as available" without any warranties of any kind, whether express, implied, or statutory.