Terms of Service
Last updated: March 2026
DRAFT — This document requires review by a qualified legal professional before use. Generated as a comprehensive starting point for legal review.
1. Introduction and Acceptance
These Terms of Service ("Terms") constitute a legally binding agreement between you ("Client", "you") and TriStiX S.L., a limited liability company registered in Alicante, Spain ("TriStiX", "we", "us"), governing your access to and use of the NetSenX platform ("Service"), including the web dashboard, backend API, network monitoring agent software, and all related documentation.
By creating an account, installing the agent, or otherwise accessing the Service, you confirm that you have read, understood, and agree to be bound by these Terms and our Privacy Policy. If you are accepting these Terms on behalf of a legal entity, you represent that you have the authority to bind that entity.
2. Service Description
NetSenX is a behavioral network threat detection platform that provides:
- Network monitoring agents that capture flow metadata (source/destination IP addresses, ports, protocols, byte counts, timestamps) from your network infrastructure. The agent does not capture packet payloads or communication content.
- LGGT+ detection engine — a proprietary behavioral analysis engine using multi-valued logic and machine learning to detect threats including zero-day attacks, C2 beacons, data exfiltration, lateral movement, and unauthorized OT/ICS protocol usage.
- SHAP explanations for every detection, providing transparent, explainable AI output compliant with EU AI Act requirements.
- Compliance reporting including NIS2 Art.23 incident notification reports and GDPR Art.33 breach notification reports.
- Decision Traces providing full algorithmic transparency and audit trails.
3. Account Registration
To use the Service, you must:
- Provide accurate, current, and complete registration information, including a valid business email address and company name.
- Be at least 18 years of age.
- If acting on behalf of an organization, be an authorized representative with the power to bind the organization to these Terms.
- Maintain the security of your account credentials, including enabling two-factor authentication (2FA) for administrator accounts as recommended by NIS2 Art. 21.
- Immediately notify us at security@netsenx.com of any unauthorized access to your account.
You are responsible for all activity that occurs under your account. We reserve the right to suspend accounts that provide false registration information.
4. License Key Terms
Upon registration, you receive a license key that authorizes the NetSenX agent to communicate with our backend services. License keys are:
- Cryptographically signed using RSA-4096 for offline verification.
- Confidential — you may not share, publish, or redistribute your license key.
- Tied to your subscription plan and device limits.
- Subject to revocation if these Terms are violated.
5. Subscription Plans and Pricing
The Service is offered in the following tiers:
| Plan | Devices | Rules | Retention | Price (EUR/mo) |
|---|---|---|---|---|
| Free | 3 | 8 | 30 days | 0 |
| Starter | 10 | 10 | 60 days | 49 |
| Professional | 25 | 12 | 90 days | 99 |
| Business | 100 | 15 | 365 days | 249 |
| Enterprise | Unlimited | All | Unlimited | Custom |
All prices are net amounts exclusive of applicable VAT. VAT will be added according to the applicable rate for your jurisdiction.
6. Billing and Payment
- Payment processing: All payments are processed securely via Stripe. We do not store credit card details on our servers.
- Billing cycles: Subscriptions are billed monthly or annually. Annual billing provides a discount equivalent to 2 months free (pay for 10 months, receive 12).
- Price changes: We will provide at least 30 days written notice before any price increase takes effect. Price changes apply from the next billing cycle.
- Failed payments: If payment fails, we will attempt to charge the payment method up to 3 times over 7 days before initiating the grace period.
7. Grace Period and Expiry
After subscription expiry or payment failure:
- Days 1-4 (Grace Period): Full access continues. You will receive daily email reminders to renew.
- Day 5+ (Degraded): Account is downgraded to Free plan limits (3 devices, 8 rules, 30-day retention). Your data is preserved.
- Day 90+ (Data Retention): Data exceeding Free plan retention may be permanently deleted. We will send a final warning 7 days before deletion.
Renewing your subscription at any point during the grace or degraded period restores full access immediately.
8. Perpetual License Terms
Enterprise customers may purchase a perpetual license, which grants:
- Indefinite right to use the NetSenX agent and detection engine.
- Offline license verification via RSA-4096 signed license file — no ongoing server communication required for license validation.
- Support and updates are provided for the duration of the separately purchased support agreement (minimum 1 year).
- After support expiry, the agent continues to function but will not receive detection rule updates or software patches.
9. Data Processing
The NetSenX agent collects network flow metadata only:
- Source and destination IP addresses
- Port numbers and transport protocols
- Byte counts and packet counts
- Connection timing and duration
- TLS/JA3 fingerprints (where available)
The agent does not capture, inspect, or transmit packet payloads, email content, HTTP bodies, DNS query results, or any other communication content. All collected data is transmitted to our backend over TLS 1.3 and stored in the EU.
Each client's data is isolated at the database level using PostgreSQL row-level security (RLS). No client can access another client's data under any circumstances.
10. Intellectual Property
- The LGGT+ detection engine, SHAP integration, Decision Trace system, and all associated software are the proprietary intellectual property of TriStiX S.L. You receive a limited, non-exclusive, non-transferable license to use the Service during your subscription term.
- Your data (network telemetry, alerts, reports) belongs to you. We claim no ownership over client data.
- We may use anonymized, aggregated statistics derived from platform usage to improve the Service. No individual client data is identifiable in such aggregations.
11. Service Level Agreement (SLA)
- Enterprise plan: 99.9% uptime SLA for the backend API and dashboard. Downtime is measured monthly, excluding scheduled maintenance (announced 48 hours in advance). Credits are provided for SLA violations at 10x the prorated daily rate per hour of downtime.
- All other plans: Best-effort availability. We target 99.5% uptime but do not guarantee it.
- Agent availability: The agent operates locally and is not affected by backend downtime. Alerts are queued locally and uploaded when connectivity is restored.
12. Limitation of Liability
To the maximum extent permitted by applicable law:
- TriStiX S.L. shall not be liable for any indirect, incidental, special, consequential, or punitive damages, including loss of profits, data, business opportunity, or goodwill, arising from your use of or inability to use the Service.
- Our total aggregate liability for all claims arising from or related to the Service shall not exceed the amount paid by you to TriStiX S.L. in the 12 months preceding the claim.
- NetSenX is a detection tool, not a guarantee of security. We do not warrant that the Service will detect all threats or prevent all security incidents.
13. Data Retention
Network telemetry and alert data is retained according to your subscription plan:
- Free: 30 days
- Starter: 60 days
- Professional: 90 days
- Business: 365 days
- Enterprise: Unlimited (or as specified in your agreement)
Data exceeding your plan's retention period is automatically and permanently deleted. Account data (email, profile, settings) is retained for 90 days after account deletion, then permanently erased.
14. GDPR Data Subject Rights
Under the General Data Protection Regulation (EU 2016/679), you have the right to:
- Accessyour data — via Dashboard → Settings → Export Data, or API endpoint
GET /tenant/export. - Erasure("right to be forgotten") — via Dashboard → Settings → Delete Account, or API endpoint
DELETE /tenant. - Portability — data export is provided in JSON/CSV format.
- Rectification— update your profile in Dashboard → Settings.
- Objection — contact privacy@netsenx.com.
15. Acceptable Use
You agree not to:
- Reverse-engineer, decompile, or disassemble the Service or the LGGT+ engine.
- Use the Service for unlawful surveillance or monitoring of individuals without proper authorization.
- Exceed your plan's usage limits through automated means or share your account credentials with unauthorized users.
- Attempt to access other clients' data or circumvent tenant isolation controls.
- Use the Service to attack, probe, or scan third-party systems without their explicit written consent.
16. Termination
- By you:You may cancel your subscription at any time through the Dashboard → Billing → Manage Subscription. Your plan remains active until the end of the current billing period.
- By us: We may suspend or terminate your account for material breach of these Terms, with 14 days written notice to cure (except in cases of security threats, where immediate suspension is permitted).
- Data after termination: Your data is retained for 90 days after termination, during which you may export it. After 90 days, data is permanently deleted.
17. Governing Law and Jurisdiction
These Terms shall be governed by and construed in accordance with the laws of Spain, without regard to conflict of law principles, and applicable European Union regulations including the GDPR, NIS2 Directive, and EU AI Act.
Any disputes arising from or related to these Terms shall be submitted to the exclusive jurisdiction of the courts of Alicante, Spain.
18. Changes to Terms
We may modify these Terms from time to time. Material changes will be communicated via email and in-app notification at least 30 days before they take effect. Your continued use of the Service after the effective date constitutes acceptance of the revised Terms. If you do not agree to the changes, you may terminate your subscription before the effective date.
19. Severability
If any provision of these Terms is held to be invalid or unenforceable, the remaining provisions shall continue in full force and effect.
20. Contact
For questions about these Terms, contact us at:
- Email: legal@netsenx.com
- Company: TriStiX S.L., Alicante, Spain
- Data Protection Officer: dpo@netsenx.com