Terms of Service

1. About Hardened

Hardened is an automated security audit tool for web applications, operated by R&D Solutions Numériques, sole proprietorship registered in Québec, Canada.

These Terms of Service ("Terms") govern your use of Hardened (the "Service") available at https://hardened.app.

By using Hardened, you agree to these Terms. If you do not agree, please do not use the Service.

2. Description of the Service

Hardened analyzes publicly accessible aspects of web applications to identify potential security issues. Our scans include:

• HTTP/HTTPS configuration checks
• Security header analysis
• CORS configuration verification
• Cookie security flag checks
• Exposed sensitive paths detection
• DNS security record verification
• TLS/SSL configuration analysis

Important: Hardened only performs checks that are publicly accessible — equivalent to what any web browser or HTTP client can observe. Hardened does not:

• Access private data or databases
• Attempt to bypass authentication
• Perform penetration testing or exploit vulnerabilities
• Access or store data belonging to users of scanned applications

3. Accounts

3.1 Account creation

You may use Hardened's free scan without creating an account. To access the dashboard, scan history, and paid features, you must create an account with a valid email address.

3.2 Account security

You are responsible for maintaining the security of your account. Notify us immediately at support@hardened.app if you suspect unauthorized access.

3.3 Age requirement

You must be at least 16 years old to use Hardened.

4. Plans and pricing

4.1 Free plan

• Unlimited scans with rate limiting
• Full security score and check results
• Shareable public reports

4.2 Pro plan (9 USD/month)

• Everything in Free
• Detailed fix instructions for each security issue
• Weekly automated monitoring
• Email alerts on security regressions
• Score history and trends

4.3 Price changes

We may change our prices with 30 days' notice. Existing subscriptions will continue at their current price until the next renewal after the notice period.

5. Payments and billing

5.1 Payment processing

Payments are processed securely by Stripe. We do not store your credit card information.

5.2 Billing cycle

Pro subscriptions are billed monthly. Your subscription renews automatically unless canceled.

5.3 Cancellation

You can cancel your subscription at any time from your account settings or via the Stripe Customer Portal. Cancellation takes effect at the end of your current billing period. You will retain Pro access until then.

5.4 Refunds

We offer a full refund within 14 days of your first Pro subscription if you are not satisfied. After this period, no refunds are provided for partial billing periods. To request a refund, contact support@hardened.app.

6. Acceptable use

You agree to use Hardened only to:

• Scan web applications you own or have authorization to test
• Improve the security of your own applications

You agree not to:

• Scan applications without authorization from their owner
• Use Hardened to identify vulnerabilities for malicious purposes
• Attempt to overwhelm or disrupt scanned applications through excessive scanning
• Circumvent rate limits or abuse the Service
• Use the Service for any illegal purpose
• Resell or redistribute scan results commercially without our consent
• Use automated tools to access the Service beyond the provided API

7. Intellectual property

7.1 Our content

Hardened, including its code, design, documentation, and security check methodologies, is our intellectual property. Scan reports are generated for your use and may be shared freely.

7.2 Your content

You retain ownership of the URLs you submit and any data associated with your account.

8. Disclaimer and limitation of liability

8.1 Service provided "as is"

Hardened is provided "as is" without warranty of any kind, express or implied. We do not guarantee that:

• Scans will detect all security issues
• Fix recommendations will resolve all vulnerabilities
• The Service will be uninterrupted or error-free

8.2 Not a substitute for professional security audit

Hardened is an automated tool that checks common security configurations. It is not a comprehensive security audit, penetration test, or compliance assessment. For critical applications, we recommend engaging a professional security firm.

8.3 Limitation of liability

To the maximum extent permitted by law, R&D Solutions Numériques shall not be liable for any indirect, incidental, special, consequential, or punitive damages arising from your use of the Service, including but not limited to:

• Security incidents on your applications
• Loss of data or profits
• Reliance on scan results or fix recommendations

Our total liability shall not exceed the amount you paid for the Service in the 12 months preceding the claim.

9. Indemnification

You agree to indemnify and hold us harmless from any claims arising from:

• Your use of the Service
• Your violation of these Terms
• Your scanning of applications you are not authorized to test

10. Termination

10.1 By you

You may delete your account at any time from your account settings. This will cancel any active subscription and permanently delete your data within 30 days.

10.2 By us

We may suspend or terminate your account if you violate these Terms, abuse the Service, or if required by law. We will notify you by email before termination except in cases of severe abuse.

11. Modifications

We may update these Terms from time to time. We will notify you of significant changes by email or by a notice on our website at least 30 days before they take effect. Continued use of the Service after changes constitutes acceptance.

12. Governing law and disputes

These Terms are governed by the laws of the Province of Québec and the federal laws of Canada applicable therein. Any dispute shall be submitted to the exclusive jurisdiction of the courts of Montréal, Québec.

13. Severability

If any provision of these Terms is found to be unenforceable, the remaining provisions will continue in full force.

14. Contact

For any questions about these Terms:

R&D Solutions Numériques
Email: support@hardened.app
Location: Montréal, Québec, Canada