Last updated: 20 May 2026. The contractual terms under which we provide APaaS Assure.
Draft notice. These terms are a working draft intended for review by your legal counsel before publication. Substantive customer engagements will normally be covered by a separately-signed Master Services Agreement that takes precedence over these terms.
These terms govern your access to and use of the APaaS Assure platform and related services ("Service") provided by APaaS Application Packaging Services Ltd ("we", "us", "our"), a company registered in England & Wales. By accessing the Service you agree to these terms. If you are entering into them on behalf of an organisation, you confirm you have authority to bind that organisation.
APaaS Assure is a software-as-a-service platform for continuous Cyber Essentials Plus compliance, vulnerability triage and software rationalisation. The Service is provided on a subscription basis under an Order Form that specifies your subscription tier, term, fees and any agreed customisations.
You are responsible for maintaining the confidentiality of your account credentials and for all activity that occurs under your account. You will notify us promptly of any unauthorised use. Multi-factor authentication is required for all users.
You agree not to:
Fees, payment terms and invoicing are set out in your Order Form. Standard billing is annual in advance. Late payments accrue interest at the statutory rate under the Late Payment of Commercial Debts (Interest) Act 1998. Fees are exclusive of VAT.
The Service is provided for the term in your Order Form, with automatic renewal unless either party gives written notice at least 30 days before renewal. Either party may terminate for material breach not remedied within 30 days of written notice. On termination we will retain customer data for 30 days to allow export, then delete in accordance with our Privacy Policy.
You retain all rights in the data you submit to the Service. We process customer data only to provide the Service, in accordance with our Privacy Policy and a Data Processing Addendum that forms part of the agreement. We treat your data as confidential.
We retain all rights in the Service, including all software, designs and documentation. You are granted a non-exclusive, non-transferable right to use the Service for your internal business purposes during the subscription term.
We will use reasonable endeavours to make the Service available 24/7. Planned maintenance is announced at least 7 days in advance and scheduled outside UK business hours where practical. Standard tier has a 99.5% monthly uptime target; Enterprise tier has 99.9% with credits for breach (set out in the SLA).
Nothing in these terms limits liability for death or personal injury caused by negligence, fraud or fraudulent misrepresentation, or any other liability that cannot be limited by law. Subject to that, our total aggregate liability under or in connection with these terms is limited to the fees paid by you in the 12 months preceding the event giving rise to the claim. We exclude liability for indirect, consequential, or loss of profits.
These terms are governed by the laws of England & Wales. The courts of England & Wales have exclusive jurisdiction over any disputes.
We may update these terms from time to time. Material changes will be notified to active customers by email at least 30 days before they take effect. Continued use of the Service after the effective date constitutes acceptance.
For any questions about these terms, email legal@apaas.org.
