Terms & Conditions

1. Acceptance of Terms

By accessing or using NPM Scan (“the Service”), you agree to be bound by these Terms and Conditions (“Terms”). If you do not agree to these Terms, please do not use the Service.

These Terms constitute a legally binding agreement between you (either an individual or entity) and NPM Scan. We reserve the right to modify these Terms at any time, and your continued use of the Service after such modifications constitutes your acceptance of the updated Terms.

2. Description of Service

NPM Scan is an automated dependency security scanning service that:

• Analyzes GitHub repositories for dependency vulnerabilities
• Scans package.json files including monorepo workspaces
• Provides health scores and vulnerability reports
• Offers automated monitoring and scanning capabilities

The Service is provided “as is” and we make no warranties regarding the accuracy, completeness, or timeliness of vulnerability data. We rely on third-party vulnerability databases and cannot guarantee the detection of all security issues.

3. User Accounts & Registration

To use the Service, you must:

• Create an account through our authentication provider
• Provide accurate and complete information
• Maintain the security of your account credentials
• Be at least 18 years old or have parental consent
• Not use the Service for any illegal or unauthorized purpose

You are responsible for all activities that occur under your account. You must immediately notify us of any unauthorized use of your account or any other breach of security.

4. GitHub Integration & Token Usage

When you connect your GitHub account, you authorize us to:

• Access repository metadata and package.json files
• Read repository contents necessary for dependency analysis
• Store encrypted access tokens to perform automated scans

We will NOT:

• Modify any repository contents or settings
• Access repositories you have not explicitly selected
• Share your GitHub credentials with third parties
• Use your repositories for any purpose other than scanning

You may revoke access at any time through your account settings. All GitHub tokens are encrypted using AES-256-GCM encryption. See our Security page and Privacy Policy for more details.

5. Subscription & Payments

NPM Scan offers both free and paid subscription plans:

5.1 Billing

• Subscriptions are billed on a recurring basis (monthly or annually)
• Payment is processed through Stripe, our third-party payment processor
• You must provide valid payment information to subscribe to paid plans
• All fees are in USD and non-refundable unless required by law

5.2 Automatic Renewal

Your subscription will automatically renew at the end of each billing period unless you cancel before the renewal date. You can cancel your subscription at any time through your account settings.

5.3 Refund Policy

We offer a 14-day money-back guarantee for first-time subscribers. If you are not satisfied with the Service within the first 14 days of your initial subscription, contact us at nicktheodoulou96@gmail.com for a full refund.

After the 14-day period, fees are non-refundable. However, if you cancel your subscription, you will retain access until the end of your current billing period.

5.4 Price Changes

We reserve the right to modify subscription prices. We will provide at least 30 days' notice of any price increases. Your continued use of the Service after the price change constitutes acceptance of the new price.

6. User Responsibilities

You agree to:

• Use the Service only for lawful purposes and in compliance with these Terms
• Not attempt to gain unauthorized access to any part of the Service
• Not use automated systems to access the Service in a manner that sends more requests than a human could reasonably produce
• Not interfere with or disrupt the Service or servers connected to the Service
• Not reverse engineer, decompile, or disassemble any part of the Service
• Not share your account credentials with others
• Act on vulnerability reports promptly and appropriately

7. Intellectual Property

The Service, including all content, features, and functionality, is owned by NPM Scan and is protected by copyright, trademark, and other intellectual property laws.

You retain all rights to your repository data. By using the Service, you grant us a limited license to access and analyze your repositories solely for the purpose of providing the Service.

8. Account Termination

We reserve the right to suspend or terminate your account at any time if:

• You violate these Terms
• You engage in fraudulent or illegal activity
• Your use of the Service poses a security risk
• You fail to pay applicable fees

You may terminate your account at any time by:

• Canceling your subscription through account settings
• Contacting us to request account deletion

Upon termination, your right to access the Service will immediately cease. We may retain certain information as required by law or for legitimate business purposes as described in our Privacy Policy.

9. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW:

• THE SERVICE IS PROVIDED “AS IS” WITHOUT WARRANTIES OF ANY KIND
• WE DO NOT GUARANTEE THAT THE SERVICE WILL BE UNINTERRUPTED, SECURE, OR ERROR-FREE
• WE ARE NOT LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES
• OUR TOTAL LIABILITY SHALL NOT EXCEED THE AMOUNT YOU PAID US IN THE 12 MONTHS PRECEDING THE CLAIM

We are not responsible for vulnerabilities in your dependencies or any damages resulting from security breaches. The Service is a tool to help identify potential issues; you are responsible for taking appropriate action based on the information provided.

10. Indemnification

You agree to indemnify and hold harmless NPM Scan, its affiliates, officers, directors, employees, and agents from any claims, damages, losses, liabilities, and expenses (including legal fees) arising from:

• Your use of the Service
• Your violation of these Terms
• Your violation of any third-party rights
• Any security incidents resulting from your repositories or dependencies

11. Data Security & Privacy

We take data security seriously. For detailed information about how we collect, use, and protect your data, please review our:

• Privacy Policy - Data collection and usage practices
• Security page - Technical security measures

12. Changes to Terms

We reserve the right to modify these Terms at any time. We will notify you of material changes by email or through a notice on the Service. Your continued use of the Service after such notice constitutes acceptance of the modified Terms. If you do not agree to the changes, you must stop using the Service and cancel your account.

13. Governing Law

These Terms shall be governed by and construed in accordance with the laws of the jurisdiction in which NPM Scan operates, without regard to its conflict of law provisions. Any disputes arising from these Terms or the Service shall be resolved through binding arbitration or in the courts of that jurisdiction.

14. Severability

If any provision of these Terms is found to be invalid or unenforceable, that provision shall be limited or eliminated to the minimum extent necessary, and the remaining provisions shall remain in full force and effect.

15. Contact Information

If you have any questions about these Terms, please contact us: