Terms of Use

1. Acceptance of Terms

These Terms of Use (“Terms”) govern your access to and use of the services provided by Quint Security, Inc. (“Quint,” “we,” “us,” or “our”), including the Quint website at quintai.dev, the Quint cloud dashboard at cloud.quintai.dev, the Quint edge proxy, and any associated APIs, documentation, and tools (collectively, the “Services”).

By accessing or using the Services, you agree to be bound by these Terms. If you are using the Services on behalf of an organization, you represent that you have authority to bind that organization to these Terms.

If you do not agree to these Terms, do not access or use the Services.

2. Description of Services

Quint provides an AI agent security and compliance platform consisting of:

1. Quint Edge Proxy — A lightweight binary installed on customer machines that intercepts AI agent API traffic at the operating system level for real-time security evaluation and policy enforcement
2. Quint Scoring API — A cloud-hosted risk scoring engine that evaluates AI agent actions against regulatory compliance frameworks using deterministic graph-based reasoning
3. Quint Cloud Dashboard — A web-based interface for monitoring AI agent activity, managing security policies, reviewing compliance reports, and viewing audit trails
4. Compliance Ontology — A proprietary knowledge graph covering 16 regulatory frameworks for real-time compliance scoring

2.1 What Quint Monitors

Quint monitors the structural metadata of AI agent actions — specifically tool calls, API requests, file operations, and MCP (Model Context Protocol) interactions. This includes:

• Which tools an agent invokes and with what parameters
• Which resources an agent accesses (files, APIs, databases)
• The sequence and timing of agent actions
• Policy compliance status of each action

2.2 What Quint Does NOT Monitor

Quint does not monitor, collect, or store:

• The content of conversations between users and AI assistants
• User prompts or AI model responses
• The substantive content of files read or written by agents
• Keystroke data, screen content, or audio/video
• Actual values of personally identifiable information detected in tool arguments (only classification labels are recorded)

3. Account Registration

3.1 Eligibility

You must be at least 16 years old and have the legal capacity to enter into these Terms. If you are using the Services on behalf of a company, you must have authority to bind that company.

3.2 Account Security

You are responsible for:

• Maintaining the confidentiality of your account credentials and API keys
• All activity that occurs under your account
• Notifying us immediately at security@quintai.com if you suspect unauthorized access

API keys are hashed using SHA-256 before storage. We never store API keys in plaintext.

3.3 Account Termination

You may close your account at any time by contacting support@quintai.com. We may suspend or terminate your account if you violate these Terms, with notice where practicable.

4. Acceptable Use

You agree to use the Services only for lawful purposes and in accordance with these Terms. You shall not:

1. Reverse engineer, decompile, or disassemble the Quint proxy, scoring engine, compliance ontology, or any other component of the Services, except to the extent expressly permitted by applicable law
2. Attempt to circumvent security controls, access controls, or rate limits
3. Use the Services to monitor individuals without appropriate legal basis or in violation of applicable privacy laws
4. Redistribute, sublicense, or resell the Services without a written agreement from Quint
5. Interfere with or disrupt the Services or servers or networks connected to the Services
6. Use the Services for any purpose that violates applicable local, state, national, or international law
7. Transmit any viruses, malware, or other malicious code through the Services
8. Misrepresent your identity or affiliation when using the Services
9. Use the Services to conduct unauthorized penetration testing, vulnerability scanning, or security assessments of third-party systems
10. Remove, alter, or obscure any proprietary notices, labels, or marks on the Services

5. Customer Data

5.1 Ownership

You retain all right, title, and interest in your data (“Customer Data”). Customer Data includes AI agent event data, security policies, configuration settings, and any data you submit to the Services.

5.2 License to Quint

You grant Quint a limited, non-exclusive, worldwide license to process Customer Data solely for the purpose of providing, maintaining, and improving the Services as described in these Terms and any applicable Data Processing Agreement.

5.3 Data Isolation

Customer Data is logically isolated using row-level security (RLS) at the database level. No cross-tenant data access is possible through the Quint platform. Each customer can only access their own data.

5.4 Anonymized Telemetry

Quint may generate anonymized, aggregated security telemetry from Customer Data (e.g., threat patterns, compliance benchmarks, anomaly statistics) that cannot be traced back to any individual customer. This telemetry may be used to improve the Services and contribute to threat intelligence. You may opt out of anonymized telemetry by contacting privacy@quintai.com.

5.5 No Training on Customer Data

Quint does not use Customer Data to train, fine-tune, or improve machine learning models. Our compliance scoring is deterministic and graph-based — not trained on customer inputs.

5.6 Data Deletion

Upon account termination or written request, we will delete your Customer Data within 30 days, except where retention is required by law. Local audit logs stored on your machines by the Quint proxy are under your control and are not affected by account termination.

6. Service Levels & Availability

6.1 Availability

We use commercially reasonable efforts to maintain the availability of the cloud Services. However, we do not guarantee uninterrupted access. The edge proxy operates locally on your infrastructure and is not dependent on cloud availability for core policy enforcement.

6.2 Maintenance

We may perform scheduled and emergency maintenance that temporarily affects availability. We will provide reasonable advance notice for scheduled maintenance where practicable.

6.3 Support

Support is provided via email at support@quintai.com. Response times and support scope depend on your subscription tier.

7. Fees & Payment

7.1 Pricing

Fees for the Services are as set forth in the applicable order form, subscription agreement, or pricing page. We reserve the right to change pricing with 30 days' written notice.

7.2 Payment Terms

Fees are due in accordance with the payment terms in your subscription agreement. Unless otherwise stated, fees are non-refundable.

7.3 Taxes

Fees are exclusive of applicable taxes. You are responsible for all taxes, duties, and levies arising from your use of the Services (excluding taxes on Quint's net income).

8. Intellectual Property

8.1 Quint's IP

The Services, including the Quint edge proxy, scoring API, cloud dashboard, compliance ontology, inference rules, and all associated documentation, are owned by Quint Security, Inc. and protected by intellectual property laws. These Terms do not grant you any ownership rights in the Services.

8.2 Compliance Ontology

The Quint compliance ontology (covering 16 regulatory frameworks) is proprietary to Quint. Access to the ontology through the Services does not constitute a license to copy, distribute, or create derivative works from the ontology.

8.3 Feedback

If you provide feedback, suggestions, or ideas regarding the Services, you grant Quint a non-exclusive, royalty-free, perpetual, irrevocable, worldwide license to use, modify, and incorporate such feedback into the Services without obligation to you.

9. Third-Party Services

The Services may integrate with or provide links to third-party services (e.g., SIEM platforms, identity providers, AI model providers). Your use of third-party services is governed by their respective terms and privacy policies. Quint is not responsible for the practices of third-party services.

When the Quint scoring engine escalates to an LLM for low-confidence evaluations, only anonymized action metadata — not raw tool arguments, PII values, or conversation content — is transmitted to the model provider.

10. Warranty Disclaimer

Without limiting the foregoing:

• Quint does not warrant that the Services will detect all security threats, policy violations, or compliance gaps
• Quint does not warrant that risk scores or compliance assessments constitute legal advice or guarantee regulatory compliance
• Quint does not warrant uninterrupted or error-free operation of the Services

11. Limitation of Liability

To the maximum extent permitted by applicable law:

1. Quint shall not be liable for any indirect, incidental, special, consequential, or punitive damages, including but not limited to loss of profits, data, business opportunities, or goodwill, arising out of or related to your use of the Services
2. Quint's total aggregate liability for all claims arising out of or related to these Terms or the Services shall not exceed the greater of: (a) the total fees paid by you to Quint in the 12 months preceding the claim, or (b) USD $100
3. These limitations apply regardless of the theory of liability (contract, tort, strict liability, or otherwise) and even if Quint has been advised of the possibility of such damages

Exceptions: These limitations do not apply to: (a) Quint's breach of confidentiality obligations; (b) Quint's indemnification obligations; or (c) liability that cannot be limited under applicable law.

12. Indemnification

You agree to indemnify, defend, and hold harmless Quint and its officers, directors, employees, and agents from and against any claims, damages, losses, liabilities, and expenses (including reasonable attorneys' fees) arising out of or related to:

1. Your use of the Services in violation of these Terms
2. Your violation of any applicable law or regulation
3. Your violation of any third party's rights, including privacy rights
4. Customer Data that you submit to the Services

13. Confidentiality

13.1 Definition

“Confidential Information” means any non-public information disclosed by either party that is designated as confidential or that reasonably should be understood to be confidential, including business plans, customer data, technical specifications, pricing, and security architecture.

13.2 Obligations

Each party agrees to: (a) protect the other party's Confidential Information using at least the same degree of care it uses for its own confidential information (but no less than reasonable care); (b) use Confidential Information only for purposes of performing under these Terms; and (c) not disclose Confidential Information to third parties except as necessary to perform under these Terms, subject to confidentiality obligations at least as protective.

13.3 Exceptions

Confidential Information does not include information that: (a) is or becomes publicly available through no fault of the receiving party; (b) was known to the receiving party before disclosure; (c) is independently developed without reference to the disclosing party's Confidential Information; or (d) is required to be disclosed by law or legal process.

14. Term & Termination

14.1 Term

These Terms are effective when you first access or use the Services and continue until terminated.

14.2 Termination for Convenience

Either party may terminate these Terms with 30 days' written notice.

14.3 Termination for Cause

Either party may terminate these Terms immediately upon written notice if the other party: (a) materially breaches these Terms and fails to cure within 30 days of notice; or (b) becomes subject to bankruptcy, insolvency, or similar proceedings.

14.4 Effect of Termination

Upon termination:

• Your access to the Services will be suspended
• Customer Data will be available for export for 30 days, then deleted
• Local audit logs on your machines remain under your control
• Sections 5.1 (Ownership), 8 (IP), 10 (Warranty Disclaimer), 11 (Limitation of Liability), 12 (Indemnification), 13 (Confidentiality), and 16 (Governing Law) survive termination

15. Modifications to Terms

We may modify these Terms from time to time. We will provide at least 30 days' notice of material changes by email or prominent notice on the Services. Your continued use after the effective date of modifications constitutes acceptance. If you do not agree to modified Terms, you must stop using the Services before the changes take effect.

16. Governing Law & Dispute Resolution

16.1 Governing Law

These Terms are governed by the laws of the State of Delaware, United States, without regard to conflict of law principles.

16.2 Dispute Resolution

Any dispute arising out of these Terms shall first be attempted to be resolved through good-faith negotiation for a period of 30 days. If negotiation fails, disputes shall be resolved through binding arbitration administered by JAMS under its Streamlined Arbitration Rules, with the arbitration conducted in English and the seat of arbitration in Delaware.

16.3 Exceptions

Notwithstanding the above, either party may seek injunctive or other equitable relief in any court of competent jurisdiction to protect its intellectual property rights or Confidential Information.

17. General Provisions

17.1 Entire Agreement

These Terms, together with any applicable order forms, DPA, and privacy policy, constitute the entire agreement between you and Quint regarding the Services.

17.2 Severability

If any provision of these Terms is found unenforceable, the remaining provisions remain in full force and effect.

17.3 Waiver

Failure to enforce any provision of these Terms does not constitute a waiver of that provision.

17.4 Assignment

You may not assign these Terms without Quint's prior written consent. Quint may assign these Terms in connection with a merger, acquisition, or sale of substantially all of its assets.

17.5 Force Majeure

Neither party shall be liable for delays or failures in performance resulting from circumstances beyond its reasonable control, including natural disasters, war, terrorism, pandemics, government actions, or internet service disruptions.

17.6 Notices

Notices under these Terms shall be sent to:

• To Quint: legal@quintai.com
• To You: The email address associated with your account

18. Contact

For questions about these Terms:

• Email: legal@quintai.com
• Privacy inquiries: privacy@quintai.com
• Security issues: security@quintai.com
• Website: quintai.dev