AiPricingLabLegal · Terms
Legal · Terms

Terms of Service

Last updated: May 19, 2026

These Terms of Service (the “Terms”) govern your access to and use of the AiPricingLab platform, website, dashboard, APIs and SDKs (collectively, the “Service”). The Service is operated by Salvatore Castellitti, an individual sole trader established in Italy (the “Provider”, “we”, “us”).

By creating an account, integrating our SDK, calling our API, or otherwise using the Service, you (the “Customer”, “you”) agree to be bound by these Terms. If you do not agree, you must not use the Service.

1. Who can use the Service

The Service is intended for businesses, professionals and developers (B2B). To use the Service you must be at least 18 years old and have full legal capacity to enter into a binding contract. If you accept these Terms on behalf of a company or other legal entity, you represent that you have authority to bind that entity, and references to “you” mean that entity.

The Service is not directed to consumers within the meaning of the Italian Consumer Code (D.Lgs. 206/2005). If you are using the Service as a consumer, you may have additional rights that these Terms cannot restrict; please contact us before using the Service.

2. The Service in plain words

AiPricingLab provides usage-metering and limit-enforcement infrastructure for AI-powered applications. You define plans, limits and prices in our dashboard; you instrument your application with our SDK; we record events, enforce quotas, and expose analytics through our API and dashboard.

We do not resell AI inference. We do not contract with any AI provider on your behalf. Costs payable to OpenAI, Anthropic, Google, or any other AI provider remain entirely your responsibility.

2a. What flows through the Service (plain words)

We want you to understand, before you integrate, exactly what we see when your application talks to the Service. Every call you (or your end-user's device, via your backend or your public key) makes to our API transmits data to our servers. At a minimum, that data includes:

  • End-user identifier (end_user_id) - an opaque string of your choosing that we associate with quotas, subscriptions and analytics. We strongly recommend you pass a stable but non-identifying token (e.g. a UUID), not an email, phone number or full name.
  • Event records - event type, quantity, timestamp, the API key prefix used, and any custom metadata fields you choose to attach (e.g. model, tier, feature).
  • Subscription and plan state - which of your plans an end_user_id is on, period boundaries, current counter values, and the append-only history of upgrades, downgrades and cancellations.
  • Request metadata - IP address, user-agent, request timing and error traces, retained for security, billing reconciliation and debugging.

Separately, if you use our behavioral analytics SDK methods (capture, identify, alias), your application transmits product-usage events — such as screen or page views, onboarding steps and feature-engagement events — against a behavioral identifier you choose, together with any person-profile properties you attach. This capability and its data-protection treatment are described in Privacy Policy §4c. As with metering, you are the controller of that data and we are your processor.

When you specifically enable an Optional Content Feature (see §8a), additional content from your AI flow also flows to us and is stored against the corresponding event row:

  • Prompts- the free-form input text your application sends to its AI provider (e.g. the user's message, system prompt, retrieved context).
  • Responses- the free-form output text returned by the AI provider (the assistant's reply, generated copy, classification label, structured JSON).
  • Chat / multi-turn context - if your application is a chat or agent, each turn you choose to log is captured as its own (prompt, response) pair tied to the event. If you concatenate or replay the full conversation history into the prompt field on every turn, the conversation history flows to us in full. You decide what to send.
  • Media artefacts - images, audio, video, or other binary outputs produced by your AI generation flow that you choose to upload through the SDK.
  • Tool calls / agent traces - if you serialise tool-call arguments, tool-call results, retrieved documents, or any other intermediate agent state into the prompt, response or metadata fields, we receive and store that content too.

We are not a transparent proxy. The Service does not sit between your application and your AI provider. Data only reaches us because your code chose to send it - typically right before or right after the AI provider call. If you do not enable an Optional Content Feature, we never see the underlying prompt, response or media; we only see the metering event itself.

We do not use any of the above to train AI models. We do not sell or rent it. Internal access by Provider personnel is limited to operating, securing and supporting the Service (see Privacy Policy §12). Aggregate, de-identified statistics derived from usage may be retained and used as described in §9 below.

2b. Our role and your role under GDPR

For the personal data we hold about you, the Customer (your account, billing, dashboard activity, support emails), the Provider is the data controller in the sense of art. 4(7) GDPR.

For the personal data your application transmits to us about your end-users - including any end_user_id, custom metadata fields, behavioral analytics events and person profiles, and any prompts, responses, chat history or media you choose to capture through the Optional Content Features - the Customer is the data controller and the Provider is a data processor / sub-processoracting on the Customer's documented instructions, in the sense of art. 28 GDPR. The Data Processing Addendum at Privacy Policy §11 is incorporated by reference into these Terms.

Because we act as your processor for end-user data, we cannot determine the legal basis, the necessity, the proportionality, the retention period, the labelling or the notice-and-consent flow on your behalf. Those obligations are yours alone, and they are elaborated in §4 (Acceptable use) and §4a (End-user disclosure obligations) below.

3. Account, API keys, and security

  • You are responsible for all activity that occurs under your account, your workspaces, and any API keys (sk_live_*, pk_live_*) you create.
  • You must keep secret keys (sk_live_*) confidential. You agree to revoke and rotate any key that you suspect has been compromised.
  • You must provide accurate information at sign-up and keep it current.
  • We may suspend or terminate accounts that show signs of abuse, fraud, security risk, or violation of these Terms.

4. Acceptable use

You agree not to, and not to permit any end-user or third party to:

  • use the Service for any unlawful, fraudulent, infringing, or harmful purpose;
  • submit, transmit, store, or attach (whether in events, metadata, prompts, responses, uploaded media or otherwise) any content that:
    • is illegal under the laws of Italy, the European Union, or any other applicable jurisdiction;
    • constitutes or depicts child sexual abuse material (CSAM), terrorist content as defined in Regulation (EU) 2021/784, non-consensual intimate imagery, or content promoting violence, self-harm or hatred;
    • infringes any intellectual-property right, trademark, trade secret, publicity right, moral right or other proprietary right;
    • violates the privacy or data-protection rights of any individual, including special-category data (art. 9 GDPR) about identified or identifiable persons;
    • contains malware, exploit code, or content designed to compromise the Service or any third party;
    • is materially defamatory, deceptive, or designed to facilitate fraud, harassment, stalking, doxxing, or unauthorised surveillance.
  • attempt to interfere with, overload, reverse-engineer, decompile, or otherwise tamper with the Service or its underlying infrastructure, including by submitting media files intended to exploit storage or upload paths;
  • use the Service in connection with applications subject to the “unacceptable risk” AI practices prohibited by Title II of Regulation (EU) 2024/1689 (the “AI Act”), or to deploy high-risk AI systems without the controls that Regulation requires of you;
  • circumvent quota, rate-limit, billing, content-policy or moderation systems, including by creating multiple accounts to evade limits;
  • submit personal data of your end-users beyond a stable opaque identifier (end_user_id) and metadata strictly necessary for metering;
  • use the optional Prompt Logging or Media Uploads features (see §8a) to store any of the content described above, or to retain personal data of end-users beyond what is necessary, lawful, and disclosed under your own privacy notice;
  • use the Service — and in particular the behavioral analytics methods (capture, identify, alias), profiling, person-profile building, or the Optional Content Features — to track, profile, re-identify, or build a person profile of any individual you know, or ought reasonably to know, is a child below the applicable digital-consent age (16 by default under article 8 GDPR; 14 in Italy under art. 2-quinquies of the Italian Privacy Code; 13 to 16 in other member states), unless you have a valid legal basis, have obtained any parental or guardian consent required by article 8 GDPR and applicable national law, and have applied the heightened protections that children's personal data requires;
  • use the Service to build a directly competing usage-metering product;
  • use the Service to receive, store, transmit or process Protected Health Information (PHI)within the meaning of the U.S. Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and its implementing regulations, or to support a workflow in which the Customer or any party to the data flow is a “Covered Entity” or “Business Associate” in respect of that PHI. The Service is not HIPAA-compliant, the Provider does notsign Business Associate Agreements (BAAs), and the Provider is not designed for, hardened against, or certified for the storage or handling of PHI. The corresponding obligations under the Italian and EU regimes for healthcare and health-related data (in particular art. 9 GDPR and the rules of the Italian Garante for the processing of healthcare data) similarly remain the Customer's sole responsibility and require an additional written arrangement that the Provider does not currently offer;
  • use the Service in any workflow that requires PCI-DSS scope, ITAR / EAR-controlled data handling, classified or national-security data, or any other regime that imposes on the Provider specific contractual, certification or technical obligations beyond those set out in these Terms, the DPA and the Privacy Policy.

We may, at our sole discretion and without prior notice, refuse, throttle, quarantine, delete, or block any event, prompt, response, metadata field, uploaded media file or end-user account that we reasonably believe violates this Section 4, applicable law, or a valid third-party notice. We are under no obligation to monitor Customer Data, but we reserve the right to do so where required by law or to investigate a suspected violation.

4a. End-user disclosure obligations (what YOU must tell your users)

Because you decide what data to push to us, you are the only party that can tell your end-users that AiPricingLab exists in your stack. By using the Service, you specifically agree to all of the following before your application sends us its first event for a given end-user:

  • Identify the Providerin your own privacy notice, by name (“ AiPricingLab”), with our legal entity (“Salvatore Castellitti, sole trader, Italy”), in the list of recipients / sub-processors of personal data under articles 13(1)(e) and 14(1)(e) GDPR.
  • Disclose what categories of data you transmit to us. At a minimum, your notice must mention the end_user_id, event records and metadata. If you enable Prompt Logging, your notice must additionally mention that prompts and AI responses (and, in chat or agent flows, the conversation history you choose to capture) are transmitted to and stored by the Provider. If you enable Media Uploads, your notice must additionally mention that AI-generated images, audio and/or video are transmitted to and stored by the Provider. If you use behavioral analytics, your notice must additionally mention that product-usage events and person-profile data are transmitted to and stored by the Provider.
  • Disclose the purposes we process that data for (usage metering, quota enforcement, analytics, debugging) and the legal basis you rely on under articles 6 and (where applicable) 9 GDPR.
  • Disclose retention periods consistent with Privacy Policy §9, and any shorter retention you choose to set in our dashboard.
  • Disclose international transfers. Our hosting and storage providers may be located outside the EU/EEA (see Privacy Policy §8). Your notice should state this and reference the safeguards we rely on (adequacy decisions and/or Standard Contractual Clauses).
  • Surface a route to data-subject rights. Your end-users will, in most cases, contact you, not us, to exercise their GDPR rights. You agree to forward, action, or relay such requests so that we can comply with our processor obligations (Privacy Policy §11). You will not redirect end-users to our support channel as their primary contact.
  • Obtain any required consent. Where your legal basis is consent (art. 6(1)(a) or art. 9(2)(a) GDPR - particularly for Prompt Logging and Media Uploads when the captured content includes special-category data) you must collect and record that consent before the SDK transmits the relevant content, and you must give your end-users a way to withdraw it.
  • Apply additional rules where they apply to you: the AI Act (Regulation (EU) 2024/1689) transparency obligations for chatbots and generative content; the Digital Services Act (Regulation (EU) 2022/2065) notice and reporting obligations if you operate an intermediary; the ePrivacy / Italian art. 122 Privacy Code consent rules where applicable; and any sectoral rules (health, finance, employment, children's data).

Model clause (informational only - adapt to your own notice).You may adapt the following text for your own privacy notice. We do not warrant its sufficiency for your specific use-case, and you remain responsible for your own privacy notice under articles 13–14 GDPR:

Usage metering and quota enforcement.We use AiPricingLab (operated by Salvatore Castellitti, sole trader, Italy - “AiPricingLab”) to meter your use of AI features in this application, enforce your plan limits, and produce aggregate analytics. To do so, our application sends AiPricingLab an opaque identifier representing your account, the type and quantity of each AI action, the timestamp, and limited technical metadata. [If Prompt Logging is enabled:] We additionally send AiPricingLab the prompts you submit to our AI features and the responses returned to you, including the conversation history of multi-turn chats, for debugging and quality-review purposes. [If Media Uploads are enabled:] We additionally send AiPricingLab the images / audio / video produced by our AI features in response to your input. AiPricingLab acts as our processor under article 28 GDPR; it does not use this data to train AI models and does not sell it. Some of its infrastructure providers (e.g. Vercel, Turso, Cloudflare) are located outside the EU/EEA; data transfers rely on adequacy decisions and/or Standard Contractual Clauses under Chapter V GDPR. You can exercise your GDPR rights by contacting us at [your address]; we will relay your request to AiPricingLab where required.

We may at any time, by reasonable notice in the dashboard or by email, require you to update your privacy notice to reflect material changes to the Service (for example, a new sub-processor, a new feature, a change in retention, or a new data-flow). Your continued use of the Service after that notice is your acknowledgement that your notice has been updated.

5. Plans, fees, and billing

The Service is offered through a Free tier and one or more paid tiers, as described on our pricing page. Paid tiers, when activated, are billed in advance on a recurring subscription basis (monthly or annual, as selected at checkout) plus any usage-based overage charges accrued during the period.

All fees are stated and payable in Euro (EUR) or US Dollars (USD), as displayed at checkout. Fees are exclusive of any applicable taxes (including Italian VAT / IVA, where applicable), which will be added on top and shown on the invoice.

We may change our pricing at any time. Pricing changes will take effect at the start of your next billing cycle and will be notified to you by email or in-dashboard at least thirty (30) days in advance. Continuing to use the Service after a pricing change takes effect constitutes acceptance of the new pricing.

6. No refunds

All payments are final and non-refundable. We do not provide refunds, credits, or pro-rated reimbursements for unused portions of a billing period, partial months of service, downgraded plans, deleted workspaces, deleted apps, accounts terminated for breach, or for fees already paid in respect of past periods.

This applies regardless of whether you actively use the Service during a paid period. If you cancel your subscription, you will retain access to the paid features until the end of the then-current billing period, after which your account will revert to the Free tier (if available) or be closed.

This refund policy does not affect any non-waivable rights you may have under mandatory provisions of Italian or EU law.

7. Late payment and suspension

If a payment fails or is overdue, we may, after reasonable notice: (i) restrict or suspend your access to the Service, (ii) disable API keys, (iii) apply statutory interest on overdue amounts as set out in D.Lgs. 231/2002, and (iv) recover reasonable collection costs. Suspension does not relieve you from your obligation to pay outstanding amounts.

8. Your data and ownership

You retain all rights, title and interest in and to your account data, plan configurations, events you submit, and any content you upload (collectively, “Customer Data”). You grant us a limited, worldwide, royalty-free licence to host, copy, transmit and process Customer Data solely as necessary to provide and improve the Service, to enforce these Terms, and to comply with applicable law.

We do not use your Customer Data to train AI models. We do not sell or rent your Customer Data.

Data Processing Agreement. Where your application transmits personal data about your end-users to us, we act as your processor under article 28 GDPR. The Data Processing Agreement available at aipricinglab.space/dpa (the “DPA”) is incorporated into and forms part of these Terms, and governs that processing. By accepting these Terms you accept the DPA. The DPA includes the technical and organisational measures we apply (Schedule 2), the current list of sub-processors (Schedule 3), and the Standard Contractual Clauses (Commission Implementing Decision (EU) 2021/914, Module 3) for international transfers.

8a. Optional Content Features: Prompt Logging and Media Uploads

The Service offers two optional, opt-infeatures that allow you to attach additional content to metering events for your own debugging, audit, or quality-review purposes (collectively, the “Optional Content Features”):

  • Prompt Logging - when enabled in the dashboard, the SDK can transmit and we will store optional prompt and response text strings tied to each event row.
  • Media Uploads - when enabled in the dashboard, the SDK can transmit and we will store optional binary artefacts (images, video clips, audio files) produced by your AI generation flow, tied to each event row.

Both features are off by default. They are activated only when an authorised member of your workspace flips the toggle in App → Settings. By enabling either toggle, you specifically acknowledge and agree to the following:

  • You decide what to send. We do not select, prompt, encourage or sample the content you submit through these features. We process whatever you choose to send.
  • You are the controller of any personal data inside that content.The prompt, response and media payloads frequently contain personal data, special-category data (art. 9 GDPR), or third-party IP. You are exclusively responsible for: (i) identifying an appropriate legal basis under articles 6 and 9 GDPR (and any equivalent legislation outside the EU); (ii) providing clear and complete notice to your end-users and any other data subjects, including under articles 13–14 GDPR; (iii) obtaining all consents required by law, including those required by art. 7 of the Italian Privacy Code, by the AI Act, and by sector-specific rules (e.g. health, finance, employment); (iv) performing a Data Protection Impact Assessment under art. 35 GDPR where required; and (v) honouring data-subject requests under articles 12–23 GDPR.
  • You will not send prohibited content. You will not enable, or will immediately disable, the Optional Content Features if any content described in Section 4 (illegal, infringing, CSAM, terrorist, special-category without consent, etc.) is or could foreseeably be captured by them.
  • No warranty of preservation. Stored prompts, responses and media are provided as a debugging and audit convenience, not a system of record. We do not warrant that they will be retained without loss, modification or interruption. You should not rely on the Service as primary or sole storage for content that has legal, financial, medical, evidentiary or business-continuity value.
  • Limits and truncation. Prompt and response strings are subject to a per-field size cap (currently 32 KB) and are server-side truncated above that cap. Media uploads are subject to per-file (currently 100 MB), per-request and per-account size, count, MIME and storage caps that we may adjust without notice.
  • Retention. Retention windows for prompts, responses and media are described in the documentation and the Privacy Policy. We may delete content (i) when its retention window expires, (ii) at your written request, (iii) when an account is terminated, (iv) when required by law or a valid third-party notice, or (v) on a best-effort basis to remove orphaned or unverified uploads. Deletion may be propagated asynchronously through backups and replicas.
  • Removal and moderation. We may remove any specific prompt, response or media artefact, or disable either feature for a specific app or workspace, at our sole discretion, where we reasonably believe it is necessary to comply with applicable law, to enforce Section 4, or to respond to a credible third-party notice. We will use reasonable efforts to notify you, except where prohibited by law.
  • No editorial role.We do not pre-screen or review the content you store through the Optional Content Features. To the maximum extent permitted by law, we benefit from the “mere conduit”, “caching” and “hosting” liability exemptions under articles 4–6 of Regulation (EU) 2022/2065 (the Digital Services Act) and the corresponding provisions of D.Lgs. 70/2003 for the content you choose to upload through these features.
  • Reporting illegal content. Anyone may report content stored through the Optional Content Features that they believe to be illegal by emailing s.castellitti.dev@gmail.com. Notices should include enough detail to locate and assess the content; abusive or bad-faith notices may be rejected.

For clarity: the Optional Content Features are a convenience layered on top of metering. Disabling them does not affect quota enforcement, billing, analytics or any other part of the Service. We strongly recommend keeping both features OFF for any app that processes regulated, special-category, or end-user-identifiable data unless you have a documented legal basis and an explicit user-facing disclosure.

9. Aggregated and anonymised data

We may generate aggregated, de-identified statistics derived from use of the Service (e.g. total events processed across the platform, average latency, error rates). Such aggregated data does not identify you or any individual and is owned by us; we may use it for any lawful purpose, including improving the Service and publishing benchmarks.

10. Service availability and changes

We use commercially reasonable efforts to keep the Service available, but we do not guarantee uninterrupted or error-free operation. Scheduled maintenance, third-party outages (including hosting, email and database providers), force majeure events and emergency security work may cause downtime. We reserve the right to modify, add, or remove features at any time.

11. Third-party services

The Service relies on third-party providers (currently including, without limitation, Vercel for hosting, Turso for the database, Cloudflare for object storage of media uploads (R2), Better Auth for authentication, Resend for email, and Stripe for payments once enabled). Their availability, terms and pricing are outside our control. We are not responsible for failures of, or actions taken by, those third parties beyond what is required by Italian and EU law, including any loss, corruption or unavailability of prompts, responses or media stored through the Optional Content Features as a result of a third-party outage, deletion, or change of terms.

You acknowledge that you may also bring your own Cloudflare R2 (or comparable) bucket and connect it to the Service as a destination for Media Uploads. When you do, you remain controller of that bucket and of its contents; we act solely as a transit and indexing layer toward the bucket. Loss, corruption, mis-configuration or compromise of a customer bucket is your sole responsibility.

12. Beta features

Features marked “beta”, “preview”, “experimental”, or similar are provided “as is” and may be modified, throttled or discontinued at any time. They are excluded from any availability commitment and from any warranty.

13. Intellectual property

The Service, including the dashboard, API, SDK source code, documentation, branding and underlying technology, is owned by the Provider and is protected by Italian and international intellectual-property laws. We grant you a non-exclusive, non-transferable, revocable licence to use the Service strictly in accordance with these Terms.

Our SDK is distributed under the licence indicated in its repository (e.g. MIT). Use of the SDK is additionally governed by that licence.

14. Feedback

If you send us feedback, suggestions or feature requests, you grant us a perpetual, irrevocable, royalty-free, worldwide licence to use them without restriction or attribution.

15. Confidentiality

Each party agrees to protect the other's non-public information that is disclosed in connection with the Service with the same degree of care it uses for its own confidential information, and not to disclose it to third parties except as needed to perform under these Terms or as required by law.

16. Warranties and disclaimers

Except as expressly stated in these Terms and to the maximum extent permitted by law, the Service is provided “as is” and “as available”, without warranties of any kind, whether express, implied or statutory, including warranties of merchantability, satisfactory quality, fitness for a particular purpose, accuracy, non-infringement, durability, security, or uninterrupted or error-free operation.

You are solely responsible for: (i) the correctness of the plans, limits, prices and rules you configure; (ii) the AI provider costs you incur, including overages caused by mis-configuration on your side or by your end-users; (iii) the content of every prompt, response, media file and metadata field you transmit to the Service; (iv) the lawfulness, accuracy, completeness, originality and fitness-for-purpose of any output produced by any AI provider you choose to integrate; and (v) the moderation, labelling, age-gating, retention and deletion of content you choose to store through the Optional Content Features. We do not warrant that the Service will catch every possible mis-configuration, prevent every form of abuse, detect every infringing or illegal upload, or recover any content that has been lost, corrupted or deleted.

No warranty regarding AI output. The Service does not generate AI output. You connect to AI providers separately. Any hallucination, bias, defamation, infringement, confidentiality breach, regulatory violation or other defect in AI-generated content is not attributable to the Service and is not covered by any warranty we make.

No warranty regarding stored content. Prompts, responses and uploaded media are stored on a commercially reasonable basis only. We do not maintain backups for disaster-recovery purposes of Optional Content. Loss, partial loss, truncation, mis-order, unavailability or accidental deletion of such content does not constitute a breach of these Terms and gives rise to no liability beyond the cap in Section 17.

17. Limitation of liability

To the maximum extent permitted by Italian law, in no event shall the Provider be liable for any indirect, incidental, special, consequential, exemplary or punitive damages, including loss of profits, loss of revenue, loss of data, loss of content (including prompts, responses and uploaded media), loss of goodwill, loss of opportunity, loss of anticipated savings, regulatory fines imposed on you, claims brought against you by your end-users or by third parties, or business interruption, arising out of or in connection with your use of (or inability to use) the Service, the loss or corruption of any content stored through the Optional Content Features, or the acts or omissions of any AI provider or other third party, even if advised of the possibility of such damages.

The Provider's total aggregate liability under or in connection with these Terms, whether in contract, tort (including negligence) or otherwise, is limited to the lesser of (a) the amounts actually paid by you to the Provider for the Service in the twelve (12) months preceding the event giving rise to the claim, or (b) one hundred Euro (EUR 100). For Free-tier users, and for any claim relating to the Optional Content Features (regardless of tier), this cap is EUR 100.

Each provision of these Terms that excludes or limits liability is severable and operates independently. The disablement, illegality or unenforceability of one such provision does not affect the others.

Nothing in these Terms limits or excludes liability that cannot be limited or excluded under applicable Italian law (including liability for wilful misconduct or gross negligence pursuant to art. 1229 of the Italian Civil Code, or any non-waivable consumer right).

18. Indemnity

You agree to defend, indemnify and hold harmless the Provider and its officers, employees, contractors, processors and sub-processors (the “Indemnified Parties”) from and against any and all claims, demands, investigations, regulatory enforcement actions, fines, penalties, damages (including statutory and punitive damages where permitted), losses, costs and reasonable legal fees (collectively, “Losses”) arising out of or related to:

  • your breach of these Terms or of any documentation incorporated by reference;
  • any content you transmit, store, generate, display or distribute through the Service, including events, metadata, prompts, responses and uploaded media, whether produced by you, by your end-users, or by an AI provider acting on your instructions;
  • any claim that such content is illegal, infringing, defamatory, harmful, deceptive, inaccurate, biased, discriminatory, in breach of privacy, in breach of confidentiality, or otherwise actionable;
  • any failure on your part to obtain a valid legal basis, consent, contract, or DPIA for the personal data you submit (whether about you, your personnel, your end-users or any third party), and any data-subject claim, supervisory-authority action or fine (including under articles 82–84 GDPR or under the AI Act) arising from that failure;
  • any dispute between you and your end-users, your AI providers, your billing provider, your auditors, your regulator, or any other third party;
  • any tax, accounting, billing, refund, charge-back, sanctions, export-control or anti-money-laundering issue arising from your operations;
  • your use of any third-party model, API, dataset or content via the Service in violation of that third party's terms or applicable law; and
  • your violation of any law (including the GDPR, the AI Act, the Digital Services Act, consumer-protection law, intellectual-property law, criminal law, tax law and export-control law) or of any third-party right.

We will give you prompt notice of any claim covered by this Section 18 and reasonable cooperation in its defence (at your expense). You will not settle any such claim in a way that imposes a non-monetary obligation on, or admits fault by, an Indemnified Party without that party's prior written consent. We may, at our option, assume control of the defence and settlement of any claim that primarily affects our reputation, security or operations, in which case you remain liable for the Losses.

19. Term and termination

These Terms apply from the moment you first access the Service and remain in force for as long as you have an account.

You may terminate at any time by deleting your account from the dashboard. We may terminate or suspend your account immediately and without prior notice if you breach these Terms, fail to pay due amounts, or use the Service in a way that creates a legal, security, or operational risk.

Upon termination, your right to use the Service ceases. We may delete your Customer Data after a reasonable retention period as described in our Privacy Policy. Sections that by their nature should survive termination (including Sections 6, 8, 13, 14, 16, 17, 18, 22, and 23) will continue to apply.

20. Modifications to these Terms

We may modify these Terms from time to time. Material changes will be notified by email or in-dashboard at least thirty (30) days before they take effect. The “Last updated” date at the top of this page reflects the latest version. Continuing to use the Service after the effective date constitutes acceptance of the revised Terms.

21. Notices

We will send notices to the email address associated with your account. You will send notices to us at s.castellitti.dev@gmail.com.

22. Assignment

You may not assign or transfer these Terms (in whole or in part) without our prior written consent. We may assign these Terms to an affiliate or in connection with a merger, acquisition, corporate reorganisation, or sale of all or substantially all of our assets.

23. Governing law and jurisdiction

These Terms are governed by and construed in accordance with the laws of the Republic of Italy, excluding its conflict-of-law rules and excluding the UN Convention on Contracts for the International Sale of Goods.

Any dispute arising out of or in connection with these Terms shall be subject to the exclusive jurisdiction of the courts of Rome, Italy, save for any non-waivable jurisdictional rights of consumers under EU law.

24. Specific approval (art. 1341 c.c.)

Pursuant to articles 1341 and 1342 of the Italian Civil Code, by accepting these Terms you specifically approve the following clauses: §2b (Roles under GDPR - processor / sub-processor designation), §4 (Acceptable use, including the prohibitions and the moderation / removal right, the HIPAA / PHI / no-BAA exclusion, and the PCI / ITAR / classified-data exclusion), §4a (End-user disclosure obligations, including the duty to name the Provider and to update your own privacy notice on notice from us), §6 (No refunds), §7 (Late payment and suspension), §8 (Data Processing Agreement at /dpa incorporated by reference, including its sub-processor notice-and-objection mechanism), §8a (Optional Content Features - Prompt Logging and Media Uploads, including the no-warranty and removal rights), §10 (Service availability and changes), §11 (Third- party services and customer-bucket responsibility), §12 (Beta features), §16 (Warranties and disclaimers, including the no-warranty over AI output and stored content), §17 (Limitation of liability, including the EUR 100 cap), §18 (Indemnity, including the broad AI-content and end-user-claim coverage), §19 (Term and termination), §22 (Assignment) and §23 (Governing law and jurisdiction).

25. Contact

Questions about these Terms can be sent to s.castellitti.dev@gmail.com.