By accessing or using CheckAppSec ("the Service"), you agree to be bound by these Terms of Service. If you do not agree, please do not use the Service.
2. Service Description
CheckAppSec is a security analysis platform that allows users to upload iOS application (IPA) files for static security analysis. The Service provides:
Vulnerability detection and analysis
Hardcoded sensitive data identification
Permissions analysis
Security risk scoring
3. Permitted Use
You may use the Service only for:
Security research and testing of applications you own or have permission to analyze
Vulnerability assessment as part of legitimate security workflows
Educational purposes in learning about app security
Compliance testing for security standards
4. Prohibited Use
You agree NOT to:
Upload applications you do not own without explicit permission
Use the Service for malicious purposes or to facilitate unauthorized access
Attempt to reverse engineer, decompile, or extract proprietary algorithms from the Service
Overload or abuse the Service with excessive requests
Share or redistribute analysis results of applications you don't own
Violate any laws or regulations in your use of the Service
5. Data Retention & Privacy
We are committed to your privacy and data security:
Automatic Deletion: All uploaded files and analysis results are automatically deleted after 2 hours
No Permanent Storage: We do not keep copies, backups, or archives of your applications
Manual Deletion: You can delete your data immediately using the "Delete Now" button
Access Control: Only you can access your analysis results via your unique session token
You retain all ownership rights to applications you upload. By uploading, you grant us a temporary, limited license to:
Process and analyze the uploaded file
Generate security analysis reports
Store the file temporarily (maximum 2 hours)
This license terminates automatically when your data is deleted (after 2 hours or manual deletion).
Our Service
The Service, including all analysis algorithms, interface design, and documentation, is owned by CheckAppSec and protected by intellectual property laws.
7. Disclaimers & Limitations
No Warranty
The Service is provided "AS IS" without warranties of any kind. We do not guarantee:
100% accuracy in vulnerability detection
Detection of all security issues
Uninterrupted or error-free operation
Compatibility with all IPA files
Limitation of Liability
To the maximum extent permitted by law, CheckAppSec shall not be liable for:
Indirect, incidental, or consequential damages
Loss of data, profits, or business opportunities
Security breaches in analyzed applications
Actions taken based on analysis results
8. User Responsibilities
You are responsible for:
Ensuring you have the right to analyze uploaded applications
Keeping your session tokens secure
Verifying analysis results independently
Complying with applicable laws and regulations
Deleting sensitive data when no longer needed
9. Service Availability
We strive to maintain high availability but do not guarantee uninterrupted access. We may:
Perform maintenance or updates with or without notice
Suspend service for security or technical reasons
Implement rate limits to prevent abuse
Modify or discontinue features
10. Termination
We reserve the right to:
Refuse service to anyone for any reason
Block access for violations of these Terms
Delete data immediately if abuse is detected
Report illegal activity to authorities
11. Changes to Terms
We may update these Terms at any time. Continued use of the Service after changes constitutes acceptance of the new Terms. We will update the "Effective Date" when changes are made.
12. Governing Law
These Terms are governed by the laws of the United States. Any disputes shall be resolved in the courts of the jurisdiction where CheckAppSec is registered.
CheckAppSec is built on principles of privacy, security, and transparency. We will never compromise your data for profit, and we will always prioritize your privacy over business interests. Your trust is our most valuable asset.