These Terms of Service (“Terms”) govern your access to and use of the services provided by Mataki Labs LLC (“AuditStore,” “we,” “us,” or “our”), a Wyoming limited liability company, including the auditstore.dev website, the AuditStore Cloud platform, APIs, SDKs, and related services (collectively, the “Services”).

By accessing or using the Services, you agree to be bound by these Terms. If you do not agree, do not use the Services.

1. Definitions

  • “Account” means your registered account on AuditStore Cloud.
  • “Ledger” means a named, isolated, append-only event stream within the Services. Typically maps to a tenant or environment in your application.
  • “Event” or “Audit Event” means a structured record of an actor-initiated state change emitted to the Services via the API or SDK.
  • “Actor” means the user, service, API key, or system that performed the action recorded by an Event.
  • “Hash Chain” means the cryptographic chain linking each Event to its predecessor via SHA-256 hashes within a Ledger.
  • “Integrity Proof” means a Merkle inclusion proof that verifies an Event or range of Events exists unmodified within a Ledger.
  • “SDK” means the AuditStore software development kits for Go, TypeScript, Python, and other supported languages.
  • “Plan” means the subscription tier you have selected (Dev, Launch, Scale, or Enterprise).
  • “Retention Policy” means the configured rules governing how long Events are retained in the active Ledger before archival.
  • “Legal Hold” means a directive that overrides Retention Policies and prevents archival or deletion of affected Events.

2. Account Registration

To use certain features of the Services, you must create an Account. You agree to:

  • Provide accurate and complete registration information
  • Maintain the security of your Account credentials and API keys
  • Notify us immediately of any unauthorized use of your Account
  • Accept responsibility for all activity that occurs under your Account

You must be at least 16 years old to create an Account. If you are using the Services on behalf of an organization, you represent that you have authority to bind that organization to these Terms.

3. Use of the Services

3.1 License Grant

Subject to these Terms, we grant you a limited, non-exclusive, non-transferable, revocable license to access and use the Services in accordance with your Plan.

3.2 Use Restrictions

You agree not to:

  • Attempt to modify, backdate, delete, or tamper with Events in any Ledger through any means, including API manipulation or exploiting system vulnerabilities
  • Circumvent or disable any security features of the Services, including hash-chain integrity, access controls, or rate limiting
  • Use the Services as an operational telemetry or log aggregation platform — AuditStore is designed for actor-initiated state changes, not system metrics, request logs, or application performance data
  • Use the Services as a primary data store for application state
  • Reverse engineer, decompile, or disassemble any proprietary part of the Services (except as permitted by applicable law or for open-source components)
  • Use the Services in violation of any applicable law or regulation
  • Resell or redistribute access to the Services without our prior written consent
  • Attempt to extract, decrypt, or exfiltrate data from AuditStore storage outside of the documented API surface
  • Use the Services to process or transmit any data subject to the International Traffic in Arms Regulations (ITAR) or Export Administration Regulations (EAR) without prior authorization
  • Emit Events containing malware, exploit code, or content designed to disrupt the Services or other customers

3.3 API Usage

Your use of the API is subject to the rate limits specified in your Plan. We reserve the right to throttle or suspend API access if usage patterns indicate abuse or threaten service stability. Rate limits are applied per Ledger and are documented on our pricing page. We will provide reasonable notice before taking enforcement action, except in cases of imminent harm to service availability.

3.4 Immutability

You acknowledge and agree that Events written to AuditStore Ledgers are immutable by design. Once an Event is recorded, it cannot be modified, backdated, or deleted from the active Ledger. Events may be archived (moved to customer-owned cold storage) when a Retention Policy triggers, but the Hash Chain is preserved via tombstone records. This immutability is a core feature of the Services, not a limitation.

4. Subscriptions and Billing

4.1 Subscription Plans

The Services are offered under tiered subscription plans as described on our pricing page. Plan features, included event volumes, and pricing are subject to change with 30 days’ prior notice.

4.2 Billing

Paid Plans are billed monthly in advance. All fees are stated in U.S. dollars and are non-refundable except as expressly stated in these Terms or required by applicable law.

4.3 Event Counting

Usage is measured by the number of Events ingested during a billing period. An Event is counted when it is accepted by the API and assigned a sequence number, regardless of whether it is later archived under a Retention Policy. Batch submissions count each Event in the batch individually.

4.4 Overages

If your usage exceeds the Event volume included in your Plan, overage charges will apply at the per-event rates specified in your Plan. We will notify you when your usage approaches your Plan limit.

4.5 Dev Tier

The Dev tier is provided free of charge with limited functionality (10,000 events/month, 1 Ledger, 30-day retention, chain verification only). We reserve the right to modify or discontinue the Dev tier with 30 days’ notice.

5. Content Ownership

5.1 Your Data

You retain all rights to your data, including all audit Events, Ledger configurations, and any metadata emitted to the Services (“Customer Data”). We do not claim ownership of any Customer Data.

5.2 Event Storage

AuditStore stores Events solely for the purpose of providing the Services — specifically, hash-chain computation, Ledger maintenance, query execution, integrity proof generation, and data export. We do not use stored Events to derive analytics, train models, or perform any processing on our own behalf beyond what is necessary to provide the Services.

5.3 License to AuditStore

You grant us a limited license to use, process, and store Customer Data solely as necessary to provide the Services. This includes computing hash chains, generating Merkle trees, executing queries, producing integrity proofs, and performing exports.

6. Data Processing

6.1 Roles

AuditStore acts as a data processor with respect to Customer Data. You, as the customer, are the data controller and are responsible for ensuring you have a lawful basis to emit and store audit Events through the Services, including any Events that contain personal data of your end users.

6.2 Data Portability

You may export your Events and Ledger data at any time through the API or the export functionality. Supported export formats include JSON Lines, CSV, and Parquet.

6.3 Data Deletion

Upon termination of your Account, we will make your data available for export for 30 days, after which all Customer Data will be permanently deleted, except where retention is required by law or for legitimate business purposes (such as billing records). Legal Holds must be released before deletion can proceed for affected Events.

7. Integrity and Verification

7.1 Hash Chain Integrity

Each Event’s chain_hash is computed as SHA-256 over the previous chain_hash and the Event’s core fields. The chain is maintained per-Ledger. AuditStore does not have the ability to modify the Hash Chain without detection.

7.2 Independent Verification

You may independently verify the integrity of your Ledgers by: (a) exporting the full chain and verifying locally; (b) requesting Merkle inclusion proofs for any Event or range; or (c) subscribing to root hash publications (Enterprise tier) and maintaining your own verification log. AuditStore does not guarantee the results of verification performed outside the Services.

7.3 Archival Integrity

When Events are archived under a Retention Policy, tombstone records containing each Event’s hash replace the archived Events in the active Ledger. This preserves Hash Chain integrity for retained Events while removing payload data from the active store.

8. Service Availability

8.1 Uptime

We target the uptime percentages specified in the Service Level Agreement published at auditstore.dev/legal/sla for each Plan tier.

8.2 Service Level Agreement

Launch, Scale, and Enterprise Plan customers are eligible for service credits as described in the SLA in the event of downtime below the committed uptime percentage.

8.3 Modifications

We reserve the right to modify, suspend, or discontinue any part of the Services at any time. For material changes that reduce core functionality, we will provide at least 90 days’ notice. We will not be liable to you for any modification, suspension, or discontinuation of the Services.

8.4 Maintenance

Planned maintenance windows will be announced at least 72 hours in advance. We will make reasonable efforts to schedule maintenance during low-usage periods.

9. Intellectual Property

9.1 AuditStore IP

The Services, including the AuditStore Cloud platform, API, documentation, trademarks, and proprietary technology, are owned by Mataki Labs LLC and protected by intellectual property laws. Nothing in these Terms grants you rights to our trademarks or branding.

9.2 Open Source

Certain AuditStore SDKs and tools may be released under open-source licenses. Your use of those components is governed by the applicable open-source license, not these Terms.

9.3 Feedback

If you provide feedback, suggestions, or ideas about the Services, you grant us an unrestricted, irrevocable, perpetual license to use that feedback for any purpose without obligation to you.

10. Disclaimers

THE SERVICES ARE PROVIDED “AS IS” AND “AS AVAILABLE” WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS, IMPLIED, OR STATUTORY. TO THE MAXIMUM EXTENT PERMITTED BY LAW, WE DISCLAIM ALL WARRANTIES, INCLUDING WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, AND ACCURACY.

WE DO NOT WARRANT THAT THE SERVICES WILL BE UNINTERRUPTED, ERROR-FREE, OR SECURE, THAT HASH CHAINS WILL NEVER EXPERIENCE COMPUTATION ERRORS, OR THAT ANY DEFECTS WILL BE CORRECTED. THE INTEGRITY PROOF MECHANISM IS PROVIDED FOR VERIFICATION PURPOSES AND DOES NOT CONSTITUTE A LEGAL GUARANTEE OF TAMPER-EVIDENCE.

11. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL AUDITSTORE, ITS DIRECTORS, OFFICERS, EMPLOYEES, OR AGENTS BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING LOSS OF PROFITS, DATA, OR GOODWILL, ARISING OUT OF OR RELATED TO YOUR USE OF THE SERVICES.

OUR TOTAL AGGREGATE LIABILITY FOR ALL CLAIMS ARISING OUT OF OR RELATED TO THESE TERMS OR THE SERVICES SHALL NOT EXCEED THE LESSER OF (A) THE AMOUNTS YOU PAID TO US IN THE TWELVE MONTHS PRECEDING THE CLAIM, OR (B) ONE HUNDRED U.S. DOLLARS ($100).

12. Indemnification

You agree to indemnify, defend, and hold harmless AuditStore and its officers, directors, employees, and agents from any claims, damages, losses, liabilities, costs, and expenses (including reasonable attorneys’ fees) arising out of or related to:

  • Your use of the Services
  • Your violation of these Terms
  • Your violation of any applicable law or regulation
  • The content of Events you emit to the Services, including any claim that stored data violates a third party’s rights
  • Any claim by your end users related to the recording of their actions as audit Events

13. Termination

13.1 By You

You may terminate your Account at any time by contacting us or using the account settings. Termination takes effect at the end of your current billing period.

13.2 By AuditStore

We may suspend or terminate your Account if:

  • You violate these Terms or the Acceptable Use Policy
  • Your Account is used for illegal activity
  • You fail to pay fees when due after 15 days’ written notice
  • We are required to do so by law

We will provide reasonable notice before termination except in cases of egregious violation or legal requirement.

13.3 Effect of Termination

Upon termination, your right to use the Services ceases immediately. We will make your data available for export for 30 days following termination, after which all Customer Data will be permanently deleted. Active Legal Holds must be addressed before data deletion. Sections 5.1, 7, 9, 10, 11, 12, 14, and 15 survive termination.

14. Governing Law and Dispute Resolution

14.1 Governing Law

These Terms are governed by the laws of the State of Wyoming, United States, without regard to its conflict of law provisions.

14.2 Dispute Resolution

Any dispute arising out of or relating to these Terms shall first be attempted to be resolved through good-faith negotiation between the parties. If the dispute cannot be resolved within 30 days, either party may initiate binding arbitration administered by the American Arbitration Association under its Commercial Arbitration Rules. The arbitration shall take place in the State of Wyoming. The arbitrator’s decision shall be final and binding.

14.3 Class Action Waiver

You agree to resolve disputes with us on an individual basis. You waive any right to participate in a class action, class arbitration, or representative proceeding.

14.4 Small Claims Exception

Either party may bring a claim in small claims court in the State of Wyoming if the claim qualifies.

15. General Provisions

15.1 Entire Agreement

These Terms, together with the Privacy Policy, Acceptable Use Policy, and Service Level Agreement, constitute the entire agreement between you and AuditStore regarding the Services and supersede all prior agreements.

15.2 Severability

If any provision of these Terms is held to be unenforceable, the remaining provisions shall remain in full force and effect.

15.3 Waiver

Our failure to enforce any right or provision of these Terms shall not constitute a waiver of that right or provision.

15.4 Assignment

You may not assign or transfer these Terms without our prior written consent. We may assign these Terms without restriction.

15.5 Notices

We may provide notices to you via email to the address associated with your Account or by posting on the Services. Notices to AuditStore should be sent to legal@auditstore.dev.

Contact Us

If you have questions about these Terms, contact us at:

Mataki Labs LLC State of Wyoming Email: legal@auditstore.dev