# C4CI Terms of Service Effective date: 2026-04-09 Version: 2026-04-09 1. Service scope C4CI provides infrastructure discovery, architecture visualisation, drift detection, audit evidence workflows, and related platform features. The platform is read-only by default and does not mutate customer infrastructure without an explicit reviewed approval path where that capability is available. 2. Accounts and access You are responsible for maintaining the confidentiality of your account, any linked identity-provider access, and the activities performed through your user identity. Access to organisation data is governed by C4CI roles and organisation membership inside the platform. 3. Customer responsibilities You must connect only Azure subscriptions, repositories, and credentials that you are authorised to use. You must not use the platform to interfere with third-party infrastructure, exceed rate limits intentionally, or bypass product access controls. 4. Acceptable use You may not use C4CI to abuse the service, disrupt availability, probe unauthorised systems, upload unlawful content, or attempt to extract secrets or personal data from other tenants. We may suspend or restrict access when use creates material security, operational, or compliance risk. 5. Billing and paid features Paid tiers and PAYG usage are governed by the active pricing shown in the platform. PAYG usage is metered per event. Failed metered runs are not billed. Subscription and invoice records in the platform are the operational source for billing history. 6. Service changes We may evolve the service, features, and supported integrations over time. When a legal or operational change materially affects platform use, we may publish a new version of these terms and require re-acceptance before continued use of authenticated product surfaces. 7. Security and compliance posture The platform is designed around Reader-first discovery, audit logging, and NIS2/DORA-aligned operational controls. Those controls support your governance workflows, but they do not replace your own security, legal, or compliance obligations. 8. Customer data and external systems You retain responsibility for the systems, repositories, subscriptions, and cloud resources you connect to C4CI. You are responsible for ensuring that connected data, configuration, and secrets are lawful for you to process through the service. 9. Termination You may stop using the service at any time. We may suspend or terminate access for material breach, misuse, security risk, non-payment, or legal necessity. Audit, billing, and operational records may be retained according to the platform privacy and retention model. 10. Contact Questions about these terms should be directed through the C4CI contact channels published in the platform.