Cystene Terms of Service

Effective Date: March 5, 2026

These Terms of Service ("Terms") govern your access to and use of the Cystene platform, website, APIs, and related services (collectively, the "Service") operated by Buraro Technologies ("we", "us", or "our"). By creating an account or using the Service, you agree to be bound by these Terms.

1. Service Description

Cystene is a SaaS cybersecurity scanning platform. The Service allows you to add infrastructure targets (domains, IP addresses, IP ranges, or URLs), configure and run security scans (port scanning, DNS enumeration, SSL/TLS analysis, and web security checks), and receive prioritized vulnerability findings with remediation guidance. Scan results are stored, tracked over time, and exportable as reports.

2. Account Registration

  • You must provide accurate and complete information when creating an account.
  • You are responsible for maintaining the confidentiality of your account credentials.
  • You are responsible for all activities that occur under your account.
  • You must be at least 16 years of age to use the Service.
  • One person or legal entity may maintain no more than one free account.

3. Target Ownership and Authorization

3.1 Authorization

By adding a scan target to Cystene, you represent and warrant that you own or have explicit written authorization to perform security scanning against that target. Unauthorized scanning of systems you do not own or have permission to test is illegal and strictly prohibited. You are solely responsible for ensuring that your use of the Service complies with all applicable laws, regulations, and third-party agreements.

3.2 Target Verification

Cystene requires ownership verification before allowing scans against a target. Verification methods include DNS TXT record, file upload, or meta tag placement. You must complete verification before any scans can be executed. We reserve the right to suspend scanning capabilities if we have reason to believe a target is not owned or authorized by you.

3.3 Data Usage

We store scan results (findings, discovered assets, and reports) solely to provide the Service to you. We do not sell, share, or use your scan data for any purpose other than delivering the Service. Your vulnerability data, infrastructure details, and scan configurations are not shared with other Cystene users.

4. Subscription Plans and Billing

4.1 Plans

Cystene offers Free, Pro, and Enterprise subscription tiers. Each tier has defined limits on the number of scan targets, monthly scans, scan types available, and report generation. Current pricing and limits are available on our website and dashboard.

4.2 Payment

Paid subscriptions are billed monthly through Stripe. By subscribing to a paid plan, you authorize us to charge the applicable payment method at the beginning of each billing cycle. All fees are non-refundable except as required by applicable law.

4.3 Cancellation

You may cancel your subscription at any time through the Stripe Customer Portal. Upon cancellation, your subscription remains active until the end of the current billing period. After that, your account reverts to the Free tier with its associated limits.

4.4 Grace Period

If a payment fails, we provide a 7-day grace period during which your service continues at the current tier. If payment is not resolved within this period, your account will be downgraded and access to paid features will be restricted.

5. Acceptable Use

You agree not to:

  • Use the Service to scan targets you do not own or have explicit written authorization to test.
  • Use the Service for any unlawful purpose, including unauthorized penetration testing, denial-of-service attacks, or exploitation of discovered vulnerabilities against third-party systems.
  • Attempt to gain unauthorized access to the Service, other accounts, or systems connected to the Service.
  • Interfere with or disrupt the integrity or performance of the Service.
  • Reverse engineer, decompile, or disassemble any part of the Service.
  • Exceed the rate limits or usage quotas associated with your subscription tier through automated means.
  • Resell, sublicense, or redistribute the Service, its scan results, or its outputs without our prior written consent.
  • Use the Service to generate false or misleading security reports for third parties.

6. Intellectual Property

The Service, including its design, code, scanning algorithms, documentation, and branding, is the intellectual property of Buraro Technologies. You retain ownership of your scan data and reports. By using the Service, you grant us a limited, non-exclusive license to process your target data solely for the purpose of providing the Service.

7. Scan Results and Reports

Cystene generates security scan results, vulnerability findings, and exportable reports based on automated scanning. Scan results reflect the state of your infrastructure at the time of scanning and are not a guarantee of complete security coverage. We do not guarantee the detection of all vulnerabilities, and the absence of findings does not mean your infrastructure is free of security issues. You are responsible for validating findings and implementing remediation measures.

8. Service Availability

We strive to maintain high availability of the Service but do not guarantee uninterrupted or error-free operation. The Service may be temporarily unavailable due to maintenance, updates, or circumstances beyond our control. We will make reasonable efforts to notify you of planned downtime in advance.

9. Limitation of Liability

To the maximum extent permitted by applicable law, Buraro Technologies shall not be liable for any indirect, incidental, special, consequential, or punitive damages, including but not limited to loss of profits, revenue, data, or business opportunities, arising out of or related to your use of the Service. We are not liable for any damages resulting from vulnerabilities that the Service failed to detect, or from actions taken based on scan results. Our total aggregate liability for any claims arising from these Terms shall not exceed the amount you paid us in the twelve (12) months preceding the claim.

10. Disclaimer of Warranties

The Service is provided "as is" and "as available" without warranties of any kind, either express or implied, including but not limited to implied warranties of merchantability, fitness for a particular purpose, and non-infringement. We do not warrant that the Service will detect all vulnerabilities in your infrastructure, that scan results will be complete or error-free, or that the Service will be uninterrupted, timely, secure, or error-free.

11. Termination

We may suspend or terminate your access to the Service at any time if:

  • You violate these Terms or our Acceptable Use policy.
  • You scan targets without proper authorization.
  • Your account has been inactive for an extended period.
  • We are required to do so by law.
  • We discontinue the Service (with reasonable notice).

Upon termination, your right to use the Service ceases immediately. We will delete your data in accordance with our Privacy Policy, unless retention is required by law.

12. Governing Law

These Terms are governed by and construed in accordance with the laws of Romania, without regard to its conflict of law provisions. Any disputes arising under or in connection with these Terms shall be subject to the exclusive jurisdiction of the courts of Bucharest, Romania.

13. Changes to These Terms

We may update these Terms from time to time. When we make material changes, we will revise the effective date at the top and notify you via email or a prominent notice on our platform. Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated Terms.

14. Contact

If you have any questions about these Terms, please contact us at contact@cystene.com.