Legal
Terms of Service
Last updated: 20 April 2026.
1. Who we are
Keelr is a service operated by Carpathica Authentic Srl, a Romanian company with CUI 36090691, registered in Romania, European Union ("we", "us", "our"). Keelr is the offensive half of the Panthero + Keelr autonomous offensive-defensive loop. By using Keelr you ("customer", "you") agree to these Terms.
2. EU-only services
Keelr services are provided exclusively to customers residing or operating inside the European Union, the European Economic Area, the United Kingdom, and Switzerland. Registrations from outside these regions may be refused or terminated. Services are governed by EU law and Romanian law where applicable; disputes are resolved in the competent Romanian courts.
3. Authorisation posture - the non-negotiable
Keelr runs adversarial simulation against your infrastructure only when you have explicitly authorised the specific scope. Authorisation is:
- Scope-bound - tied to named domains, IP ranges, asset groups that you declare
- Time-boxed - valid for a declared window, renewable, never indefinite
- Signed - cryptographically authenticated with your credentials
- Revocable - instantly, from the portal, without notice
- Audit-logged - every authorisation event is recorded in an append-only store you can export at any time
You warrant that you have the legal right to authorise adversarial testing of every asset inside the scope you declare. Authorising assets you do not own or do not have permission to test is a material breach of these Terms and grounds for immediate termination.
Attempted engagements outside authorised scope fail closed. If such an attempt is recorded (system malfunction, configuration error, bug), we will notify you and preserve the audit record. We will never knowingly run an engagement against an unauthorised target.
4. Safe engagement envelope
Our offensive capabilities are designed to be non-destructive by default. We do not exfiltrate data beyond the minimum required to prove exploitability, we do not hold target systems in a degraded state, we do not chain exploits in a way that threatens availability unless you have explicitly opted into a destructive class of engagement under a separate written agreement.
Where exploitability validation (the proof that an exploit path actually works) would require any action that could materially impact the target, we either ask for explicit approve-before-act confirmation or record the finding as theoretical rather than running the validation.
5. Findings, Code Artifacts, and re-attacks
Findings we produce are your findings. Code Artifacts we write during engagements are stored inside your tenant, readable in your portal, exportable on demand. Re-attacks are run against your authorised scope only - usually to confirm a remediation works, initiated either autonomously by the Defensive Agent or manually from your portal.
We retain Findings and Artifacts for the lifetime of their Mission plus a configurable tail (default: 90 days post-Mission-end) before archival. Archived artifacts remain retrievable but not runnable.
6. Acceptable use
You must not use Keelr to test assets you do not have authority to test. You must not use Keelr output to harass, extort, or otherwise harm any party. You must not attempt to bypass the scope-authorisation layer. See our full Acceptable Use Policy.
7. Fees, credits, and billing
Published tiers (Pay-as-you-go, Business, Scale) and custom tiers (Enterprise, Government) are billed in euros. Mission-based tiers include monthly allowances of engagement-hours and Agent-credits; overflow is metered transparently at the published overflow rate.
Included allowances are recognised on consumption within the billing month. Unused allowances expire at month-end and do not roll over. Overflow is billed on consumption. Multi-month or annual prepayments are recognised rateably over the contract period.
Founding-customer pricing (see our pricing page) is available to customers who register and pay their first invoice by 14 July 2026. Founding customers keep their founding rate as long as they stay on the same tier. Tier upgrades take list pricing for the new tier.
8. Data protection
We process personal data in accordance with the EU General Data Protection Regulation (GDPR). See our Privacy Policy for details on what we collect, why, and your rights.
9. Availability and limitations of liability
We target the availability commitments published per tier. Service credits apply to paid tiers when availability falls below the committed threshold in a calendar month; credit amounts are capped at the monthly fee for the affected service. To the maximum extent permitted by law, our aggregate liability for any claim relating to the service is limited to the fees you paid us in the twelve months preceding the event giving rise to the claim.
We are not liable for (a) indirect, incidental, special, or consequential damages, (b) loss of profits, revenue, goodwill, or anticipated savings, (c) damages resulting from your use of findings outside the scope of these Terms, (d) damages caused by any third party.
10. Termination
You may terminate your subscription at any time from the portal. We may terminate or suspend service for material breach, non-payment after reasonable notice, or if we reasonably believe your use of the service is unlawful. On termination, scope authorisations are immediately revoked and engagements cease. Your findings and artifacts remain available for export for 30 days, then archive.
11. Changes to these Terms
We may update these Terms to reflect changes in the service, in law, or in our operational posture. Material changes are notified by email to your account address at least 30 days before they take effect. Your continued use after the effective date constitutes acceptance.
12. Contact
Questions about these Terms: contact@keelr.co.