CVEsafe has been acquired by DataDike. Same platform, stronger backing — datadike.com

Terms & Conditions

Last updated: 8 June 2026

These Terms & Conditions ("Terms") govern your access to and use of the CVEsafe platform, websites and related services (together, the "Service"). The Service is operated by DataDike ("CVEsafe", "we", "us"). By creating an account or using the Service, you agree to these Terms.

1. The Service

CVEsafe is a vulnerability-management platform that performs security scans of assets you provide, correlates findings with public vulnerability and exploitation intelligence (such as CVE, EPSS and CISA KEV), prioritizes them and helps you track remediation. The Service is provided on a software-as-a-service basis.

2. Eligibility and accounts

You must be at least 18 years old and able to enter into a binding contract. You are responsible for the accuracy of your account information, for keeping your credentials secure, and for all activity under your account. Multi-factor authentication is available and recommended.

3. Authorized scanning only

You may only scan assets that you own or that you are explicitly authorized in writing to test. Scanning systems without authorization may be unlawful. Before your first scan you must accept our in-product Scan Authorization & Responsibility Agreement, and you remain solely responsible for the targets you add and the scans you run. We may refuse or block scans of addresses or domains that we believe you are not authorized to test.

4. Acceptable use

5. Plans, billing and payments

Paid plans are billed on a recurring (monthly or yearly) basis until cancelled. Prices are shown on our pricing page and may change with notice for future billing periods.

Our order process is conducted by our online reseller Paddle.com. Paddle is the Merchant of Record for all our orders. Paddle handles payment processing, billing, invoicing and related customer-service inquiries, and their Buyer Terms also apply to your purchase. We do not store your full card details.

6. Refunds and cancellation

You may cancel at any time and will retain access until the end of your paid period. We offer a 14-day money-back guarantee on your first purchase. See our Refund & Cancellation Policy for details.

7. Your data and confidentiality

You retain all rights to the assets, configurations and scan results in your account. We treat your scan results as confidential, isolate each organization's data, and do not access, analyse or share your results except as needed to provide the Service to you or as required by law. Our handling of personal data is described in our Privacy Policy.

8. Intellectual property

The Service, including its software, design and content, is owned by DataDike and its licensors and is protected by intellectual-property laws. We grant you a limited, non-exclusive, non-transferable right to use the Service during your subscription.

9. Disclaimers

The Service is provided "as is" and "as available". Security scanning is a supporting tool: we do not warrant that it will detect every vulnerability or that any asset is fully secure. You remain responsible for your own security decisions.

10. Limitation of liability

To the maximum extent permitted by law, DataDike shall not be liable for indirect, incidental or consequential damages, and our total liability for any claim shall not exceed the amount you paid for the Service in the 12 months preceding the claim.

11. Suspension and termination

We may suspend or terminate access for breach of these Terms (including unauthorized scanning) or to comply with the law. You may stop using the Service and close your account at any time.

12. Governing law

These Terms are governed by the laws of Brazil, without regard to conflict-of-law rules. Consumer-protection rights you may have under applicable mandatory law are not affected.

13. Changes to these Terms

We may update these Terms from time to time. Material changes will be notified through the Service or by email, and the "last updated" date above will change. Continued use after changes take effect constitutes acceptance.

14. Contact

Questions about these Terms: contact@cvesafe.com.

CVEsafe is operated by DataDike. Payments are processed by Paddle.com as Merchant of Record.