Terms and Conditions
Last updated: July 2026
Subject
DataVigia provides a cloud service for data security auditing, exfiltration detection, external domain auditing, an on-premises collector and anti-phishing training, as described on the portal.
Account and access
Client accounts are created by DataVigia by invitation. The client is responsible for keeping credentials secure and for all actions on its account.
Acceptable use
The client uses the service only on environments it is responsible for and with authorization. Audits are read-only; training simulations may only target the client's own employees, with authorization and an internal policy; the local collector is installed with the IT team's knowledge.
Data protection roles
Regarding its employees' data and the platforms it connects, the client is the controller and DataVigia acts as processor, under a data processing agreement (DPA) available on request.
Payment and suspension
The service is billed per active license by bank transfer. Non-payment may lead to suspension of access, including the installed agent.
Intellectual property
The platform, software and content are DataVigia's property. Client data remains the client's property. Reverse engineering and unauthorized resale are prohibited.
Warranties and liability
The service helps identify risks but does not guarantee the absence of incidents and is provided 'as is'. To the extent permitted by law, liability is limited to the amount paid in the previous 12 months.
Termination
Either party may terminate under the agreed terms. After termination, client data is returned or deleted on request.
Governing law
These terms are governed by Portuguese law, with the courts of DataVigia's registered office having jurisdiction.