# Terms & Conditions The contract you accept by using Sistava. Covers account use, billing, intellectual property, liability, and termination. Last updated: May 24, 2026 Early Access Notice Sistava is an early-stage product built and operated by a solo founder. By using the Services you acknowledge that: We are building this in public and discovering what AI agents can truly do — alongside you, in real time. Early adopters help shape the product, and your continued use signals acceptance of these conditions. Welcome to the terms of service for Sistava, the AI workforce platform operated by SISTA AI ("Company," "we," "us," "our"). This document outlines the terms and conditions that govern your use of our services ("Services"). These websites and services, along with any other related products that refer or link to these legal terms (the "Legal Terms"), are collectively referred to as the "Services". This includes but is not limited to: the Sistava platform (web application, API, and related infrastructure), AI employee marketplace and templates, AI agent execution and orchestration services, tool integrations and connected applications, voice and text communication channels, scheduling and task management features, credit-based usage metering, and any other products or services offered by Sistava. Sistava is an AI workforce platform where users hire, onboard, and manage AI employees that execute real work autonomously. Our platform features team coordination, tool integrations, durable execution, and full observability across employees, teams, and organizations. You can contact us by email at contact@sista.ai . These Legal Terms constitute a legally binding agreement made between you, whether personally or on behalf of an entity ("you"), and SISTA AI, concerning your access to and use of the Services. You agree that by accessing the Services, you have read, understood, and agreed to be bound by all of these Legal Terms. IF YOU DO NOT AGREE WITH ALL OF THESE LEGAL TERMS, THEN YOU ARE EXPRESSLY PROHIBITED FROM USING THE SERVICES AND YOU MUST DISCONTINUE USE IMMEDIATELY. Supplemental terms and conditions or documents that may be posted on the Services from time to time are hereby expressly incorporated herein by reference. We reserve the right, in our sole discretion, to make changes or modifications to these Legal Terms from time to time. We will alert you about any changes by updating the "Last updated" date of these Legal Terms, and you waive any right to receive specific notice of each such change. It is your responsibility to periodically review these Legal Terms to stay informed of updates. You will be subject to, and will be deemed to have been made aware of and to have accepted, the changes in any revised Legal Terms by your continued use of the Services after the date such revised Legal Terms are posted. All users who are minors in the jurisdiction in which they reside (under the age required by applicable law, including under 13 in the U.S.) must have the permission of, and be directly supervised by, their parent or guardian to use the Services. Users under 13 are not permitted to use the Services. If you are a minor between 13 and 18, you must have your parent or guardian read and agree to these Legal Terms prior to you using the Services. We recommend that you print a copy of these Legal Terms for your records. Definitions: For purposes of these Terms, "Model Improvement and Training" means the use of anonymized and aggregated data to improve system performance, accuracy, and functionality without identifying individual users. This includes but is not limited to fine-tuning AI models, improving response quality, and enhancing service features. - The Services may contain bugs, errors, downtime, and unexpected behavior. - Prices, plans, features, credit allocations, and usage limits may change at any time. - A feature in your current plan may later be moved to a higher-priced plan, replaced, removed, or made free for everyone. - All payments are final and non-refundable except where strictly required by mandatory law. - Labels such as "coming soon" or "planned" are informational only and are not binding commitments to deliver by any date (or at all). - We do not guarantee uptime, performance, or the continued availability of any specific feature, model, or integration. - AI agent outputs and actions are provided "as-is" with no warranty of accuracy, fitness, or safety. You assume all risk arising from reliance on or execution of agent output. We expressly disclaim liability for any direct, indirect, or consequential loss resulting from agent behavior. ## Table of Contents - 1. OUR SERVICES - 1.A. AI EMPLOYEE PLATFORM SERVICE - 1.B. AI MODEL LIMITATIONS AND DISCLAIMERS - 1.C. AI MODEL PROVIDERS AND THIRD-PARTY SERVICES - 1.D. MARKETPLACE AND COMMUNITY CONTENT - 1.E. PROFESSIONAL SERVICES & CONSULTANCY - 2. INTELLECTUAL PROPERTY RIGHTS - 3. USER REPRESENTATIONS - 4. USER REGISTRATION - 5. PURCHASES AND PAYMENT - 6. SUBSCRIPTIONS AND CREDITS - 6.A. ROADMAP, COMING SOON & FEEDBACK - 7. INFRASTRUCTURE AND SERVICE DELIVERY - 7.A. DESKTOP COMPANION, CONNECTED ACCOUNTS & USE AT YOUR OWN RISK - 7.B. DEVELOPER SURFACES, CHANNELS, AND APPS - 8. PROHIBITED ACTIVITIES - 9. USER GENERATED CONTRIBUTIONS - 10. CONTRIBUTION LICENSE - 11. GUIDELINES FOR REVIEWS - 12. SOCIAL MEDIA - 13. THIRD-PARTY WEBSITES AND CONTENT - 14. ADVERTISERS - 15. SERVICES MANAGEMENT - 16. PRIVACY POLICY - 17. NOTICE & ACTION: ILLEGAL CONTENT AND COPYRIGHT - 18. TERM AND TERMINATION - 18.A. DATA PORTABILITY & SWITCHING - 19. MODIFICATIONS AND INTERRUPTIONS - 20. GOVERNING LAW - 21. DISPUTE RESOLUTION - 22. CORRECTIONS - 23. DISCLAIMER - 24. LIMITATIONS OF LIABILITY - 25. INDEMNIFICATION - 26. USER DATA - 26.A. CONFIDENTIALITY - 27. ELECTRONIC COMMUNICATIONS, TRANSACTIONS, AND SIGNATURES - 28. CALIFORNIA USERS AND RESIDENTS - 29. MISCELLANEOUS - 30. CONTACT US ## 1. OUR SERVICES The information provided when using the Services is not intended for distribution to or use by any person or entity in any jurisdiction or country where such distribution or use would be contrary to law or regulation or which would subject us to any registration requirement within such jurisdiction or country. Accordingly, those persons who choose to access the Services from other locations do so on their own initiative and are solely responsible for compliance with local laws, if and to the extent local laws are applicable. As a provider of AI workforce services, we are committed to complying with all relevant industry regulations and standards. Our platform is designed to support compliance with data protection laws such as GDPR and COPPA. We do not knowingly collect personal data from children under 13 without verified parental consent. We continuously monitor changes in industry requirements and update our practices accordingly. Specific compliance certifications and guarantees, where applicable, are provided under separate agreements (e.g., Business Associate Agreements for HIPAA, enterprise contracts). ## 1.A. AI EMPLOYEE PLATFORM SERVICE AI Employee Usage and Limitations Data Collection and Processing Tool Integrations and Connected Applications Service Availability We use commercially reasonable efforts to maintain service availability and performance. Specific service level agreements (SLAs), if any, including uptime guarantees and response time commitments, are described in separate Service Level Agreements applicable only to paid enterprise plans or as specified in individual service contracts. These general Terms do not constitute an SLA or performance guarantee. Operational measures may change over time and do not constitute warranties or guarantees. Usage Restrictions - Our AI employees use advanced machine learning models that may occasionally provide inaccurate or incomplete responses - AI employees execute tasks autonomously, including tool usage, delegation, and multi-step workflows; outputs should be reviewed for critical decisions - Users should verify critical information and outputs produced by AI employees - We reserve the right to update or modify our AI models and employee capabilities without prior notice - By using our AI employees, you consent to the collection and processing of your interaction data, including chat messages, task instructions, voice inputs, and connected tool data - Data is processed in real-time and may be temporarily stored for service delivery and improvement - All data is encrypted during transmission and storage - You can request deletion of your data at any time - AI employees may access third-party applications and services on your behalf through tool integrations (OAuth connections, API keys, etc.) - You are responsible for authorizing and managing tool connections for your AI employees - API usage is subject to rate limits and fair usage policies - We are not responsible for actions taken by AI employees through connected tools that you have authorized - We strive to provide reliable service with regular maintenance windows and advance notice where possible - Technical support is available according to your subscription tier - We implement redundancy and failover systems to minimize disruptions - AI employees may not be used for illegal or harmful purposes - Users must not attempt to manipulate, jailbreak, or abuse the AI system or its autonomous execution capabilities - Commercial use requires an appropriate subscription plan - Users must respect rate limits, credit quotas, and fair usage policies ## 1.B. AI MODEL LIMITATIONS AND DISCLAIMERS Model Behavior and Responses Data Processing and Model Training Security and Compliance Note: Specific certifications, compliance guarantees, and detailed security information are available in our Trust Center and Security documentation. Compliance capabilities may vary by service tier and are subject to separate agreements for enterprise clients. Critical Use Prohibition — Not Designed for Life-Safety, Weapons, or High-Risk Operations The Services are a general-purpose AI workforce platform. They are not designed, built, tested, certified, or intended for use in any application or environment where failure, error, inaccuracy, unavailability, or unintended behavior could reasonably be expected to lead to death, serious personal injury, severe environmental damage, severe financial harm, or catastrophic operational failure . You may not use the Services, and you may not configure an AI employee, the desktop companion, a connected account, an integration, or any output of the Services to be used, in or in support of: You assume all risk and liability if you use the Services in violation of this Critical Use Prohibition. The exclusions and limitations in Sections 23 (Disclaimer), 24 (Limitations of Liability), and 25 (Indemnification) apply with maximum force to any such prohibited use, and we have no liability whatsoever for any consequence of prohibited critical use, regardless of the legal theory under which a claim is brought. No Reliance — Independent Verification Required AI employees, AI models, and AI-generated outputs are inherently probabilistic and may produce outputs that are inaccurate, incomplete, biased, outdated, fabricated, hallucinated, contradictory, or misleading. You may not rely on any output of the Services as the sole basis for any decision, action, communication, contract, transaction, calculation, advice, or claim that has financial, legal, medical, safety, reputational, or other material consequences. You must independently verify the accuracy, completeness, appropriateness, and legality of any output before relying on it. You acknowledge that you retain full editorial, professional, operational, and legal responsibility for any decision or action you take based on or with the assistance of the Services. We make no representation or warranty that any output is fit for any particular purpose, accurate, complete, current, lawful, or non-infringing, and we accept no responsibility for any consequence of reliance on outputs without independent verification. Voice and Audio Output AI employees may produce voice and audio output through our voice channels using third-party text-to-speech (TTS) and voice-synthesis providers. Voice and audio output generated by the Services is licensed to you for use within the Services and within communications with your end users only. You may not extract, capture, repackage, redistribute, sell, sublicense, train any model on, or republish voice or audio output as a standalone audio file, voice library, sound effect, voice font, voice clone, dataset, or any other separable audio asset. Any rights in outputs that we may otherwise grant you under these Legal Terms do not include voice or audio output, and do not include the underlying voices, voice models, or voice characteristics of any third-party synthesis provider. This restriction protects our voice providers, the persons whose voices were used to train those models, and the integrity of the voice channel itself. Your Obligation to Disclose AI to Your End Users The Services let you deploy AI employees that may interact with your own customers, prospects, employees, partners, or any other third parties through channels such as email, chat widgets, voice and phone calls, messaging apps (Slack, WhatsApp, Telegram, SMS), API endpoints, MCP servers, webhooks, and other input or output channels (collectively, "End Users"). When an AI employee under your account communicates with or takes action on behalf of an End User, you are solely responsible for disclosing to that End User that they are interacting with an artificial intelligence system, not a human being , in a clear, prominent, and timely manner that complies with all applicable laws — including without limitation Article 50 of the EU AI Act (Regulation (EU) 2024/1689) , the California Bot Disclosure Law (SB-1001), and any other transparency, consumer protection, or AI-disclosure regulation in any jurisdiction where your End Users are located. You are also responsible for obtaining any consents, providing any notices, and meeting any other legal requirements that apply to AI-generated communications, automated decision-making, biometric processing, voice recording, or call recording in your jurisdiction and your End Users' jurisdictions. We have no obligation, and no practical ability, to disclose AI status to End Users on your behalf, and we are not liable for your failure to do so. - AI employees may not always understand context perfectly or provide complete responses - Responses and task outputs are generated in real-time and may vary based on input quality, model capabilities, and available context - The service may occasionally produce outputs that are inaccurate, inappropriate, or not aligned with user intent - Users should not rely on AI employee outputs for critical decisions without human verification - Interaction data may be processed using machine learning models for service improvement - We implement strict data anonymization and security protocols - Model training is conducted in compliance with privacy regulations - Users can opt out of data usage for model improvement at any time. Opt-out applies only to Sista AI-controlled models; third-party AI providers may process data solely for inference as required to deliver the Service. - Our AI systems are designed to align with major AI ethics guidelines and regulations - We implement reasonable technical and organizational security measures appropriate to the nature of the Services - Detailed security information, certifications, and compliance details are available in our Trust Center and Security documentation - The operation of nuclear facilities, nuclear power generation, nuclear weapons, or any nuclear safety system. - Aircraft control, air traffic control, drone navigation, manned spaceflight, or any avionics or flight-safety system. - The control of motor vehicles, autonomous vehicles, self-driving systems, ships, trains, or any other transportation safety-critical system. - Direct life-support systems, real-time clinical decision-making in emergency settings, automated administration of medication or therapy, surgical robotics, or any other medical application where an AI mistake could cause immediate physical harm. - Operation of power grids, water systems, gas pipelines, telecommunications backbones, or any other critical infrastructure where failure could cause widespread harm. - Industrial control systems for hazardous materials, chemical plants, refineries, or any other facility where failure could cause physical harm or environmental damage. - Weapons development, weapons targeting, weapons command and control, autonomous weapons systems, or any military or paramilitary operation involving the use of force. - Real-time emergency dispatch, real-time law-enforcement decision-making, real-time judicial decisions, or real-time decisions that deprive a person of liberty. - Any other application where an AI error, hallucination, misclassification, or unintended action could reasonably be expected to cause death, serious bodily injury, severe environmental harm, or catastrophic loss. ## 1.C. AI MODEL PROVIDERS AND THIRD-PARTY SERVICES AI Model Usage Third-Party AI Service Providers Data Processing and Model Training - Our service utilizes various AI models and technologies, which may include proprietary models and/or third-party AI services such as OpenAI, Anthropic, Google, and others - We may change, update, or switch between different AI model providers without prior notice - The specific AI models used may vary based on service requirements, availability, and performance needs - Users acknowledge that responses are generated by AI models and may reflect the limitations or biases of these models - When using third-party AI services, your interactions may be processed by these providers according to their terms of service - We ensure all third-party AI providers maintain appropriate data protection and security standards - We are not responsible for the accuracy, reliability, or availability of third-party AI services - Service interruptions or changes in third-party AI services may affect our service availability - User interactions may be used to improve AI model performance and accuracy - We may use anonymized interaction data for training or fine-tuning AI models - You can opt out of having your data used for AI model training. Opt-out applies only to Sistava-controlled models; third-party AI providers may process data solely for inference as required to deliver the Service. - We implement strict data protection measures when sharing data with AI service providers ## 1.D. MARKETPLACE AND COMMUNITY CONTENT The AI Employee Platform includes a marketplace where users can discover and clone AI employee templates, team configurations, and individual skills published by Sistava or by other users ("Community Content"). - Community Content is provided by third-party users and is not reviewed, endorsed, or guaranteed by Sistava - When you clone a template, you receive an independent copy that you can fully customize; no ongoing connection to the original exists after cloning - If you publish your employee configurations, skills, or templates to the marketplace, you grant Sistava a non-exclusive, worldwide, royalty-free license to host, display, and distribute that content within the marketplace - You retain ownership of your published content and may remove it at any time, subject to existing clones remaining as independent copies - Creator credit rewards and usage-based credit shares, if applicable, are non-cash credits applied to your Sistava account and are subject to the platform's credit policies - You must not publish Community Content that infringes on third-party intellectual property rights, contains harmful or misleading instructions, or violates these Legal Terms ## 1.E. PROFESSIONAL SERVICES & CONSULTANCY In addition to our SaaS platform products, Sistava provides professional services including custom software development, AI model building and deployment, cloud and infrastructure management, consultancy services (including software reviews, debugging, planning, and investigations for clients), and other agency-provided solutions. Separate Agreements: Professional services and consultancy work are governed by separate Master Services Agreements (MSA), Statements of Work (SOW), or service contracts that supersede these general Terms. Such agreements define project scope, deliverables, timelines, pricing, intellectual property ownership, acceptance criteria, and other project-specific terms. Intellectual Property: For custom development and consultancy projects, intellectual property ownership is defined in the applicable service agreement. Generally, custom software, configurations, and deliverables created specifically for a client are owned by the client, while Sistava retains ownership of our platform, tools, and pre-existing intellectual property. Data Roles: In consultancy services, we typically act as a Data Processor (or sub-processor) on behalf of the client, who remains the Data Controller. Data processing is governed by the applicable Data Processing Agreement (DPA) and service contract. Sample DPA and MSA templates are available upon request. No Professional Advice: Our consultancy services do not constitute legal, medical, financial, or other professional advice. Clients are responsible for obtaining appropriate professional advice where needed. Customer Responsibilities for End-User Consent If you integrate our AI employees or services into your applications, workflows, or products for use by your end-users, you are responsible for: We are not liable for your failure to obtain proper consent or provide required notices to your end-users. You agree to indemnify us against any claims arising from your misuse of our Services or failure to comply with applicable laws. Service Limitations and Disclaimers Intellectual Property Rights - Obtaining all necessary consents and providing appropriate privacy notices to your end-users - Establishing a lawful basis for processing end-user data under applicable data protection laws - Ensuring your use of our Services complies with all applicable laws and regulations - Implementing appropriate security measures to protect end-user data - AI-generated responses and task outputs are provided "as is" without any warranties - We do not guarantee the accuracy, completeness, or appropriateness of AI-generated content - Users are responsible for verifying AI-generated information before acting upon it - We are not liable for any decisions or actions taken based on AI-generated responses - The service may have varying performance levels depending on the AI models in use - AI-generated content may be subject to intellectual property rights of third-party AI providers - Users retain rights to their input data but grant necessary licenses for AI processing - We maintain rights to any improvements or modifications made to AI models using user interactions, excluding customer-specific models or deliverables governed by separate agreements - Usage of AI-generated content must comply with all applicable intellectual property laws ## 2. INTELLECTUAL PROPERTY RIGHTS Our intellectual property We are the owner or the licensee of all intellectual property rights in our Services, including all source code, databases, functionality, software, website designs, audio, video, text, photographs, and graphics in the Services (collectively, the "Content"), as well as the trademarks, service marks, and logos contained therein (the "Marks"). Our Content and Marks are protected by copyright and trademark laws (and various other intellectual property rights and unfair competition laws) and treaties in the United States and around the world. The Content and Marks are provided in or through the Services "AS IS" for your use in accordance with these Terms. Commercial use is permitted under an active subscription or license. For free tier users, use is limited to personal or internal business purposes as specified in your subscription tier. Your use of our Services Subject to your compliance with these Legal Terms, including the "PROHIBITED ACTIVITIES" section below, we grant you a non-exclusive, non-transferable, revocable license to: for your use in accordance with your subscription tier and these Terms. AI-Generated Outputs: To the extent permitted by applicable third-party AI provider terms, you own the outputs generated by our AI Services based on your inputs. We grant you a license to use such outputs for your intended purposes, including commercial use under an active subscription. You grant us a perpetual, non-exclusive license to use anonymized outputs and inputs for service improvement and model training, subject to your opt-out rights as described in our Privacy Policy. Except as set out in this section or elsewhere in our Legal Terms, no part of the Services and no Content or Marks may be copied, reproduced, aggregated, republished, uploaded, posted, publicly displayed, encoded, translated, transmitted, distributed, sold, licensed, or otherwise exploited for any purpose beyond what is permitted by your subscription tier, without our express prior written permission. If you wish to make any use of the Services, Content, or Marks other than as set out in this section or elsewhere in our Legal Terms, please address your request to: info@sista.ai . If we ever grant you the permission to post, reproduce, or publicly display any part of our Services or Content, you must identify us as the owners or licensors of the Services, Content, or Marks and ensure that any copyright or proprietary notice appears or is visible on posting, reproducing, or displaying our Content. We reserve all rights not expressly granted to you in and to the Services, Content, and Marks. Our Approach to Patents & Open Source We believe AI tooling should be built collaboratively, not weaponized through aggressive intellectual property litigation. While we may, from time to time, file patent applications to protect our own innovations from misuse and to defend ourselves against patent claims by others, we make the following good-faith commitments to the developer community and to anyone building with Sistava: Sistava Name, Logos & Brand You may not use the "Sistava" name, the Sistava logo, the names of any AI employees, teams, or plans we offer, or any other Sistava trademark, service mark, trade name, or brand element — whether stylized, abbreviated, translated, or modified — in any product name, company name, domain name, social media handle, marketing material, press release, advertisement, comparison, partner badge, integration listing, or in any way that suggests affiliation, endorsement, sponsorship, partnership, certification, or approval by us, without our prior express written permission. You may make truthful, factual, descriptive references to Sistava (for example, stating that your company "uses Sista AI" or "is a customer of Sistava") provided you do not imply any official relationship, endorsement, or partnership and you do not use our logo or stylized marks. To request brand permission, contact info@sista.ai . Any breach of these Intellectual Property Rights will constitute a material breach of our Legal Terms and your right to use our Services will terminate immediately. - access the Services; and - download or print a copy of any portion of the Content to which you have properly gained access. - We will not initiate patent litigation against good-faith developers, researchers, contributors, or third parties solely for building applications, integrations, or research on top of the Sistava platform in compliance with these Legal Terms. - We will not assert patents against open-source projects we depend on or contribute to. - We will not use patents to retaliate against security researchers acting in good faith under our Responsible Disclosure Policy . - We reserve the right to assert patents defensively in response to a patent infringement claim brought against us first, in support of a free and open AI ecosystem. - We may revise these patent commitments in the future, but we will only do so prospectively and we will communicate any material change publicly. ## 3. USER REPRESENTATIONS By using the Services, you represent and warrant that: (1) all registration information you submit will be true, accurate, current, and complete; (2) you will maintain the accuracy of such information and promptly update such registration information as necessary; (3) you have the legal capacity and you agree to comply with these Legal Terms; (4) you are not a minor in the jurisdiction in which you reside, or if a minor, you have received parental permission to use the Services; (5) you will not access the Services through automated or non-human means, whether through a bot, script or otherwise, except through the platform's own API and authorized integrations; (6) you will not use the Services for any illegal or unauthorized purpose; and (7) your use of the Services will not violate any applicable law or regulation. If you provide any information that is untrue, inaccurate, not current, or incomplete, we have the right to suspend or terminate your account and refuse any and all current or future use of the Services (or any portion thereof). ## 4. USER REGISTRATION You may be required to register to use the Services. You agree to keep your password, API keys, and any other authentication credentials confidential, and you will be responsible for all use of your account and all activity that takes place under it — including activity by AI employees, integrations, desktop companion installations, and any other system or person you grant access to. You agree to use a strong, unique password and to enable two-factor authentication (2FA) where it is offered. We reserve the right to remove, reclaim, or change a username you select if we determine, in our sole discretion, that such username is inappropriate, obscene, or otherwise objectionable. Notify us immediately of unauthorized access. You must notify us promptly — and in any event without undue delay — if you become aware of, or reasonably suspect, any unauthorized access to your account, any compromise of your credentials, any unusual activity under your account, any suspicious AI employee behavior you did not authorize, or any other security incident affecting your use of the Services. Send notifications to security@sista.ai . Your failure to notify us promptly may result in additional liability, may waive your right to dispute activity that occurred during the period of compromise, and may relieve us of any obligation to assist with remediation. ## 5. PURCHASES AND PAYMENT We accept the following forms of payment: You agree to provide current, complete, and accurate purchase and account information for all purchases made via the Services. You further agree to promptly update account and payment information, including email address, payment method, and payment card expiration date, so that we can complete your transactions and contact you as needed. Sales tax will be added to the price of purchases as deemed required by us. We may change prices at any time. Payments can be made in the currencies supported by our payment provider. Early-Stage Product — Pricing, Plans & Features May Change Sistava is an early-stage product under active development. Pricing, plan structures, included features, credit allocations, usage limits, and the way features are bundled into plans may all change at any time at our sole discretion. This includes, without limitation: increasing or decreasing prices; adding, removing, renaming, merging, or replacing plans; moving a feature from one plan to another (including moving a feature you currently have access to into a higher-priced plan, or making a previously paid feature free); changing credit consumption rates; changing storage limits, rate limits, or fair-use thresholds; and discontinuing, beta-gating, or repackaging features entirely. Changes apply at the start of the next billing cycle, and your continued use of the Services after a change takes effect constitutes your acceptance of the change. We will use commercially reasonable efforts to notify you of material changes through the Services, by email, or on our website, but we are not obligated to provide individual advance notice of every change. If you do not agree to a change, your sole remedy is to cancel your subscription before the change takes effect. We do not guarantee that any specific feature, plan, price, credit allocation, AI model, or third-party integration will remain available, free, or included in your current plan. You agree to pay all charges at the prices then in effect for your purchases and any applicable shipping fees, and you authorize us to charge your chosen payment provider for any such amounts upon placing your order. We reserve the right to correct any errors or mistakes in pricing, even if we have already requested or received payment. We reserve the right to refuse any order placed through the Services. We may, in our sole discretion, limit or cancel quantities purchased per person, per household, or per order. These restrictions may include orders placed by or under the same customer account, the same payment method, and/or orders that use the same billing or shipping address. We reserve the right to limit or prohibit orders that, in our sole judgment, appear to be placed by dealers, resellers, or distributors. - Stripe - Visa - Mastercard - American Express - Discover - PayPal - Additional payment methods may be added in the future ## 6. SUBSCRIPTIONS AND CREDITS Billing and Renewal Your subscription will continue and automatically renew unless canceled. You consent to our charging your payment method on a recurring basis without requiring your prior approval for each recurring charge, until such time as you cancel the applicable order. The length of your billing cycle will depend on the type of subscription plan you choose when you subscribed to the Services. Credits and Usage-Based Metering The AI Employee Platform uses a credit-based usage system. Credits are consumed based on AI model token usage, execution runtime, and completed tasks. Upon registering, users may receive an initial credit allocation with no payment details required. The amount of this credit may be adjusted at our discretion. Users may manually purchase additional credits, with a minimum purchase amount. Users also have the option to enable auto-recharge, wherein their account will automatically be recharged to a specified amount when the balance falls below a certain threshold. Starting any AI employee operation may require a minimum available credit balance. This includes, without limitation, sending a chat message, assigning work to an employee, starting a scheduled task, running a tool, or initiating any other billable execution. If your balance is below the required minimum, the Services may block the operation even if your account still has a small positive credit balance. For example, an account with 5 credits remaining may be unable to start even a basic execution if the minimum threshold is higher than 5 credits. Your remedy is to upgrade, renew, enable auto-recharge, or purchase additional credits. We may choose to absorb or handle limited additional usage after an operation has validly started, but we are not required to advance credits, absorb overages, or allow any operation to begin below the applicable minimum. Minimum thresholds and quota rules may change over time. Additional details are available in our Credit Terms . When credits are exhausted, AI employee execution will be paused until credits are replenished. The account will not be charged automatically unless the user has enabled auto-recharge. We prioritize user control and consent. All charges are initiated by the user, either through manual purchases or by enabling the auto-recharge option. We use third-party services such as Stripe for payment processing, ensuring secure and transparent transactions. We do not engage in any practices that would result in unauthorized charges to users' accounts. No Refunds All payments are final and non-refundable. This includes, without limitation: monthly and annual subscription fees, one-time credit pack purchases, unused credits, partial billing periods, time during which you did not use the Services, and amounts paid for features that are later moved to a different plan, discontinued, modified, made free, or that did not function as you expected. We do not issue prorated refunds for cancellations, downgrades, or unused portions of any billing cycle. Credits have no cash value, cannot be exchanged for money, do not roll over indefinitely, and may expire according to the rules in effect at the time of purchase. Because Sistava is an early-stage product, you acknowledge and accept that the Services may contain bugs, may be unavailable, may not work as expected, may produce incorrect or unexpected output, and may change significantly over time, and you agree that none of these conditions entitle you to a refund, credit, chargeback, or compensation of any kind. The only exception is where a refund is strictly required by mandatory applicable law (for example, the 14-day EU consumer withdrawal right where it has not been validly waived), in which case the refund will be limited to the minimum required by that law. Cancellation You can cancel your subscription at any time by logging into your account. Your cancellation will take effect at the end of the current paid term, and you will retain access to the Services until that date. We will not refund any portion of fees already paid. If you have any questions, please email us at support@sista.ai . Fee, Plan & Feature Changes We may change subscription fees, credit prices, credit consumption rates, plan structures, feature bundles, and the assignment of features to plans at any time. A feature you currently access on your plan may later be moved to a higher-priced plan, locked behind a different plan, replaced, removed, or made available for free to other users on lower or no plans. You acknowledge that paying for the Services today does not entitle you to permanent access to any specific feature, model, integration, or pricing tier. Changes apply at the next billing cycle, and continued use after a change takes effect is your acceptance of the change. Beta, Preview & Early Access Features We may, from time to time, label certain features as "beta", "preview", "early access", "experimental", "alpha", "limited release", or similar. These features are provided strictly on an as-is, as-available basis for evaluation purposes. They may be incomplete, unstable, change without notice, behave unexpectedly, lose data, be limited to specific plans or users, be modified, suspended, restricted, or discontinued at any time, and may never reach general availability. Promotional pricing, early-adopter discounts, free credit grants, legacy plan entitlements, and any temporary access we offer are revocable, non-transferable, expire at our discretion, and create no permanent right or grandfathered status. We make no warranty whatsoever in connection with beta, preview, early access, or promotional features, and we are not liable for any consequence arising from your use of them. ## 6.A. ROADMAP, COMING SOON & FEEDBACK No Commitment to Future Features. Any statements we make about future functionality — including, without limitation, labels such as "coming soon", "planned", "on the roadmap", "expected", "target launch", or any similar wording in the product interface, website, landing pages, pricing pages, emails, support responses, demos, social media posts, documentation, or sales materials — are informational only and do not create a binding obligation to deliver any feature, integration, model, capability, timeline, or release date. Purchase decisions must be based only on functionality that is currently available at the time of purchase. Roadmap May Change at Any Time. We may delay, accelerate, reprioritize, change scope, redesign, replace, move between plans, beta-gate, or cancel any planned feature, integration, model, or release timeline at any time, with or without notice, in our sole discretion. No delay, change, or non-delivery of a roadmap item entitles you to any refund, credit, chargeback, damages, or other compensation, except to the limited extent required by mandatory applicable law. Feedback and Ideas Are Voluntary. We welcome feedback, suggestions, feature requests, bug reports, and roadmap input, but providing them is voluntary and does not create any partnership, fiduciary duty, agency, joint venture, employment, or advisory relationship between you and us. We may use, evaluate, implement, modify, or ignore any feedback in our sole discretion, without notice, attribution, or compensation to you. Fair Use, Rate Limits & Operational Safeguards Your use of the Services is subject to fair-use policies, rate limits, concurrency limits, storage limits, action limits, abuse-prevention measures, and other operational safeguards designed to protect the platform, other customers, our upstream providers, and the integrity of the Services. We may introduce, adjust, tighten, or relax these limits at any time. Use that we determine, in our sole discretion, to be excessive, abusive, automated beyond reasonable use, or that threatens platform stability or upstream provider quotas, may be throttled, suspended, or terminated without refund. Enterprise & Custom Agreements If you have entered into a separate written agreement with us — including an Order Form, Statement of Work, Master Services Agreement, Data Processing Agreement, or Enterprise Agreement — the terms of that agreement will control over these Legal Terms to the extent of any conflict, and only with respect to the Services covered by that agreement. In the absence of such a separate written agreement, these Legal Terms govern your use of the Services in full. Account Inactivity We may terminate or delete your account and all associated data if your account has been inactive for twelve (12) consecutive months and you do not have an active paid subscription. "Inactive" means no successful sign-in, no API call, no agent execution, and no other meaningful interaction with the Services during that period. Where reasonably practicable, we will send a notice to the email address on file at least thirty (30) days before deletion, giving you the opportunity to sign in and reactivate the account. Once an inactive account is deleted, the data may not be recoverable. Paid accounts in good standing are not subject to this inactivity rule. Termination for Breach — No Refund If we suspend or terminate your access to the Services because we determine, in our sole reasonable judgment, that you have materially breached these Legal Terms, our Acceptable Use Policy, or any applicable law (including but not limited to fraud, abuse, jailbreaking, prohibited use, sanctions violations, or attempts to harm the platform or other users), then: (a) you will not be entitled to any refund of fees already paid, including for unused subscription time and unused credits; (b) any obligation we have to provide the Services to you ends immediately; and (c) we reserve the right to pursue any further legal or financial remedies available to us, including recovering losses, costs, and reasonable attorneys' fees arising from your breach. This is in addition to, and not in place of, any other rights or remedies available to us under these Legal Terms or applicable law. ## 7. INFRASTRUCTURE AND SERVICE DELIVERY Cloud Infrastructure Third-Party Dependencies The Services rely on a wide range of third-party providers, open-source software, and cloud services. The list below is rendered from the same source of truth as the Sub-processors page ( routes/legal/_data/subprocessors.ts ) so the two pages cannot drift; it may change at any time as we add, remove, or replace providers. A current and complete list of dependencies, their versions, and licenses is maintained in our public README and technical documentation. Service Availability We use commercially reasonable efforts to maintain service availability. Specific service level commitments, including uptime targets and remedies for outages, are defined in separate Service Level Agreements applicable to paid plans or as specified in individual service contracts. - Our services are delivered through a combination of cloud providers, including Amazon Web Services (AWS), Hetzner Cloud, and Google Cloud Platform (GCP) - Cloudflare provides WAF, DDoS protection, and CDN in front of the platform - Let's Encrypt issues TLS certificates automatically - Service performance and reliability are subject to the underlying providers' service level agreements - We implement industry-standard disaster recovery and business continuity measures - Regular maintenance windows may be required for infrastructure updates - Representative third-party providers include: {SUBPROCESSOR_CATEGORY_ORDER.map((category) => { const items = subprocessorsByCategory(category); if (items.length === 0) return null; return ( : {items.map((s, idx) => ( ))} - Open-source software: The Services are also built on top of a number of open-source libraries, frameworks, and tools, each provided by its respective authors under its own license, on an as-is basis, with no warranty - Service availability may be affected by third-party or open-source provider disruptions, outages, deprecations, content-policy changes, or pricing changes - We may add, remove, replace, or switch between providers at any time, with or without notice, and the actual provider handling any given request may vary - We maintain backup systems and alternative providers where reasonably possible, but we do not warrant continuous availability of any specific provider or model - Users acknowledge that the terms, privacy policies, and acceptable use policies of each third-party provider apply to their use of the Services to the extent that data flows through that provider - We strive to maintain high service availability, excluding scheduled maintenance - Service credits, if applicable, are provided according to your specific SLA or service agreement - Performance metrics may be monitored internally - We aim to provide advance notice of planned maintenance where reasonably practicable - Emergency maintenance may be performed with minimal notice if necessary ## 7.A. DESKTOP COMPANION, CONNECTED ACCOUNTS & USE AT YOUR OWN RISK Read this section carefully. It limits our liability for the most powerful and unpredictable parts of the Services. The Nature of AI Employees AI employees on the Sistava platform are autonomous agents powered by large language models and other AI systems. They are designed to be capable, to take real actions on your behalf, and to make decisions on their own based on the instructions, skills, duties, training data, files, prompts, persona, and connected tools you give them. Like any autonomous system, AI employees are inherently unpredictable: identical instructions can produce different results, models can misinterpret context, hallucinate facts, take unintended actions, skip steps, repeat steps, click the wrong thing, send the wrong message, write to the wrong file, or make decisions you did not anticipate. We do our best to align them with your intent and to apply safety guardrails, but we do not and cannot guarantee that an AI employee will behave correctly, accurately, safely, predictably, or in line with your expectations on any given task. You Instruct, You Are Responsible You are the operator of every AI employee you hire, customize, or deploy. The behavior of an AI employee is shaped by the skills you assign, the duties you define, the prompts and context you provide, the files and knowledge you train it on, the tools you connect, the channels you expose, and the goals you give it. You are solely responsible for: (a) the instructions, prompts, and goals you give your AI employees; (b) the tools, accounts, devices, and data you grant them access to; (c) reviewing and approving sensitive actions; (d) verifying outputs before relying on them; (e) any action your AI employee takes against any system, account, person, or piece of data; and (f) any consequences, damages, losses, fines, or legal liability that result from those actions. If you instruct an AI employee to do something, and it does it (or attempts it, or does something adjacent to it), the responsibility is yours, not ours. Desktop Companion App — Full Computer & Browser Control The optional Sistava desktop companion app, when installed and authorized by you, gives AI employees the ability to control your computer and your web browser. This includes, without limitation, the ability to: move the mouse, click, type, take screenshots, read screen contents, open and close applications, navigate websites, fill in forms, submit forms, log into accounts you are signed into, read and send messages, read and modify files, create and delete files, run commands, execute code, access local data, and interact with any system your computer can reach. By installing and running the desktop companion, you grant the AI employee operating permissions equivalent to your own user account on that machine, and you accept full responsibility and risk for everything it does while running. We do not warrant that the desktop companion will behave safely, will avoid destructive actions, will respect application boundaries, will avoid your personal files, will recognize sensitive screens, or will stop on its own if something goes wrong. You should only run the desktop companion in an environment where you are comfortable accepting that risk, and you should review and approve each session before granting control. Close the companion or revoke its session at any time if you are unsure. Connected Accounts & Third-Party Integrations The Services let you connect external accounts and tools, including but not limited to Gmail, Google Drive, Outlook, OneDrive, Slack, Notion, HubSpot, Salesforce, GitHub, calendars, databases, MCP servers, custom API endpoints, webhooks, and any of the thousands of integrations available through our integration partners. When you connect an account, you authorize your AI employees to read, write, send, delete, modify, and otherwise act within that account at the scope you granted at the time of connection. You accept full responsibility for any action taken through a connected account, including but not limited to: emails sent or deleted, files created, modified, deleted, shared, or moved, calendar events created or canceled, contacts modified, messages posted, transactions initiated, code committed, deployments triggered, customer records updated, and any communication, financial, or operational consequence that results. We do not warrant that an AI employee will use a connected account safely, will respect the spirit of the access you granted, will avoid sensitive data, or will refrain from actions you would not have personally taken. You should grant the minimum scope necessary, audit connected accounts regularly, and disconnect any account you are not actively using. Our Side — How We Process Data from Connected Accounts. Independently of your responsibility for the actions an AI employee takes within a connected account, we commit to the following baseline on our processing of the data we touch in the course of executing those actions: in most cases, our default behavior is to access third-party systems on demand at the moment a task runs, process the data we fetch in memory to produce the AI employee's response, and discard the raw third-party content after the task turn. What survives in our systems is, by default, the embeddings, knowledge-graph facts, short notes the AI employee chose to keep, and the audit, diagnostic, and channel records described in our Privacy Policy and Data Retention Schedule. We do not bulk-extract, mirror, or warehouse the contents of your connected accounts as a matter of course. Specific Service features (such as training and knowledge ingestion, or platform-hosted channels we operate end-to-end) may store more than this baseline; where they do, the feature description and the Privacy Policy will say so before you enable them. This commitment is a description of our current processing model and is in addition to, not in derogation of, our obligations under the Data Processing Agreement and Privacy Policy , which control in the event of any conflict. Open-Source Dependencies & Third-Party AI Providers The Services are built on top of, and depend on, a large number of open-source software libraries, frameworks, and tools, as well as third-party AI model providers and routing services including but not limited to OpenAI, Anthropic, Moonshot AI, Google (Gemini), xAI (Grok), OpenRouter, Deepgram, and others. We do not control these upstream components. Open-source software is provided by its authors as-is, and the AI models we route requests to are operated by independent third parties whose behavior, accuracy, safety, availability, content policies, and pricing we do not control and cannot guarantee. Bugs, regressions, outages, content-policy changes, model deprecations, hallucinations, biased outputs, refusals, and unsafe outputs from any of these upstream components may affect the Services at any time. We are not liable for any harm caused by the behavior of an open-source dependency or a third-party AI provider, and your use of the Services constitutes your acceptance of this upstream risk. No Warranty of Safety, Accuracy, or Outcome To the fullest extent permitted by law, we make no warranty and accept no liability for any harm, loss, damage, cost, fine, claim, or consequence of any kind that results from the action or inaction of an AI employee, the desktop companion, a connected account, a third-party tool, an open-source dependency, or a third-party AI provider. This includes, without limitation, and on an as-is, as-available basis: deleted or corrupted files (whether on your computer, in your cloud drive, or in any connected service); lost, mis-sent, deleted, or unwanted emails, messages, posts, or other communications; spam or unsolicited contact sent from your accounts or sessions; unauthorized purchases, transactions, transfers, or financial actions; modified, leaked, or destroyed data in databases, CRMs, or other connected systems; deployments, code commits, or infrastructure changes; inaccurate, biased, offensive, defamatory, or illegal content generated by an AI employee; outputs that violate laws, regulations, contracts, or third-party rights; reputational harm; interruption of business; loss of customers or opportunities; or any other direct, indirect, incidental, consequential, special, exemplary, or punitive damages whatsoever. You use the Services, and especially the desktop companion and connected accounts, entirely at your own risk. Customer Use — Both Directions Sistava is a general-purpose AI workforce platform. We do not monitor, control, or pre-approve the instructions you give your AI employees, the tasks you assign them, the content they produce, the actions they take, or the purposes for which you use the Services. You are solely responsible for ensuring that your use of the Services and the activities of your AI employees comply with all applicable laws, regulations, contracts, third-party terms, professional standards, and the rights of others. We are not liable for any unlawful, harmful, infringing, fraudulent, abusive, or otherwise improper use of the Services by you or by anyone acting on your behalf, including any AI employee you instruct or configure. Conversely, we are not liable for any unlawful, harmful, infringing, fraudulent, abusive, or otherwise improper output, action, or behavior produced by an AI employee, regardless of whether you intended that outcome. The full list of activities that are expressly prohibited on the platform is set out in Section 8 (Prohibited Activities) below; however, the absence of a specific activity from that list does not mean we authorize, endorse, or accept liability for it. Your Acknowledgment By using the Services, installing the desktop companion, connecting any third-party account, training an AI employee, or instructing an AI employee to perform any task, you acknowledge that you have read, understood, and accepted the risks described in this Section 7.A, and you agree that Sistava shall not be liable for any consequence arising from those risks, to the fullest extent permitted by applicable law. ## 7.B. DEVELOPER SURFACES, CHANNELS, AND APPS Sistava offers, and may in the future offer, multiple ways for you, your AI employees, and third parties to interact with the platform programmatically or through dedicated client applications. This Section 7.B governs all of those surfaces. It is written to apply to every current and future channel, surface, app, or integration without amendment. By using any of them, you agree to the rules in this section in addition to all other rules in these Legal Terms. 7.B.1 Definitions. In this Section, " Developer Surface " means any current or future means by which a person, system, or AI agent can programmatically interact with Sistava or be interacted with by Sista AI, including without limitation: our REST and GraphQL APIs, WebSocket and streaming endpoints, SDKs and client libraries (in any language), Model Context Protocol (MCP) servers we expose or that you connect to us, Agent-to-Agent (A2A) protocols, webhooks (incoming and outgoing), custom API endpoints, browser extensions, native desktop applications (including the Sistava desktop companion), native mobile applications (iOS, Android, and any other platform), our marketplace and partner-store applications (including Shopify, the Apple App Store, the Google Play Store, the Chrome Web Store, the Microsoft Store, and any equivalent), embedded chat widgets, voice and phone channels, messaging integrations (Slack, WhatsApp, Telegram, Microsoft Teams, SMS, and any equivalent), email channels, and any other surface, channel, integration, app, sidecar, plugin, extension, sidebar, or programmatic boundary we offer or may offer in the future. The list above is illustrative; the rules in this section apply to any such surface whether or not it is named here. " App Distributor " means any third-party marketplace, app store, or distribution platform through which an Application is delivered to you, including those listed above. 7.B.2 API Keys, Credentials & Account Responsibility. When you generate an API key, OAuth token, webhook signing secret, MCP credential, or any other authentication artifact tied to your account, you must: (a) keep it confidential and never share it; (b) store it in a secure secret-management system (not in source code, public repositories, client-side bundles, mobile binaries, browser extensions, or any other publicly accessible location); (c) rotate it if you suspect compromise; and (d) revoke it immediately when it is no longer needed. You are responsible for all activity, traffic, billing, data, and consequences associated with any credential issued under your account, regardless of who or what actually used it. This includes traffic generated by AI agents, integrations, mobile apps, browser extensions, third-party tools, or any other system you authorize. If a credential is compromised and used by someone else, you must notify us under Section 4 above; failure to notify promptly may result in additional liability and waiver of disputes. 7.B.3 Rate Limits, Quotas & Fair Use. Every Developer Surface is subject to rate limits, concurrency caps, request-size limits, payload-size limits, message-frequency caps, and any other technical or operational quota we may impose, modify, or remove at any time without notice. Quotas may differ between surfaces and between subscription plans. We may throttle, queue, delay, reject, or block traffic that exceeds quota, that we determine is abusive or excessive, or that threatens platform stability or upstream provider quotas. We will not be liable for any consequence of throttling, queueing, or blocking applied in good faith. 7.B.4 Documentation Compliance. You must use each Developer Surface in accordance with the official Sistava documentation for that surface as published from time to time. Where documentation describes required headers, signature formats, retry behavior, idempotency rules, error handling, payload schemas, scopes, or any other contract, those requirements are incorporated into these Legal Terms by reference. Use that violates documented expectations may be treated as abuse under Section 8. 7.B.5 Third-Party Builders — Apps Built On Sistava. If you build an application, integration, agent, automation, plugin, extension, MCP server, A2A endpoint, mobile app, browser extension, marketplace listing, custom workflow, or any other product or service that uses or depends on Sistava (each a " Builder Application "), you are a " Builder " and the following rules apply to you: 7.B.6 End Users of Builder Applications. When you interact with a Builder Application created by a third party, that Builder is responsible for the application, its behavior, and its handling of your data — not Sistava. We do not endorse, certify, verify, audit, or warrant any Builder Application unless we have expressly identified ourselves as its publisher. Use Builder Applications at your own risk. Always review the Builder's own terms of service, privacy policy, and security practices before using their application or granting it access to your accounts or data. 7.B.7 App Distributor Terms (App Stores & Marketplaces). When you obtain a Sistava client application from an App Distributor (such as the Apple App Store, the Google Play Store, the Microsoft Store, the Chrome Web Store, the Mozilla Add-ons store, the Shopify App Store, or any equivalent), the App Distributor's terms of service, privacy practices, refund rules, and content policies also apply to your installation, payment, and use of that client. If there is a conflict between the App Distributor's terms and these Legal Terms with respect to in-app purchases, installation, refunds, or distribution mechanics, the App Distributor's terms govern those specific mechanics; for everything else (your use of the Sistava Services through the client), these Legal Terms govern. Where you make a purchase through an App Distributor, refunds are handled exclusively by that App Distributor according to their own refund policy and Section 6 of these Legal Terms (No Refunds) does not override their rules. Apple App Store users: you also acknowledge that Apple is not a party to these Legal Terms, has no obligation to provide support for the Services, and is a third-party beneficiary of these Legal Terms only to the extent the App Store Terms require. 7.B.8 Beta & Preview Surfaces. Some Developer Surfaces may be offered as beta, preview, early-access, alpha, experimental, or limited release. These are governed by the "Beta, Preview & Early Access Features" subsection of Section 6 above. Beta surfaces are excluded from any indemnity we may otherwise owe you, may change or break without notice, may never reach general availability, and may be removed at any time. 7.B.9 Removal & Revocation. We may, at any time, in our sole reasonable discretion, and without notice or liability: revoke API keys, OAuth tokens, webhook signing secrets, or any other credentials; suspend or terminate access to any Developer Surface; remove a Builder Application from any Sistava marketplace, partner directory, or discovery surface; reject or unpublish a registered MCP server, A2A endpoint, webhook destination, or custom integration; rate-limit, throttle, or block any traffic; or change, deprecate, or discontinue any Developer Surface entirely. Where reasonably practicable, we will provide advance notice for material changes that affect existing Builders or active integrations. Beta surfaces, surfaces removed for security or abuse reasons, and emergency changes are not subject to advance notice. 7.B.10 No Warranty for Third-Party Surfaces, Marketplaces, or Integrations. We make no warranty regarding the availability, functionality, security, accuracy, or fitness for purpose of: (a) any Builder Application created by a third party; (b) any third-party Application a Sistava tool, integration, or AI employee interacts with on your behalf; (c) any third-party marketplace, app store, or distribution channel where a Sistava client is published; (d) any third-party MCP server, A2A agent, webhook destination, or custom endpoint you connect to us; or (e) any other third-party surface, channel, app, or integration outside our direct control. Use of any such third-party item is governed by the third party's own terms and is at your own risk. Section 25.3 (Exclusions from Sistava's Indemnification Obligation) explicitly excludes claims arising from such third-party items from any indemnity we owe. 7.B.11 Future Surfaces — This Section Is Channel-Agnostic. The rules in this Section 7.B apply to every Developer Surface we currently offer and to every Developer Surface we may offer in the future, including surfaces that did not exist at the time you accepted these Legal Terms. Examples of future surfaces these rules apply to include, without limitation: agent-to-agent coordination protocols, mobile apps for iOS and Android, native desktop apps (Mac, Windows, Linux), watchOS / wearable apps, browser extensions for Chrome, Firefox, Safari, and Edge, marketplace apps for Shopify, HubSpot, Salesforce, Slack, Microsoft Teams, Notion, ClickUp, Monday, Linear, and any other SaaS marketplace, embedded chat widgets, voice phone-call channels, video-call channels, embedded SDK integrations in any language, MCP-compatible servers, A2A-compatible endpoints, IoT integrations, smart- home and smart-office surfaces, on-device inference channels, and any new channel or surface we have not yet conceived. Your continued use of any new Developer Surface after it becomes available constitutes your acceptance of this Section 7.B as applied to that surface. - You are solely responsible for your Builder Application, its functionality, its security, its compliance with applicable law, and its compliance with these Legal Terms and our Acceptable Use Policy. - You are solely responsible for the relationship with your end users, including their privacy, their consent, their data, the disclosures you make to them, and any contract you have with them. We are not a party to that relationship and we have no obligations to your end users. - You must clearly disclose to your end users that your Builder Application uses or is powered by Sistava, where doing so does not violate these Legal Terms or any brand-use restriction in Section 2. - You must implement reasonable security, privacy, and abuse-prevention measures appropriate to your Builder Application's sensitivity and audience. - You must respect the rate limits, quotas, and documentation requirements that apply to the Developer Surfaces you use. - You may not represent that your Builder Application is endorsed, certified, sponsored, or affiliated with Sistava without our prior written permission, except for truthful descriptive references (for example, "Built with Sistava"). - You may not use Sistava to build a product or service that competes with Sistava, that resells Sistava Services, or that wraps Sistava as the primary value of your offering, except where we have expressly approved that use in writing. - You assume all liability for any damage, loss, claim, dispute, or consequence arising from your Builder Application, including any harm to your end users, and you indemnify us under Section 25.1. ## 8. PROHIBITED ACTIVITIES You may not access or use the Services for any purpose other than that for which we make the Services available. The Services may not be used in connection with any commercial endeavors except those that are specifically endorsed or approved by us. As a user of the Services, you agree not to: - Systematically retrieve data or other content from the Services to create or compile, directly or indirectly, a collection, compilation, database, or directory without written permission from us. - Trick, defraud, or mislead us and other users, especially in any attempt to learn sensitive account information such as user passwords. - Circumvent, disable, or otherwise interfere with security-related features of the Services, including features that prevent or restrict the use or copying of any Content or enforce limitations on the use of the Services and/or the Content contained therein. - Disparage, tarnish, or otherwise harm, in our opinion, us and/or the Services. - Use any information obtained from the Services in order to harass, abuse, or harm another person. - Make improper use of our support services or submit false reports of abuse or misconduct. - Use the Services in a manner inconsistent with any applicable laws or regulations. - Engage in unauthorized framing of or linking to the Services. - Upload or transmit (or attempt to upload or to transmit) viruses, Trojan horses, or other material, including excessive use of capital letters and spamming (continuous posting of repetitive text), that interferes with any party's uninterrupted use and enjoyment of the Services or modifies, impairs, disrupts, alters, or interferes with the use, features, functions, operation, or maintenance of the Services. - Engage in any automated use of the system, such as using scripts to send comments or messages, or using any data mining, robots, or similar data gathering and extraction tools, except through the platform's own API and authorized integrations. - Delete the copyright or other proprietary rights notice from any Content. - Attempt to impersonate another user or person or use the username of another user. - Upload or transmit (or attempt to upload or to transmit) any material that acts as a passive or active information collection or transmission mechanism, including without limitation, clear graphics interchange formats ("gifs"), 1×1 pixels, web bugs, cookies, or other similar devices (sometimes referred to as "spyware" or "passive collection mechanisms" or "pcms"). - Interfere with, disrupt, or create an undue burden on the Services or the networks or services connected to the Services. - Harass, annoy, intimidate, or threaten any of our employees or agents engaged in providing any portion of the Services to you. - Attempt to bypass any measures of the Services designed to prevent or restrict access to the Services, or any portion of the Services. - Copy or adapt the Services' software, including but not limited to Flash, PHP, HTML, JavaScript, or other code. - Except as permitted by applicable law, decipher, decompile, disassemble, or reverse engineer any of the software comprising or in any way making up a part of the Services. This prohibition expressly includes model-extraction attacks, model-stealing attacks, weight-extraction attacks, prompt-extraction attacks, and any systematic or programmatic attempt to reconstruct, infer, replicate, or derive the AI models, model weights, training data, prompt templates, system instructions, system architecture, or internal algorithms of the Services , whether through repeated querying, distillation, membership-inference attacks, side-channel analysis, or any other technique. - Except as may be the result of standard search engine or Internet browser usage, use, launch, develop, or distribute any automated system, including without limitation, any spider, robot, cheat utility, scraper, or offline reader that accesses the Services, or use or launch any unauthorized script or other software. - Use a buying agent or purchasing agent to make purchases on the Services. - Make any unauthorized use of the Services, including collecting usernames and/or email addresses of users by electronic or other means for the purpose of sending unsolicited email, or creating user accounts by automated means or under false pretenses. - Use the Services, or any output generated by the Services, to develop, train, fine-tune, evaluate, or benchmark any artificial intelligence model, AI agent platform, AI workforce platform, or any other product or service that competes with the Services. Permitted exception: you may use outputs you receive from the Services to (a) train or fine-tune internal classifiers, embeddings, vector representations, or analytics models that are used solely for your own internal categorization, search, retrieval, ranking, or analytics purposes and that are not distributed, sold, sublicensed, or otherwise made available to third parties as a standalone product or service, and (b) fine-tune or customize models offered by Sistava itself through any future fine-tuning or customization features we may make available. This permitted exception does not authorize using the Services to build any competing AI agent, AI assistant, AI employee, AI workforce, or AI orchestration product. You may not otherwise use the Services for any effort to compete with us, or use the Services and/or the Content for any revenue-generating endeavor inconsistent with these Legal Terms. - Attempt to manipulate, jailbreak, or exploit AI employees to bypass safety measures, content policies, or usage restrictions. - Use AI employees to generate content that violates applicable laws, promotes violence, or infringes on third-party rights. ## 9. USER GENERATED CONTRIBUTIONS The Services may invite you to chat, contribute to, or participate in blogs, message boards, online forums, and other functionality, and may provide you with the opportunity to create, submit, post, display, transmit, perform, publish, distribute, or broadcast content and materials to us or on the Services, including but not limited to text, writings, video, audio, photographs, graphics, comments, suggestions, or personal information or other material (collectively, "Contributions"). Contributions may be viewable by other users of the Services and through third-party websites. As such, any Contributions you transmit may be treated as non-confidential and non-proprietary. When you create or make available any Contributions, you thereby represent and warrant that: Any use of the Services in violation of the foregoing violates these Legal Terms and may result in, among other things, termination or suspension of your rights to use the Services. - The creation, distribution, transmission, public display, or performance, and the accessing, downloading, or copying of your Contributions do not and will not infringe the proprietary rights, including but not limited to the copyright, patent, trademark, trade secret, or moral rights of any third party. - You are the creator and owner of or have the necessary licenses, rights, consents, releases, and permissions to use and to authorize us, the Services, and other users of the Services to use your Contributions in any manner contemplated by the Services and these Legal Terms. - You have the written consent, release, and/or permission of each and every identifiable individual person in your Contributions to use the name or likeness of each and every such identifiable individual person to enable inclusion and use of your Contributions in any manner contemplated by the Services and these Legal Terms. - Your Contributions are not false, inaccurate, or misleading. - Your Contributions are not unsolicited or unauthorized advertising, promotional materials, pyramid schemes, chain letters, spam, mass mailings, or other forms of solicitation. - Your Contributions are not obscene, lewd, lascivious, filthy, violent, harassing, libelous, slanderous, or otherwise objectionable (as determined by us). - Your Contributions do not ridicule, mock, disparage, intimidate, or abuse anyone. - Your Contributions are not used to harass or threaten (in the legal sense of those terms) any other person and to promote violence against a specific person or class of people. - Your Contributions do not violate any applicable law, regulation, or rule. - Your Contributions do not violate the privacy or publicity rights of any third party. - Your Contributions do not violate any applicable law concerning child pornography, or otherwise intended to protect the health or well-being of minors. - Your Contributions do not include any offensive comments that are connected to race, national origin, gender, sexual preference, or physical handicap. - Your Contributions do not otherwise violate, or link to material that violates, any provision of these Legal Terms, or any applicable law or regulation. ## 10. CONTRIBUTION LICENSE Public Contributions vs. Private User Data Public Contributions: Public Contributions are those posted to public areas of the Services (such as public forums, marketplace listings, or public profiles). If you post Contributions to public areas, you grant us a license to host, use, copy, reproduce, disclose, publish, broadcast, archive, store, cache, publicly perform, publicly display, reformat, translate, transmit, excerpt (in whole or in part), and distribute such Contributions for the purpose of operating and improving the Services. This license is non-exclusive, transferable, royalty-free, and worldwide, but limited to public Contributions only. Private inputs (chat messages, task instructions, configurations, and other private content) remain private and are not considered Public Contributions. Private User Data and Inputs: We do not claim ownership of your proprietary data, inputs, chat messages, configurations, code, voice recordings, or any private content you provide through the Services (collectively, "User Data"). You retain full ownership of all User Data and any intellectual property rights associated with it. We process User Data solely for the purpose of providing the Services to you. You grant us a limited license to use anonymized and aggregated User Data for service improvement and model training purposes, subject to your opt-out rights as described in our Privacy Policy. We do not sell, resell, or publicly distribute your private User Data. AI-Generated Outputs: To the extent permitted by applicable third-party AI provider terms, you own the outputs generated by our AI Services based on your inputs. We grant you a license to use such outputs for your intended purposes. You grant us a perpetual, non-exclusive license to use anonymized outputs and inputs for service improvement and model training, subject to your opt-out rights. Similarity of Output. Due to the nature of AI and the way large language models generate responses, outputs may not be unique to you. Other customers may submit the same or similar inputs and receive the same or substantially similar outputs from the Services. Outputs requested by and generated for another customer are not considered your outputs and you have no rights in them, even if they are identical or substantially similar to outputs generated for you. We are not responsible for, and you agree not to assert any claim against us or any other customer based on, the similarity of outputs generated independently for different customers. Training Data You Provide The Services let you train your AI employees on your own materials — including documents (PDFs, presentations, spreadsheets), URLs, files in connected accounts (Gmail, Google Drive, Notion, Slack, and others), knowledge bases, manuals, and any other content you upload, paste, link, or authorize us to ingest (collectively, "Training Data"). When you submit Training Data, you represent and warrant that: (a) you have all rights, licenses, consents, and permissions necessary to upload, share, and have us process that Training Data; (b) the Training Data does not infringe the copyright, trademark, trade secret, privacy, publicity, or any other right of any person or entity; (c) processing the Training Data on the platform does not violate any applicable law, regulation, contract, terms of service, license, or third-party policy that governs that content; and (d) you are not training your AI employees on content you obtained without authorization or content owned by third parties (including competitors) without their permission. You grant us a worldwide, non-exclusive, royalty-free, sublicensable license to host, store, copy, transmit, chunk, embed, vectorize, index, transform, and otherwise process the Training Data solely for the purpose of providing, operating, securing, and improving the Services for you. You can remove Training Data from the platform at any time, and we will delete it from our active systems, subject to retention required by law and standard backup cycles. You are solely responsible for the Training Data you provide and for any consequence of training your AI employees on it , including any claim, dispute, or liability brought by a third party who alleges that the Training Data was used or processed without their authorization. Credentials in Inputs. You must not paste, type, upload, link, or otherwise submit live credentials — passwords, API keys, private keys, OAuth tokens, bearer tokens, session cookies, MFA seed values, recovery codes, or anything equivalent — into chat, voice, files, training data, prompts, or any other input channel. To let an AI employee act on your behalf, connect the account through the supported OAuth or connection flow. We apply technical and operational safeguards to reduce the risk of accidental exposure, but no safeguard is a substitute for not sharing credentials in the first place. You assume all risk and liability for any credential you submit, and the limitations of liability, disclaimers of warranty, and indemnification obligations in these Terms apply with maximum force to any consequence of doing so — including unauthorized access, account compromise, regulatory exposure, and any downstream incident affecting you or any third party. Community Marketplace Contributions The Services may include a community marketplace where you can publish AI employees, teams, skills, duties, prompts, personas, or other configurations you have created (each a "Marketplace Contribution") so that other users may discover, view, and clone them into their own workspaces. The following terms apply to every Marketplace Contribution you publish: Feedback We welcome ideas, suggestions, bug reports, feature requests, and other feedback about the Services (collectively, "Feedback"). You have no obligation to give us Feedback, but if you do, you agree that we may use the Feedback for any purpose, in any form, in any medium, without any obligation, attribution, payment, or compensation to you. You grant us a worldwide, non-exclusive, royalty-free, perpetual, irrevocable, sublicensable, transferable license to use, copy, modify, create derivative works from, distribute, and otherwise exploit the Feedback in any way, including incorporating it into the Services or any other product or offering, without owing you anything in return. We do not assert any ownership over your Contributions or User Data. You retain full ownership of all of your Contributions, User Data, and any intellectual property rights or other proprietary rights associated with them. We are not liable for any statements or representations in your Contributions provided by you in any area on the Services. You are solely responsible for your Contributions to the Services and you expressly agree to exonerate us from any and all responsibility and to refrain from any legal action against us regarding your Contributions. We have the right, in our sole and absolute discretion, (1) to edit, redact, or otherwise change any Contributions; (2) to re-categorize any Contributions to place them in more appropriate locations on the Services; and (3) to pre-screen or delete any Contributions at any time and for any reason, without notice. We have no obligation to monitor your Contributions. - Your rights and warranties. You represent and warrant that you created the Marketplace Contribution yourself or otherwise have all rights necessary to publish it; that publishing it does not infringe any third party's intellectual property, privacy, publicity, or contractual rights; and that the Marketplace Contribution does not contain confidential information of any third party, personal data of any individual without their consent, malware, security exploits, prompt injection payloads, or content prohibited by Section 8. - License to us. You grant us a worldwide, non-exclusive, royalty-free, perpetual, irrevocable, sublicensable, transferable license to host, store, display, distribute, copy, modify, translate, adapt, reformat, categorize, promote, and otherwise use the Marketplace Contribution for the purpose of operating, marketing, and improving the marketplace and the Services, including showcasing the Marketplace Contribution as an example, including it in collections, and using metadata about it (such as clone counts and ratings) in product analytics and marketing. - License to other users. You grant every other user of the Services a worldwide, non-exclusive, royalty-free, perpetual, irrevocable license to clone the Marketplace Contribution into their own workspace and to use, modify, customize, and operate it for their own purposes (commercial or otherwise). Once a Marketplace Contribution has been cloned, the cloned copy is independent of the original and is not affected if you later modify, unpublish, or delete your published version. You cannot revoke a clone that has already been made. - Attribution. Where we display attribution to the original creator of a Marketplace Contribution, we will use commercially reasonable efforts to maintain that attribution, but we do not guarantee continued attribution and we may change, suspend, or remove attribution at any time for any reason, including for safety, abuse, legal, or operational reasons. - Creator rewards. Where we offer credit rewards, revenue share, or other incentives to creators of Marketplace Contributions, those incentives are entirely discretionary, may be changed at any time, may have eligibility rules and minimum thresholds, are not a guarantee of any specific payout, and may be ended entirely at our discretion with no liability. Reward credits have no cash value and are subject to the same rules as other credits on the platform. - Removal. We may remove, hide, demote, re-categorize, or restrict access to any Marketplace Contribution at any time, for any reason, without notice and without liability, including but not limited to suspected infringement, abuse, safety concerns, low quality, inactivity, or violation of these Legal Terms. - No liability for cloned content. We do not warrant the quality, safety, accuracy, legality, or fitness for purpose of any Marketplace Contribution published by another user. If you clone a Marketplace Contribution, you do so at your own risk, you become responsible for the cloned copy in your workspace, and we are not liable for any consequence arising from your use of it. - Third-party Applications referenced by a Marketplace Contribution. A Marketplace Contribution may reference, depend on, or instruct an AI employee to interact with a third-party Application, integration, MCP server, A2A endpoint, webhook destination, custom API, or other external system (each a " Referenced Application "). Referenced Applications are governed by the third party's own terms of service, privacy policy, and acceptable use policy. We do not warrant any Referenced Application, we are not responsible for it, and the rules in Section 7.B (Developer Surfaces, Channels, and Apps) apply to your use of any Referenced Application. If you clone a Marketplace Contribution that depends on a Referenced Application, you are responsible for reviewing and accepting that third party's terms before connecting it to your workspace. ## 11. GUIDELINES FOR REVIEWS We may provide you areas on the Services to leave reviews or ratings. When posting a review, you must comply with the following criteria: (1) you should have firsthand experience with the person/entity being reviewed; (2) your reviews should not contain offensive profanity, or abusive, racist, offensive, or hateful language; (3) your reviews should not contain discriminatory references based on religion, race, gender, national origin, age, marital status, sexual orientation, or disability; (4) your reviews should not contain references to illegal activity; (5) you should not be affiliated with competitors if posting negative reviews; (6) you should not make any conclusions as to the legality of conduct; (7) you may not post any false or misleading statements; and (8) you may not organize a campaign encouraging others to post reviews, whether positive or negative. We may accept, reject, or remove reviews in our sole discretion. We have absolutely no obligation to screen reviews or to delete reviews, even if anyone considers reviews objectionable or inaccurate. Reviews are not endorsed by us, and do not necessarily represent our opinions or the views of any of our affiliates or partners. We do not assume liability for any review or for any claims, liabilities, or losses resulting from any review. By posting a review, you hereby grant to us a perpetual, non-exclusive, worldwide, royalty-free, fully paid, assignable, and sublicensable right and license to reproduce, modify, translate, transmit by any means, display, perform, and/or distribute all content relating to review. ## 12. SOCIAL MEDIA As part of the functionality of the Services, you may link your account with online accounts you have with third-party service providers (each such account, a "Third-Party Account") by either: (1) providing your Third-Party Account login information through the Services; or (2) allowing us to access your Third-Party Account, as is permitted under the applicable terms and conditions that govern your use of each Third-Party Account. You represent and warrant that you are entitled to disclose your Third-Party Account login information to us and/or grant us access to your Third-Party Account, without breach by you of any of the terms and conditions that govern your use of the applicable Third-Party Account, and without obligating us to pay any fees or making us subject to any usage limitations imposed by the third-party service provider of the Third-Party Account. By granting us access to any Third-Party Accounts, you understand that (1) we may access, make available, and store (if applicable) any content that you have provided to and stored in your Third-Party Account (the "Social Network Content") so that it is available on and through the Services via your account, including without limitation any friend lists and (2) we may submit to and receive from your Third-Party Account additional information to the extent you are notified when you link your account with the Third-Party Account. Depending on the Third-Party Accounts you choose and subject to the privacy settings that you have set in such Third-Party Accounts, personally identifiable information that you post to your Third-Party Accounts may be available on and through your account on the Services. Please note that if a Third-Party Account or associated service becomes unavailable or our access to such Third-Party Account is terminated by the third-party service provider, then Social Network Content may no longer be available on and through the Services. You will have the ability to disable the connection between your account on the Services and your Third-Party Accounts at any time. PLEASE NOTE THAT YOUR RELATIONSHIP WITH THE THIRD-PARTY SERVICE PROVIDERS ASSOCIATED WITH YOUR THIRD-PARTY ACCOUNTS IS GOVERNED SOLELY BY YOUR AGREEMENT(S) WITH SUCH THIRD-PARTY SERVICE PROVIDERS. We make no effort to review any Social Network Content for any purpose, including but not limited to, for accuracy, legality, or non-infringement, and we are not responsible for any Social Network Content. You can deactivate the connection between the Services and your Third-Party Account by contacting us using the contact information below or through your account settings (if applicable). We will attempt to delete any information stored on our servers that was obtained through such Third-Party Account, except the username and profile picture that become associated with your account. ## 13. THIRD-PARTY WEBSITES AND CONTENT The Services may contain (or you may be sent via the Site) links to other websites ("Third-Party Websites") as well as articles, photographs, text, graphics, pictures, designs, music, sound, video, information, applications, software, and other content or items belonging to or originating from third parties ("Third-Party Content"). Such Third-Party Websites and Third-Party Content are not investigated, monitored, or checked for accuracy, appropriateness, or completeness by us, and we are not responsible for any Third-Party Websites accessed through the Services or any Third-Party Content posted on, available through, or installed from the Services, including the content, accuracy, offensiveness, opinions, reliability, privacy practices, or other policies of or contained in the Third-Party Websites or the Third-Party Content. Inclusion of, linking to, or permitting the use or installation of any Third-Party Websites or any Third-Party Content does not imply approval or endorsement thereof by us. If you decide to leave the Services and access the Third-Party Websites or to use or install any Third-Party Content, you do so at your own risk, and you should be aware these Legal Terms no longer govern. You should review the applicable terms and policies, including privacy and data gathering practices, of any website to which you navigate from the Services or relating to any applications you use or install from the Services. Any purchases you make through Third-Party Websites will be through other websites and from other companies, and we take no responsibility whatsoever in relation to such purchases which are exclusively between you and the applicable third party. You agree and acknowledge that we do not endorse the products or services offered on Third-Party Websites and you shall hold us blameless from any harm caused by your purchase of such products or services. Additionally, you shall hold us blameless from any losses sustained by you or harm caused to you relating to or resulting in any way from any Third-Party Content or any contact with Third-Party Websites. ## 14. ADVERTISERS We may display first-party advertisements in certain areas of the Services. Any advertisements are first-party, non-targeted, and not based on personal data or behavioral profiling. We do not share personal data with advertisers or allow third-party behavioral advertising on our Services. ## 15. SERVICES MANAGEMENT We reserve the right, but not the obligation, to: (1) monitor the Services for violations of these Legal Terms; (2) take appropriate legal action against anyone who, in our sole discretion, violates the law or these Legal Terms, including without limitation, reporting such user to law enforcement authorities; (3) in our sole discretion and without limitation, refuse, restrict access to, limit the availability of, or disable (to the extent technologically feasible) any of your Contributions or any portion thereof; (4) in our sole discretion and without limitation, notice, or liability, to remove from the Services or otherwise disable all files and content that are excessive in size or are in any way burdensome to our systems; and (5) otherwise manage the Services in a manner designed to protect our rights and property and to facilitate the proper functioning of the Services. ## 16. PRIVACY POLICY We care about data privacy and security. Please review our Privacy Policy . By using the Services, you agree to be bound by our Privacy Policy, which is incorporated into these Legal Terms. Please be advised the Services are hosted primarily in the United States and the Netherlands. If you access the Services from any other region of the world with laws or other requirements governing personal data collection, use, or disclosure that differ from applicable laws in the United States and Netherlands, then through your continued use of the Services, you are transferring your data to the United States and Netherlands, and you expressly consent to have your data transferred to and processed in the United States and Netherlands. ## 17. NOTICE & ACTION: ILLEGAL CONTENT AND COPYRIGHT We respect the intellectual property rights of others and we are committed to acting responsibly when we receive credible reports of illegal content on our platform. Sistava offers two notice-and-action paths: one under the EU Digital Services Act for any kind of illegal content, and one under the U.S. Digital Millennium Copyright Act for U.S. copyright claims. Both are described below. Both also include counter-notification rights for users whose content was removed. 17.1 EU Digital Services Act — Notice of Illegal Content (Article 16). Any person or entity may submit a notice to us claiming that content available on or through the Services is illegal under EU or member-state law. We provide this notice mechanism in accordance with Article 16 of Regulation (EU) 2022/2065 (the Digital Services Act or DSA) . To submit a valid notice, send an email to legal@sista.ai containing all of the following information: Upon receipt of a valid notice, we will acknowledge it without undue delay, assess the reported content in a timely, diligent, non-arbitrary, and objective manner, and take any action we consider appropriate (which may include removal, restriction, suspension, or no action). We will notify the notice provider and, where reasonably possible, the affected user of our decision and provide a statement of reasons in accordance with Article 17 of the DSA. Our internal complaint-handling system is available to both the notice provider and the affected user to challenge the decision under Article 20 of the DSA, and you may also seek out-of-court dispute settlement under Article 21 of the DSA. 17.2 U.S. Digital Millennium Copyright Act — Copyright Notification. For U.S. copyright infringement claims under the Digital Millennium Copyright Act , please send a notification to our designated agent at: Legal Department, Sistava, Korte Lijnbaanssteeg 1-4557, 1012SL Amsterdam, Netherlands. Email: legal@sista.ai . To be effective under 17 U.S.C. § 512(c)(3), your notification must include all of the following: Upon receipt of a valid DMCA notification, we will expeditiously remove or disable access to the allegedly infringing material in accordance with 17 U.S.C. § 512. If you knowingly materially misrepresent that material is infringing, you may be liable for damages, including costs and attorneys' fees, under 17 U.S.C. § 512(f). 17.3 Counter-Notification (DSA Article 17 / DMCA § 512(g)). If your content was removed or disabled in response to a notice under Section 17.1 or 17.2 and you believe the removal was the result of mistake, misidentification, or wrongful claim, you have the right to submit a counter-notification by emailing legal@sista.ai . A valid counter-notification must include: For DSA notices, we will reinstate the content and notify the original notice provider where, after our internal complaint-handling review, we conclude that our removal decision was incorrect. For DMCA notices, we will forward your counter-notification to the original notifier and, unless the notifier files a court action seeking to restrain you from your activity within ten (10) to fourteen (14) business days, we will restore the removed material in accordance with 17 U.S.C. § 512(g). Submitting a counter-notification, or any notice under this section, in bad faith, with knowledge of falsity, or with the intent to harass, may result in legal liability and termination of your account under our Terms of Service and Acceptable Use Policy. 17.4 Repeat Infringers. In appropriate circumstances and at our sole discretion, we will terminate the accounts of users who are determined to be repeat infringers of copyright or other intellectual property rights, in accordance with 17 U.S.C. § 512(i) and the spirit of EU intellectual property law. - A sufficiently substantiated explanation of the reasons why you consider the content to be illegal, including the specific law you believe is violated. - A clear indication of the exact URL, location, or identifier of the content (or, if applicable, the AI employee, marketplace contribution, or output) you are reporting. - Your name and email address. (You may submit anonymously, but only if the notice does not concern child sexual abuse material, criminal offences against personal life, integrity, freedom, or sexual self-determination, in which case we will require contact details.) - A statement confirming your good-faith belief that the information and allegations in the notice are accurate and complete. - A physical or electronic signature of a person authorized to act on behalf of the owner of the copyright that is allegedly infringed. - Identification of the copyrighted work claimed to have been infringed (or, if multiple works at a single online site are covered by a single notification, a representative list of such works). - Identification of the material that is claimed to be infringing or to be the subject of infringing activity, with information reasonably sufficient to permit us to locate the material. - Information reasonably sufficient to permit us to contact the complaining party, such as an address, telephone number, and (if available) email address. - A statement that the complaining party has a good-faith belief that use of the material in the manner complained of is not authorized by the copyright owner, its agent, or the law. - A statement that the information in the notification is accurate, and under penalty of perjury, that the complaining party is authorized to act on behalf of the owner of an exclusive right that is allegedly infringed. - Your physical or electronic signature. - Identification of the content that has been removed or disabled and the location at which it appeared before it was removed or disabled. - A statement under penalty of perjury that you have a good-faith belief that the content was removed or disabled as a result of mistake or misidentification. - Your name, address, telephone number, and email address. - For DMCA counter-notifications: a statement that you consent to the jurisdiction of the federal district court for the judicial district in which your address is located, or, if your address is outside the United States, of any judicial district in which we may be found, and that you will accept service of process from the person who provided the original notification or an agent of that person. ## 18. TERM AND TERMINATION These Legal Terms shall remain in full force and effect while you use the Services. WITHOUT LIMITING ANY OTHER PROVISION OF THESE LEGAL TERMS, WE RESERVE THE RIGHT TO, IN OUR SOLE DISCRETION AND WITHOUT NOTICE OR LIABILITY, DENY ACCESS TO AND USE OF THE SERVICES (INCLUDING BLOCKING CERTAIN IP ADDRESSES), TO ANY PERSON FOR ANY REASON OR FOR NO REASON, SUBJECT TO APPLICABLE CONSUMER PROTECTION LAWS, INCLUDING WITHOUT LIMITATION FOR BREACH OF ANY REPRESENTATION, WARRANTY, OR COVENANT CONTAINED IN THESE LEGAL TERMS OR OF ANY APPLICABLE LAW OR REGULATION. WE MAY TERMINATE YOUR USE OR PARTICIPATION IN THE SERVICES OR DELETE YOUR ACCOUNT AND ANY CONTENT OR INFORMATION THAT YOU POSTED AT ANY TIME, WITHOUT WARNING, IN OUR SOLE DISCRETION, SUBJECT TO APPLICABLE CONSUMER PROTECTION LAWS. If we terminate or suspend your account for any reason, you are prohibited from registering and creating a new account under your name, a fake or borrowed name, or the name of any third party, even if you may be acting on behalf of the third party. In addition to terminating or suspending your account, we reserve the right to take appropriate legal action, including without limitation pursuing civil, criminal, and injunctive redress. Emergency Suspension — Security Emergencies. Notwithstanding anything else in these Legal Terms, we may immediately suspend, throttle, or terminate your access to all or part of the Services, without prior notice and without liability, in response to a " Security Emergency ". A Security Emergency means any actual or reasonably suspected use of the Services by you, your account, or any AI employee, integration, credential, or system operating under your account that, in our reasonable judgment, presents: (a) an imminent security risk to the Services, our infrastructure, or our other customers; (b) a credible risk of harm to any person, system, or third party; (c) an active or imminent breach of any law or regulation; (d) an active or imminent infringement of a third party's rights; (e) a credit-spend, traffic, or rate-limit anomaly that suggests a compromised credential or runaway agent; (f) a violation of Section 8 (Prohibited Activities) or our Acceptable Use Policy that requires immediate intervention; or (g) any other condition that, if not immediately addressed, could reasonably expose us, our other customers, our upstream providers, or any third party to significant harm or liability. Where reasonably practicable, we will: (i) narrowly tailor any emergency suspension to address the specific Security Emergency; (ii) notify you as soon as possible after the suspension is in place; and (iii) cooperate with you in good faith to restore access once the Security Emergency has been resolved to our reasonable satisfaction. We will not be liable for any damage, loss, or consequence arising from an emergency suspension applied in good faith. ## 18.A. DATA PORTABILITY & SWITCHING You have the right to retrieve and export your data from the Services and to switch to another service provider or to your own infrastructure. To exercise this right, send a written request (a "Switching Request") to support@sista.ai identifying your account and the data you wish to retrieve or port. We will acknowledge your Switching Request within a reasonable time and will work with you in good faith to fulfill it. Notice period. You shall provide at least thirty (30) days' written notice for any Switching Request (the "Notice Period"). During the Notice Period, your account remains active and these Legal Terms continue to apply. Transition period. After the Notice Period, the switching process will begin and we will aim to complete it within a further sixty (60) days (the "Transition Period"), during which we will: (a) make your exportable data available in commonly used, machine-readable formats (such as JSON, CSV, Markdown, or other structured formats appropriate to the data type); (b) provide reasonable assistance with the export and transition process; (c) continue providing the Services in accordance with these Legal Terms; (d) inform you of any known technical risks to the continuity of the Services during the transition; and (e) maintain a reasonable level of security throughout the process. Where the transition is technically complex or the volume of data is large, we may notify you in writing of an extension to the Transition Period of up to a further ninety (90) days. You may also extend the Transition Period once, by reasonable written request, for an additional period. Retrieval period. After the Transition Period ends, you shall have a further thirty (30) calendar days (the "Retrieval Period") to download or retrieve any remaining exportable data. At the end of the Retrieval Period, unless otherwise required by law, by a separate agreement with us, or by a legitimate retention obligation, we will delete the exportable data you generated through the Services from our active systems, subject to standard backup and disaster-recovery cycles which will overwrite backups within our ordinary retention schedule. What is exportable. Exportable data includes: your account profile and settings, your AI employees and their configurations (persona, skills, duties, tools), your teams, your tasks, your schedules, your work journals, your chat messages, files in your drive, billing summaries, and other data you have generated through the Services. Exportable data does not include: data we are required to retain for legal, tax, accounting, audit, fraud-prevention, or compliance reasons; aggregated or anonymized data from which you cannot reasonably be identified; data that would disclose our trade secrets, internal system architecture, prompt templates, or proprietary models; or data of other users with whom you may have interacted. Switching costs. We do not charge a fee for export, retrieval, or switching itself. Where extracting data requires unusual effort (for example, custom format conversions, very large historical exports, or technical assistance beyond standard tooling), we may charge reasonable cost-based fees, communicated and agreed to you in writing in advance. Termination on completion. These Legal Terms will automatically terminate upon successful completion of the switching process or, where you have instructed us to delete your data, upon completion of deletion, whichever is sooner. We will notify you of termination by email. This Section 18.A is intended to satisfy our obligations as a data processor and service provider under the EU Data Act (Regulation (EU) 2023/2854) and similar applicable laws regarding switching, portability, and termination of cloud services. Where mandatory law requires shorter timelines, longer support, or additional steps, those requirements will prevail over this section to the extent of any conflict. This section does not limit your separate rights under data protection laws (including GDPR rights to access, rectification, erasure, and portability), which are addressed in our Privacy Policy . ## 19. MODIFICATIONS AND INTERRUPTIONS Sistava is an early-stage product operated by a solo founder and is under active development. We reserve the right to change, modify, add, remove, repackage, rename, lock, unlock, beta-gate, or discontinue any feature, plan, price, credit allocation, integration, AI model, or any other part of the Services at any time, for any reason, at our sole discretion, with or without notice. A feature you have access to today on your current plan may, in the future, be removed, replaced, moved to a different plan (including a higher-priced plan), made free for everyone, or locked behind a separate package. We have no obligation to maintain, support, update, or continue offering any specific feature, model, or plan, and we will not be liable to you or any third party for any such modification, price change, plan restructure, feature relocation, suspension, or discontinuance of the Services. We cannot guarantee the Services will be available at all times. We may experience hardware, software, or other problems or need to perform maintenance related to the Services, resulting in interruptions, delays, or errors. We reserve the right to change, revise, update, suspend, discontinue, or otherwise modify the Services at any time or for any reason without notice to you. You agree that we have no liability whatsoever for any loss, damage, or inconvenience caused by your inability to access or use the Services during any downtime or discontinuance of the Services. Nothing in these Legal Terms will be construed to obligate us to maintain and support the Services or to supply any corrections, updates, or releases in connection therewith. AI Employee retirement and replacement. The roster of AI employees available on the platform evolves over time. We may retire, rename, restructure, merge, split, or replace any AI employee role, team, or persona at our sole discretion — for example, when we consolidate several single-purpose roles into one bundled role, when an underlying model or capability changes, or when we restructure how a team is composed. When an AI employee you have previously worked with is retired or replaced: AI model changes and substitution. The underlying AI models that power the Services — including but not limited to the default model assigned to any AI employee, the model you have explicitly selected for a specific AI employee, and any model used by an internal feature (such as guardrails, embeddings, summarisation, search, transcription, or text-to-speech) — may be changed, upgraded, downgraded, swapped, routed through a different provider, or temporarily substituted at our sole discretion at any time. This includes substituting a model you have explicitly selected with a different model when, in our reasonable judgement, doing so is necessary or preferable — for example, when the selected model or provider is unavailable, deprecated, rate-limited, retired by the upstream provider, materially repriced, failing safety or quality checks, or otherwise unsuitable, or when we change a platform-wide default that affects the resolved model for your AI employees. A substitute model may differ from the original in voice, tone, reasoning style, latency, context window, tool-use behaviour, accuracy, or cost per credit. We will make a reasonable effort to keep substitutions comparable in capability but make no guarantee. Model changes and substitutions are a change to the Services covered by this Section 19 and by Section 6 (No Refunds) and do not entitle you to a refund, credit, or chargeback. Internal features, safety systems, and plan reshuffles. Beyond the AI employees, models, and customer-facing features described above, the Services include many internal components that we may enable, disable, tune, throttle, expand, restrict, or remove at our sole discretion at any time. These include, without limitation: safety guardrails and content filters; rate limits and concurrency caps; memory, retrieval, and summarisation behaviour; automated background work (schedules, heartbeats, maintenance jobs); analytics, telemetry, and experiment flags; tool availability and tool-routing rules; quality, cost, and abuse controls; and any other behind-the-scenes mechanism we use to operate the platform. We typically aim to leave your day-to-day experience unaffected, but we make no commitment to do so. Separately, any user-facing feature, integration, or capability — whether currently included in your plan, in a higher plan, in a lower plan, in a free tier, in beta, or unbundled — may be moved between plans, repackaged, gated, ungated, made free, made paid, or removed at any time, including in ways that reduce, restrict, or remove what is available on the plan you currently pay for. Your subscription entitles you to access the Services as they exist and as they are delivered to your account at any given moment, and not to any specific feature set, behaviour, model, AI employee, integration, quota, performance level, or plan composition you may have observed previously or that may have been described in marketing, documentation, or support communications. Sistava is an early-stage product and will continue to change; you accept this volatility as a condition of using the Services. Changes of the kind described in this paragraph are covered by this Section 19 and by Section 6 (No Refunds) and do not entitle you to a refund, credit, or chargeback. - Your data is preserved. Past chat history, files, outputs, work-journal entries, tasks, and other artifacts produced by or for that AI employee remain accessible in your workspace, subject to the data-retention rules in our Data Retention policy. - Open tasks may be reassigned. In-flight tasks on the board may be transferred to a successor AI employee, to another teammate, or surfaced for you to reassign. The task content and history are preserved. - Future chat moves to the successor or a new hire. You will no longer be able to start new conversations with a retired AI employee. You may be assigned a successor automatically, or you may hire a new AI employee from the then-current roster. Conversation continuity is not guaranteed across a retirement event; the underlying persona, voice, model, or behaviour of a successor may differ. - No refunds for retirement. Retirement, renaming, restructuring, merging, or replacement of any AI employee is a change to the Services covered by this Section 19 and by Section 6 (No Refunds) and does not entitle you to a refund, credit, or chargeback. ## 20. GOVERNING LAW These Legal Terms are governed by and interpreted following the laws of the Netherlands, and the use of the United Nations Convention of Contracts for the International Sales of Goods is expressly excluded. If your habitual residence is in the EU, and you are a consumer, you additionally possess the protection provided to you by obligatory provisions of the law in your country of residence. Sistava and yourself both agree to submit to the non-exclusive jurisdiction of the courts of Amsterdam, which means that you may make a claim to defend your consumer protection rights in regards to these Legal Terms in the Netherlands, or in the EU country in which you reside. ## 21. DISPUTE RESOLUTION EU Consumer Rights If you are a consumer located in the European Union, you have mandatory rights under EU consumer protection law. These Terms do not limit your right to bring proceedings in the courts of your country of residence. For EU consumers, disputes may be resolved in the competent courts of your country of residence or in the courts of the Netherlands, at your choice. Binding Arbitration (Business Users Only) For business users (non-consumers), any dispute arising from the relationships between the Parties to these Legal Terms may, at either party's election, be determined by one arbitrator who will be chosen in accordance with the Arbitration and Internal Rules of the European Court of Arbitration being part of the European Centre of Arbitration having its seat in Strasbourg, and which are in force at the time the application for arbitration is filed. The institution is administered remotely; the seat of arbitration shall be Amsterdam, Netherlands, which governs procedure. The language of the proceedings shall be English. Applicable rules of substantive law shall be the law of the Netherlands. Arbitration is optional and may be chosen by either party; if neither party elects arbitration, disputes shall be resolved in the competent courts of Amsterdam, Netherlands. Restrictions The Parties agree that any arbitration shall be limited to the Dispute between the Parties individually. To the full extent permitted by law, (a) no arbitration shall be joined with any other proceeding; (b) there is no right or authority for any Dispute to be arbitrated on a class-action basis or to utilize class action procedures; and (c) there is no right or authority for any Dispute to be brought in a purported representative capacity on behalf of the general public or any other persons. Exceptions to Arbitration The Parties agree that the following Disputes are not subject to the above provisions concerning binding arbitration: (a) any Disputes seeking to enforce or protect, or concerning the validity of, any of the intellectual property rights of a Party; (b) any Dispute related to, or arising from, allegations of theft, piracy, invasion of privacy, or unauthorized use; and (c) any claim for injunctive relief. If this provision is found to be illegal or unenforceable, then neither Party will elect to arbitrate any Dispute falling within that portion of this provision found to be illegal or unenforceable and such Dispute shall be decided by a court of competent jurisdiction within the courts listed for jurisdiction above, and the Parties agree to submit to the personal jurisdiction of that court. ## 22. CORRECTIONS There may be information on the Services that contains typographical errors, inaccuracies, or omissions, including descriptions, pricing, availability, and various other information. We reserve the right to correct any errors, inaccuracies, or omissions and to change or update the information on the Services at any time, without prior notice. ## 23. DISCLAIMER THE SERVICES ARE PROVIDED ON AN AS-IS AND AS-AVAILABLE BASIS. YOU AGREE THAT YOUR USE OF THE SERVICES WILL BE AT YOUR SOLE RISK. TO THE FULLEST EXTENT PERMITTED BY LAW, WE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, IN CONNECTION WITH THE SERVICES AND YOUR USE THEREOF, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT. WE MAKE NO WARRANTIES OR REPRESENTATIONS ABOUT THE ACCURACY OR COMPLETENESS OF THE SERVICES' CONTENT OR THE CONTENT OF ANY WEBSITES OR MOBILE APPLICATIONS LINKED TO THE SERVICES AND WE WILL ASSUME NO LIABILITY OR RESPONSIBILITY FOR ANY (1) ERRORS, MISTAKES, OR INACCURACIES OF CONTENT AND MATERIALS, (2) PERSONAL INJURY OR PROPERTY DAMAGE, OF ANY NATURE WHATSOEVER, RESULTING FROM YOUR ACCESS TO AND USE OF THE SERVICES, (3) ANY UNAUTHORIZED ACCESS TO OR USE OF OUR SECURE SERVERS AND/OR ANY AND ALL PERSONAL INFORMATION AND/OR FINANCIAL INFORMATION STORED THEREIN, (4) ANY INTERRUPTION OR CESSATION OF TRANSMISSION TO OR FROM THE SERVICES, (5) ANY BUGS, VIRUSES, TROJAN HORSES, OR THE LIKE WHICH MAY BE TRANSMITTED TO OR THROUGH THE SERVICES BY ANY THIRD PARTY, AND/OR (6) ANY ERRORS OR OMISSIONS IN ANY CONTENT AND MATERIALS OR FOR ANY LOSS OR DAMAGE OF ANY KIND INCURRED AS A RESULT OF THE USE OF ANY CONTENT POSTED, TRANSMITTED, OR OTHERWISE MADE AVAILABLE VIA THE SERVICES. WE DO NOT WARRANT, ENDORSE, GUARANTEE, OR ASSUME RESPONSIBILITY FOR ANY PRODUCT OR SERVICE ADVERTISED OR OFFERED BY A THIRD PARTY THROUGH THE SERVICES, ANY HYPERLINKED WEBSITE, OR ANY WEBSITE OR MOBILE APPLICATION FEATURED IN ANY BANNER OR OTHER ADVERTISING, AND WE WILL NOT BE A PARTY TO OR IN ANY WAY BE RESPONSIBLE FOR MONITORING ANY TRANSACTION BETWEEN YOU AND ANY THIRD-PARTY PROVIDERS OF PRODUCTS OR SERVICES. AS WITH THE PURCHASE OF A PRODUCT OR SERVICE THROUGH ANY MEDIUM OR IN ANY ENVIRONMENT, YOU SHOULD USE YOUR BEST JUDGMENT AND EXERCISE CAUTION WHERE APPROPRIATE. ## 24. LIMITATIONS OF LIABILITY IN NO EVENT WILL WE OR OUR DIRECTORS, EMPLOYEES, OR AGENTS BE LIABLE TO YOU OR ANY THIRD PARTY FOR ANY DIRECT, INDIRECT, CONSEQUENTIAL, EXEMPLARY, INCIDENTAL, SPECIAL, OR PUNITIVE DAMAGES, INCLUDING LOST PROFIT, LOST REVENUE, LOSS OF DATA, OR OTHER DAMAGES ARISING FROM YOUR USE OF THE SERVICES, EVEN IF WE HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. NOTWITHSTANDING ANYTHING TO THE CONTRARY CONTAINED HEREIN, OUR LIABILITY TO YOU FOR ANY CAUSE WHATSOEVER AND REGARDLESS OF THE FORM OF THE ACTION, WILL AT ALL TIMES BE LIMITED TO THE LESSER OF THE AMOUNT PAID, IF ANY, BY YOU TO US DURING THE TWELVE (12) MONTH PERIOD PRIOR TO ANY CAUSE OF ACTION ARISING OR ONE HUNDRED EUROS (€100), TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW. THIS LIMITATION DOES NOT APPLY WHERE LIABILITY IS GOVERNED BY A SEPARATE ENTERPRISE AGREEMENT. NOTHING LIMITS LIABILITY WHERE EXCLUSION IS PROHIBITED BY MANDATORY LAW. CERTAIN US STATE LAWS AND INTERNATIONAL LAWS DO NOT ALLOW LIMITATIONS ON IMPLIED WARRANTIES OR THE EXCLUSION OR LIMITATION OF CERTAIN DAMAGES. IF THESE LAWS APPLY TO YOU, SOME OR ALL OF THE ABOVE DISCLAIMERS OR LIMITATIONS MAY NOT APPLY TO YOU, AND YOU MAY HAVE ADDITIONAL RIGHTS. ## 25. INDEMNIFICATION 25.1 Customer Indemnification of Sistava. You agree to defend, indemnify, and hold us harmless, including our affiliates, and all of our respective officers, agents, partners, and employees, from and against any loss, damage, liability, claim, or demand, including reasonable attorneys' fees and expenses, made by any third party due to or arising out of: (1) your Contributions; (2) your Training Data and any use we make of it to provide the Services to you; (3) your Marketplace Contributions; (4) the inputs, instructions, prompts, configurations, persona text, skills, duties, tools, schedules, or any other content you provide or assign to your AI employees; (5) any action, inaction, output, communication, transaction, or behavior of an AI employee operating under your account, your direction, your connected accounts, or your desktop companion installation; (6) your use of the Services; (7) breach of these Legal Terms or our Acceptable Use Policy; (8) any breach of your representations and warranties set forth in these Legal Terms; (9) your violation of the rights of a third party, including but not limited to intellectual property, privacy, publicity, contractual, or moral rights; (10) any overt harmful act toward any other user of the Services with whom you connected via the Services; and (11) any violation of applicable law, regulation, or third-party terms of service caused by your use of the Services or your AI employees' actions on your behalf. Notwithstanding the foregoing, we reserve the right, at your expense, to assume the exclusive defense and control of any matter for which you are required to indemnify us, and you agree to cooperate, at your expense, with our defense of such claims. We will use reasonable efforts to notify you of any such claim, action, or proceeding which is subject to this indemnification upon becoming aware of it. 25.2 Sistava Indemnification of Customer (Limited Platform IP Only). Subject to the exclusions in Section 25.3 and the liability cap in Section 24, we will defend you from a third-party claim, suit, or proceeding (a "Customer Claim") brought against you alleging that the Sistava platform itself — meaning the proprietary source code, software, design, and brand elements we authored and supplied to you under these Legal Terms — directly infringes that third party's copyright, registered trademark, or trade secret in the European Union or the Netherlands, and we will pay the amount of any final judgment awarded against you on such Customer Claim by a court of competent jurisdiction or any settlement amount we approve in writing. This is the only circumstance in which we owe you defense or indemnification, and it is your sole and exclusive remedy for any third-party claim of any kind under these Legal Terms. 25.2.A Mitigation Right. If we reasonably believe that all or any portion of the Services is, or is likely to become, the subject of a Customer Claim covered by Section 25.2, we may, at our sole discretion and at our expense: (a) procure for you the right to continue using the affected portion of the Services in accordance with these Legal Terms; (b) modify, replace, or repackage the affected portion of the Services so that it is non-infringing while preserving substantially equivalent functionality; or (c) if neither (a) nor (b) is commercially practicable in our reasonable judgment, suspend or terminate the affected portion of the Services upon written notice to you and refund any prepaid Fees attributable to the unused portion of the terminated Services on a prorated basis. You will promptly comply with any reasonable instructions we provide in connection with the foregoing, including any instruction to stop using, replace, or modify the affected feature. Exercising this Mitigation Right is our sole and exclusive obligation, and your sole and exclusive remedy, in connection with any actual or threatened Customer Claim, in addition to (and not in place of) the indemnity in Section 25.2. 25.3 Exclusions from Sistava's Indemnification Obligation. Our obligation under Section 25.2 does not apply, and we have no defense or indemnification obligation whatsoever, to the extent the Customer Claim arises from or is connected to any of the following (each an "Excluded Matter"): 25.4 Indemnification Process. As a condition to either party's indemnification obligation under this Section 25, the indemnified party must: (a) promptly notify the indemnifying party in writing of the relevant claim and reasonably cooperate in the defense at the indemnifying party's expense; (b) give the indemnifying party sole control of the defense and settlement of the claim, including selection of counsel, strategy, and any negotiations, except that the indemnifying party may not enter into any settlement that admits wrongdoing on behalf of the indemnified party or imposes any non-monetary obligation on the indemnified party without the indemnified party's prior written consent (not to be unreasonably withheld); and (c) take reasonable steps to mitigate damages. The indemnifying party's obligations are excused to the extent that the indemnified party's failure to give prompt notice or cooperate materially prejudices the defense. 25.5 Sole and Exclusive Remedy. To the extent covered under this Section 25, the indemnification rights and obligations described here are each party's sole and exclusive remedy against the other for any third-party claim, and our total liability under Section 25.2 (together with any other liability we may have under these Legal Terms) remains subject to the overall liability cap set out in Section 24. - Outputs of any kind. Any text, image, audio, video, code, file, message, document, decision, summary, recommendation, action, or any other output, content, or behavior produced or performed by an AI employee, the desktop companion, a connected account, a tool, an integration, or any other component of the Services. AI outputs are inherently unpredictable and we do not warrant or indemnify them under any theory of law. - Third-party AI models and providers. Any claim arising from the behavior, output, bias, content policy, training data, weights, or operation of any third-party AI model or provider used by the Services (including but not limited to OpenAI, Anthropic, Moonshot AI, Google, xAI, OpenRouter, Deepgram, and any successor or replacement provider). We do not train base models, we do not own the models we route requests to, and we accept no liability for them. - Open-source software. Any claim arising from the behavior, output, license terms, or operation of any open-source library, framework, or component included in the Services. Each open-source component is governed by its own license, on an as-is basis, with no warranty from us. - Your inputs, training data, contributions, or marketplace contributions. Any claim that content you uploaded, submitted, trained on, published, configured, or directed an AI employee to use infringes a third party's rights. - Your modifications or combinations. Any claim arising from your modification of the Services, or from the combination of the Services with any product, content, system, prompt, model, configuration, or tool not supplied by us. - Patents. Any claim of patent infringement, including any claim based on the practice of a patented method, process, or invention by an AI employee or in any output. We do not indemnify patent claims under any circumstance. - Trademark claims based on output use. Any claim of trademark infringement based on your use of an output in trade, commerce, advertising, branding, or any commercial context. - Connected accounts and external systems. Any claim arising from an AI employee's interaction with, action upon, or modification of a third-party system, account, integration, or service you authorized (including but not limited to email accounts, cloud drives, CRMs, messaging platforms, code repositories, calendars, databases, MCP servers, custom API endpoints, and webhooks). - Desktop companion actions. Any claim arising from any action taken by the desktop companion on a computer or device you control or authorized. - Free, beta, preview, early-access, promotional, or evaluation use. Any claim arising from your use of any free plan, free credits, beta or preview features, early-access programs, promotional access, or evaluation use of the Services. Our indemnity under Section 25.2 applies only during periods of paid commercial use. - Use in violation of these Terms. Any claim arising from your use of the Services in violation of these Legal Terms, our Acceptable Use Policy, applicable law, or in a manner you knew or reasonably should have known would infringe the rights of others. - Your fraud, willful misconduct, or violations of law. Any claim where the underlying allegation arises from your fraud, gross negligence, willful misconduct, or breach of these Legal Terms. - Anything outside the EU or Netherlands. Any claim brought, asserted, or governed outside the European Union or the Netherlands. Our limited indemnity is geographically scoped to match where we operate and are insured. ## 26. USER DATA We will maintain certain data that you transmit to the Services for the purpose of managing the performance of the Services, as well as data relating to your use of the Services. Although we perform regular routine backups of data, you are solely responsible for all data that you transmit or that relates to any activity you have undertaken using the Services. You agree that we shall have no liability to you for any loss or corruption of any such data, and you hereby waive any right of action against us arising from any such loss or corruption of such data. ## 26.A. CONFIDENTIALITY Confidential Information. In the course of using the Services, each party (as "Discloser") may share with the other (as "Recipient") information that is identified as confidential or proprietary, or that the Recipient should reasonably understand to be confidential or proprietary given its nature and the circumstances of disclosure (collectively, "Confidential Information"). Without limiting the foregoing, all of your User Data, Inputs, Training Data, chat messages, files, prompts, configurations, business plans, customer lists, pipelines, internal documents, and any other content you upload or generate through the Services is treated as your Confidential Information . Sistava's Confidential Information includes (without limitation) our prompt templates, system instructions, model selection logic, internal architecture, source code, unannounced features, pricing offered to specific customers, security measures, business and product roadmaps, and any non-public information we share with you. Use and Protection. The Recipient will: (a) use the Discloser's Confidential Information only as necessary to exercise its rights and perform its obligations under these Legal Terms; (b) protect the Discloser's Confidential Information from unauthorized use, access, or disclosure using at least the same degree of care it uses to protect its own confidential information of similar nature, and in no event less than reasonable care; (c) limit access to the Discloser's Confidential Information to its employees, contractors, and advisors who have a clear need to know it and who are bound by confidentiality obligations at least as protective as those in this section; and (d) be responsible for any unauthorized use or disclosure by such persons. The Recipient will not sell, license, publish, or otherwise disclose the Discloser's Confidential Information to any third party except as permitted by this section. Exclusions. Confidential Information does not include information that the Recipient can demonstrate: (a) was lawfully in the Recipient's possession without confidentiality obligation prior to disclosure by the Discloser; (b) is or becomes publicly available through no fault of the Recipient; (c) is independently developed by the Recipient without reference to or use of the Discloser's Confidential Information; or (d) is rightfully obtained by the Recipient from a third party that is not under any confidentiality obligation to the Discloser. Compelled Disclosure. The Recipient may disclose the Discloser's Confidential Information to the extent required by applicable law, court order, or governmental authority. Where legally permitted, the Recipient will give the Discloser prompt advance notice of the required disclosure so that the Discloser may seek a protective order or other appropriate relief, and will reasonably cooperate with such efforts at the Discloser's expense. Return or Destruction. Upon termination of these Legal Terms or upon the Discloser's written request, the Recipient will, within a reasonable time, return or destroy all Confidential Information of the Discloser in its possession or control, except for: (a) copies retained in routine automated backups (which remain subject to this confidentiality obligation for as long as they exist); and (b) information the Recipient is required to retain by applicable law or for legitimate legal-hold, audit, accounting, tax, or regulatory purposes. No Use of AI Models for Training on Customer Confidential Information. We will not use your Confidential Information (including your Training Data, chat messages, or other Inputs) to train, fine-tune, or improve any AI model that is offered to other customers or to the general public, except where you have explicitly opted in. This restriction does not prevent us from: (a) using anonymized, aggregated metadata that cannot reasonably be linked back to you for service operation, capacity planning, and security; (b) processing your Confidential Information solely to provide the Services to you; or (c) using your Confidential Information to investigate suspected abuse, security incidents, or violations of these Legal Terms. This clause does not apply to third-party AI providers that process Inputs solely for inference as required to deliver the Services, which are governed by their own contractual terms with us. Survival. Each party's confidentiality obligations under this Section 26.A survive termination of these Legal Terms and continue for so long as the relevant Confidential Information remains confidential, and in any event for at least three (3) years following termination, except for trade secrets which remain protected for as long as they qualify as trade secrets under applicable law. ## 27. ELECTRONIC COMMUNICATIONS, TRANSACTIONS, AND SIGNATURES Visiting the Services, sending us emails, and completing online forms constitute electronic communications. You consent to receive electronic communications, and you agree that all agreements, notices, disclosures, and other communications we provide to you electronically, via email and on the Services, satisfy any legal requirement that such communication be in writing. YOU HEREBY AGREE TO THE USE OF ELECTRONIC SIGNATURES, CONTRACTS, ORDERS, AND OTHER RECORDS, AND TO ELECTRONIC DELIVERY OF NOTICES, POLICIES, AND RECORDS OF TRANSACTIONS INITIATED OR COMPLETED BY US OR VIA THE SERVICES. You hereby waive any rights or requirements under any statutes, regulations, rules, ordinances, or other laws in any jurisdiction which require an original signature or delivery or retention of non-electronic records, or to payments or the granting of credits by any means other than electronic means. ## 28. CALIFORNIA USERS AND RESIDENTS If any complaint with us is not satisfactorily resolved, you can contact the Complaint Assistance Unit of the Division of Consumer Services of the California Department of Consumer Affairs in writing at 1625 North Market Blvd., Suite N 112, Sacramento, California 95834 or by telephone at (800) 952-5210 or (916) 445-1254. ## 29. MISCELLANEOUS These Legal Terms and any policies or operating rules posted by us on the Services or in respect to the Services constitute the entire agreement and understanding between you and us. Our failure to exercise or enforce any right or provision of these Legal Terms shall not operate as a waiver of such right or provision. These Legal Terms operate to the fullest extent permissible by law. We may assign any or all of our rights and obligations to others at any time. Force Majeure: We shall not be responsible or liable for any loss, damage, delay, or failure to act caused by any cause beyond our reasonable control, including but not limited to acts of God, war, terrorism, riots, embargoes, acts of civil or military authorities, fire, floods, accidents, network or infrastructure failures, strikes, shortages of transportation facilities, fuel, energy, labor or materials, or any failure of third-party service providers (including AI model providers). Publicity & Customer Logos: Subject to your right to opt out, you grant us a non-exclusive, non-transferable, royalty-free license to use your name, logo, and brand elements to identify you as a customer of Sistava on our website, in our marketing materials, in investor and partner communications, in case studies (with your prior approval of any quote attributed to you), and in customer lists. We will use your brand assets in accordance with any reasonable usage guidelines you provide to us in writing. You may opt out of this publicity license at any time by sending a written request to info@sista.ai identifying your account, and we will remove your name and logo from new and prominently displayed materials within a reasonable time after receiving the request. Opt-out does not require us to recall previously printed materials, archived web pages, third-party caches, social media posts already published, or materials in production at the time of the request. We will not use any direct quote attributed to you or any individual at your organization without that person's prior approval. One-Year Limitation Period for Claims. To the fullest extent permitted by applicable mandatory law, any claim or cause of action you may have arising out of or relating to these Legal Terms or the Services must be filed within one (1) year after the claim or cause of action arose, or you irrevocably waive that claim. This shorter limitation period does not apply where mandatory consumer-protection law in your country of residence requires a longer period, in which case the longer period required by that mandatory law applies. No Circumvention via Affiliates, Agents, or Successors. You agree not to use any parent, subsidiary, affiliate, agent, contractor, employee, alter ego, successor, assignee, or any other related person or entity to do anything you are not permitted to do directly under these Legal Terms. Any obligation, restriction, or prohibition that applies to you applies equally to anyone acting on your behalf, under your direction, with your knowledge, or for your benefit, and you are responsible for their compliance. We may treat any breach by such a related person or entity as a breach by you for purposes of suspension, termination, indemnification, and any other remedy available to us under these Legal Terms. Survival. The following provisions of these Legal Terms survive expiration or termination, indefinitely or for the period stated within them: Section 2 (Intellectual Property & Brand), Section 6 (No Refunds, Termination for Breach — No Refund), Section 7.A (Desktop Companion, Connected Accounts & Use At Your Own Risk), Section 7.B (Developer Surfaces, Channels, and Apps), Section 8 (Prohibited Activities), Section 9 (User Generated Contributions), Section 10 (Contribution License, including Training Data and Marketplace Contributions), Section 17 (Notice & Action), Section 18.A (Data Portability & Switching, for the duration of any pending Switching Request), Section 23 (Disclaimer), Section 24 (Limitations of Liability), Section 25 (Indemnification), Section 26.A (Confidentiality), Section 29 (Miscellaneous), and any other provision which by its nature should survive termination. Export Controls and Sanctions: You agree to comply with all applicable export control and sanctions laws and regulations, including EU, U.S. OFAC, and UN sanctions regimes. You will not export, re-export, or transfer our Services or technology to any country, person, or entity subject to applicable trade sanctions or export restrictions, or use our Services in violation of such laws. You are responsible for obtaining any required licenses or authorizations. If any provision or part of a provision of these Legal Terms is determined to be unlawful, void, or unenforceable, that provision or part of the provision is deemed severable from these Legal Terms and does not affect the validity and enforceability of any remaining provisions. There is no joint venture, partnership, employment or agency relationship created between you and us as a result of these Legal Terms or use of the Services. You agree that these Legal Terms will not be construed against us by virtue of having drafted them. You hereby waive any and all defenses you may have based on the electronic form of these Legal Terms and the lack of signing by the parties hereto to execute these Legal Terms. ## 30. CONTACT US In order to resolve a complaint regarding the Services or to receive further information regarding use of the Services, please contact us at: contact@sista.ai