Security Terms and Conditions

These Security Terms and Conditions (“Security Terms”) govern the security practices, obligations, and commitments between MindFusion (“Company,” “we,” “us,” or “our”) and the licensee or user (“Customer,” “you,” or “your”) regarding the use of our software development components, libraries, and related services (collectively, the “Software”).

By purchasing, downloading, installing, or using the Software, you agree to these Security Terms.

1. Security of the Software Components

• Secure Development Practices: We follow industry-standard secure coding practices during the design, development, and testing of our Software components to minimize the risk of vulnerabilities.
• Vulnerability Scanning: Prior to any commercial release, Software builds are scanned for known vulnerabilities, malware, and security flaws using regularly updated scanning tools.
• No Intentional Backdoors: We guarantee that the Software does not intentionally contain any malicious code, backdoors, logic bombs, Trojan horses, or other harmful routines designed to permit unauthorized access, disable, or erase software, hardware, or data.

2. Customer Environment and Implementation

• Integration Responsibility: Our Software consists of developer components designed to be integrated into applications created by the Customer. The Customer is solely responsible for the secure configuration, deployment, and environment of the end-user applications that incorporate our Software.
• Dependency Management: While we strive to keep any third-party dependencies within our components secure and updated, the Customer is responsible for ensuring their overall development environment and target hosting platforms are secure and patched.

3. Data Privacy and Telemetry

• No Data Collection by Components: Our software components are designed to run locally within your or your end-users' environment. By default, the compiled Software components do not collect, store, or transmit any personally identifiable information (PII) or customer application data back to our servers.
• License Verification: Some of our deployment or activation mechanisms may communicate with our servers solely to validate license keys, subscription status, or activation legitimacy. This process transmits minimal, non-sensitive technical identifiers (such as license keys or hashed domain names) and does not inspect or transmit application data.
• Website and Account Security: Any data provided to us via our website (e.g., during purchase, account creation, or technical support) is handled in accordance with our standard Privacy Policy and is protected using industry-standard encryption (TLS/SSL).

4. Vulnerability Disclosure and Incident Response

• Reporting Security Issues: We welcome reports from customers, independent researchers, and security professionals regarding potential vulnerabilities found within our components. Please report potential security issues immediately to our support email channel support@mindfusion.dev
• Response Timeline: We take security vulnerabilities seriously. Upon receiving a verified report, we will acknowledge receipt within 48 business hours, investigate the issue, and work diligently to provide a patch, workaround, or hotfix on a timeline commensurate with the severity of the risk.
• Notification: If a critical, exploitable security flaw is identified in a production release of our Software, we will notify affected customers with active subscriptions or registered accounts via email or through our official release channels, providing guidance on remediation or updating to a patched version.

5. Intellectual Property and Tampering

• Reverse Engineering: Except to the extent expressly permitted by applicable law you may not reverse engineer, decompile, or disassemble the binary components of the Software.
• Security Bypassing: Any attempt to bypass, disable, or modify license verification mechanisms, security controls, or copy-protection features embedded in the Software is a material breach of these terms and will result in the immediate termination of your license.

6. Disclaimer of Warranties

While we employ rigorous testing and secure development practices, you acknowledge that no software is entirely free of vulnerabilities. The Software is provided "as is" and "with all faults." To the maximum extent permitted by law, the Company disclaims all warranties, express or implied, including but not limited to the implied warranties of merchantability, fitness for a particular purpose, and non-infringement regarding the security or absolute invulnerability of the Software.