Last updated: May 2026. These terms explain how GhostGuard may be used, what customers are responsible for, and how subscriptions, security controls, and platform data are handled.
These Terms of Service govern access to and use of GhostGuard, a bot detection, threat intelligence, reputation, and email abuse protection platform operated by PrivacyHash. By creating an account, installing the collector, using the API, or accessing the dashboard, you agree to these terms on behalf of yourself or the organization you represent.
If you use GhostGuard for an organization, you confirm that you are authorized to bind that organization to these terms.
GhostGuard provides security telemetry collection, scoring, policy controls, allow/block decisions, dashboards, reporting, and related tools. The service may process browser, behavioral, network, email, and operational signals to detect automated or abusive activity.
GhostGuard is designed as a risk-scoring and mitigation system. It improves security decisions but does not guarantee that all abuse will be detected or that all legitimate users will always be allowed.
You are responsible for the accuracy of your account information, the security of your login credentials and API keys, and all activity performed under your account.
You must promptly revoke exposed API keys, remove inactive users, and notify us if you suspect unauthorized access to your GhostGuard account.
You may only deploy GhostGuard on websites, applications, domains, mail systems, or infrastructure that you own, control, or are legally authorized to protect.
The JavaScript collector, PHP client, API keys, webhooks, and enforcement integrations must not be used to monitor third-party properties without authorization.
You must not use GhostGuard to break the law, infringe rights, bypass consent requirements, attack third-party systems, collect data unrelated to security, or discriminate against individuals based on protected characteristics.
You must not reverse engineer, overload, resell without permission, interfere with, or attempt to bypass GhostGuard systems, scoring logic, rate limits, authentication, billing, or tenant isolation controls.
You are responsible for providing appropriate privacy notices, consent mechanisms, legitimate-interest assessments, data processing disclosures, and cookie notices for your own users where required by applicable law.
GhostGuard is built to minimize exposure of raw personal data and may use hashing, aggregation, retention limits, and tenant isolation. Some features may still involve personal data such as IP addresses, user agents, session identifiers, email metadata, or security event records.
Where applicable, the parties will treat GhostGuard as a processor/service provider for customer-controlled data and PrivacyHash as a controller for account, billing, security, and platform operational data.
Paid subscriptions are billed monthly or annually through our payment provider. If a free trial is offered, it lasts for the period shown during registration or in the dashboard.
You may cancel your subscription from the dashboard or by contacting support. Cancellation stops future renewals, but access may continue until the end of the paid billing period. Fees already paid are non-refundable unless required by law or expressly agreed in writing.
If payment fails, we may suspend or limit access after reasonable notice. We may delete or anonymize inactive account data after the applicable retention period.
GhostGuard is designed for high availability and safe degradation. Customer-side clients should be configured to fail open unless the customer deliberately chooses stricter enforcement. If the GhostGuard API is unavailable, protected websites should normally continue serving users rather than going offline.
Any uptime targets, support levels, or service credits apply only if they are expressly included in your plan, order form, or written agreement.
GhostGuard may recommend, simulate, or apply security decisions such as blocking, threshold changes, reputation adjustments, or signal weighting. You remain responsible for selecting policies that are appropriate for your business, users, legal obligations, and risk tolerance.
Autonomous or semi-autonomous mitigation features should be monitored and tested before production enforcement, especially on high-value workflows such as checkout, login, registration, or account recovery.
PrivacyHash retains all rights in GhostGuard, including software, scoring logic, dashboards, documentation, models, threat intelligence, designs, and trademarks. You retain rights in your own content, domains, customer data, logs, and business data.
You receive a limited, non-exclusive, non-transferable right to use GhostGuard during your active subscription and in accordance with these terms.
Non-public product details, credentials, API keys, private documentation, security controls, pricing terms, and operational information must be treated as confidential unless they are already public or independently developed without use of confidential information.
We may suspend or terminate access if you violate these terms, fail to pay, create security risk, abuse the service, or use GhostGuard unlawfully. We will use reasonable efforts to provide notice unless urgent action is required to protect the platform, customers, or third parties.
GhostGuard is provided on an “as is” and “as available” basis except where a separate written agreement states otherwise. We do not guarantee uninterrupted operation, perfect detection, error-free scoring, or complete prevention of fraud, bots, spam, scraping, attacks, or abuse.
To the maximum extent permitted by law, PrivacyHash will not be liable for indirect, incidental, special, consequential, exemplary, or punitive damages, or for lost profits, lost revenue, lost data, business interruption, or reputational harm.
To the maximum extent permitted by law, PrivacyHash’s total liability for claims related to GhostGuard is limited to the amount paid by you for the service during the three months before the event giving rise to the claim.
We may improve, modify, or discontinue features over time. If we make material changes to these terms, we will provide reasonable notice through the dashboard, email, or website. Continued use after the effective date means you accept the updated terms.
For legal questions, contact legal@privacyhash.com. For support questions, contact support@privacyhash.com.