Terms of Service
Effective 2026-05-04.
1. Agreement
These Terms of Service ("Terms") govern access to and use of the hosted GitGrit service at app.gitgrit.dev (the "Service") operated by Kfir Zvi, Israeli sole proprietor (Osek Murshe No. 318238730) of Habustan 4, Acre, Israel ("GitGrit", "we", "us"). By creating an account or otherwise using the Service, you ("you", "User") agree to these Terms. If you do not agree, do not use the Service.
2. The Service
GitGrit is a policy-as-code compliance platform. Users connect source-code repositories from third-party platforms (GitHub, GitLab), author or install Python policies, and run those policies against connected repositories in sandboxed containers. The Service produces evaluation results, a per-project compliance score, and an embeddable public badge reflecting that score.
3. Accounts and authentication
Sign-in is performed through OAuth with Google, GitHub, or GitLab. You are responsible for maintaining the confidentiality of your provider account and for all activity on your GitGrit account. You must promptly notify us at kfir@kfirzvi.com of any suspected unauthorized access. We may suspend or terminate accounts we reasonably believe present a security or abuse risk to the Service.
4. Acceptable use
You must not, and must not permit any other party to:
- use the Service in violation of any applicable law or regulation;
- infringe the intellectual-property rights of any third party;
- attempt to circumvent, weaken, or escape the policy execution sandbox, or otherwise gain unauthorized access to any system, account, or data;
- attack the Service or the underlying infrastructure (including denial-of-service, brute-force, or scraping at a rate intended to degrade service);
- upload or transmit malware, ransomware, or other malicious code;
- process data through the Service that you are not authorized to access or that is subject to special-category protections (e.g. health, financial, or government-classified data) without a separate written agreement with us;
- resell or sublicense the Service except as expressly permitted in writing.
5. Policies and User Content
"User Content" means policies, test cases, configuration, and any other material you upload, author, or transmit through the Service. You retain all rights to your User Content. You grant GitGrit a worldwide, non-exclusive, royalty-free license to host, copy, transmit, execute, display, and create derivative works of User Content solely as required to operate, secure, and improve the Service. Marketplace contributions are governed by the license they ship with (typically Apache 2.0 or AGPL v3); installing a Marketplace policy grants you the rights stated in that license.
6. AI-assisted authoring
The Service offers integrations (the Model Context Protocol server and the Claude Code plugin) that let third-party large-language-model clients read GitGrit data and propose changes to policies. Output produced by those clients is generated by the third-party model and may be incorrect, incomplete, or unsafe. You are responsible for reviewing AI-generated content before relying on it, including running policy test cases. We make no warranty as to the correctness, safety, fitness, or non-infringement of AI-generated policies, and we do not endorse the output of any third-party model.
7. Open source and AGPL
The GitGrit codebase is licensed under the GNU Affero General Public License v3.0. These Terms govern only the hosted Service. If you self-host GitGrit, the AGPL governs your use of the software, and these Terms do not apply except to the extent they describe the hosted Service.
8. Service availability
We aim to keep the Service available but do not commit to any specific uptime under these Terms. We may modify, suspend, or discontinue features at any time. We will provide reasonable advance notice of material feature removals where practicable.
9. Disclaimers
THE SERVICE IS PROVIDED ON AN "AS IS" AND "AS AVAILABLE" BASIS. TO THE FULLEST EXTENT PERMITTED BY LAW, GITGRIT DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING WITHOUT LIMITATION IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT. WE DO NOT WARRANT THAT THE SERVICE WILL BE UNINTERRUPTED OR ERROR-FREE, OR THAT POLICY EVALUATION RESULTS WILL BE ACCURATE, COMPLETE, OR FIT FOR ANY PARTICULAR COMPLIANCE OR REGULATORY PURPOSE. POLICY-AS-CODE IS A TOOL FOR ENFORCEMENT AT YOUR DISCRETION; YOU ARE SOLELY RESPONSIBLE FOR THE CORRECTNESS OF POLICIES YOU AUTHOR OR INSTALL AND FOR ANY DECISIONS YOU MAKE BASED ON THEIR OUTPUT.
10. Limitation of liability
TO THE FULLEST EXTENT PERMITTED BY APPLICABLE LAW, GITGRIT'S AGGREGATE LIABILITY ARISING OUT OF OR RELATED TO THESE TERMS OR THE SERVICE WILL NOT EXCEED THE GREATER OF (A) THE AMOUNTS YOU PAID GITGRIT IN THE TWELVE MONTHS PRECEDING THE EVENT GIVING RISE TO THE CLAIM, OR (B) ONE HUNDRED EURO (€100) — SO THAT FREE-TIER USERS RETAIN A FIXED FLOOR OF RECOVERABLE DAMAGES RATHER THAN ZERO. IN NO EVENT WILL GITGRIT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, EXEMPLARY, OR PUNITIVE DAMAGES, OR FOR LOST PROFITS, LOST REVENUE, LOST DATA, OR BUSINESS INTERRUPTION, EVEN IF GITGRIT HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. THE LIMITATIONS IN THIS SECTION DO NOT APPLY TO LIABILITY THAT CANNOT BE EXCLUDED OR LIMITED UNDER APPLICABLE LAW (FOR EXAMPLE, FRAUD, GROSS NEGLIGENCE, OR DEATH OR PERSONAL INJURY CAUSED BY OUR NEGLIGENCE).
11. Indemnification
You agree to defend, indemnify, and hold harmless GitGrit and its affiliates, officers, employees, and contractors from and against any claim, demand, damage, liability, or expense (including reasonable legal fees) arising out of or related to: (a) your use of the Service in violation of these Terms or applicable law; (b) policies or other User Content you author, install, or execute; (c) content you upload or transmit through the Service; (d) your violation of any third party's rights, including intellectual-property and privacy rights; or (e) any misrepresentation made by you to GitGrit or to a third party in connection with the Service.
12. Termination
You may close your account at any time from the workspace settings page. We may suspend or terminate access for material or repeated violation of these Terms, for security reasons, or if required by law. On termination, we will delete or anonymize your account data within thirty (30) days, except that backups and security logs may be retained for up to ninety (90) days for integrity and dispute-resolution purposes.
13. Changes to these Terms
We may update these Terms from time to time. The "Effective" date at the top of this page indicates when the current version took effect. We will announce material changes at least thirty (30) days in advance via the Service or by email to the address on file; continued use of the Service after the effective date constitutes acceptance of the updated Terms.
14. Governing law and disputes
These Terms are governed by the laws of Israel, without regard to its conflict-of-laws rules. The parties submit to the exclusive jurisdiction of the courts located in Tel Aviv-Yafo, Israel for the resolution of any dispute arising out of or related to these Terms or the Service. Nothing in this section prevents either party from seeking injunctive or other equitable relief in any court of competent jurisdiction.
15. Miscellaneous
These Terms, together with the Privacy Policy and any other policies referenced from the Service, constitute the entire agreement between you and GitGrit regarding the Service and supersede any prior agreements on the same subject. If any provision is held unenforceable, the remaining provisions remain in full effect. Our failure to enforce a provision is not a waiver of that provision. You may not assign these Terms without our prior written consent; we may assign them as part of a corporate reorganization or sale of substantially all assets to which the Service relates.
16. Contact
Kfir Zvi, Israeli sole proprietor (Osek Murshe No. 318238730), Habustan 4, Acre, Israel.
Contact: kfir@kfirzvi.com.