AxCrypt AB, incorporated in Stockholm, Sweden, provides a set of downloadable software and online services we collectively call “AxCrypt” for protecting confidentiality through the use of strong encryption. We do so under the following no-nonsense terms, avoiding lengthy legal wording as much as possible. Legal representatives must try to interpret the intent and spirit of these terms, as if they were expressed using traditional formal legal language. Use of AxCrypt means you accept these terms.
We reserve the right to change these terms at any time without prior notice. The current terms are always available at http://www.axcrypt.net/documentation/license/ .
AxCrypt performs local encryption and decryption of files, and server-based encryption and decryption of encryption keys and optionally passwords stored there.
A significant effort is made to keep AxCrypt available at all times, and we guarantee at least 99% availability over a year. We are not responsible for unavailability due to issues outside our control, such as major network failures. We also keep the server data backed up in a separate location, and ensure that any information loss in case of catastrophic failure will be limited to the last 7 days, at most.
You are responsible for keeping appropriate backups of data stored locally in your own devices, as well as to not lose passwords used with AxCrypt.
AxCrypt consists of a mix of free and for-pay features. We will never lock you out of your data due to non-payment. For-pay services may provide extended access in other types of devices, or extended functionality including encryption of new files, updating existing encrypted files, stronger encryption and other features. You may always resume full service at any time.
Your information is kept confidential by the use of standardized strong encryption methods, documented at http://www.axcrypt.net/documentation/technical/ and in the source code at https://bitbucket.org/axantum/axcrypt-net. If you choose a weak password, your data may be at risk. We do not guarantee or verify that you choose a sufficiently strong password.
We do not require any personal information from you, except a working email address. It may be disposable, although it is inadvisable for security reasons. We may from time to time ask you for other information through user surveys and similar, but it is always optional to participate.
Through the use of AxCrypt, we will perform normal logging of requests to our servers. Please see http://www.axcrypt.net/documentation/privacy-policy/ for details of how we process this information.
Disclosure to third parties
We will not disclose any information about you as a result of using AxCrypt to third parties without your explicit consent, unless required by law.
Disclosure to authorities and law enforcement
In theory we may be forced by law to disclose information to government authorities. If required by law, we will comply. Such information is by definition limited to statistics, access logs and encrypted data files. We do not know your password, nor do we know what information you have stored, and cannot disclose this even if required by law because we do not know it.
It is our belief, although it is probably not tested in the legal system, that we cannot be forced to reprogram AxCrypt in a way that would make it possible to intercept your passwords in order to disclose your information.
In the event that we should fail to keep one or more of our promises, you may write an e-mail to us in english, and request a refund. Such a request must be made within 6 months from when our action or inaction caused the problem, so you should periodically ensure that we’re still delivering more frequently than that.
We are only liable for direct damages, never indirect damages. If we lose or disclose information, we are only liable for direct costs to recover it, reconstruct it or stop disclosing it, never for any other costs. You are also advised to take advantage of the provided functions enabling you to keep your own backups and offline access in addition to the online services provided by us. We are not liable for any damage that could have been prevented by a daily backup made by you.
We are only liable for information disclosure that you can show is due to unprofessional implementation or management by us. We are not liable for any inherent weaknesses that in the future may be discovered in the security technology used.
Our liability can never exceed the amount paid for the service.
Dispute and validity
Should you wish to take legal action against us, you must do so under the laws of Sweden, and in a court of law in Stockholm, Sweden.
If any part of this agreement is found to be invalid, it does not invalidate any other parts of the agreement, and the new interpretation should be as close to the original as allowed.