CodeSummon
Terms, Privacy & Cookies
These documents govern your use of the CodeSummon website and services provided by [LEGAL ENTITY NAME] (“CodeSummon”, “we”, “us”). By joining the waitlist, creating an account, or using the service, you agree to them.
Terms of Service
1. The service
CodeSummon provides a multi-agent orchestration platform delivered as a managed node, with an accompanying desktop application (Windows during early access; macOS and Linux planned). Features, plans and limits are described on our website and may evolve.
2. Eligibility & accounts
You must be at least 16 and able to form a binding contract. You are responsible for your credentials and all activity under your account. Notify us of any unauthorised use.
3. Bring-your-own-keys & third-party providers
- You provide your own model-provider API keys (e.g. OpenRouter, Anthropic, OpenAI). You are responsible for your usage, costs and compliance with each provider's terms.
- We do not resell tokens and are not responsible for third-party provider availability, output, or charges.
- You must not use the service to violate any third-party provider's acceptable-use policy.
4. Acceptable use
You agree not to: break the law; infringe others' rights; send spam or malware; attempt to disrupt, reverse-engineer, or gain unauthorised access to the service or other tenants' nodes; or generate unlawful, harmful or abusive content. We may suspend accounts that violate these rules.
5. Plans, fees & billing
- Paid plans are billed in advance monthly or annually as shown at checkout. Prices are in [USD] and may exclude applicable taxes/VAT, which will be added where required.
- Early access is invite-only and paid from the start; there is no free tier or free trial.
- You can cancel any time; cancellation takes effect at the end of the current billing period. Except where required by law, fees already paid are non-refundable.
- EU/EEA consumers: where the statutory right of withdrawal applies, you may have 14 days to withdraw; by starting the service during this period you may expressly consent to begin immediately and acknowledge losing the withdrawal right once fully performed. [Confirm wording with counsel.]
6. Intellectual property & your content
We (and our licensors) own the platform, software and brand. You own the content and data your agents create on your node. You grant us only the limited rights needed to host and operate the service for you, and you can export your data at any time.
7. Disclaimers
The service is provided “as is” and “as available”. AI agents can produce inaccurate or incomplete output; you are responsible for reviewing results before relying on them. To the extent permitted by law, we disclaim implied warranties of merchantability, fitness for a particular purpose and non-infringement.
8. Limitation of liability
To the maximum extent permitted by law, we are not liable for indirect, incidental, special or consequential damages, or for lost profits, data or model-provider costs. Our total liability for any claim is limited to the amounts you paid us in the [12] months before the event giving rise to the claim. Nothing limits liability that cannot be limited by law.
9. Indemnity
You agree to indemnify us against claims arising from your unlawful use of the service or breach of these Terms, to the extent permitted by applicable law.
10. Termination
You may stop using the service at any time. We may suspend or terminate access for breach or where required by law. On termination you may export your data for a reasonable period, after which it may be deleted.
11. Governing law & changes
These Terms are governed by the laws of [COUNTRY/STATE]; disputes are subject to the courts of [CITY/COUNTRY], without prejudice to mandatory consumer-protection rights in your country of residence. We may update these Terms; material changes will be notified and continued use means acceptance. Contact: [legal@yourdomain].
Privacy Policy
We process personal data in accordance with the EU General Data Protection Regulation (GDPR) and applicable national law.
1. Data controller
- [LEGAL ENTITY NAME]
- [REGISTERED ADDRESS], [COUNTRY]
- Contact: [privacy@yourdomain] · DPO (if appointed): [DPO / “not appointed”]
2. What data we collect
| Category | Examples | When |
|---|---|---|
| Waitlist data | Email address | When you submit the waitlist form |
| Usage & analytics | Pages viewed, approximate location (truncated IP), device/browser, referrer — via Google Analytics through Tag Manager | Only if you accept analytics cookies |
| Account data (later) | Name, email, billing details (via our payment provider) | When you create a paid account |
| Service content | Projects, notes and content your agents create on your node; your model-provider API keys | When you use the product |
| Support | Anything you send us by email | When you contact us |
We do not sell personal data, and we do not use it for automated decision-making producing legal effects.
3. Why we process it (legal bases)
- Waitlist — your consent (Art. 6(1)(a)); withdrawable any time.
- Analytics cookies — your consent, via our cookie banner (Art. 6(1)(a); ePrivacy).
- Providing the service / billing — performance of a contract (Art. 6(1)(b)).
- Security, fraud prevention, product improvement — legitimate interests (Art. 6(1)(f)).
- Legal compliance — where required (Art. 6(1)(c)).
4. Your model keys (“bring your own keys”)
Your model-provider API key is stored on your node and used only to call the provider you chose. We do not resell tokens or use your key for anything else. Your usage with that provider is governed by the provider's own terms and privacy policy.
5. Sharing & processors
- Google Ireland Ltd. / Google LLC — analytics (Google Analytics & Tag Manager).
- Hosting / infrastructure — [Cloudflare, Hetzner, or your providers].
- Payments — [Stripe or your provider]. Email & waitlist — Brevo (Sendinblue, EU-based) for storing your email and sending early-access updates.
6. International transfers
Some providers (e.g. Google) may process data outside the EEA, including the US. Such transfers are protected by appropriate safeguards (EU Standard Contractual Clauses and/or the EU–US Data Privacy Framework). Request a copy from [privacy@yourdomain].
7. Retention
- Waitlist email — until you unsubscribe or we migrate you to an account, then deleted within [e.g. 12 months].
- Analytics — per our GA configuration ([e.g. 14 months]).
- Account & billing — life of the account plus any legally required period.
8. Your rights
Under the GDPR you may: access, rectify, erase, restrict or object to processing; obtain portability; and withdraw consent at any time. Email [privacy@yourdomain]. You may also complain to your supervisory authority (in [COUNTRY]: [NAME OF DPA]).
9. Security & children
We use appropriate technical and organisational measures (encryption in transit, access controls, isolated per-tenant nodes). No system is 100% secure. The service is not directed to children under 16, and we do not knowingly collect their data.
Cookie Policy
1. Consent — you're in control
We only set non-essential (analytics) cookies after you accept them in our cookie banner. We use Google Consent Mode v2: until you opt in, analytics storage is denied by default. Change your choice any time via “Cookie settings” in the site footer, or by clearing the cs_consent value.
2. Cookies we use
| Name | Provider | Purpose | Type / expiry |
|---|---|---|---|
cs_consent | CodeSummon | Remembers your cookie choice (local storage) | Essential · persistent |
_ga | Google Analytics | Distinguishes users | Analytics · ~2 years |
_ga_<ID> | Google Analytics | Maintains session state | Analytics · ~2 years |
_gid | Google Analytics | Distinguishes users | Analytics · ~24 hours |
Analytics cookies load through Google Tag Manager and only fire once you consent. We do not currently use advertising cookies. [Update this table if you add tags.] You can also block or delete cookies in your browser settings; the site still works without them.