Terms of Service

1. Acceptance of terms

By creating an account, completing the registration flow, or otherwise accessing or using the Beacon platform ("Service"), you ("Subscriber", "you") agree to be bound by these Terms of Service ("Terms") on behalf of yourself and the organisation you represent. If you do not agree to these Terms, do not use the Service. These Terms constitute a legally binding agreement between you and Beacon MSP ("Beacon", "we").

By checking the acceptance checkbox during registration, you confirm that you have read, understood, and agree to these Terms and our Privacy Policy.

2. Service description

Beacon is a software-as-a-service (SaaS) platform that enables Managed Service Providers to monitor their clients' Microsoft Azure tenants for security configuration compliance. The Service connects to Azure APIs using app registration credentials you supply and produces compliance scan results, risk scores, and audit-ready reports.

The Service is software, not professional advisory. Beacon provides automated compliance check output. We do not provide legal, regulatory, security consulting, or professional advisory services. Compliance determinations remain your responsibility and that of your clients. Results from the Service should be reviewed by a qualified professional before being relied upon for regulatory or legal purposes.

3. Account registration and eligibility

You must:

• Be at least 18 years old and have capacity to enter into a binding contract
• Register on behalf of a business entity (individual consumer use is not supported)
• Provide accurate and current information during registration and keep it updated
• Maintain the confidentiality of your account credentials and MFA device
• Notify us promptly at hello@beaconmsp.io if you suspect unauthorised access to your account

You are responsible for all activity occurring under your account.

4. Subscription, billing, and payment

4.1 Plans and pricing

Beacon offers subscription plans (Solo, Growth, Scale, and Enterprise) as described on our pricing page. Features and limits vary by plan. We reserve the right to change plan features or pricing with 30 days' notice.

4.2 Payment and auto-renewal

All subscriptions require a valid payment method at the time of sign-up. There is no free trial — your card is charged immediately upon account creation. Subscriptions auto-renew at the end of each billing period (monthly or annual) unless cancelled. Payment is processed by Stripe. You authorise Stripe to charge your payment method on each renewal date.

4.3 Cancellation

You may cancel your subscription at any time from your account settings. Cancellation takes effect at the end of the current billing period. We do not offer pro-rata refunds for mid-period cancellations except where required by applicable law. Annual subscriptions cancelled within 14 days of purchase may qualify for a refund under applicable consumer protection regulations — contact hello@beaconmsp.io.

4.4 Failed payments

If a payment fails, we will attempt to retry the charge. Access to the Service may be suspended after repeated failed payments. We will notify you by email before suspending access.

5. Acceptable use

You agree not to:

• Use the Service to monitor Azure tenants for which you do not have written authorisation from the tenant owner or an authorised representative
• Attempt to reverse engineer, decompile, or disassemble any part of the Service
• Use the Service to perform offensive security testing, attack, or exploit any system — Beacon is a compliance monitoring tool only
• Introduce malware, interfere with the Service's infrastructure, or attempt to gain unauthorised access to other subscribers' data
• Resell, sublicense, or white-label the Service without our written consent
• Use the Service in any way that violates applicable law, including data protection regulations

We reserve the right to suspend or terminate accounts that violate these rules without notice where required to protect the security of the platform or other subscribers.

6. Azure credentials and client authorisation

To use the Service, you will provide Azure app registration credentials (client ID, client secret or certificate) for each client tenant you wish to monitor. By providing these credentials, you represent and warrant that:

• You have the authority (as the MSP with a contractual relationship with the client) to create an app registration in the client's Azure tenant and connect it to Beacon
• Your master services agreement (MSA) or equivalent contract with the client authorises you to connect third-party monitoring tools to the client's Azure environment
• You will promptly remove the client's credentials from Beacon if your MSA with that client is terminated

We store client secrets and certificates in AES-256-GCM encrypted form. Decrypted values exist only in memory during scanning and are never exposed to Beacon staff, exported, or included in logs. See our Security page for full details.

7. Intellectual property

Beacon's IP: We own and retain all rights in the Beacon platform, software, algorithms, user interface, branding, and documentation. These Terms grant you a limited, non-exclusive, non-transferable licence to use the Service during your active subscription period.

Your data: You own your data — including Azure credentials, scan results, and your organisation's configuration. We process your data only to provide the Service and as described in our Privacy Policy. We do not claim any ownership over your data.

8. Service availability

We aim to maintain commercially reasonable availability and will endeavour to perform scheduled maintenance during low-traffic periods with advance notice. We do not offer a formal service level agreement (SLA) with uptime guarantees. Current platform status is available at status.beaconmsp.io. We are not liable for downtime caused by third-party services (including Microsoft Azure API availability), force majeure events, or circumstances outside our reasonable control.

9. Support

Support is provided by email at hello@beaconmsp.io. We aim to respond to all support requests within 2 business days. Enterprise plan subscribers may have access to enhanced support terms as specified in their order form.

10. Confidentiality

Both parties agree to keep confidential any non-public information received from the other party in connection with the Service. This obligation does not apply to information that is publicly available, independently developed, or required to be disclosed by law or regulation.

11. Data protection

To the extent that we process personal data on your behalf (as a processor acting on your instructions as a controller), the terms of our Data Processing Agreement (DPA) apply and are incorporated into these Terms by reference. By subscribing to the Service, you agree to the DPA.

12. Termination

Either party may terminate the subscription at any time. If you cancel, your access continues until the end of the current billing period. We may terminate your account immediately (without refund) for material breach of these Terms, particularly for unauthorised use or failure to pay.

Upon termination for any reason:

• You have 30 days to export your compliance data using the self-service export feature
• After 30 days, all your data (account data, credentials, scan results) will be deleted from our systems, except as required to meet legal retention obligations (audit logs up to 12 months, billing records up to 7 years)
• Any surviving provisions (IP ownership, limitation of liability, governing law) remain in effect

13. Disclaimer of warranties

The Service is provided "as is" and "as available". To the maximum extent permitted by applicable law, Beacon disclaims all warranties, express or implied, including merchantability, fitness for a particular purpose, and non-infringement. We do not warrant that the Service will be error-free, uninterrupted, or that compliance scan results will be complete or accurate for all regulatory frameworks.

14. Limitation of liability

To the maximum extent permitted by applicable law, Beacon's total liability to you for any claim arising from or related to the Service will not exceed the total subscription fees you paid to Beacon in the 12 months immediately preceding the claim. In no event will either party be liable for indirect, incidental, consequential, special, or exemplary damages, including loss of profits, data, or business, even if advised of the possibility of such damages.

Nothing in these Terms limits liability for death or personal injury caused by negligence, fraud, or any other liability that cannot be excluded by law.

15. Governing law and disputes

These Terms are governed by the laws of [Governing Jurisdiction]. Any dispute that cannot be resolved by good-faith negotiation within 30 days will be submitted to the exclusive jurisdiction of the courts of [Governing Jurisdiction]. Nothing in this clause prevents either party from seeking urgent injunctive relief in any competent court.

16. Changes to these terms

We may update these Terms from time to time. We will notify the account holder by email at least 30 days before any material changes take effect. The updated Terms will be posted at this URL. Continued use of the Service after the effective date constitutes acceptance. If you do not agree to the updated Terms, you may cancel your subscription before the effective date.

17. Contact

For questions about these Terms, contact us at: