Spectra-C Terms of Use (Unified Agreement)
Spectra-C Terms of Use (Unified Agreement)
Spectra-C Terms of Use (Unified Agreement)
Version 2.0
Effective Date: November 15, 2025
Contracting Entity: SecureSign, Inc., d/b/a Spectra-C, a Delaware corporation (“Spectra-C,” “we,” “our,” or “us”).
These Terms of Use (“Agreement”) govern all access to and use of the Spectra-C Platform, including its website, mobile applications, identity-verification tools, electronic signature services, Spectra-C AI–based fraud-prevention engine, and all related products, software, and infrastructure (collectively, the “Platform”).
By accessing or using the Platform, you (“Subscriber,” “Controller,” “you,” or “your”) acknowledge that you have read, understood, and agree to be bound by this Agreement.
Spectra-C may modify this Agreement at any time by posting updated terms on its website. Continued use of the Platform constitutes acceptance.
These Terms of Use (“Agreement”) govern all access to and use of the Spectra-C Platform, including its website, mobile applications, identity-verification tools, electronic signature services, Spectra-C AI–based fraud-prevention engine, and all related products, software, and infrastructure (collectively, the “Platform”).
By accessing or using the Platform, you (“Subscriber,” “Controller,” “you,” or “your”) acknowledge that you have read, understood, and agree to be bound by this Agreement.
Spectra-C may modify this Agreement at any time by posting updated terms on its website. Continued use of the Platform constitutes acceptance.
These Terms of Use (“Agreement”) govern all access to and use of the Spectra-C Platform, including its website, mobile applications, identity-verification tools, electronic signature services, Spectra-C AI–based fraud-prevention engine, and all related products, software, and infrastructure (collectively, the “Platform”).
By accessing or using the Platform, you (“Subscriber,” “Controller,” “you,” or “your”) acknowledge that you have read, understood, and agree to be bound by this Agreement.
Spectra-C may modify this Agreement at any time by posting updated terms on its website. Continued use of the Platform constitutes acceptance.
1. Definitions
For purposes of this Agreement:
“Spectra-C Platform” means SecureSign’s proprietary identity-verification, fraud-prevention, electronic signature, record-keeping, and authentication technology.
“Personal Data” means any information relating to an identified or identifiable natural person processed by Spectra-C on Subscriber’s behalf.
“Processing,” “Controller,” “Processor,” “Data Subject,” and “Supervisory Authority” have the meanings set forth in GDPR Article 4.
“Applicable Data Protection Laws” includes: GDPR, UK GDPR, CPRA, VCDPA, CPA, CTDPA, TDPSA, BIPA, and any similar state or international privacy laws.
“Subprocessor” means any third party engaged by Spectra-C to process Personal Data.
“Subscriber Data” means documents, content, Personal Data, or materials submitted or uploaded by Subscriber or its end users.
Subscriber acts as the Controller, and Spectra-C acts as the Processor with respect to Personal Data processed under this Agreement.
For purposes of this Agreement:
“Spectra-C Platform” means SecureSign’s proprietary identity-verification, fraud-prevention, electronic signature, record-keeping, and authentication technology.
“Personal Data” means any information relating to an identified or identifiable natural person processed by Spectra-C on Subscriber’s behalf.
“Processing,” “Controller,” “Processor,” “Data Subject,” and “Supervisory Authority” have the meanings set forth in GDPR Article 4.
“Applicable Data Protection Laws” includes: GDPR, UK GDPR, CPRA, VCDPA, CPA, CTDPA, TDPSA, BIPA, and any similar state or international privacy laws.
“Subprocessor” means any third party engaged by Spectra-C to process Personal Data.
“Subscriber Data” means documents, content, Personal Data, or materials submitted or uploaded by Subscriber or its end users.
Subscriber acts as the Controller, and Spectra-C acts as the Processor with respect to Personal Data processed under this Agreement.
For purposes of this Agreement:
“Spectra-C Platform” means SecureSign’s proprietary identity-verification, fraud-prevention, electronic signature, record-keeping, and authentication technology.
“Personal Data” means any information relating to an identified or identifiable natural person processed by Spectra-C on Subscriber’s behalf.
“Processing,” “Controller,” “Processor,” “Data Subject,” and “Supervisory Authority” have the meanings set forth in GDPR Article 4.
“Applicable Data Protection Laws” includes: GDPR, UK GDPR, CPRA, VCDPA, CPA, CTDPA, TDPSA, BIPA, and any similar state or international privacy laws.
“Subprocessor” means any third party engaged by Spectra-C to process Personal Data.
“Subscriber Data” means documents, content, Personal Data, or materials submitted or uploaded by Subscriber or its end users.
Subscriber acts as the Controller, and Spectra-C acts as the Processor with respect to Personal Data processed under this Agreement.
2. Privacy Policy
Your use of the Platform is also governed by Spectra-C’s Privacy Policy, incorporated by reference.
Your use of the Platform is also governed by Spectra-C’s Privacy Policy, incorporated by reference.
Your use of the Platform is also governed by Spectra-C’s Privacy Policy, incorporated by reference.
3. Access Rights and License
Spectra-C grants you a limited, revocable, non-exclusive, non-transferable license to access and use the Platform for lawful business purposes.
You may not:
Reverse engineer, copy, or create derivative works of the Platform;
Interfere with the Platform’s operation;
Use the Platform to engage in unlawful or fraudulent activity;
Resell or commercially exploit the Platform unless expressly permitted.
Spectra-C grants you a limited, revocable, non-exclusive, non-transferable license to access and use the Platform for lawful business purposes.
You may not:
Reverse engineer, copy, or create derivative works of the Platform;
Interfere with the Platform’s operation;
Use the Platform to engage in unlawful or fraudulent activity;
Resell or commercially exploit the Platform unless expressly permitted.
Spectra-C grants you a limited, revocable, non-exclusive, non-transferable license to access and use the Platform for lawful business purposes.
You may not:
Reverse engineer, copy, or create derivative works of the Platform;
Interfere with the Platform’s operation;
Use the Platform to engage in unlawful or fraudulent activity;
Resell or commercially exploit the Platform unless expressly permitted.
4. Subscriber Responsibilities
You acknowledge and agree that you are solely responsible for:
Accuracy and legality of all documents, identity data, and transactions you initiate on the Platform;
Obtaining all disclosures, consents, and authorizations required under applicable law;
Ensuring your use of electronic signatures complies with the laws relevant to your jurisdiction and industry;
Configuring your own internal authentication standards;
Verifying that the Platform meets your compliance requirements.
Spectra-C is not a law firm and does not provide legal, regulatory, or compliance advice.
You acknowledge and agree that you are solely responsible for:
Accuracy and legality of all documents, identity data, and transactions you initiate on the Platform;
Obtaining all disclosures, consents, and authorizations required under applicable law;
Ensuring your use of electronic signatures complies with the laws relevant to your jurisdiction and industry;
Configuring your own internal authentication standards;
Verifying that the Platform meets your compliance requirements.
Spectra-C is not a law firm and does not provide legal, regulatory, or compliance advice.
You acknowledge and agree that you are solely responsible for:
Accuracy and legality of all documents, identity data, and transactions you initiate on the Platform;
Obtaining all disclosures, consents, and authorizations required under applicable law;
Ensuring your use of electronic signatures complies with the laws relevant to your jurisdiction and industry;
Configuring your own internal authentication standards;
Verifying that the Platform meets your compliance requirements.
Spectra-C is not a law firm and does not provide legal, regulatory, or compliance advice.
5. Ownership and Intellectual Property
All Platform content, software, AI models, trademarks, and technology are owned exclusively by Spectra-C and its licensors.
No rights are granted other than those expressly stated.
6. Data Processing Terms (Integrated DPA)
This section incorporates and replaces the need for a separate Data Processing Addendum.
Spectra-C processes Personal Data solely to provide the Platform and in accordance with Subscriber’s documented instructions.
6.1 Nature and Purpose of Processing
Spectra-C processes Personal Data for:
Identity verification;
Fraud prevention and anomaly detection;
Electronic signatures and audit logging;
Spectra-C’s AI-assisted biometric and liveness analysis;
Secure document retention and transmission;
Customer support, security monitoring, and internal compliance.
The Platform does not make legal or similarly significant automated decisions; final decisions remain with Subscriber.
6.1 Nature and Purpose of Processing
Spectra-C processes Personal Data for:
Identity verification;
Fraud prevention and anomaly detection;
Electronic signatures and audit logging;
Spectra-C’s AI-assisted biometric and liveness analysis;
Secure document retention and transmission;
Customer support, security monitoring, and internal compliance.
The Platform does not make legal or similarly significant automated decisions; final decisions remain with Subscriber.
6.1 Nature and Purpose of Processing
Spectra-C processes Personal Data for:
Identity verification;
Fraud prevention and anomaly detection;
Electronic signatures and audit logging;
Spectra-C’s AI-assisted biometric and liveness analysis;
Secure document retention and transmission;
Customer support, security monitoring, and internal compliance.
The Platform does not make legal or similarly significant automated decisions; final decisions remain with Subscriber.
6.1A Training Use
In addition to the purposes listed above, unless Subscriber’s authorized enterprise administrator opts out through the Platform’s administrative controls (or by written request to Spectra-C), Spectra-C may use Subscriber Data, including biometric identifiers and biometric information (e.g., facial images/video, voiceprints, liveness signals, and derived templates or feature vectors), to develop, train, fine-tune, test, validate, and improve Spectra-C’s fraud-prevention, liveness, deepfake-detection, and identity-verification models and systems (“Training Use”). If Subscriber opts out, Spectra-C will not use new Subscriber Data from that Subscriber workspace/tenant for Training Use after the opt-out takes effect. Opt-out does not affect processing necessary to provide the Platform, security, logging, abuse prevention, legal compliance, or enforcement, and does not require removal of the influence of Subscriber Data previously incorporated into models or aggregated/de-identified datasets where removal is not feasible.
6.1A Training Use
In addition to the purposes listed above, unless Subscriber’s authorized enterprise administrator opts out through the Platform’s administrative controls (or by written request to Spectra-C), Spectra-C may use Subscriber Data, including biometric identifiers and biometric information (e.g., facial images/video, voiceprints, liveness signals, and derived templates or feature vectors), to develop, train, fine-tune, test, validate, and improve Spectra-C’s fraud-prevention, liveness, deepfake-detection, and identity-verification models and systems (“Training Use”). If Subscriber opts out, Spectra-C will not use new Subscriber Data from that Subscriber workspace/tenant for Training Use after the opt-out takes effect. Opt-out does not affect processing necessary to provide the Platform, security, logging, abuse prevention, legal compliance, or enforcement, and does not require removal of the influence of Subscriber Data previously incorporated into models or aggregated/de-identified datasets where removal is not feasible.
6.1A Training Use
In addition to the purposes listed above, unless Subscriber’s authorized enterprise administrator opts out through the Platform’s administrative controls (or by written request to Spectra-C), Spectra-C may use Subscriber Data, including biometric identifiers and biometric information (e.g., facial images/video, voiceprints, liveness signals, and derived templates or feature vectors), to develop, train, fine-tune, test, validate, and improve Spectra-C’s fraud-prevention, liveness, deepfake-detection, and identity-verification models and systems (“Training Use”). If Subscriber opts out, Spectra-C will not use new Subscriber Data from that Subscriber workspace/tenant for Training Use after the opt-out takes effect. Opt-out does not affect processing necessary to provide the Platform, security, logging, abuse prevention, legal compliance, or enforcement, and does not require removal of the influence of Subscriber Data previously incorporated into models or aggregated/de-identified datasets where removal is not feasible.
6.2 Lawfulness and Instructions
Spectra-C shall process Personal Data only:
On Subscriber’s written instructions (including this Agreement);
As required by law;
As reasonably necessary for security, logging, or legal defense.
If an instruction violates Applicable Data Protection Laws, Spectra-C will notify Subscriber.
6.2 Lawfulness and Instructions
Spectra-C shall process Personal Data only:
On Subscriber’s written instructions (including this Agreement);
As required by law;
As reasonably necessary for security, logging, or legal defense.
If an instruction violates Applicable Data Protection Laws, Spectra-C will notify Subscriber.
6.2 Lawfulness and Instructions
Spectra-C shall process Personal Data only:
On Subscriber’s written instructions (including this Agreement);
As required by law;
As reasonably necessary for security, logging, or legal defense.
If an instruction violates Applicable Data Protection Laws, Spectra-C will notify Subscriber.
6.3 Confidentiality
Spectra-C ensures all personnel with access to Personal Data are subject to strict confidentiality obligations.
6.4 Security Measures
Spectra-C implements industry-standard administrative, technical, and organizational security measures, including:
Encryption in transit and at rest;
Access controls and credential management;
Network segmentation and zero-trust architecture;
SOC-aligned monitoring and vulnerability testing;
AI-powered fraud and anomaly detection (Spectra-C engine).
6.4 Security Measures
Spectra-C implements industry-standard administrative, technical, and organizational security measures, including:
Encryption in transit and at rest;
Access controls and credential management;
Network segmentation and zero-trust architecture;
SOC-aligned monitoring and vulnerability testing;
AI-powered fraud and anomaly detection (Spectra-C engine).
6.4 Security Measures
Spectra-C implements industry-standard administrative, technical, and organizational security measures, including:
Encryption in transit and at rest;
Access controls and credential management;
Network segmentation and zero-trust architecture;
SOC-aligned monitoring and vulnerability testing;
AI-powered fraud and anomaly detection (Spectra-C engine).
6.5 Subprocessing
Spectra-C may engage Subprocessors to support hosting, infrastructure, analytics, identity verification, and customer-support functions. Spectra-C shall:
(a) enter into written agreements with each Subprocessor imposing data-protection, confidentiality, and security obligations no less protective than those set forth in this Agreement;
(b) remain fully responsible and liable for the acts, omissions, and compliance failures of all Subprocessors as if Spectra-C performed the services itself; and
(c) provide, upon written request, a current list of material Subprocessors.
For clarity, Subscriber shall not be required to pursue claims directly against any Subprocessor; Spectra-C retains primary and direct responsibility for all Processing activities carried out on its behalf.
6.5 Subprocessing
Spectra-C may engage Subprocessors to support hosting, infrastructure, analytics, identity verification, and customer-support functions. Spectra-C shall:
(a) enter into written agreements with each Subprocessor imposing data-protection, confidentiality, and security obligations no less protective than those set forth in this Agreement;
(b) remain fully responsible and liable for the acts, omissions, and compliance failures of all Subprocessors as if Spectra-C performed the services itself; and
(c) provide, upon written request, a current list of material Subprocessors.
For clarity, Subscriber shall not be required to pursue claims directly against any Subprocessor; Spectra-C retains primary and direct responsibility for all Processing activities carried out on its behalf.
6.5 Subprocessing
Spectra-C may engage Subprocessors to support hosting, infrastructure, analytics, identity verification, and customer-support functions. Spectra-C shall:
(a) enter into written agreements with each Subprocessor imposing data-protection, confidentiality, and security obligations no less protective than those set forth in this Agreement;
(b) remain fully responsible and liable for the acts, omissions, and compliance failures of all Subprocessors as if Spectra-C performed the services itself; and
(c) provide, upon written request, a current list of material Subprocessors.
For clarity, Subscriber shall not be required to pursue claims directly against any Subprocessor; Spectra-C retains primary and direct responsibility for all Processing activities carried out on its behalf.
6.6 Data Subject Rights
Spectra-C will assist Subscriber with responding to requests for:
Access
Rectification
Deletion
Restriction
Portability
Objection to automated processing
Subscriber is responsible for validating the requester’s identity and lawfulness.
6.6 Data Subject Rights
Spectra-C will assist Subscriber with responding to requests for:
Access
Rectification
Deletion
Restriction
Portability
Objection to automated processing
Subscriber is responsible for validating the requester’s identity and lawfulness.
6.6 Data Subject Rights
Spectra-C will assist Subscriber with responding to requests for:
Access
Rectification
Deletion
Restriction
Portability
Objection to automated processing
Subscriber is responsible for validating the requester’s identity and lawfulness.
6.7 Cross-Border Transfers
All data is stored in the United States.
For EU, UK, and Swiss transfers:
The Standard Contractual Clauses (Module 2) apply;
UK and Swiss Addenda apply as needed;
Additional technical safeguards are implemented.
6.7 Cross-Border Transfers
All data is stored in the United States.
For EU, UK, and Swiss transfers:
The Standard Contractual Clauses (Module 2) apply;
UK and Swiss Addenda apply as needed;
Additional technical safeguards are implemented.
6.7 Cross-Border Transfers
All data is stored in the United States.
For EU, UK, and Swiss transfers:
The Standard Contractual Clauses (Module 2) apply;
UK and Swiss Addenda apply as needed;
Additional technical safeguards are implemented.
6.8 Audit Rights
Subscriber may, once per year, audit Spectra-C’s data-processing practices with reasonable notice.
Spectra-C will provide applicable documentation and certifications.
6.9 Security Incident Notification
If Spectra-C becomes aware of a Personal Data breach, it will notify Subscriber within 72 hours, including all details required under Applicable Data Protection Laws.
6.10 Data Return or Deletion
Upon termination, Subscriber may request:
Return of all Personal Data; or
Secure deletion of all Personal Data (including backups), unless retention is required by law.
6.10 Data Return or Deletion
Upon termination, Subscriber may request:
Return of all Personal Data; or
Secure deletion of all Personal Data (including backups), unless retention is required by law.
6.10 Data Return or Deletion
Upon termination, Subscriber may request:
Return of all Personal Data; or
Secure deletion of all Personal Data (including backups), unless retention is required by law.
7. Indemnification
You agree to indemnify, defend, and hold harmless Spectra-C and its officers, employees, and agents from claims arising out of:
Your use of the Platform;
Your violation of this Agreement;
Your failure to comply with legal or regulatory obligations;
Your instructions relating to Personal Data.
You agree to indemnify, defend, and hold harmless Spectra-C and its officers, employees, and agents from claims arising out of:
Your use of the Platform;
Your violation of this Agreement;
Your failure to comply with legal or regulatory obligations;
Your instructions relating to Personal Data.
You agree to indemnify, defend, and hold harmless Spectra-C and its officers, employees, and agents from claims arising out of:
Your use of the Platform;
Your violation of this Agreement;
Your failure to comply with legal or regulatory obligations;
Your instructions relating to Personal Data.
8. Disclaimers
8.1 No Legal Advice
Spectra-C does not provide legal advice.
You are solely responsible for evaluating legal sufficiency of signatures, identity verification, and workflows.
8.2 “As-Is” Services
The Platform is provided “AS IS” and “AS AVAILABLE” without warranties, express or implied, including:
Merchantability
Fitness for a particular purpose
Title
Non-infringement
Uninterrupted or error-free operation
8.2 “As-Is” Services
The Platform is provided “AS IS” and “AS AVAILABLE” without warranties, express or implied, including:
Merchantability
Fitness for a particular purpose
Title
Non-infringement
Uninterrupted or error-free operation
8.2 “As-Is” Services
The Platform is provided “AS IS” and “AS AVAILABLE” without warranties, express or implied, including:
Merchantability
Fitness for a particular purpose
Title
Non-infringement
Uninterrupted or error-free operation
9. Limitation of Liability
To the maximum extent permitted by law:
Spectra-C is not liable for indirect, incidental, special, punitive, or consequential damages.
Spectra-C’s total aggregate liability shall not exceed the total fees paid by Subscriber during the preceding 12 months.
These limitations do not apply to:
Gross negligence
Fraud
Willful misconduct
Liability that cannot legally be limited
To the maximum extent permitted by law:
Spectra-C is not liable for indirect, incidental, special, punitive, or consequential damages.
Spectra-C’s total aggregate liability shall not exceed the total fees paid by Subscriber during the preceding 12 months.
These limitations do not apply to:
Gross negligence
Fraud
Willful misconduct
Liability that cannot legally be limited
To the maximum extent permitted by law:
Spectra-C is not liable for indirect, incidental, special, punitive, or consequential damages.
Spectra-C’s total aggregate liability shall not exceed the total fees paid by Subscriber during the preceding 12 months.
These limitations do not apply to:
Gross negligence
Fraud
Willful misconduct
Liability that cannot legally be limited
10. Governing Law and Binding Arbitration
This Agreement is governed by the laws of the State of Delaware, excluding conflict-of-law rules.
Any dispute shall be resolved by binding arbitration in Wilmington, Delaware under the AAA rules.
11. Termination
Spectra-C may suspend or terminate access to the Platform with or without cause.
Upon termination, Sections relating to data protection, confidentiality, liability, and dispute resolution survive.
12. Entire Agreement
This integrated Agreement (including all incorporated data-processing obligations) constitutes the entire agreement between the parties and supersedes all prior agreements.
13. Contact Information