Disclaimer

1. General Disclaimer

The information, services, and software provided by DCE Infosec LLC ("Company," "we," "us," or "our") through HAYANALYSIS and our website are provided for general informational and operational purposes only.

ALL INFORMATION AND SERVICES ARE PROVIDED IN GOOD FAITH ON AN "AS IS" AND "AS AVAILABLE" BASIS. WE MAKE NO REPRESENTATION OR WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, REGARDING THE ACCURACY, ADEQUACY, VALIDITY, RELIABILITY, AVAILABILITY, COMPLETENESS, OR SUITABILITY OF ANY INFORMATION, SERVICE, OR SOFTWARE FOR ANY PURPOSE.

2. No Professional Security Advice

HAYANALYSIS is a tool to assist with security operations. It does NOT constitute professional security advice, legal advice, or compliance guidance.

• The platform's outputs, recommendations, and analyses should not be treated as definitive security assessments
• You should consult with qualified security professionals, legal counsel, and compliance experts for decisions tailored to your specific situation
• Regulatory compliance (HIPAA, PCI-DSS, SOX, GDPR, etc.) requires comprehensive programs beyond any single tool
• Security decisions should consider your unique environment, risk tolerance, and regulatory requirements
• We do not provide legal opinions on the sufficiency of your security controls

3. AI and Machine Learning Disclaimer

HAYANALYSIS utilizes artificial intelligence (AI), machine learning (ML), and large language model (LLM) technologies. You explicitly acknowledge and agree that:

3.1 AI Accuracy Limitations

• AI-generated insights, recommendations, queries, and analyses may NOT be 100% accurate
• AI models may produce false positives (alerting on benign activity) and false negatives (missing actual threats)
• AI outputs may contain errors, omissions, or "hallucinations" (plausible-sounding but incorrect information)
• AI performance varies based on data quality, context, and model limitations
• AI models may produce inconsistent results for similar inputs
• AI outputs should ALWAYS be validated by qualified humans before taking action

3.2 AI Model Changes

• AI models are periodically updated, retrained, or replaced
• Model updates may change outputs, recommendations, or detection patterns
• Historical results may not be reproducible with updated models
• We do not guarantee consistency between model versions

3.3 Human Oversight Required

• You are responsible for configuring appropriate human oversight and approval workflows
• Automated actions (blocking, disabling, quarantining) should be carefully validated before enabling
• The Company is NOT liable for decisions made based on AI recommendations
• You bear full responsibility for actions taken (or not taken) based on AI outputs

3.4 Bring Your Own AI/LLM

When you connect your own AI or Large Language Model services:

• We are NOT responsible for the accuracy, quality, appropriateness, or safety of responses from your AI models
• You are solely responsible for compliance with your AI provider's terms of service and acceptable use policies
• AI-generated queries, analysis, and recommendations are produced by YOUR AI service, not ours
• We are NOT liable for any costs, overages, rate limiting, or billing issues with your AI providers
• You are responsible for ensuring your AI models are configured appropriately for security use cases
• Model "hallucinations," biases, inaccuracies, harmful outputs, or unexpected behaviors may occur — implement appropriate validation and guardrails
• Your AI provider's data handling policies govern how they process your prompts and data
• Self-hosted AI models are your sole responsibility to maintain, secure, and operate

4. Security Product Disclaimer

While HAYANALYSIS is designed to enhance your security operations:

• No Guarantee of Security: No security product, including HAYANALYSIS, can guarantee complete protection against all threats, attacks, or vulnerabilities
• Defense in Depth: HAYANALYSIS is ONE component of a comprehensive security strategy — not a complete solution
• No Threat Detection Guarantee: We do NOT guarantee the detection or prevention of any specific threat, malware, attack, or security incident
• Evolving Threats: New threats emerge constantly; there may be delays before detection capabilities are updated
• Your Responsibility: You remain solely responsible for your overall security posture, compliance, and risk management
• Configuration Matters: The effectiveness of HAYANALYSIS depends on proper configuration, tuning, and maintenance
• Data Quality: Detection and analysis quality depends on the quality and completeness of your data sources

5. Automated Actions Disclaimer

HAYANALYSIS can execute automated response actions (blocking IPs, disabling users, quarantining assets, etc.). You acknowledge:

• Automated actions are executed based on YOUR configuration and rules
• Automated actions may have unintended consequences, including business disruption
• You are solely responsible for validating and testing automated actions before enabling in production
• We strongly recommend gradual rollout with human approval workflows initially
• We are NOT liable for any damages, losses, or disruptions caused by automated actions
• You should maintain rollback capabilities and incident response procedures

6. Deployment Options Disclaimer

6.1 SaaS (Cloud-Hosted) Deployment

• Your deployment is tenant-separated from other customers, but shared cloud infrastructure is used
• We implement commercially reasonable security measures, but no system is completely immune to security risks
• Service availability depends on our infrastructure and third-party cloud providers (AWS, Azure, GCP)
• You are responsible for properly configuring your account security, access controls, and permissions
• Internet connectivity is required; network issues may affect service availability
• We may perform maintenance that temporarily affects availability

6.2 Self-Hosted Deployment

• You are SOLELY responsible for infrastructure security, availability, performance, and maintenance
• We are NOT responsible for security incidents, breaches, or data loss resulting from your infrastructure configuration
• Software updates, security patches, and version upgrades are YOUR responsibility to apply
• Support is provided according to your support agreement; response times may vary for self-hosted environments
• We cannot guarantee compatibility with all infrastructure configurations
• Air-gapped deployments receive limited support capabilities
• You are responsible for backup, disaster recovery, and business continuity

7. Database Connectivity (BYODb) Disclaimer

With our BYODb (Bring Your Own Database) architecture:

• We query your databases as configured by you — we are NOT responsible for query performance, database load, or resource consumption
• Poorly optimized queries or high query volumes may impact your database performance
• You are solely responsible for database security, access controls, authentication, and ensuring appropriate permissions
• We are NOT liable for data loss, corruption, unauthorized access, or security incidents in your databases
• Database credentials are stored securely, but you should follow best practices (least privilege, regular rotation, monitoring)
• Performance depends on your database infrastructure, network connectivity, query complexity, and data volume
• We do not guarantee compatibility with all database versions, configurations, or extensions
• Database schema changes may affect functionality — notify us of significant changes

8. Tenant Separation Disclaimer

For SaaS deployments, while we implement tenant separation:

• Logical separation is implemented through software controls, access controls, and encryption
• Complete physical isolation (dedicated hardware) is NOT provided unless explicitly contracted
• We make commercially reasonable efforts to prevent cross-tenant access, but no guarantee is absolute
• You should NOT store data requiring dedicated single-tenant infrastructure unless specifically arranged
• Certain shared components (control plane, metadata) may exist across tenants with appropriate access controls
• In the event of a vulnerability in shared components, multiple tenants could theoretically be affected

9. Third-Party Services Disclaimer

HAYANALYSIS integrates with various third-party services, databases, APIs, and AI providers. We explicitly disclaim any responsibility for:

• The availability, reliability, accuracy, or performance of third-party services
• Security vulnerabilities, breaches, or incidents in third-party systems
• Data handling, privacy practices, or compliance of third-party providers
• Changes to third-party APIs, services, or terms that may affect functionality
• Costs, billing, licensing, or subscription issues with third-party providers
• Actions taken by third-party services based on data or instructions from HAYANALYSIS
• Interruptions or degradations caused by third-party service outages
• Any disputes between you and third-party providers

10. Performance Claims Disclaimer

Performance metrics and claims on our website and marketing materials (such as "90% reduction in manual effort" or "up to 95% accuracy") are:

• Based on internal testing, benchmarks, or typical customer experiences
• NOT guarantees of results you will achieve
• Subject to significant variation based on:
  • Your specific environment, infrastructure, and data volume
  • Quality, completeness, and diversity of integrated data sources
  • Configuration, customization, and tuning of the platform
  • Your team's adoption, training, and usage patterns
  • Quality and capability of your connected AI/LLM models (if using BYO AI)
  • Performance of your connected databases (if using BYODb)
  • Complexity and nature of threats in your environment

Past performance does not guarantee future results. Individual results may vary significantly.

11. Limitation of Liability

UNDER NO CIRCUMSTANCES SHALL DCE INFOSEC LLC, ITS OFFICERS, DIRECTORS, EMPLOYEES, AGENTS, AFFILIATES, OR LICENSORS BE LIABLE FOR ANY:

• Direct, indirect, incidental, special, consequential, punitive, or exemplary damages
• Loss of profits, revenue, goodwill, data, or anticipated savings
• Business interruption, operational disruption, or downtime
• Security incidents, breaches, cyberattacks, or data theft
• Errors, inaccuracies, omissions, or bugs in the platform
• Unauthorized access to or alteration of your data or systems
• Statements, conduct, or outputs of AI/LLM services (whether ours or yours)
• Actions taken by automated workflows based on your configurations
• Issues with your connected databases, infrastructure, or third-party services
• Failure to detect, prevent, or respond to any threat or attack
• Any other damages arising from your use or inability to use the services

THIS LIMITATION APPLIES REGARDLESS OF THE THEORY OF LIABILITY (CONTRACT, TORT, NEGLIGENCE, STRICT LIABILITY, OR OTHERWISE) AND EVEN IF WE HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

OUR TOTAL LIABILITY SHALL NOT EXCEED THE FEES PAID BY YOU IN THE 12 MONTHS PRECEDING THE CLAIM, OR $100 IF NO FEES WERE PAID.

12. No Warranty

THE SERVICES ARE PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO:

• IMPLIED WARRANTIES OF MERCHANTABILITY
• FITNESS FOR A PARTICULAR PURPOSE
• NON-INFRINGEMENT
• ACCURACY, RELIABILITY, OR COMPLETENESS
• UNINTERRUPTED OR ERROR-FREE OPERATION
• SECURITY OR FREEDOM FROM VIRUSES OR HARMFUL COMPONENTS
• THAT THE SERVICES WILL MEET YOUR REQUIREMENTS OR EXPECTATIONS

SOME JURISDICTIONS DO NOT ALLOW EXCLUSION OF CERTAIN WARRANTIES. IN SUCH JURISDICTIONS, OUR LIABILITY IS LIMITED TO THE MAXIMUM EXTENT PERMITTED BY LAW.

13. Indemnification

You agree to defend, indemnify, and hold harmless DCE Infosec LLC and its officers, directors, employees, agents, affiliates, and licensors from and against any and all claims, liabilities, damages, judgments, awards, losses, costs, expenses, or fees (including reasonable attorneys' fees) arising out of or relating to:

• Your use or misuse of the services
• Your violation of this Disclaimer or any applicable Terms
• Your violation of any applicable law, regulation, or third-party right
• Your use of third-party AI/LLM services
• Data stored in, processed by, or accessed from your databases
• Automated actions executed based on your configurations
• Security incidents arising from your self-hosted deployment or infrastructure
• Claims by your employees, contractors, or end users
• Your failure to maintain adequate security controls

14. Regulatory and Compliance Disclaimer

• HAYANALYSIS is a tool to assist with security operations — it does NOT guarantee regulatory compliance
• Compliance with HIPAA, PCI-DSS, SOX, GDPR, CCPA, and other regulations requires comprehensive programs beyond any single tool
• You are solely responsible for determining and meeting your compliance obligations
• Our certifications (SOC 2, etc.) apply to our platform — they do not transfer compliance to your organization
• Audit logs and reports provided by HAYANALYSIS may assist with compliance but are not substitutes for formal audits
• Consult with qualified compliance and legal professionals for compliance guidance

15. Website and Marketing Content

Information on our website, marketing materials, and promotional content:

• Is provided for informational purposes only
• May not be current, complete, or accurate
• May include forward-looking statements that are subject to change
• May include testimonials or case studies that represent individual experiences, not guaranteed outcomes
• May include screenshots or demonstrations that may not reflect current functionality
• Should not be relied upon as the sole basis for purchasing decisions

16. Links to Third-Party Sites

Our website may contain links to third-party websites or services. We are not responsible for the content, accuracy, privacy practices, or opinions expressed on such third-party sites. Inclusion of links does not imply endorsement.

17. Changes to This Disclaimer

We reserve the right to modify this Disclaimer at any time. Changes will be effective immediately upon posting to the website with an updated "Last Updated" date. Your continued use of our services after changes constitutes acceptance of the modified Disclaimer.

18. Severability

If any provision of this Disclaimer is held to be invalid, illegal, or unenforceable, the remaining provisions shall continue in full force and effect.

19. Contact Information

If you have questions about this Disclaimer, please contact us:

DCE Infosec LLC
Legal Department
Email: legal@hayanalysis.com
Website: www.hayanalysis.com