Terms & conditions
Download in PDF : KeeeX-Terms-of-Service_xiram-naped_2017-10-26T22_00_21.000Z.pdf
Thank you for using KeeeX!
KeeeX provides users (the ‘Users’) of the Web pages (the ‘Site’) with Web Service APIs and infrastructures (the ‘Web Service’) that may altogether be accessed for instance but with no limitation at https://keeex.me, https://keeex.io, https://keeex.com https://keeex.net, with a platform for downloading applications (the ‘Software’) used for instrumenting documents according to the KeeeX specifications (i.e. embedding authorship, digital signatures, proofs of integrity, copyright, references inside files…) as well as searching them, online or locally, viewing them, chaining versions, and sharing them in encrypted form or not, maintaining a set of contacts, or any other service provided by KeeeX (collectively the ‘Service’).
This Agreement sets out the legally binding terms between you and KeeeX. By using the Service in any way, You agree to be bound by all of the terms and conditions (the ‘Terms’) of this Terms and Conditions of Use agreement (the ‘Agreement’). ‘You’ refers to any individual or any third party or entity you are using the Service on behalf of. Therefore, You represent and warrant that You are fully able and competent to enter into the terms set forth in this Agreement. KeeeX may, in its sole discretion, change, add or remove portions of this agreement at any time.
KeeeX may change, suspend or discontinue any aspect of the Service at any time. KeeeX may also impose limits on certain features or restrict your access to parts or all of the Service without notice or liability.
KeeeX continuously improves all parts of the Service and Software, so if you have any question or feedback on these Terms, please drop an email to email@example.com.
Description of the Service and Software
KeeeX provides a technology (the « Technology ») allowing for embedding trust, authentication, and organization metadata (the « KeeeX Metadata ») within files. This approach reverses the standard perspective whereby files are placed under control of trusted tiers, document management systems and organizations (including system folders or databases). This technology takes an original file (the ‘Original File’) to produce a ‘keeexed’ file (the ‘Keeexed File’).
A Keeexed File may :
- contain a cryptographic checksum (or several) in the form of a list of pronounceable artificial words (its « IDX ») allowing to verify that the Keeexed File is bitwise unmodified,
- contain a reference to the user’s profile ID
- contain a « name » that keeps it immune to renaming by tiers or operators,
- contain a « description » used to attach unforgeable copyright, confidentiality terms, instructions to recipients or readers, or any other text,
- possibly contain the public key of a PKI digital signing scheme, and a digital signature of the IDX by the corresponding private key or a derivation of this key,
- possibly contain an X.509 certificate allowing for the verification of an embedded signature of the file IDX by the matching private key
- possibly contain a reference to a Bitcoin blockchain anchoring certificate as can be seen on https://services.keeex.me/timestamps
- possibly contain a reference to a timestamp certificate RFC3161 as generated by a trusted timestamp authority (TSA) also visible here : https://services.keeex.me/timestamps
- contain references to other keeexed files, including but not limited to the author profile, the keeexer program, possible previous versions and more user or application defined files.
The whole scheme is protected by several active or pending international patents. KeeeX develops this technology through a set of software elements (the « Software ») and Web and online accessible server infrastructures (collectively the « Online Services »). Collectively, the Software and online Services are denoted as the « Services ».
The Online Services are accessible notably through accesses to the domains «keeex.me», « keeex.com », « keeex.io », « keeex.net », « keeex.be » and their subdomains, the list not being exhaustive. A portion of the Services is made available on these domains via Applications Programming Interfaces (API).
The Software offered by KeeeX today comprises
- KeeeX ChatOps : an ultra secure probative instant messenger and file sharing app. The KeeeX ChatOps Software valorizes the KeeeX Technology into a unique collaboration software (available on the Unix, Windows and OSX platforms), that allows users to process and share probative documents and files without exposing a single byte of their original content, even by using the transport layer of their choice (shared disk, private cloud…), to send end to end ciphered files. Neither the KeeeX engineers nor anybody may access this data or the secrets needed to decipher them. KeeeX ChatOps ciphers and deciphers files on user’s side, by using state of the art symmetric cryptography in a peer-to-peer scheme.
- KeeeX ChatOps Mobile is also available as a mobile app (under Android) that offers a subset of the functionalities provided by the above app.
- Photo Proof by KeeeX : a probative mobile photo app on the Bitcoin blockchain. The Photo Proof by KeeeX app valorizes the KeeeX Technology in the form of a mobile (Android and IoS) app that captures and certifies pictures taken by the device camera on the fly. In a single operation, the app takes the picture, seals it (“keeexes it”) by certifying its integrity, author, geolocation if any, and asks for a timestamped proof of existence by a transaction on the Bitcoin blockchain. The entire proof record is available to the user in the form of self certified probative files (picture files and timestamp certificates), and can be shared by any means, using KeeeX ChatOps of course, but also email, could or USB.
- KeeeX Core : a Linux app for the creation/verification of keeexed documents and electronic signatures as well as the request for legal timestamps and blockchain anchors
- KeeeX Core for Xamarin : a library allowing for the creation of custom mobile apps that keeex user files and/or create digital signatures, timestamps and blockchain anchors by connecting to our server apis.
- KeeeX as a(n amazing) Service (KaaaS) : a web service allowing for keeexing files in a simple drop operation. This service is free to use but requires the purchase of timestamping credits once the initial endowment is exhausted. It requires login using a valid KeeeX account or an anonymous identity produced by KeeeX Identity Generator. This service is accessible at the url https://saas.keeex.me/kaaas. Unlike all our other apps and services, KaaaS is the only one to transfer user files to our servers for processing, yet using TLS/SSL encryption. We do not keep original files and only keep for user convenience the processed files for a maximum of 48 hours. A button further lets users ask for their immediate deletion. We would like however to insist that no confidential data should be processed on KaaaS and that KeeeX declines any leakage responsibility. In order to preserve absolute confidentiality this service is also available for on premises deployment. Keeeing files is also available using our ChatOps app.
- KeeeX Proof : a blockchain anchoring services for sh256 file hashes. This service is available at url https://saas.keeex.me/proof. It is free to use but requires login using a valide KeeeX account or an anonymous identity provided by one of our apps or KeeeX Identity Generator. KeeeX Proof does not transfer a byte of your data to our servers. Only their non invertible hash is sent. An api is available for back office processing.
- KeeeX Verify Page : a web page working offline for the verification of keeexed files by a simple drag and drop. This page can be deployed on our customer’s premises or on partner sites, including in customized form. KeeeX Verify Page does not transfer a single byte of your data to our servers. This service is freely available at url https://services.keeex.me/verify and requires no login. Verification operates locally but still requires a connection to the internet in order to retrieve detailed account information and/or timestamp certificates if they exist.
- KeeeX Blockchain Explorer : KeeeX offers at url https://services.keeex.me/timestamps a free service allowing for the real time exploration of timestamp and Bitcoin anchor requests made by our users, as well as accessing linked Bitcoin transactions.
- KeeeX Identity Generator : an offline web page for the creation of anonymous KeeeX identities in the Bitcoin and Fido U2F formats. These identities can be used to interact online services that operate KeeeX Core in back office. They allow for pure client side digital signatures that never transfer private keys to the server. This service is made available at the url https://services.keeex.me/identity-generator. These identities may for instance be used to log in and digitally sign on KeeeX as a(n amazing) Service (KaaaS) and KeeeX Blockchain Identity Publisher.
- KeeeX Blockchain Identity Publisher : an online service allowing for the publishing and revoke of identities (as produced in our applications and on KeeeX Identity Generator) as well as for other declarations and social network publishing. This service can be freely accessed but requires login using a valid KeeeX account or an anonymous identity provided by one of our apps or KeeeX Identity Generator. It can be accessed from the url https://saas.keeex.me/blockchain-identity- publisher. KeeeX Blockchain Identity Publisher does not transfer any personal or traceable data to our Servers. It requires login and uses client side signatures using identities generated by KeeeX Identity Generator and our applications.
The Web services offers by KeeeX (like KaaaS for instance) are available either on premises, hosted, or in SaaS (on demand) mode. These services usually require a working instance of KeeeX Core.
In the cas of “on demand” online services, user data that transit to our servers in Europe are transported encrypted in TLS/SSL, and kept only for the extremely small duration of their processing (today max 48 hours).
Other web services may in the future be made available under the same model as KaaaS (planned today are multi signature, blockchain tracking, billing…).
All KeeeX software may be customized and adapted to our customers needs upon demand, including for commercial use, under specific written agreement by KeeeX or contract.
We may integrate or help integrate KeeeX Core within any backoffice app or service, connected with any blockchain (Bitcoin, Ethereum, HyperLedger, Corda…). We also integrate KeeeX Core for Xamarin in mobile apps for our customers.
Access to the Services
KeeeX provides Services to both professionals and consumers, according to conditions and modalities that depend upon the user status.
Non business Services provided as free services are available to non-professional consumers only. Professionals must subscribe business Services and the Services used for any business purpose are deemed to be professional services and are available to professional only at a price set out for the said Services.
You agree to provide true, accurate, current and complete information about yourself as prompted by the Site or Software registration form (such information being the “Registration Data”) and maintain and promptly update the Registration Data to keep it true, accurate, current and complete when feasible.
You are responsible for maintaining the confidentiality and difficulty of any password, account, or any other identification and are fully responsible for all activities that occur under your password or account.
Your membership is solely for your personal use, and you shall not authorize others to use your account. You may not use the Service under your personal account for batch enterprise processing, even when owning a paid license. Such a use requires obtaining a specific license, that allows for operating virtual and/or robotized accounts.
In order to use our Service and Software, You need to complete a registration process. KeeeX will use part or all of the Registration Data to generate your unique and public KeeeX identity, and this identity will represent you when acting upon documents, or entering into collaboration with other KeeeX users.
To date, the KeeeX standards registration process only requests your first and last name and email address. Future possibilities will include registering using a login from another service.
Your registration application is evaluated by KeeeX, and if we discover that Your Registration Data is not true, not current, incomplete or inaccurate, KeeeX, at its sole discretion and without prior notice, is entitled to immediately terminate Your rights to continue to use the Service and to terminate the license to use the related Software.
Your Business Administrator
You may register your account as a business account, part of an organization (the « Organization »), which is administered by it’s own administrators. Administrators may have the right to suspend or delete your account, view your account’s usage, view and edit your editable profile data (e.g. Your business email address), and any content accessible to them.
An administrator should also have a KeeeX account, and multiple accounts might be promoted as Administrator in one Organization. The Administrator, and not KeeeX, is responsible for the internal management or administration of the Service, upto password, authentication passphrase and shared secret storage if the Organization policy states so.
Payments and pricing
The prices and payment conditions for services provided by KeeeX shall be those shown on the Site or negotiated between You and KeeeX.
Services provided for free must be used for non-professional purpose only and can be subscribed by consumers only for personal and non business use. Any Services used for professional purpose are deemed to be paid Services
KeeeX is the owner of all intellectual property rights, including all copyrights, patents, trademarks associated with the Service, including all associated software, logos, text, and graphics, but excluding User Content (defined below). You agree not to display or use any KeeeX intellectual property without KeeeX’s prior permission.
KeeeX grants you a limited license to access and make personal use of the Service according to the conditions and limitations set out by KeeeX for such Service. KeeeX may take appropriate legal action for any illegal or unauthorized use of the Service. The Site, or any portion of the Service may not be reproduced, duplicated, copied, sold, resold, or otherwise exploited for any commercial purpose without express written consent of KeeeX. Any unauthorized use terminates the permission or license granted by KeeeX.
You retain all of your ownership rights in your User Content.
We may use any feedback, ideas, comments, enhancement requests, recommendations or suggestions (‘Suggestions’) You send us or post in our forums without any obligation to You, and You hereby grant to
KeeeX a world-wide, royalty free, irrevocable, perpetual license to use and otherwise incorporate any Suggestions.
Software and user license
KeeeX grants You a non-exclusive, revocable and, except as expressly provided for in these Terms, non- transferable right and license to use the Software related to the Service (‘Licensed Software’), solely in accordance with these Terms.
On the basis of these Terms, You may download, install, and benefit from using the functionality of the Licensed Software solely in accordance with these Terms and the technical documentation (‘Documentation’).
Your license to use the Licensed Software is automatically revoked if You violate these Terms.
The Licensed Software requires You to register prior to its first use. Following the registration, except in the case of server licenses specially negotiated between You and KeeeX, the Licensed Software may be used by You with Your own Registration Data given at the registration on four computer systems it is installed upon, including desktop and mobile systems. You agree that the KeeeX Service and Software may not fully synchronize the states and data over all Devices.
You may not:
- Remove or modify any Service Content, disclaimer or warning notice included or embedded in any part of the Service or in any part of the Licensed Software or any copy thereof.
- Analyze, decompile, disassemble, reverse engineer, or otherwise attempt to derive all or any part, particularly the source code of the Licensed Software.
- Distribute, rent, lease, sell, sublicense or otherwise transfer all or part of the Licensed Software or the Service to any person.
- Permit the Licensed Software to be accessed through ‘shareware’ distribution process.
The Licensed Software may contain third party, open-source, well-analyzed software components (‘Third Party Component’), and each of them are chosen with reasonable care. KeeeX acknowledges the efforts of the open-source developers, and what they have done for the community so far. You find the list of their names and their copyright notice here: https://keeex.me/third-party-code/.
You can uninstall the Licensed Software any time, either manually or when available using Your mobile or desktop operating system’s standard uninstall method. You can find a detailed description of the uninstall process here: https://keeex.me/uninstall. If You need further assistance for uninstalling the Licensed Software, please write us at mailto:firstname.lastname@example.org.
Updates and changes to the Service
As part of the development of the Service, KeeeX has the right, in its sole discretion, anytime (i) to add new features, (ii) add new third party software components or (iii) to modify or discontinue features (together as “Changes”).
You are responsible for any information or any other materials you make available to KeeeX or any third party when using the Service (collectively, “User Content”). You represent and warrant that you have the full authority to act on your behalf and on behalf of any and all owners of any right, title and interest in and to any User Content you make available in using the Service.
KeeeX takes no responsibility and assumes no liability for any User Content.
Restrictions of use of the Service
You agree to abide by the terms of this Agreement, and to not use the Service to: (i) interfere with, manipulate, or take any actions that may undermine the integrity of the Service; (ii) interfere with or disrupt the Service or servers or networks connected to the Service; (iii) reverse engineer or decompile any elements of the Service.
You represent and warrant that you will not use the Service to upload, post, link to, or otherwise make available any material that contains software viruses or any other computer code, files or programs designed to interrupt, destroy, or limit the functionality of any computer software or hardware or any telecommunications equipment.
Use of Data by KeeeX
KeeeX offers in all possible cases collaboration services that warrant ultimate sharing confidentiality, notably by :
- The use of TLS/SSL encrypted connections between the Software and KeeeX servers using Extended Verification (EV) certificates
- “Zero knowledge” end to end encryption of all data (KeeeX engineers have no possibility to access the ciphered content unless explicitly shared to them
- The obfuscation of encrypted data (no information may help one to guess the nature, emitter or destinations of a message)
- The free choice by users to transfer encrypted data over self controlled clouds, channels or disks.
To enable KeeeX to provide the proper operation of the Services, you agree to the use by KeeeX of the metadata contained in any User Content or material provided by you in using the Service.It must be noted that the KeeeX Metadata mostly consist in non invertible cryptographic signatures and hashes that do not give a hint as to what content is implied.
As a means of proper operation of the Services, KeeeX never transfers clear text or invertible data unless absolute technical necessity. Precisely, KeeeX never transfers information of this nature to enable the KeeeX ChatOps notification system (like e.g. file sharing, receipt, approval, start / end version, signature, timestamp…).
Unless required by the law, KeeeX never keeps user related data beyond the scope of their technical use to provide a good quality user experience. As of today, the notifications and ciphered data are not preserved for more than three months.
You accept the use by KeeeX of any data that you would have explicitly accepted to make available for public use over our servers, as for instance but without limitation identity validations, publications, revocations, approval or rejection of public documents, or blockchain timestamp certificates meant to be publicly auditable or available to programs.
The personal data collected by KeeeX are required to operate your account and the associated rights. As of today, KeeeX only stores the names, emails and password derivations of our users. Passwords are never received by our servers other than after derivations aimed at making so called dictionary attacks very difficult. Furthermore, the derivations sent and stored on our servers cannot help deciphering user content on their own machine or device.
You accept the collection and processing of usage statistics without limitation in time, notably the count of files that you process, share, sign, verify, timestamp. Such statistics are never bound to anything but your personal user or company profile.
KeeeX will only provide personal information to third parties: (1) with your consent; (2) where it is necessary to carry out your instructions; (3) as reasonably necessary in order to provide KEEEX services to you; (4) as KeeeX reasonably believes is permitted by law or regulation; or (5) as necessary to enforce our User Agreement or protect the rights, property, or safety of KeeeX or third parties.
KEEEX complies with the French legislation ACT N°78-17 – “LOI INFORMATIQUE ET LIBERTES”OF 6 JANUARY 1978 ON INFORMATION TECHNOLOGY, DATA FILES AND CIVIL LIBERTIES amended by the act of 6 august 2004 relating to the protection of individuals with regard to the processing of personal data.
According to this legislation, You are entitled to a right to access, correct, delete any data that pertains to you. You may exercise those rights by contacting KeeeX, 37 rue Guibal, 13003 Marseille France, or by email to email@example.com.
Therefore, You can change your KeeeX information at any time by editing your profile, deleting content that you have posted, or by closing your account.
You have a right to (1) access, modify, correct, or delete your personal information controlled by KEEEX regarding your account, (2) change or remove your content, and (3) close your account.
You may terminate this Agreement at any time by permanently discontinuing your use of the Service and informing us about your intent by sending an email to firstname.lastname@example.org.
Without limiting other remedies, KeeeX may immediately issue a warning, temporarily suspend, indefinitely suspend or terminate your membership and refuse to provide the Service to you if: (i) KeeeX is unable to verify or authenticate any information you provide to us; or (ii) you breach this Agreement; (iii) KeeeX believes that your actions may cause financial loss or legal liability for you, KeeeX or any other third party or users.
Disclaimers and exclusive Remedies
YOUR USE OF THE SERVICE IS AT YOUR SOLE RISK. THE SERVICE IS PROVIDED ON AN “AS IS” AND “AS AVAILABLE” BASIS. KeeeX EXPRESSLY DISCLAIMS ALL WARRANTIES OF ANY KIND, WHETHER EXPRESS OR
IMPLIED, INCLUDING, BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT. KeeeX MAKES NO WARRANTY THAT (i) THE SERVICE WILL BE UNINTERRUPTED, TIMELY, SECURE, OR ERROR-FREE, (ii) THE RESULTS THAT MAY BE OBTAINED FROM THE USE OF THE SERVICE WILL BE ACCURATE OR RELIABLE, (iii) THE QUALITY OF ANY SERVICES, INFORMATION, OR OTHER MATERIAL OBTAINED BY YOU THROUGH THE SERVICE WILL MEET YOUR EXPECTATIONS.
Notwithstanding anything to the contrary contained herein, KeeeX shall not, under any circumstances, be liable to you or any third parties for consequential, incidental, indirect, exemplary, special, or other damages whether in an action based on contract, tort (including negligence) or any other legal theory, arising out of or related to the Agreement, including but not limited to lost profits or loss of business.
Under no circumstances shall KeeeX’s total liability of all kinds arising out of or related to the Agreement, regardless of whether any action or claim is based on contract, tort or otherwise, exceed the total amount paid by you to KeeeX hereunder for the services actually giving rise to such liability (determined as of the date of any final judgment in such action). This limitation is cumulative, with all payments to you for claims or damages being aggregated to determine satisfaction of the limit. The existence of one or more claims will not enlarge the limit.
This Agreement and the relationship between you and KeeeX shall be governed by the laws of France. You and KeeeX agree to submit to the personal and exclusive competent jurisdiction of France.