Terms of Service

Last updated: March 17, 2026

Effective date: March 17, 2026

IMPORTANT: Please read these Terms of Service ("Terms", "Agreement") carefully before using CodeSentinel. By accessing or using the Service, you agree to be legally bound by these Terms. If you do not agree, you must not access or use the Service.

1. Definitions

In these Terms, the following definitions apply:

  • "Service" means the CodeSentinel web application, APIs, and all related services accessible at code-sentinel.app.
  • "Company", "we", "us", "our" means the operator of CodeSentinel, a company registered in Italy (P.IVA: 05486240269).
  • "User", "you", "your" means any individual or entity that accesses or uses the Service.
  • "Customer" means a User who subscribes to a paid plan.
  • "Your Code" means any source code, pull request diffs, commit metadata, and related data that you submit to or make accessible through the Service.
  • "Findings" means the AI-generated code review results, suggestions, and reports produced by the Service.
  • "Subscription" means the recurring paid plan you select to access the Service.
  • "AI Agents" means the automated AI analysis systems (Security, Performance, Style, Architecture) that process Your Code.

2. Company Information

CodeSentinel is operated by:

  • Titolare: Masut Marco (Impresa Individuale)
  • Registered Office: Largo di Porta Cadore 5, 31029 Vittorio Veneto (TV), Italy
  • VAT Number (P.IVA): 05486240269
  • REA: TV - 447715
  • PEC: [email protected]
  • Contact: [email protected]
  • Website: code-sentinel.app

3. Eligibility

  • You must be at least 18 years old or the age of legal majority in your jurisdiction to use the Service.
  • If you are using the Service on behalf of an organization, you represent and warrant that you have the authority to bind that organization to these Terms.
  • You must have a valid GitHub account to authenticate and use the Service.
  • You must not be located in a jurisdiction where the use of the Service is prohibited by applicable law, or in a country subject to EU/Italian sanctions or embargoes.

4. Service Description

CodeSentinel is an AI-powered automated code review platform that:

  • Integrates with your GitHub repositories via GitHub App or OAuth;
  • Analyzes pull request diffs and code changes using multi-agent AI systems;
  • Provides automated security, performance, style, and architecture findings as inline PR comments;
  • Offers configurable review rules, notification channels (email, Telegram, webhook), and reporting.

The Service uses Anthropic's Claude AI models as the underlying AI engine. The specific model tier (Sonnet 4.6 or Opus 4.6) depends on your subscription plan.

5. Account Registration & Security

  • You authenticate via GitHub OAuth. You are responsible for maintaining the security of your GitHub account and any credentials associated with your CodeSentinel account.
  • You must enable two-factor authentication (2FA) on your GitHub account. We strongly recommend enabling TOTP-based 2FA on your CodeSentinel account as well.
  • You are solely responsible for all activities that occur under your account. You must notify us immediately at [email protected] if you suspect unauthorized access.
  • You must not share your account credentials, API keys, or session tokens with any third party.
  • You must have appropriate authorization (owner or admin) on any GitHub repositories you connect to CodeSentinel.

6. Subscription Plans, Billing & Pricing

6.1 Plans

CodeSentinel offers the following subscription tiers:

  • Free: Limited to 5 AI reviews/month, 1 repository. No payment required.
  • Starter (€9/month): 20 AI reviews/month, 3 repositories. 7-day free trial.
  • Pro (€29/month): 60 AI reviews/month, unlimited repositories. Opus 4.6 for security analysis. 14-day free trial.
  • Business (€59/month): 120 AI reviews/month, unlimited repositories. BYOK support. 14-day free trial.
  • Enterprise (custom pricing): Unlimited reviews, all Opus 4.6 models, dedicated infrastructure, SLA, SSO/SAML. Contact sales.

All prices are in EUR and exclude applicable VAT/taxes. Annual billing is available at approximately 10% discount.

6.2 Billing & Payment

  • Payments are processed by Stripe, Inc. By subscribing, you also agree to Stripe's Terms of Service.
  • Subscriptions are billed in advance on a monthly or annual basis, depending on the billing cycle you select.
  • You authorize us to charge your payment method on file for the applicable subscription fees and any overage charges.
  • All fees are non-refundable except as expressly stated in Section 6.5 or as required by applicable law (including EU consumer protection directives).

6.3 Overage Charges

  • If you exceed your plan's included AI reviews per month, additional reviews are charged at the following per-review rates: Starter €0.25, Pro €0.35, Business €0.40.
  • Free plan users cannot exceed their review limit (hard cap). No overage charges apply.
  • Overage charges are billed at the end of each billing period.

6.4 Free Trial

  • Paid plans may include a free trial period (7 or 14 days depending on the plan). During the trial, you have full access to the plan's features.
  • You must provide valid payment information to start a trial. You will not be charged during the trial period.
  • If you do not cancel before the trial ends, your subscription will automatically convert to a paid subscription and you will be charged the applicable fee.
  • Each user is eligible for one free trial per plan. Trial abuse or repeated sign-ups to obtain multiple trials may result in account suspension.

6.5 Refund Policy

  • EU consumers exercising their right of withdrawal under the Consumer Rights Directive (2011/83/EU) may cancel within 14 days of the initial subscription purchase for a full refund, provided the Service has not been substantially used during this period.
  • For annual subscriptions, if you cancel within the first 30 days and have used fewer than 10 AI reviews, you are entitled to a full refund.
  • No refunds are provided for partial billing periods, downgrades, or cancellations after the applicable refund period.
  • Refund requests should be sent to [email protected].

6.6 Price Changes

We reserve the right to change our pricing at any time. Price changes for existing subscriptions will take effect at the start of the next billing cycle. We will provide at least 30 days' written notice of any price increase via email.

6.7 Taxes

You are responsible for all applicable taxes (including VAT, sales tax, and withholding tax) associated with your use of the Service. If we are required to collect or remit taxes, they will be added to your invoice. EU businesses with a valid VAT number may be exempt from VAT under the reverse charge mechanism.

7. Bring Your Own Key (BYOK)

  • Business and Enterprise plan users may provide their own Anthropic API key ("BYOK") to use their own AI quota.
  • When using BYOK, AI API costs are billed directly to your Anthropic account. We are not responsible for charges incurred on your Anthropic account.
  • You are responsible for ensuring your API key is valid, has sufficient quota, and complies with Anthropic's terms of service.
  • We store your API key encrypted at rest. However, you acknowledge that your API key is transmitted to Anthropic's API to process Your Code.

8. Your Code & Intellectual Property

8.1 Ownership

You retain all ownership rights, title, and interest in and to Your Code. Nothing in these Terms transfers any intellectual property rights in Your Code to us.

8.2 License Grant

You grant us a limited, non-exclusive, non-transferable, revocable license to access, process, and transmit Your Code solely for the purpose of providing the Service, including transmitting code snippets to Anthropic's Claude API for analysis. This license terminates when you disconnect your repositories or delete your account.

8.3 No Training Use

We do not use Your Code to train, fine-tune, or improve any AI models. Your Code is processed solely to generate review Findings for your benefit. Anthropic's API terms govern how Anthropic handles data sent to their API — as of the date of these Terms, Anthropic does not use API inputs for model training.

8.4 CodeSentinel IP

We retain all rights, title, and interest in and to the Service, including its software, AI agents, algorithms, user interface, documentation, and all related intellectual property. These Terms do not grant you any right to use our trademarks, logos, or branding without prior written consent.

8.5 Findings Ownership

Findings generated by the Service are provided for your use. You may use, modify, and incorporate Findings into your development workflow. However, you may not redistribute, resell, or commercially exploit the Findings as a standalone product or service.

9. Acceptable Use Policy

You agree that you will NOT:

  • Use the Service for any unlawful, fraudulent, or malicious purpose;
  • Submit code to which you do not have the legal right to review or that infringes third-party intellectual property rights;
  • Attempt to reverse-engineer, decompile, disassemble, or extract the source code, algorithms, or AI prompts of the Service;
  • Circumvent, disable, or interfere with rate limits, authentication mechanisms, access controls, or security features;
  • Use automated scripts, bots, or crawlers to access the Service in a manner that exceeds reasonable usage or impairs the Service for other users;
  • Share, transfer, or sell your account credentials or access to unauthorized parties;
  • Use the Service to benchmark, compete with, or create a substantially similar product;
  • Transmit malware, viruses, or any harmful code through the Service;
  • Abuse the free trial by creating multiple accounts or using disposable email addresses;
  • Use the Service to process code containing classified, export-controlled, or government-restricted data without appropriate authorization;
  • Interfere with or disrupt the integrity or performance of the Service or its infrastructure.

Violation of this Acceptable Use Policy may result in immediate suspension or termination of your account without prior notice and without refund.

10. AI-Generated Content — Disclaimers

CRITICAL DISCLAIMER: CodeSentinel's Findings are generated by artificial intelligence and are provided "as-is" as informational suggestions only. They are NOT:

  • A substitute for professional security auditing, penetration testing, or vulnerability assessment;
  • A guarantee that your code is free from vulnerabilities, bugs, or defects;
  • Legal, regulatory, or compliance advice;
  • A certification of code quality, safety, or fitness for any particular purpose.

You are solely responsible for:

  • Reviewing, validating, and testing all AI-generated Findings before acting on them;
  • Making all final decisions about your code, architecture, and deployment;
  • Engaging qualified professionals for security audits, compliance reviews, and critical assessments.

AI systems may produce false positives, false negatives, hallucinations, or inaccurate recommendations. We make no representation or warranty regarding the accuracy, completeness, or reliability of any Findings.

11. Data Processing

  • Your Code (pull request diffs and relevant file context) is transmitted to Anthropic's Claude API via encrypted HTTPS connections for AI analysis.
  • Your Code is processed in memory and is not persistently stored by CodeSentinel after analysis is complete. Review metadata (Findings, severity, timestamps) is stored in our database.
  • For details on how your personal data is processed, please refer to our Privacy Policy.
  • If you are a business customer requiring a Data Processing Agreement (DPA), please contact [email protected].

12. Third-Party Services

The Service relies on third-party services. Your use of the Service is also subject to their respective terms:

We are not responsible for the availability, accuracy, or practices of third-party services. Any outage or change in third-party services may affect the functionality of CodeSentinel.

13. Service Availability & SLA

  • We strive to maintain high availability but do not guarantee uninterrupted, error-free, or continuous access to the Service.
  • The Service may be temporarily unavailable due to scheduled maintenance (with reasonable advance notice), unscheduled maintenance for critical security or stability issues, GitHub or Anthropic API outages, or force majeure events.
  • Enterprise customers may negotiate a specific Service Level Agreement (SLA) with guaranteed uptime percentages and remedies for downtime. Contact [email protected].
  • Free plan users have no SLA guarantees and their jobs may be deprioritized in favor of paying customers.

14. Limitation of Liability

14.1 TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, THE SERVICE IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS, IMPLIED, OR STATUTORY, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, AND ACCURACY.

14.2 IN NO EVENT SHALL THE COMPANY, ITS DIRECTORS, EMPLOYEES, PARTNERS, OR AFFILIATES BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING BUT NOT LIMITED TO: LOSS OF PROFITS, REVENUE, DATA, OR BUSINESS OPPORTUNITIES; COST OF PROCUREMENT OF SUBSTITUTE SERVICES; SECURITY BREACHES OR VULNERABILITIES IN YOUR CODE THAT THE SERVICE FAILED TO DETECT; DAMAGES ARISING FROM RELIANCE ON AI-GENERATED FINDINGS; OR BUSINESS INTERRUPTION, REGARDLESS OF THE THEORY OF LIABILITY (CONTRACT, TORT, STRICT LIABILITY, OR OTHERWISE).

14.3 OUR TOTAL AGGREGATE LIABILITY ARISING OUT OF OR RELATED TO THESE TERMS OR THE SERVICE SHALL NOT EXCEED THE GREATER OF: (A) THE TOTAL FEES PAID BY YOU TO US IN THE TWELVE (12) MONTHS IMMEDIATELY PRECEDING THE EVENT GIVING RISE TO THE CLAIM, OR (B) ONE HUNDRED EUROS (€100).

14.4 THE FOREGOING LIMITATIONS SHALL NOT APPLY TO LIABILITY ARISING FROM: (A) OUR GROSS NEGLIGENCE OR WILLFUL MISCONDUCT; (B) DEATH OR PERSONAL INJURY CAUSED BY OUR NEGLIGENCE; OR (C) ANY LIABILITY THAT CANNOT BE EXCLUDED OR LIMITED UNDER APPLICABLE ITALIAN OR EU LAW.

15. Indemnification

You agree to indemnify, defend, and hold harmless the Company and its officers, directors, employees, agents, and affiliates from and against any claims, damages, losses, liabilities, costs, and expenses (including reasonable legal fees) arising from or relating to:

  • Your violation of these Terms or applicable law;
  • Your use of the Service, including any code you submit for review;
  • Your infringement of any third-party intellectual property rights;
  • Any claim that Your Code submitted to the Service violates the rights of a third party;
  • Your failure to comply with applicable data protection laws when using the Service.

This indemnification obligation does not apply to EU consumers to the extent prohibited by mandatory consumer protection law.

16. Suspension & Termination

16.1 By You

  • You may cancel your subscription at any time through the billing settings. Cancellation takes effect at the end of the current billing period.
  • You may delete your account at any time. Upon deletion, your personal data and authentication tokens will be removed within 30 days, subject to our data retention obligations.

16.2 By Us

  • We may suspend or restrict access to your account immediately and without prior notice if: you violate these Terms or the Acceptable Use Policy; we detect fraudulent, abusive, or potentially harmful activity; your payment is past due for more than 15 days; or we are required to do so by law or regulatory order.
  • We may terminate your account with 30 days' written notice for any reason or no reason, provided we refund any prepaid fees for the unused portion of your subscription.
  • We may discontinue the Service entirely with 90 days' written notice. In such case, we will refund any prepaid fees for the unused portion of your subscription.

16.3 Effects of Termination

  • Upon termination, your right to access the Service immediately ceases.
  • We will delete or anonymize your personal data within 30 days, except as required by law or legitimate business interests (e.g., billing records, fraud prevention).
  • Provisions that by their nature should survive termination will survive, including but not limited to: Intellectual Property (Section 8), Limitation of Liability (Section 14), Indemnification (Section 15), Governing Law (Section 19), and any accrued payment obligations.

17. Confidentiality

  • We treat Your Code as confidential information. We will not disclose, share, or make Your Code available to any third party except as necessary to provide the Service (i.e., transmission to Anthropic's API for analysis).
  • Our employees and contractors who may access Your Code in the course of providing support or troubleshooting are bound by confidentiality obligations.
  • This confidentiality obligation does not apply to information that: is or becomes publicly available through no fault of ours; was already known to us without restriction; or is required to be disclosed by law or court order.

18. Force Majeure

Neither party shall be liable for any failure or delay in performing its obligations under these Terms due to causes beyond its reasonable control, including but not limited to: acts of God, natural disasters, pandemics, war, terrorism, riots, government actions, embargoes, sanctions, labor disputes, power or internet outages, cyberattacks, or failures of third-party services (including GitHub, Anthropic, Stripe, or cloud infrastructure providers). The affected party must notify the other party promptly and use commercially reasonable efforts to mitigate the impact.

19. Governing Law & Jurisdiction

  • These Terms are governed by and construed in accordance with the laws of the Italian Republic, without regard to its conflict of law provisions.
  • Any dispute arising out of or relating to these Terms shall be subject to the exclusive jurisdiction of the courts of Treviso, Italy, except where mandatory consumer protection law provides otherwise.
  • EU consumers retain the right to bring proceedings in the courts of their country of residence in accordance with Regulation (EU) No 1215/2012.
  • EU consumers may also use the European Commission's Online Dispute Resolution (ODR) platform at https://ec.europa.eu/consumers/odr.

20. Modifications to Terms

  • We reserve the right to modify these Terms at any time. We will provide at least 30 days' notice of material changes via email to registered users and/or by posting a prominent notice on the Service.
  • Your continued use of the Service after the effective date of the updated Terms constitutes your acceptance of the changes.
  • If you do not agree to the modified Terms, you must stop using the Service and cancel your subscription before the changes take effect.
  • Non-material changes (e.g., clarifications, formatting) may be made without prior notice.

21. General Provisions

21.1 Entire Agreement

These Terms, together with the Privacy Policy and any applicable DPA or Enterprise agreement, constitute the entire agreement between you and the Company regarding the Service and supersede all prior agreements, understandings, or representations.

21.2 Severability

If any provision of these Terms is held to be invalid, illegal, or unenforceable, the remaining provisions shall continue in full force and effect. The invalid provision shall be modified to the minimum extent necessary to make it valid and enforceable.

21.3 Waiver

Our failure to enforce any right or provision of these Terms shall not constitute a waiver of such right or provision. Any waiver must be in writing and signed by an authorized representative of the Company.

21.4 Assignment

You may not assign or transfer these Terms or any rights hereunder without our prior written consent. We may assign these Terms in connection with a merger, acquisition, reorganization, or sale of all or substantially all of our assets, provided the successor agrees to be bound by these Terms.

21.5 No Third-Party Beneficiaries

These Terms do not create any third-party beneficiary rights. Nothing in these Terms is intended to confer upon any person other than the parties any rights or remedies.

21.6 Notices

Notices to us should be sent to [email protected]. Notices to you will be sent to the email address associated with your GitHub account or displayed within the Service.

22. Contact Information

For questions about these Terms, please contact:

← Back to HomePrivacy Policy →