Terms & Conditions

1. Acceptance of Terms

By accessing or using EngagePlus ("Service"), you agree to be bound by these Terms & Conditions ("Terms"). If you do not agree to these Terms, do not use the Service.

These Terms constitute a legally binding agreement between you (or the organization you represent) and EngagePlus.

2. Description of Service

EngagePlus provides authentication-as-a-service through a JavaScript widget that integrates with OpenID Connect (OIDC) identity providers. Our service includes:

• JavaScript authentication widget
• OAuth 2.0 and OIDC proxy services
• Provider configuration management dashboard
• Webhook integrations for authentication events
• Analytics and usage reporting

Important: EngagePlus acts as an authentication proxy. We do not store end-user credentials or personal data beyond what is necessary for authentication flows (temporary tokens with TTL).

3. User Accounts

3.1 Account Creation

• You must provide accurate and complete information when creating an account
• You are responsible for maintaining the security of your account credentials
• You must notify us immediately of any unauthorized access
• One person may not maintain multiple accounts

3.2 Account Restrictions

• You must be at least 16 years old to create an account
• You must comply with all applicable laws and regulations
• You may not use the Service for illegal activities
• You may not attempt to interfere with or disrupt the Service

4. Free Trial

New organizations on the FREE tier receive a 30-day trial with access to:

• Unlimited custom OIDC provider configuration
• Webhook integrations
• Full API access

After the trial expires, FREE tier accounts retain access to:

• Built-in social providers (Google, Facebook, Apple, Microsoft, etc.)
• Up to 1,000 authentications per month
• Basic analytics

Custom OIDC providers and webhook integrations require a paid subscription after the trial.

5. Subscription Plans & Billing

5.1 Paid Plans

We offer several subscription tiers (PRO, BUSINESS, ENTERPRISE) with varying features and authentication limits. Current pricing is available at engageplus.dev/pricing.

5.2 Billing

• Subscriptions are billed monthly or annually in advance
• Billing is handled securely by Stripe
• Charges are non-refundable except as required by law
• You authorize us to charge your payment method for all fees

5.3 Price Changes

We may change subscription prices with 30 days' notice. Price changes will not affect your current billing period but will apply to subsequent renewals.

5.4 Cancellation

• You may cancel your subscription at any time from the dashboard
• Cancellation takes effect at the end of the current billing period
• No refunds for partial months
• Your data remains accessible until the subscription expires

5.5 Overages

If you exceed your plan's monthly authentication limit:

• We will notify you via email
• Additional authentications may be temporarily blocked
• You can upgrade to a higher tier to restore service

6. Acceptable Use Policy

You agree not to:

• Use the Service for any illegal or unauthorized purpose
• Violate any laws in your jurisdiction
• Infringe on intellectual property rights
• Transmit malware, viruses, or harmful code
• Attempt to reverse engineer or decompile the Service
• Scrape, crawl, or harvest data from the Service
• Interfere with or disrupt the Service or servers
• Impersonate another person or organization
• Bypass rate limits or authentication mechanisms
• Use the Service to spam, phish, or engage in fraud

Violation of this policy may result in immediate suspension or termination of your account.

7. Intellectual Property

7.1 Our Property

EngagePlus, our logo, widget, and all related materials are owned by us and protected by copyright, trademark, and other intellectual property laws. You may not copy, modify, or distribute our materials without written permission.

7.2 Your Property

You retain all rights to your:

• Organization name and branding
• Custom provider configurations
• Webhook endpoints and integrations
• Any content you upload (e.g., custom provider icons)

By using the Service, you grant us a limited license to use your organization name and logo solely for providing the Service.

8. Service Availability & SLA

8.1 Uptime

We strive for 99.9% uptime for paid plans, but we do not guarantee uninterrupted service. We may experience:

• Scheduled maintenance (announced in advance)
• Emergency maintenance (security patches)
• Third-party service outages (AWS, identity providers)

8.2 Service Level Agreement (SLA)

For BUSINESS and ENTERPRISE plans, we offer an SLA with guaranteed uptime and response times. Details are provided in your subscription agreement.

9. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW:

• THE SERVICE IS PROVIDED "AS IS" WITHOUT WARRANTIES OF ANY KIND
• WE ARE NOT LIABLE FOR INDIRECT, INCIDENTAL, SPECIAL, OR CONSEQUENTIAL DAMAGES
• OUR TOTAL LIABILITY IS LIMITED TO THE AMOUNT YOU PAID IN THE PAST 12 MONTHS
• WE ARE NOT RESPONSIBLE FOR THIRD-PARTY SERVICES (identity providers, payment processors)
• YOU ASSUME ALL RISK FOR USE OF THE SERVICE

Some jurisdictions do not allow these limitations, so they may not apply to you.

10. Indemnification

You agree to indemnify and hold harmless EngagePlus, its affiliates, and employees from any claims, damages, or expenses arising from:

• Your use of the Service
• Your violation of these Terms
• Your violation of any third-party rights
• Your end-users' use of your application

11. Termination

11.1 By You

• You may delete your account at any time from the dashboard settings
• Account deletion is permanent and cannot be undone
• We will delete your data within 30 days of account deletion

11.2 By Us

We may suspend or terminate your account if:

• You violate these Terms or our Acceptable Use Policy
• Your account is inactive for more than 12 months
• We are required to do so by law
• We discontinue the Service (with 90 days' notice)

We will provide reasonable notice before termination unless immediate action is required for security or legal reasons.

11.3 Effect of Termination

• Your access to the Service will be immediately revoked
• Your data will be deleted within 30 days (except as required for legal compliance)
• Prepaid fees are non-refundable
• You remain liable for any outstanding payments

12. Data Ownership & Export

You own your data. This includes:

• Provider configurations
• Webhook configurations
• Authentication event logs
• Organization settings

You may export your data at any time. Upon request, we will provide your data in JSON format within 30 days.

13. Third-Party Services

EngagePlus integrates with third-party services:

• Identity Providers - Google, Facebook, Microsoft, and others you configure
• Stripe - Payment processing
• AWS - Hosting infrastructure
• Google Analytics - Usage analytics (with your consent)

These third-party services have their own terms and privacy policies. We are not responsible for their practices or service availability.

14. Service Modifications

We reserve the right to:

• Modify or discontinue features with 30 days' notice
• Change pricing for new subscriptions with 30 days' notice
• Update the Service to improve security or performance
• Add new features or providers

Material changes affecting existing subscriptions will be communicated via email.

15. API Usage & Rate Limits

If you use our APIs:

• Respect rate limits (varies by plan)
• Cache responses where appropriate
• Do not attempt to circumvent limits
• Report bugs responsibly (do not exploit vulnerabilities)

Excessive API usage may result in temporary throttling or account suspension.

16. Security

16.1 Your Responsibilities

• Keep your client secrets and API keys confidential
• Configure redirect URIs properly to prevent authorization code interception
• Verify webhook signatures to prevent spoofing
• Report security vulnerabilities to security@engageplus.dev

16.2 Our Responsibilities

• Maintain encryption in transit (HTTPS/TLS)
• Maintain encryption at rest (database, backups)
• Implement PKCE for OAuth 2.0 security
• Respond to security incidents within 72 hours
• Notify you of data breaches as required by law

17. Warranties Disclaimer

THE SERVICE IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO:

• MERCHANTABILITY
• FITNESS FOR A PARTICULAR PURPOSE
• NON-INFRINGEMENT
• AVAILABILITY OR UPTIME
• ACCURACY OR COMPLETENESS

We do not warrant that the Service will be error-free, secure, or uninterrupted.

18. Governing Law & Dispute Resolution

18.1 Governing Law

These Terms are governed by the laws of the State of Delaware, United States, without regard to conflict of law principles.

18.2 Dispute Resolution

Any disputes shall be resolved through:

1. Good-faith negotiation between the parties
2. If unresolved, binding arbitration under AAA Commercial Arbitration Rules
3. Arbitration location: Delaware, United States

You waive any right to participate in class action lawsuits or class-wide arbitration.

19. Changes to These Terms

We may modify these Terms at any time. Material changes will be communicated via:

• Email notification to your registered email address
• Prominent notice in the dashboard
• Updated "Last Updated" date on this page

Your continued use after changes constitutes acceptance. If you do not agree, you must stop using the Service and may request account deletion.

20. Contact Information

21. Severability

If any provision of these Terms is found to be unenforceable, the remaining provisions will remain in full effect.

22. Entire Agreement

These Terms, along with our Privacy Policy, constitute the entire agreement between you and EngagePlus. They supersede any prior agreements or communications.