These terms explain how regulated teams can use Xybern's multi-path reasoning workspace, research stacks, and compliance rails. They complement any order form or enterprise pilot you sign with us.
Last updated: March 2025
Deep Research runs, workspace threads, and Projects all retain citations, reviewer notes, and audit JSON.
Supports private connectors (S3, SharePoint, DBs), scoped API keys, SSO, and residency locks per workspace.
Evidence packs, SOC 2 / ISO mapped controls, and exportable logs for every reasoning chain.
By creating a workspace, joining an Enterprise Pilot, or executing an order form with Xybern Inc. ("Xybern", "we"), you accept these Terms. If another agreement signed by both parties covers the same Services, that agreement controls to the extent of any conflict.
Xybern provides a reasoning workspace for legal, finance, and risk teams, including the Assistant, Deep Research runs, Projects, connectors, compliance dashboards, and enterprise APIs. Features evolve frequently; beta capabilities remain optional and may be enabled or disabled by your administrators.
Workspaces are provisioned to business entities. You must be at least 18, act on behalf of your organization, and provide accurate account details. Admins are responsible for user provisioning, role assignments, and enforcing least-privilege access.
You retain ownership of all prompts, uploads, connectors, Projects, and any outputs generated in your workspace ("Customer Data"). You grant Xybern a limited right to host, process, and transmit Customer Data solely to deliver the Services, provide support, and maintain security. We do not train generalized models on your private data or commingle workspaces except for aggregated metrics that strip identifiers.
We implement encryption in transit and at rest, access logging, vulnerability management, and framework-aligned controls (SOC 2, ISO 27001, HIPAA-ready, GDPR readiness). Detailed policy packs, penetration summaries, and sub-processor disclosures are available during diligence. You remain responsible for configuring controls (SSO, SCIM, key rotation) inside your workspace.
You agree not to misuse the Services. Prohibited behavior includes:
Each party may access the other party's confidential information. We will protect Customer Data using the same care we apply to our own confidential data, not less than reasonable care. You agree to protect any non-public information we share about the Services, security, or roadmap.
Except for Customer Data, Xybern retains all right, title, and interest in the platform, models, prompts, documentation, and branding. Feedback, feature requests, or example workflows you provide may be used to improve the Services with no obligation. Customer Data remains yours; outputs belong to you, subject to underlying source licenses.
Some features interface with third-party services (LLM providers, storage, communication tools, legal databases). Xybern vets and contracts with these subprocessors, but you are responsible for any external services you choose to connect (e.g., SharePoint, S3, databases). We may route prompts through multiple reasoning models to achieve consensus; usage is governed by our agreements with those providers.
Fees, usage tiers, and committed workloads are described in your order form or enterprise pilot letter. Unless otherwise stated, invoices are due net 30 days, exclude taxes, and may include overage charges for additional Projects, Deep Research minutes, or storage. Late payments may result in suspension.
Either party may terminate for material breach after 30 days' notice if the breach is not cured. We may suspend access immediately for security risks, unlawful activity, or unpaid invoices. Upon termination, you may export workspace content for 30 days; we will delete Customer Data afterward, except where retention is required by law or to enforce these Terms.
The Services are provided "as is". Xybern does not make warranties beyond those explicitly stated in a signed order. Outputs should be reviewed by qualified professionals; the platform does not replace legal, compliance, or investment advisors.
Neither party is liable for indirect, consequential, or exemplary damages (including lost profits or data) even if advised of the possibility. Except for your payment obligations and indemnities, each party's total liability under these Terms is limited to the fees you paid to Xybern in the twelve months before the claim.
These Terms are governed by the laws of the State of Delaware, excluding conflict-of-law principles. The parties consent to the exclusive jurisdiction of state and federal courts located in Delaware for disputes that are not subject to other dispute mechanisms in a signed agreement.
We may update these Terms to reflect new features or legal requirements. Material changes will be posted here, and when possible we will email workspace admins or notify you in-product. Continued use after the effective date constitutes acceptance.
Email info@xybern.com or reach out through your enterprise pilot channel to request a signed agreement, security review, or custom terms.
