Terms of Service

Effective Date: 13 February 2026
Last Updated: 13 February 2026
Version: 1.0

These Terms of Service (“Terms”) govern your access to and use of the ISO Mate platform, including the web application, API, mobile application, and marketing website (collectively, the “Services”) operated by ISO Mate (“we”, “us”, “our”).

By creating an account, accessing, or using the Services, you agree to be bound by these Terms. If you are using the Services on behalf of an organisation, you represent that you have the authority to bind that organisation to these Terms.

1. Definitions

TermDefinition
AccountYour individual user account used to access the Services.
OrganisationA tenant (also referred to as an “account” within the platform) created by a user to manage a team, projects, and data. Users may belong to multiple Organisations.
Organisation OwnerThe user who created the Organisation and holds ultimate administrative authority over it.
ContentAny data, text, files, documents, diagrams, or other materials you create, upload, or store through the Services.
SubscriptionA paid plan that grants an Organisation access to the Services.
UserAny individual who creates an Account or is invited to an Organisation.

2. Eligibility

  • You must be at least 16 years of age to use the Services.
  • You must provide accurate and complete registration information.
  • If you are using the Services on behalf of an organisation, you must have the legal authority to accept these Terms on its behalf.
  • We reserve the right to refuse service, terminate accounts, or cancel subscriptions at our discretion if these eligibility requirements are not met.

3. Account Registration and Security

3.1 Account Creation

To use the Services, you must create an Account by providing your name, email address, and a password, or by authenticating through a supported third-party provider (e.g., Google OAuth). You are responsible for maintaining the accuracy of your account information.

3.2 Account Security

You are responsible for:

  • Maintaining the confidentiality of your login credentials
  • All activity that occurs under your Account
  • Notifying us immediately of any unauthorised use of your Account

We provide security features including two-factor authentication (2FA) and automatic account lockout after repeated failed login attempts. We strongly recommend enabling 2FA on your Account.

3.3 Account Disabling

We may disable your Account if we reasonably believe that your Account has been compromised, is being used in violation of these Terms, or poses a security risk to the Services or other users.

4. Organisations and Multi-Tenancy

4.1 Creating and Joining Organisations

Users may create Organisations or be invited to join existing Organisations. Each Organisation operates as an isolated tenant with its own data, roles, and permissions. You may belong to multiple Organisations simultaneously.

4.2 Roles and Permissions

Organisation Owners and administrators manage user access through role-based access control (RBAC). Your access to features and data within an Organisation is determined by the roles and permissions assigned to you by that Organisation’s administrators.

4.3 Organisation Owner Responsibilities

Organisation Owners are responsible for:

  • Managing user access and permissions within their Organisation
  • Ensuring their Organisation’s use of the Services complies with these Terms
  • Managing the Organisation’s subscription and billing
  • The Content created and stored within their Organisation

5. Subscriptions and Billing

5.1 Free Trial

New Organisations may be eligible for a free trial period. During the trial, you will have access to the Services as described at the time of sign-up. When the trial expires, you must subscribe to a paid plan to continue using the Services.

5.2 Paid Subscriptions

  • Subscriptions are billed on a recurring basis (monthly or annually) as selected at the time of purchase.
  • Subscription fees are based on the number of users in the Organisation and the selected plan.
  • All fees are quoted in the currency displayed at checkout and are exclusive of applicable taxes unless stated otherwise.

5.3 Payment Processing

Payments are processed by Stripe. By subscribing, you agree to Stripe’s terms of service. We do not store your payment card details on our servers.

5.4 Price Changes

We may change subscription pricing from time to time. We will provide at least 60 days’ advance notice of any price increase. Continued use of the Services after a price change takes effect constitutes acceptance of the new pricing. You may cancel your subscription before the new pricing takes effect.

5.5 Refunds

Subscription fees are generally non-refundable. Refunds may be issued at our sole discretion in exceptional circumstances. If you cancel a subscription, you will retain access to the Services until the end of the current billing period.

5.6 Failed Payments

If a payment fails, we will attempt to retry the charge and notify the Organisation’s billing contacts. If payment remains unsuccessful after reasonable retry attempts, we may suspend or downgrade the Organisation’s access to the Services.

6. Acceptable Use

6.1 Permitted Use

The Services are provided for lawful business purposes, including project management, quality assurance, task tracking, compliance management, and related professional activities.

6.2 Prohibited Conduct

You agree not to:

  • Use the Services for any unlawful purpose or in violation of any applicable laws or regulations
  • Upload, store, or transmit any Content that is illegal, harmful, threatening, abusive, defamatory, or otherwise objectionable
  • Attempt to gain unauthorised access to the Services, other user accounts, or our infrastructure
  • Interfere with or disrupt the integrity or performance of the Services
  • Reverse engineer, decompile, disassemble, or otherwise attempt to derive the source code of the Services
  • Use the Services to send unsolicited communications (spam)
  • Resell, sublicense, or redistribute the Services without our prior written consent
  • Use automated tools (bots, scrapers, crawlers) to access the Services except through our documented API with valid authentication
  • Circumvent any rate limits, access controls, or security measures
  • Upload or transmit viruses, malware, or other harmful code
  • Impersonate another person or entity

6.3 API Usage

Access to the ISO Mate API is subject to rate limits and authentication requirements. You must use valid API tokens and comply with any documented usage limits. We reserve the right to throttle or suspend API access that negatively impacts the Services.

6.4 Enforcement

We reserve the right to investigate and take appropriate action against any violation of this section, including removing Content, suspending or terminating accounts, and reporting violations to law enforcement authorities.

7. Content and Intellectual Property

7.1 Your Content

You retain all ownership rights to the Content you create, upload, or store through the Services. By using the Services, you grant us a limited, non-exclusive licence to host, store, process, and display your Content solely for the purpose of providing and improving the Services.

7.2 Content Responsibility

You are solely responsible for your Content and the consequences of storing or sharing it through the Services. You represent and warrant that:

  • You own or have the necessary rights and permissions to use and share your Content
  • Your Content does not infringe the intellectual property rights of any third party
  • Your Content complies with all applicable laws and regulations

7.3 Our Intellectual Property

The Services, including all software, design, text, graphics, logos, and other materials (excluding your Content), are owned by ISO Mate and are protected by copyright, trademark, and other intellectual property laws. You may not copy, modify, distribute, or create derivative works based on our intellectual property without our prior written consent.

7.4 Feedback

If you provide us with feedback, suggestions, or ideas about the Services, you grant us an unrestricted, irrevocable, perpetual, royalty-free licence to use, modify, and incorporate that feedback into the Services without any obligation to you.

8. Data Protection and Privacy

Our collection and use of personal information is governed by our Privacy Policy, which is incorporated into these Terms by reference. By using the Services, you acknowledge that you have read and understood our Privacy Policy.

8.1 Data Isolation

Each Organisation’s data is logically isolated from other Organisations. Users can only access data within Organisations they belong to, subject to their assigned roles and permissions.

8.2 Data Export

You may export your Content from the Services at any time using the export features available within the platform (CSV and PDF formats). We will not unreasonably withhold access to your data.

8.3 Data Deletion

Upon termination of your Account or Organisation, we will delete your Content in accordance with our data retention practices described in our Privacy Policy. Certain data (such as audit logs) may be retained as required by law.

9. Third-Party Integrations

The Services may integrate with third-party services, including but not limited to:

  • Google (OAuth authentication, calendar integration)
  • Stripe (payment processing)
  • Xero (accounting integration)
  • Email providers (mailbox integration)

Your use of third-party integrations is subject to the respective third party’s terms of service and privacy policy. We are not responsible for the availability, accuracy, or practices of third-party services. You enable integrations at your own discretion and risk.

10. Service Availability and Support

10.1 Availability

We strive to maintain high availability of the Services but do not guarantee uninterrupted or error-free operation. The Services may be temporarily unavailable due to scheduled maintenance, updates, or circumstances beyond our reasonable control.

10.2 Modifications to the Services

We may modify, update, or discontinue features of the Services at any time. For material changes that significantly reduce functionality, we will provide reasonable advance notice where practicable.

10.3 Support

Support is provided in accordance with the support terms associated with your subscription plan. We will make reasonable efforts to respond to support requests in a timely manner.

11. Suspension and Termination

11.1 Termination by You

  • You may cancel your subscription at any time through the platform’s billing settings. Access continues until the end of the current billing period.
  • You may delete your Account at any time. Account deletion is subject to the data retention provisions in our Privacy Policy.
  • Organisation Owners may delete their Organisation, which will remove all associated data after a reasonable processing period.

11.2 Suspension or Termination by Us

We may suspend or terminate your access to the Services, with or without notice, if:

  • You breach these Terms
  • Your subscription payment fails and remains unresolved
  • Your use of the Services poses a security risk or may adversely affect other users
  • We are required to do so by law
  • We discontinue the Services (with reasonable advance notice)

11.3 Effect of Termination

Upon termination:

  • Your right to access the Services ceases immediately (or at the end of the billing period for voluntary cancellations)
  • We will retain your data for a reasonable period to allow you to export it, after which it will be deleted in accordance with our Privacy Policy
  • Provisions that by their nature should survive termination will continue to apply, including sections on intellectual property, limitation of liability, indemnification, and dispute resolution

12. Disclaimer of Warranties

THE SERVICES ARE PROVIDED “AS IS” AND “AS AVAILABLE” WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS, IMPLIED, OR STATUTORY. TO THE MAXIMUM EXTENT PERMITTED BY LAW, WE DISCLAIM ALL WARRANTIES, INCLUDING BUT NOT LIMITED TO:

  • IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT
  • WARRANTIES THAT THE SERVICES WILL BE UNINTERRUPTED, ERROR-FREE, SECURE, OR FREE OF VIRUSES OR OTHER HARMFUL COMPONENTS
  • WARRANTIES REGARDING THE ACCURACY, RELIABILITY, OR COMPLETENESS OF ANY CONTENT OR INFORMATION PROVIDED THROUGH THE SERVICES

You acknowledge that you use the Services at your own risk.

13. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW:

  • IN NO EVENT SHALL ISO MATE, ITS DIRECTORS, EMPLOYEES, PARTNERS, OR AFFILIATES BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING BUT NOT LIMITED TO LOSS OF PROFITS, DATA, USE, OR GOODWILL, ARISING OUT OF OR IN CONNECTION WITH YOUR USE OF THE SERVICES.
  • OUR TOTAL AGGREGATE LIABILITY FOR ALL CLAIMS ARISING OUT OF OR RELATING TO THESE TERMS OR THE SERVICES SHALL NOT EXCEED THE AMOUNT YOU PAID TO US IN THE TWELVE (12) MONTHS PRECEDING THE EVENT GIVING RISE TO THE CLAIM, OR ONE HUNDRED NEW ZEALAND DOLLARS (NZD $100), WHICHEVER IS GREATER.

Some jurisdictions do not allow the exclusion or limitation of certain warranties or liabilities. In such jurisdictions, our liability is limited to the fullest extent permitted by law.

New Zealand Consumer Guarantees Act: Nothing in these Terms is intended to limit or exclude any rights you may have under the Consumer Guarantees Act 1993 (NZ) that cannot be lawfully excluded.

14. Indemnification

You agree to indemnify, defend, and hold harmless ISO Mate and its officers, directors, employees, and agents from and against any claims, liabilities, damages, losses, and expenses (including reasonable legal fees) arising out of or in connection with:

  • Your use of the Services
  • Your Content
  • Your violation of these Terms
  • Your violation of any applicable law or regulation
  • Your infringement of any third-party rights

15. Compliance Features Disclaimer

The Services include compliance management features (frameworks, controls, policies, procedures, evidence tracking, and attestations). These features are provided as organisational tools to assist you in managing your compliance activities.

Important: Use of ISO Mate’s compliance features does not constitute legal, regulatory, or professional compliance advice. The Services do not guarantee compliance with any specific standard, regulation, or framework (including but not limited to ISO 27001, SOC 2, GDPR, or HIPAA). You are solely responsible for ensuring your organisation meets its regulatory and compliance obligations. We recommend consulting qualified legal and compliance professionals.

16. Governing Law and Dispute Resolution

16.1 Governing Law

These Terms are governed by and construed in accordance with the laws of New Zealand, without regard to its conflict of law provisions.

16.2 Dispute Resolution

In the event of a dispute arising out of or relating to these Terms:

  1. Informal Resolution: The parties will first attempt to resolve the dispute informally by contacting each other in writing. We will make reasonable efforts to resolve any dispute within 30 days.
  2. Mediation: If informal resolution fails, the parties agree to attempt mediation before pursuing formal legal proceedings.
  3. Jurisdiction: Any legal proceedings shall be brought exclusively in the courts of New Zealand, and you consent to the jurisdiction of those courts.

17. General Provisions

17.1 Entire Agreement

These Terms, together with our Privacy Policy and any subscription-specific terms, constitute the entire agreement between you and ISO Mate regarding the Services.

17.2 Severability

If any provision of these Terms is found to be unenforceable or invalid, that provision will be limited or eliminated to the minimum extent necessary, and the remaining provisions will remain in full force and effect.

17.3 Waiver

Our failure to enforce any right or provision of these Terms shall not constitute a waiver of that right or provision.

17.4 Assignment

You may not assign or transfer your rights or obligations under these Terms without our prior written consent. We may assign our rights and obligations without restriction.

17.5 Force Majeure

We shall not be liable for any failure or delay in performing our obligations where such failure or delay results from circumstances beyond our reasonable control, including but not limited to natural disasters, acts of government, internet or telecommunications failures, power outages, or cyberattacks.

17.6 Notices

We may send notices to you via email to the address associated with your Account, or through in-app notifications. Notices to us should be sent to the contact details provided below.

17.7 Changes to These Terms

We may update these Terms from time to time. When we make material changes, we will:

  • Update the “Last Updated” date and version number
  • Notify registered users via email or in-app notification
  • Provide at least 30 days’ notice before material changes take effect

Continued use of the Services after changes take effect constitutes acceptance of the updated Terms. If you do not agree with the changes, you must stop using the Services and cancel your subscription.

18. Contact Us

If you have questions about these Terms, please contact us: