Terms & Conditions

Last updated: May 2026

1. Acceptance of Terms

These Terms & Conditions (the "Terms") form a binding agreement between you and viaGraph B.V., a private limited company registered in the Netherlands ("viaGraph", "we", or "us"). "Whisper Security" is the trading name under which viaGraph offers the services described in these Terms.

By accessing our website at whisper.security, by signing in to our customer console at console.whisper.security, or by sending requests to our Model Context Protocol server at mcp.whisper.security (the "MCP Server"), you accept and agree to be bound by these Terms.

2. Use License

Subject to these Terms, we grant you a non-exclusive, non-transferable, revocable license to access and use our website, console, and the MCP Server in accordance with your plan tier. This license terminates automatically if you violate these Terms and may be terminated by us under Section 7.5.

3. Disclaimer

The materials on Whisper Security's platform and the data returned by the MCP Server are provided on an "as is" and "as available" basis. viaGraph makes no warranties, express or implied, and disclaims all other warranties including, without limitation, implied warranties of merchantability, fitness for a particular purpose, accuracy, completeness, and non-infringement.

4. Limitation of Liability

To the maximum extent permitted by law, viaGraph and its suppliers shall not be liable for any indirect, incidental, special, consequential, or punitive damages, or for any loss of profits, revenue, data, or business opportunities, arising out of or in connection with your use of, or inability to use, our services, even if viaGraph has been advised of the possibility of such damages.

5. Accuracy of Materials

The data returned by the MCP Server is aggregated from publicly available sources and third-party feeds and may contain technical, typographical, or factual errors. viaGraph does not warrant that any of the data is accurate, complete, or current, and disclaims liability for decisions made in reliance on it.

6. Links

Our platform may contain links to third-party sites. viaGraph has not reviewed all such sites and is not responsible for their contents. The inclusion of any link does not imply endorsement.

7. MCP Server Use

The provisions in this Section 7 apply specifically to your use of the MCP Server, in addition to the general Terms above. If a provision in this Section 7 conflicts with another provision of these Terms, the provision in this Section 7 controls with respect to your use of the MCP Server.

7.1 Acceptable Use

When you access the MCP Server, you agree that you will not:

  • attempt to bypass, evade, or interfere with rate limits, query-validation rules, or authentication;
  • submit queries deliberately designed to exhaust server resources or to induce a denial of service;
  • resell, redistribute, or sublicense access to the MCP Server to third parties without our prior written agreement;
  • use data returned by the MCP Server to identify, target, surveil, harass, or harm individuals or entities, except where doing so is part of a lawful security investigation or threat-intelligence activity that constitutes a legitimate purpose of the service;
  • reverse-engineer the service in order to derive the underlying graph dataset for republication;
  • republish or otherwise distribute threat-intelligence indicators sourced from the graph database where the underlying feed provider's license restricts such republication, including but not limited to Spamhaus and AlienVault OTX feeds; or
  • probe, scan, or test the service for security vulnerabilities other than through our published vulnerability-disclosure channel described in Section 7.6.

7.2 Anonymous Access

A limited anonymous tier is available without authentication, at reduced rate limits and with reduced query complexity. Anonymous access is provided for evaluation and lightweight public use; it is not intended to support production workloads. We may suspend, throttle, or revoke anonymous access at our discretion and without notice.

7.3 Rate Limits and Quotas

Each account is subject to a published rate limit and query-cost budget that varies by plan tier. Current limits are documented on our pricing page at https://www.whisper.security/pricing. You can inspect your current quota at runtime by reading the whisper://quota resource exposed by the MCP Server. Repeated abuse of rate limits, or attempts to circumvent them, are grounds for immediate suspension under Section 7.5.

7.4 Service Availability

We target 99.5% monthly availability for the MCP Server but do not contractually guarantee any specific service level for the anonymous or Free tiers. Customers on a paid plan may be entitled to a separate Service Level Agreement; in case of conflict between these Terms and an executed SLA, the SLA controls.

7.5 Suspension and Termination

We may suspend or terminate your access to the MCP Server, with or without notice, if:

  • you breach these Terms or our Acceptable Use rules in Section 7.1;
  • your account has overdue invoices that remain unpaid after the cure period in your billing terms;
  • your usage poses a risk to the integrity, availability, or security of the service for other customers; or
  • we receive a credible legal demand requiring suspension.

7.6 Vulnerability Disclosure

If you believe you have found a security vulnerability in the MCP Server or any other Whisper Security service, please report it to [security@whisper.security](mailto:security@whisper.security). Our disclosure metadata is also published at https://mcp.whisper.security/.well-known/security.txt. We will acknowledge reports within five (5) business days. Good-faith security research conducted under this disclosure channel is not subject to suspension under these Terms, provided the research stays within the bounds of Section 7.1.

7.7 Liability for the MCP Server

The limitations of liability in Section 4 apply to your use of the MCP Server. To the maximum extent permitted by law, our aggregate liability arising out of or related to your use of the MCP Server shall not exceed the fees you have paid to viaGraph in the twelve (12) months preceding the event giving rise to the claim, or, if you are on the anonymous or Free tier and have paid no fees, one hundred euros (€100).

8. Modifications

viaGraph may revise these Terms from time to time. Material changes will be communicated by updating the "Last updated" date and, where appropriate, by direct notice. By continuing to use the platform after revisions take effect, you agree to be bound by the then-current version of these Terms.

9. Governing Law

These Terms are governed by and construed in accordance with the laws of the Netherlands. You irrevocably submit to the exclusive jurisdiction of the courts of Amsterdam, the Netherlands, in respect of any dispute arising out of or in connection with these Terms.

Contact Information

Company Name: viaGraph B.V.

Address: Keizersgracht 520 H, 1017 EK, Amsterdam, Netherlands

VAT Number: NL867322433B01

KVK Number: 95822429

DUNS Number: 965751230

General questions: legal@whisper.security

Privacy questions: privacy@whisper.security

Security disclosures: security@whisper.security