Terms and Conditions

Note: This is a courtesy translation. The German version is the legally binding version.

1. Scope of Application

These General Terms and Conditions (hereinafter "Terms") apply to all contracts between Manuel Hilgert, Birkenstr. 3, 85414 Kirchdorf an der Amper (hereinafter "Provider") and the customer (hereinafter "Customer") regarding the use of the software "ISMS Lite" (hereinafter "Software"). Deviating or supplementary terms and conditions of the Customer shall not apply, even if the Provider does not expressly object to them.

The Software is directed exclusively at entrepreneurs within the meaning of § 14 BGB (German Civil Code).

2. Subject Matter of the Contract

The Provider provides the Customer with the Software ISMS Lite as a self-hosted solution. The Software is operated on the Customer's infrastructure. The Provider does not provide hosting services.

The Software includes all modules and frameworks available at the time of delivery to the extent described on the product page. There are no user limits per instance.

3. License Models

3.1 Individual Licenses

The Provider offers the Software under the following license models:

a) Subscription License The Customer receives a time-limited, non-exclusive, non-transferable right of use for one instance of the Software. The subscription renews automatically for one additional year each time, unless terminated with 30 days' notice prior to the end of the respective term. Updates are included throughout the entire term.

b) Lifetime License (One-Time Purchase) The Customer receives a perpetual, non-exclusive, non-transferable right of use for one instance of the Software. Updates are included for 12 months from the date of purchase. After the 12-month period, update access can optionally be renewed. Use of the Software is permitted indefinitely even without active update access.

3.2 Partner and MSP Packages

Multi-instance licenses (5, 10, 25, or 50 instances) are available for IT security service providers, Managed Service Providers, and certification consultants. The same license models (subscription or lifetime) as described in Section 3.1 apply, based on the number of instances included in the respective package.

Partner and MSP customers may operate the Software under their own branding (white-labeling). Redistribution of individual licenses to third parties outside the partner/MSP model is not permitted.

4. Contract Conclusion and Ordering

The presentation of the Software on the website does not constitute a binding offer. The Customer submits a binding offer by submitting the order form. The contract is concluded when the Provider confirms the order by email or makes the Software available.

5. Prices and Payment

All prices are in euros and exclude statutory value-added tax (VAT). The applicable prices are those listed on the website at the time of ordering.

Payment is made by invoice. The invoice is sent by email and is due within 14 days of the invoice date. For subscription licenses, the invoice is issued at the beginning of each contract term.

6. Provision and Installation

The Software is made available as a download after contract conclusion. Installation is carried out by the Customer on their own infrastructure. The Provider provides installation instructions.

System requirements: Linux (Ubuntu/Debian recommended), Docker, at least 500 MB RAM and 10 GB storage space.

7. Updates and Support

7.1 Updates

During the update period (subscription: entire contract term; lifetime: 12 months from purchase), the Customer receives access to all published updates and new versions of the Software. Installation of updates is the Customer's responsibility.

7.2 Support

The Provider provides technical support by email during regular business hours. For partner and MSP packages, support is directed at the partner, not at their end customers.

8. Rights of Use and Restrictions

8.1 Right of Use

The Customer receives a non-exclusive right of use within the scope of the chosen license model. One instance of the Software may be operated per individual license. For partner and MSP packages, the number of instances included in the package may be operated.

8.2 Individual Licenses

Individual licenses entitle the Customer to operate the Software for their own business operations on their own or leased infrastructure. Transfer of the license to third parties is not permitted.

8.3 Partner and MSP Licenses

Partner and MSP customers may operate the Software within the scope of their purchased package for their end customers and provide it as part of their service offering. This includes:

  • operating customer instances on their own infrastructure or infrastructure leased on behalf of the end customer,
  • providing the Software as a managed service to end customers,
  • setting their own pricing for end customers,
  • customizing branding (white-labeling).

Partner and MSP customers may not resell the Software as a standalone product or grant sublicenses that go beyond the managed service model. The number of simultaneously operated instances is limited to the purchased package.

8.4 General Restrictions

The Customer is not permitted to:

  • reverse engineer, decompile, or disassemble the Software, unless permitted by mandatory law,
  • circumvent or remove technical protection mechanisms of the Software,
  • resell the Software or parts thereof as a standalone competing product.

8.5 Modifications

The Customer may customize the Software for their own business purposes, import their own frameworks, and edit the included practice texts. Such modifications remain with the Customer.

9. Data Processing and Telemetry

9.1 Data Sovereignty

The Software is operated entirely on the Customer's infrastructure (self-hosted). The Provider has no access to the data processed by the Customer.

9.2 Installation Identifier

The Software transmits only an anonymous installation identifier to the Provider. This identifier contains no personal data, no usage data, and no Customer content. For subscription licenses, this identifier is used for automatic license renewal.

9.3 Air-Gap Operation

The Software can be operated at any time completely without an internet connection (air-gap operation). The license does not require online activation. In air-gap operation, automatic license renewal for subscription licenses does not apply; renewal is then performed manually.

10. Warranty

The Provider warrants that the Software substantially corresponds to the functions described in the product description on the website. The warranty period is 12 months from provision.

Defects must be reported by the Customer in writing without undue delay after discovery. The Provider will remedy reported defects within a reasonable period, either by repair or by providing a corrected version.

A defect does not exist in the case of errors caused by improper use, modification of the Software by the Customer (insofar as the modification caused the error), an unsuitable operating environment, or force majeure.

11. Liability

The Provider's liability is limited to intent and gross negligence. In the event of a breach of material contractual obligations (cardinal obligations), the Provider is also liable for slight negligence, but limited to the foreseeable damage typical of the contract.

Liability is limited in amount to the net license fees paid by the Customer in the last 12 months. For lifetime licenses, liability is limited to the purchase price paid.

The above limitations of liability do not apply to damages resulting from injury to life, body, or health, or to claims under the German Product Liability Act (Produkthaftungsgesetz).

12. Confidentiality

Both parties undertake not to disclose confidential information of the other party that becomes known in the course of the contractual relationship to third parties and to use it only for the performance of the contract.

13. Term and Termination

13.1 Subscription License

The minimum term is one year. The subscription renews automatically for one additional year each time, unless terminated with 30 days' notice prior to the end of the respective term. Termination may be sent by email.

13.2 Lifetime License

The right of use is perpetual. Termination is not required. The optional update access can be renewed or discontinued annually.

13.3 Effect of Termination

Upon termination of the contract, the Customer's right of use expires. For subscription licenses, the Customer must remove the Software from their systems after the end of the contract. Data created by the Customer during the contract term (content, exports, configurations) remains with the Customer.

For lifetime licenses, the right of use continues indefinitely.

14. Right of Withdrawal

As the Software is directed exclusively at entrepreneurs, there is no statutory right of withdrawal.

15. Applicable Law and Jurisdiction

The law of the Federal Republic of Germany applies, excluding the UN Convention on Contracts for the International Sale of Goods (CISG). The place of jurisdiction for all disputes arising from or in connection with this contract is the registered office of the Provider, provided the Customer is a merchant, a legal entity under public law, or a special fund under public law.

16. Final Provisions

Amendments and additions to these Terms require written form. This also applies to the waiver of this written form requirement.

Should individual provisions of these Terms be or become invalid or unenforceable, the validity of the remaining provisions shall remain unaffected. The invalid or unenforceable provision shall be replaced by a valid provision that most closely approximates the economic purpose of the invalid provision.

Last updated: March 2026