AttestLayer Legal

Legal & Policies

This is the canonical company-wide policy index for AttestLayer. Product and console pages link back here instead of duplicating company-wide policy wording.

Contact legal/support Console policy index

Updated 27 April 2026 Canonical root-domain policy

Company-wide policies

Terms of ServiceGeneral legal terms for use of AttestLayer services. Privacy PolicyHow AttestLayer handles personal information. Data Processing AddendumData processing terms for customers that require DPA coverage. Acceptable Use PolicyRules for permitted and prohibited use of AttestLayer services. Security OverviewOverview of AttestLayer security posture and operational safeguards. SubprocessorsCurrent subprocessors used to provide AttestLayer services. Data Retention PolicyHow deliverables, hosted links, subscription access, and retained records are handled. SLA / Support PolicySupport boundaries, queues, and service-level handling where applicable. Refund / Billing PolicyCancellation, refund, billing, and subscription handling. Product TermsProduct-specific terms for Pilot, Activation, Monthly Coverage, and related AttestLayer services.

Site-specific addenda

Company-wide policies are maintained on this root legal index. Site-specific pages may explain checkout, partner, or console product rules, but they do not replace the canonical company-wide policies unless a signed agreement states otherwise.

Console PoliciesConsole policy index and Console Product Addendum. Console Product AddendumConsole-specific rules for workspace access, evidence submission, PASS/FAIL credit behavior, support boundaries, and account responsibility.

Service boundary clarification

These policies do not make AttestLayer an audit firm, law firm, compliance certifier, or buyer approval authority. AttestLayer outputs are not audit opinions, legal opinions, compliance certifications, SOC 2 replacements, or substitutes for buyer diligence.