Terms of Service

Last updated 7 June 2026

1. About Aegis Eight

Aegis Eight (“Aegis Eight”, “we”, “our”, or “us”) provides automated cybersecurity assessments and compliance monitoring services for Microsoft 365 environments through https://aegiseight.com (the “Service”).

These Terms of Service (“Terms”) govern your access to and use of the Service. By creating an account, connecting a Microsoft 365 tenant, or using the Service, you agree to be bound by these Terms.

2. Description of the Service

Aegis Eight performs automated assessments of Microsoft 365 environments against the Australian Signals Directorate (ASD) Essential Eight framework.

To provide assessments, the Service requires Microsoft 365 administrator consent through Microsoft’s secure admin-consent process. Aegis Eight operates using read-only permissions and does not modify customer environments.

The Service does not access the contents of emails, files, chats, or user data. Information regarding the permissions used by the Service is available in our Security & Privacy documentation and forms part of these Terms.

3. Assessment Results and Disclaimer

Assessment results are provided for informational and advisory purposes only.

Reports are generated based on configuration information available at the time of assessment and represent a point-in-time view of your environment. While we aim to provide accurate and reliable information, Aegis Eight does not warrant that:

• your environment is secure;
• your organisation is compliant with any regulatory framework;
• vulnerabilities, risks, or security gaps will be identified; or
• cyber incidents will be prevented.

You remain solely responsible for your security, compliance, governance, and risk management decisions.

Aegis Eight is not a substitute for professional cybersecurity advice, an independent audit, or an accredited IRAP assessment.

4. Customer Responsibilities

You agree that:

• you are authorised to connect and grant access to any Microsoft 365 tenant submitted to the Service;
• all information provided to us is accurate and current;
• you will maintain the confidentiality of your account credentials;
• you will not misuse, interfere with, disrupt, reverse engineer, or attempt to gain unauthorised access to the Service; and
• you are responsible for all activities conducted through your account.

5. Free Assessments and Paid Subscriptions

Aegis Eight may offer a free assessment for eligible Microsoft 365 tenants.

Paid subscriptions provide ongoing monitoring, reassessments, reporting, and related features as described on our website.

Subscription fees:

• are charged in Australian Dollars (AUD);
• are billed in advance;
• automatically renew unless cancelled; and
• are processed through our authorised payment providers.

You may cancel your subscription at any time. Cancellation prevents future renewals and takes effect at the end of the current billing period.

Except as required by the Australian Consumer Law, fees already paid are non-refundable.

6. Revoking Access

You may revoke Aegis Eight’s access to your Microsoft 365 tenant at any time through Microsoft Entra Admin Centre or other Microsoft administration tools.

Once access is revoked, Aegis Eight will no longer be able to perform assessments or collect updated configuration information from your environment.

7. Data Ownership and Intellectual Property

Aegis Eight retains ownership of all intellectual property rights in the Service, including software, methodologies, reports, branding, documentation, and website content.

You retain ownership of your organisational data and Microsoft 365 configuration information.

Subject to these Terms, Aegis Eight grants you a non-exclusive licence to access and use assessment reports generated for your organisation.

Aegis Eight does not use customer data to train artificial intelligence or machine learning models.

8. Australian Consumer Law

Nothing in these Terms excludes, restricts, or modifies any consumer guarantee, right, or remedy available under the Australian Consumer Law where such exclusion is prohibited by law.

Where permitted by law, our liability for any breach of a non-excludable guarantee is limited to:

• supplying the Service again; or
• paying the cost of having the Service supplied again.

9. Limitation of Liability

To the maximum extent permitted by law:

• Aegis Eight excludes liability for indirect, incidental, special, consequential, or punitive loss, including loss of profits, revenue, business opportunities, goodwill, or data; and
• our total aggregate liability arising out of or in connection with the Service is limited to the total fees paid by you to Aegis Eight during the twelve (12) months immediately preceding the event giving rise to the claim.

10. Suspension and Termination

We may suspend or terminate access to the Service if:

• you breach these Terms;
• your use of the Service creates security, legal, or operational risks; or
• we are required to do so by law.

Upon termination, your right to access the Service will cease, subject to any rights required by law.

11. Changes to These Terms

We may update these Terms from time to time.

Where a change materially affects your rights or obligations, we will provide reasonable notice through the Service, by email, or by other appropriate means.

Your continued use of the Service after updated Terms become effective constitutes acceptance of those Terms.

12. Governing Law

These Terms are governed by the laws of Queensland, Australia.

You agree to submit to the non-exclusive jurisdiction of the courts of Queensland and any courts entitled to hear appeals from those courts.

13. Contact Us

Questions regarding these Terms may be directed to:

Email: [email protected]

Please also review our Privacy Policy and Security & Privacy documentation for additional information regarding the handling of your data.