Terms of Service

Last updated: May 31, 2026

These Terms of Service govern use of AuthCog, an authentication and identity handoff service for websites and applications.

Use of the service

You may use AuthCog to authenticate users and receive verified identity information for your applications. You are responsible for your application, your users, and your compliance with applicable laws.

Accounts and access

• You must provide accurate information when using the service.
• You are responsible for protecting credentials, API keys and OAuth secrets.
• You must not attempt to bypass security controls or access data you are not authorized to access.

Acceptable use

You agree not to use AuthCog to:

• Break the law or violate the rights of others.
• Send spam, phishing, malware or deceptive authentication flows.
• Interfere with the service or attempt to reverse engineer private systems.
• Abuse rate limits, accounts, callbacks or provider integrations.

Identity handoff

AuthCog returns identity information to relying sites through callback flows. Relying sites are responsible for validating callbacks, creating their own sessions and protecting user data after it is received.

Availability and beta status

AuthCog may change, suspend or discontinue features at any time. The service may be provided as a beta and is offered without uptime guarantees unless a separate written agreement says otherwise.

Disclaimers

The service is provided "as is" and "as available" to the maximum extent permitted by law. We disclaim warranties of merchantability, fitness for a particular purpose and non-infringement.

Limitation of liability

To the maximum extent permitted by law, AuthCog will not be liable for indirect, incidental, special, consequential or punitive damages, or for lost profits, revenues, data or goodwill.

Contact

Questions about these terms can be sent to: rejotl@gmail.com