Terms of Use

Last updated: 14 June 2026

1. Service operator

The REPOLITY.IO service is operated by: RSYS Remigiusz Petrykowski, address: ul. Gabriela Narutowicza 34/26, 33-100 Tarnow, Poland, business identifiers: NIP: 9492082622, REGON: 544644667, email: info@rsys.pl, phone: +48 720 941 778.

2. Service description

REPOLITY.IO provides a public repository risk catalog, public security summaries, paid access to full repository reports, CVE intelligence, report JSON access, and PDF report downloads.

3. Accounts

Users must provide accurate account information, keep credentials confidential, and notify us about suspected unauthorized access. We may suspend accounts used for abuse, fraud, unauthorized scraping, interference with the platform, or attempts to bypass paid access controls.

During account creation, optional analytics or marketing consent may be requested separately. These consents are not required to create an account and can be withdrawn at any time through cookie settings.

4. Free access and paid subscriptions

A free account may unlock one full report, unless the platform states otherwise. Paid monthly or yearly subscriptions grant access to full reports for the active subscription period. Payment processing is handled by Stripe. Subscription availability, prices, taxes, renewal periods, and cancellation options are shown before checkout.

5. Consumers, EU users and Polish law

The operator is established in Poland and the European Union. If you use the service as a consumer, nothing in these Terms limits mandatory rights granted by Polish or European Union consumer protection law. Before purchase, the checkout flow should present the price, billing period, main service features, subscription renewal rules, and cancellation information.

Where the law gives you a right to withdraw from a distance contract, you may exercise it within the statutory period. This right may be limited or lost where digital content or a digital service is delivered before the withdrawal period ends with your explicit consent and acknowledgement that this may affect the withdrawal right, or where another statutory exception applies.

You may submit complaints about account access, paid access, billing state, report delivery, or platform operation through the Support Center or by email. We will review complaints in good faith and respond through the contact details you provide. Consumers may also seek help from competent consumer protection bodies, including Polish consumer ombudsmen or UOKiK information resources.

6. Report content

Reports are generated from automated scanning, vulnerability feeds, repository metadata, and internal scoring logic. They support security review but do not replace professional security audit, legal advice, or operational risk assessment. Vulnerability data may change after report generation.

7. Acceptable use

Users must not attack, overload, reverse engineer, resell unauthorized access, bulk extract protected data, upload malicious content, or use the service to harm third parties. Public summaries may be viewed normally; protected reports require authorized access.

Automated bulk access to full reports is prohibited unless explicitly agreed in writing. A user may request or download no more than one full report every 10 seconds and no more than 360 full reports in any 24-hour period. If access patterns indicate automation, scraping, credential sharing, or attempts to bypass limits, we may throttle access, block report downloads, suspend the account, or require additional verification.

8. Intellectual property

The platform design, software, scoring logic, generated layouts, and protected report presentation are owned by the service operator or licensors. Users receive a limited, non-exclusive right to use the service according to these Terms.

9. Availability and changes

We may update, suspend, or modify features for maintenance, security, legal, operational, or product reasons. We aim to preserve paid access fairly, but do not guarantee uninterrupted availability.

10. Liability

To the maximum extent permitted by applicable law, the service is provided without warranties that every vulnerability, dependency, repository condition, or risk will be detected. The limits in these Terms do not exclude liability for intentional misconduct, consumer rights that cannot be waived, statutory warranty or conformity rights where applicable, or any liability that cannot be excluded under Polish or EU law.

11. Governing law and contact

These Terms are governed by the laws of Poland, unless mandatory consumer protection law or private international law provides otherwise. Users in the European Union may rely on mandatory protections available in their place of habitual residence where applicable. Contact: info@rsys.pl.