Terms of Use

Last updated: May 2026. Substantially revised following the AffixIO API and SDK overhaul.

These Terms of Use (the “Terms”) govern your access to and use of the AffixIO website at https://www.affix-io.com and any of its subdomains, the AffixIO verification API, our developer and merchant SDKs, our dashboard and account console, our documentation, integrations, sample code, libraries, plug-ins, and any related services (together, the “Services”) provided by AffixIO (“AffixIO”, “we”, “us”, “our”). By accessing or using any part of the Services you agree to be bound by these Terms. If you do not agree, you must not use the Services.

Summary at a glance

  • The Services are provided for lawful, legitimate verification use cases only.
  • Use of the API and SDK requires a valid account, valid credentials, and compliance with our documentation and acceptable-use rules.
  • AffixIO retains all rights in the platform, the SDK, the API, the dashboard, the documentation, and all underlying technology, methods, models, designs, and know-how.
  • You must not attempt to reverse engineer, derive, or disclose the internal verification mechanism, cryptographic constructions, verification policies, or any other trade-secret material.
  • You must not use the Services or any output to train, fine-tune, evaluate, or benchmark a competing product or AI model.
  • Rate limits, plan limits, versioning, and deprecation rules apply; we will give reasonable notice for breaking changes.
  • The Services are provided “as is” to the maximum extent permitted by law, with capped liability and standard exclusions.
  • These Terms are governed by the laws of England and Wales.

Major platform update (May 2026)

These Terms have been substantially revised to reflect a wide-ranging overhaul of the AffixIO API and SDK platform. The overhaul introduces new and expanded verification endpoints, a new generation of the developer and merchant SDKs, an upgraded dashboard, new agentic and machine-to-machine integration paths, new beta and preview features, and updated commercial and operational arrangements. The changes broaden the surface area of the Services and the kinds of integrations, customers, and end uses we support, and these Terms have been expanded accordingly to cover those scenarios in detail.

The internal technical detail of the verification mechanism, including the cryptographic methods, verification policies, verification methods, configuration, hardware configurations, and any algorithmic structure used inside the API or SDK, is intentionally not described in these Terms. Such information is proprietary to AffixIO, is treated as trade secret, and may be covered by issued or pending intellectual property rights, including the patent referenced in the site footer. Nothing in these Terms is a disclosure of, or licence to, that information.

Definitions

  • “API” means the AffixIO verification application programming interface, including all endpoints, request and response schemas, and supporting infrastructure.
  • “SDK” means any AffixIO software development kit, client library, plug-in, mobile or merchant component, sample integration, or similar code we make available.
  • “Dashboard” means the AffixIO account console where account holders manage credentials, configuration, and usage.
  • “Account Holder” means a developer, merchant, operator, integrator, or reseller who has registered for an AffixIO account.
  • “Customer Application” means any product, service, or system in which an Account Holder integrates the API or SDK.
  • “End User” means a natural person who interacts with a Customer Application.
  • “Documentation” means the technical and product documentation we publish for the Services.

Eligibility and accounts

You must be at least 18 years old and capable of entering into a binding agreement to use the Services. If you create an account on behalf of a company or other entity, you represent that you have authority to bind that entity to these Terms, and references to “you” mean both you and that entity. You must provide accurate registration information, keep it current, and promptly notify us of any change. You are responsible for activity that occurs under your account and for the security of your credentials, API keys, and SDK secrets.

The Services

The Services include, without limitation:

  • the public AffixIO website and marketing pages;
  • the AffixIO verification API and any successor endpoints;
  • the AffixIO developer SDK and merchant SDK, including official client libraries, plug-ins, and sample code;
  • the AffixIO dashboard and account console;
  • agentic and machine-to-machine integration channels for autonomous agents and M2M systems;
  • documentation, knowledge base content, change logs, and developer guides;
  • any beta, preview, experimental, or early-access features we make available;
  • related support and operational services.

We may add, change, remove, or deprecate features and endpoints. We will provide reasonable notice for material breaking changes through the Dashboard, the Documentation, or by email to Account Holders. Some features may require a separate written agreement or order form.

API and SDK access

Access to the API and SDK is conditional on (a) a valid account in good standing, (b) issued credentials (such as API keys, client secrets, or signed identifiers), and (c) compliance with these Terms, the Documentation, and any applicable order form. You must keep credentials confidential, restrict them to authorised systems, rotate them on a reasonable schedule, and revoke and replace them immediately if compromised. You are responsible for all traffic and requests made using your credentials until they are revoked.

Environments and sandbox

The Services include separate sandbox or test and production environments. Sandbox environments are intended for development, integration testing, and demonstration only, must not be used to process real personal data of end users, and may be reset, throttled, or reconfigured at any time without notice. Production environments are subject to the operational commitments and limits described in the Documentation and any applicable order form.

Rate limits, quotas, and fair use

We apply rate limits, burst limits, concurrency limits, and plan quotas to protect the Services for all customers. The current limits applicable to your plan are published in the Documentation or in your Dashboard. We may reduce limits temporarily during incidents, abuse mitigation, or maintenance. You agree not to attempt to evade these limits, including by rotating keys, distributing traffic across accounts, or otherwise structuring use to avoid the controls.

API versioning and deprecation

We version the API. Non-breaking changes (such as adding fields, response codes, or endpoints) may be released without prior notice. Breaking changes will be introduced under a new version identifier. We will publish a deprecation notice in the Documentation, the change log, and where appropriate by email to Account Holders, and we will aim to provide a reasonable migration window before retiring a deprecated version. SDKs follow semantic versioning where practical and clearly mark breaking releases. You are responsible for keeping your integration on a supported version.

Maintenance and incidents

From time to time we perform planned maintenance, security patching, or infrastructure upgrades. Where reasonably practical we conduct planned maintenance outside peak hours and announce it in advance. Unplanned incidents may also occur. We will use commercially reasonable efforts to keep the Services available and to communicate material incidents through our status page or directly to Account Holders. Specific availability commitments, if any, will be stated in your order form.

Support

Standard support is available by email at the contact page during normal business hours. Enhanced support, including faster response targets and named contacts, is available on selected plans or via separate written agreement. Support is provided in English. You agree to respond promptly to reasonable requests for information needed to investigate a support ticket.

Acceptable use

You agree not to, and not to permit any End User, contractor, agent, or downstream system to:

  • use the Services in breach of applicable law, regulation, or third-party rights;
  • use the Services to facilitate fraud, money laundering, sanctions evasion, harassment, hate, or other unlawful conduct;
  • attempt to verify or process information about End Users without an appropriate lawful basis or consent under applicable privacy law;
  • send to the API any data fields that you have been instructed in the Documentation not to send, or attempt to use the API or SDK to store, persist, or build profiles of End Users;
  • circumvent or attempt to circumvent rate limits, plan limits, billing, quotas, security controls, abuse-prevention systems, or any technical restriction;
  • probe, scan, stress-test, or otherwise test the vulnerability of the Services without our prior written consent;
  • reverse engineer, decompile, disassemble, decompose, deobfuscate, extract, observe, or otherwise attempt to derive the source code, internal architecture, cryptographic methods, verification policies, verification methods, configuration, models, or any other internal mechanism of the Services, except to the extent this restriction is prohibited by applicable law;
  • use the Services or any output to train, fine-tune, evaluate, or benchmark a competing product or model, or to develop a service that replicates or substitutes for the Services;
  • misrepresent the Services, the nature of an AffixIO verification result, or AffixIO’s endorsement of any product or person;
  • resell, sublicense, or white-label the API or SDK except under a written agreement that expressly permits it;
  • use the Services in any way that we reasonably determine could harm us, our customers, End Users, or third parties.

Customer responsibilities

You are responsible for your Customer Application, your integration, your business decisions, and the lawful processing of personal data of your End Users. You will:

  • maintain your own privacy notices, lawful basis, and where required, consents;
  • secure your own infrastructure, credentials, and customer-facing surfaces;
  • monitor your own use of the Services and act on any abuse signals we share with you;
  • configure the SDK and API in accordance with the Documentation;
  • not send personal data into request fields contrary to the Documentation; and
  • not represent that AffixIO endorses, certifies, or guarantees a specific outcome for an End User.

Agentic and machine-to-machine use

The Services may be invoked by autonomous agents, M2M systems, or integration platforms acting on behalf of an Account Holder. The Account Holder remains responsible for: the authority and scope of those agents; the credentials they use; their compliance with these Terms; and any actions, transactions, or representations made by those agents through the Services. We may impose additional technical or contractual controls on agentic traffic, including signed agent identifiers, scoped credentials, and per-agent rate limits.

Verification results

Verification results returned by the API or SDK are intended as one input into your own decision-making. AffixIO does not guarantee that any result will produce a particular legal, regulatory, or commercial outcome for your business. You are solely responsible for the decisions you take based on a verification result, including any allow/deny, accept/reject, or eligibility outcome that you communicate to your End Users. AffixIO does not make decisions with legal or similarly significant effect on End Users on its own and does not act as a determiner of identity, eligibility, or status for any regulator on your behalf unless we have expressly agreed otherwise in writing.

Webhooks and event delivery

If you configure webhooks, you authorise us to deliver signed event notifications to the endpoint you specify. You are responsible for maintaining the availability and integrity of your endpoint, validating signatures, and tolerating retries and out-of-order delivery in accordance with the Documentation. We are not liable for content delivered to a webhook endpoint that you have configured, including any consequences of misconfiguration or compromise of that endpoint.

Customer-side security obligations

You are responsible for the security of the systems through which the Services are accessed, including but not limited to:

  • protecting API keys, client secrets, and SDK credentials, and storing them outside of source control;
  • using least-privilege scopes where available;
  • rotating credentials on a reasonable schedule and on personnel changes;
  • enabling multi-factor authentication for Dashboard users;
  • monitoring usage for anomalies and reporting suspected compromise promptly;
  • keeping SDK versions reasonably current and applying our security advisories.

Fees and billing

Paid Services are subject to the fees, plan limits, and metered usage described on our pricing page or in an applicable order form. Unless otherwise agreed in writing, fees are payable in advance and non-refundable. You authorise us (and our payment processors) to charge the payment method on file for fees due. We may suspend the Services for overdue amounts after reasonable notice. Taxes (including VAT) are your responsibility except to the extent expressly stated otherwise.

Beta, preview, and experimental features

From time to time we make beta, preview, or experimental features available. These features are provided “as is” and may be changed, withdrawn, or made generally available at any time. Beta features may have different operational characteristics, rate limits, logging, or stability than the general Services and should not be relied upon for production-critical use unless we expressly agree in writing. By participating in a beta you accept that the feature may behave unpredictably and that we may use feedback you provide to improve the product (see “Feedback” below).

Open-source components

Our SDKs and other components may include open-source software licenced under their own terms. Those terms govern your use of the open-source components and, in the event of any conflict with these Terms in respect of those components, the open-source licence terms take precedence. A list of open-source components and their licences is available in the SDK distribution or on request.

Trademark and brand use

AffixIO’s name, logo, and product names are our trademarks. You may make accurate, factual references to AffixIO and your use of the Services in your own materials (for example, “Verified with AffixIO”) provided you do not (a) imply endorsement, sponsorship, certification, or partnership where none exists, (b) modify the logo or use it in a misleading way, (c) use the marks more prominently than your own marks, or (d) use the marks in a way that disparages AffixIO. We may provide a brand usage guide on request. We reserve the right to require correction or removal of non-compliant use.

Publicity

You agree that we may identify you as a customer and use your name and logo in customer lists, case studies, and marketing materials, subject to any reasonable brand guidelines you provide. Either party may issue an announcement about the commercial relationship with the other party’s prior written approval, which will not be unreasonably withheld.

Intellectual property

AffixIO and its licensors own all right, title, and interest in and to the Services, including the API, the SDK, the Dashboard, the Documentation, the website, all related software, models, designs, structures, methods, processes, know-how, branding, and content, and all intellectual property rights in any of the foregoing. No rights are granted to you except as expressly set out in these Terms. AffixIO’s name, logo, and product names are trademarks of AffixIO. You may not use them without our prior written consent.

Subject to your compliance with these Terms, AffixIO grants you a limited, revocable, non-exclusive, non-transferable, non-sublicensable licence to (a) access and use the API and SDK solely to integrate them into your Customer Application as documented, and (b) use the Documentation, sample code, and marketing materials as expressly permitted in writing or by their own licence text. All other rights are reserved.

Trade secrets and reverse engineering

The internal technical detail of the Services, including but not limited to the cryptographic primitives, verification methods, configuration, verification policies, key-management approaches, hardware configurations, and the specific method by which a verification result is produced, is proprietary, is treated by AffixIO as trade secret, and may be covered by issued or pending intellectual property rights. You must not reverse engineer, decompile, disassemble, deobfuscate, observe, probe, or otherwise attempt to derive any such information, except to the extent this restriction is prohibited by applicable law. You must not disclose, publish, or share any information that AffixIO designates as confidential or that a reasonable person would understand to be confidential. These obligations survive termination of these Terms.

Feedback

If you send us feedback, suggestions, feature requests, or ideas about the Services, you grant us a perpetual, irrevocable, worldwide, royalty-free, transferable, sublicensable licence to use them for any purpose without obligation to you. You should not send us anything that is confidential or proprietary unless we have agreed otherwise in writing.

Suspension and termination

We may suspend, restrict, or terminate access to the Services if we reasonably believe (a) you have breached these Terms, (b) your use is causing or is likely to cause harm to us, to other customers, or to third parties, (c) we are required to do so by law, regulator, court, or payment network, or (d) your account is delinquent. Where reasonable and lawful, we will give notice. You may stop using the Services at any time; termination does not relieve you of fees accrued before termination. Provisions that by their nature should survive termination (including intellectual property, confidentiality, disclaimers, limitation of liability, and dispute resolution) will survive.

Privacy and data protection

Our handling of personal data in connection with the Services is described in our Privacy Policy. Where AffixIO acts as a processor on your behalf, our Data Processing Addendum (available on request) applies. By using the Services you acknowledge and where applicable agree to those documents.

Third-party services

The Services may interoperate with, or link to, third-party services and content. We are not responsible for third-party services or their content, and your use of them is subject to their terms. The presence of a third-party link or integration is not an endorsement.

No warranty

To the maximum extent permitted by law, the Services are provided “as is” and “as available”. AffixIO disclaims all warranties, express, implied, statutory, or otherwise, including warranties of merchantability, fitness for a particular purpose, non-infringement, accuracy, and uninterrupted or error-free operation. We do not warrant that any verification result will satisfy a specific regulatory, commercial, or risk-management requirement of your business.

Limitation of liability

To the maximum extent permitted by law, AffixIO and its officers, directors, employees, agents, and licensors will not be liable for any indirect, incidental, special, consequential, exemplary, or punitive damages, or for loss of profits, revenue, goodwill, data, or business opportunities, even if advised of the possibility of such damages. Our aggregate liability arising out of or relating to the Services or these Terms will not exceed the greater of (a) the fees you paid to AffixIO for the Services in the twelve months immediately preceding the event giving rise to the claim, and (b) GBP £100. Nothing in these Terms excludes or limits liability that cannot be excluded or limited under applicable law (for example for death or personal injury caused by negligence, or for fraud).

Indemnity

You will defend, indemnify, and hold harmless AffixIO and its officers, directors, employees, agents, and licensors from any claim, demand, loss, liability, damage, cost, or expense (including reasonable legal fees) arising out of or relating to (a) your use of the Services in breach of these Terms or applicable law, (b) your Customer Application or the conduct of your End Users, (c) your processing of personal data, or (d) your infringement of any third-party right.

Confidentiality

Each party may disclose to the other information that is non-public and that is identified as confidential or that a reasonable person would understand to be confidential given its nature and the circumstances of disclosure (“Confidential Information”). The receiving party will (a) use Confidential Information only to exercise its rights and perform its obligations under these Terms, (b) protect it with at least the same degree of care it uses for its own confidential information (and in no event less than a reasonable standard of care), and (c) not disclose it to third parties except to its personnel, advisers, and subprocessors who have a need to know and who are bound by confidentiality obligations no less protective. These obligations do not apply to information that is or becomes generally known without breach, that is rightfully received from a third party without restriction, that is independently developed without use of Confidential Information, or that is required to be disclosed by law (in which case, to the extent lawful and practical, the receiving party will give the disclosing party prior notice). The internal technical detail of the Services is AffixIO Confidential Information and is also protected as a trade secret under the section above.

Compliance, export, and sanctions

You represent that you and your authorised users are not located in, ordinarily resident in, or organised under the laws of, a jurisdiction subject to comprehensive sanctions, and are not on any restricted-party list under applicable export-control or sanctions laws. You will comply with all applicable export-control, sanctions, anti-bribery, anti-money-laundering, and consumer protection laws in your use of the Services.

Anti-bribery and ethical conduct

Each party will comply with applicable anti-bribery and anti-corruption laws, including the UK Bribery Act 2010 and the US Foreign Corrupt Practices Act, in connection with these Terms. Neither party will offer or accept any improper payment or advantage in connection with the Services.

Resellers and white-label use

Unless we have a separate written reseller, partner, or white-label agreement with you, you may not resell, rebrand, sublicense, or otherwise make the Services available to third parties as if they were your own service. Approved resellers and partners are subject to additional commitments regarding branding, support, end-customer contracting, and reporting.

Subcontractors

We may use subcontractors and subprocessors to perform our obligations. We remain responsible for their acts and omissions in connection with the Services as if they were our own. A list of subprocessors is available on request.

Notices

Notices to AffixIO under these Terms must be sent to Contact with a clear subject line identifying the notice (for example “Notice of termination”, “Dispute notice”, or “Data protection request”). Notices to you will be sent to the contact details on your account or, where appropriate, displayed in the Dashboard. Notices are deemed received on the date sent for email and on the date posted for Dashboard notices, provided no bounce or delivery failure is received.

Electronic agreement

You agree that these Terms, and any subsequent updates accepted by your continued use of the Services, may be entered into electronically and have the same legal effect as a signed paper agreement. Where an order form or DPA is signed, it may be executed in counterparts and by electronic signature.

Relationship of the parties

The parties are independent contractors. Nothing in these Terms creates a partnership, joint venture, employment, agency, or franchise relationship between them. Neither party has authority to bind the other.

No third-party beneficiaries

These Terms are for the benefit of AffixIO and you, and except as expressly stated, do not give any third party (including any End User) any right to enforce them. The Contracts (Rights of Third Parties) Act 1999 is excluded to the maximum extent permitted by law.

Waiver and remedies

No failure or delay by either party in exercising a right under these Terms is a waiver of that right. Remedies under these Terms are cumulative and not exclusive of any remedies provided by law or equity.

Language

These Terms are written in English. If we provide a translation, the English version controls in the event of any inconsistency.

Reservation of rights

Any rights not expressly granted in these Terms are reserved by AffixIO. Use of the Services does not transfer any right, title, or interest in the Services or AffixIO’s intellectual property except as expressly stated.

Modifications to the Services and the Terms

We may modify the Services and these Terms from time to time. Material changes to these Terms will be flagged on this page; the “Last updated” date at the top will change. Where appropriate, we may also send notice to Account Holders by email or via the Dashboard. Continued use of the Services after the effective date of an update constitutes acceptance of the updated Terms. If you do not agree to an update, you must stop using the Services.

Force majeure

Neither party will be liable for delay or failure in performance to the extent caused by events beyond its reasonable control, including acts of God, war, terrorism, civil unrest, governmental action, labour disputes, internet or telecommunications failures, denial-of-service attacks, or supply-chain disruptions.

Assignment

You may not assign or transfer these Terms or any rights or obligations under them without our prior written consent. We may assign these Terms in connection with a merger, acquisition, reorganisation, or sale of assets. Any prohibited assignment is void.

Entire agreement and severability

These Terms, together with the Privacy Policy, the Documentation, and any order form or written agreement signed by both parties, constitute the entire agreement between you and AffixIO regarding the Services and supersede any prior agreements on the same subject. If any provision is held unenforceable, the remaining provisions will continue in full force, and the unenforceable provision will be construed to give it the maximum effect permitted by law.

Governing law and disputes

These Terms are governed by the laws of England and Wales, without regard to conflicts-of-law principles. The parties submit to the exclusive jurisdiction of the courts of England and Wales for any dispute arising out of or in connection with these Terms or the Services, except that AffixIO may seek injunctive or equitable relief in any competent court to protect its intellectual property or confidential information.

Contact

For questions about these Terms, to request our Data Processing Addendum, subprocessor list, or a prior version of these Terms, contact Contact. AffixIO is operated by Becca and Kris Richens.