Terms of Service

By accessing and using Visibility Command Centre (“Service”), you agree to be bound by these Terms of Service. If you do not agree to these terms, do not use the Service.

We reserve the right to modify these Terms at any time. Continued use of the Service after such modifications constitutes your acceptance of the updated Terms.

Visibility Command Centre is an AI-powered platform designed to help solo business owners, speakers, and consultants discover opportunities, manage pitches, and track visibility metrics.

You may use the Service only for lawful purposes and in accordance with these Terms. You agree not to use the Service in any way that violates any law or regulation or infringes on the rights of others.

How AI is used

The Service uses Claude, an AI model developed by Anthropic, to generate pitch emails, follow-up copy, promotional content, and other materials based on your input.

Content quality

While we strive to provide helpful and accurate AI-generated content, you are entirely responsible for reviewing, editing, and fact-checking all AI output before using it. AI-generated content may contain errors, inaccuracies, outdated information, or inappropriate tone.

You own the output

You retain ownership of all content you input and generate using the Service. However, you grant us a limited license to use your data to provide and improve the Service (subject to our Privacy Policy).

No AI training

Unless you opt in to AI model improvement, we do not use your data to train or fine-tune AI models beyond what is necessary to provide the Service.

API rate limits

The Service relies on third-party APIs (Google, Stripe, Anthropic, etc.). These services have rate limits and may be subject to outages. We are not responsible for delays or failures caused by third-party service limitations or downtime.

No uptime guarantee

While we aim for high reliability, the Service is provided on an “as-is” basis without any guarantee of uptime, availability, or performance. You acknowledge that internet services may be interrupted for maintenance, security updates, or unforeseen circumstances.

Data accuracy

The Service aggregates data from third-party sources (podcast directories, news feeds, etc.). We do not guarantee the accuracy, completeness, or timeliness of this information. Always verify important details independently.

Disclaimer of warranties

The Service is provided “as is” without warranties of any kind, either expressed or implied, including but not limited to implied warranties of merchantability, fitness for a particular purpose, or non-infringement.

Security infrastructure

We implement comprehensive security measures to protect your account and data:

• All API endpoints require authentication via secure session tokens
• CSRF (Cross-Site Request Forgery) tokens protect all form submissions
• Input validation and sanitization prevent injection attacks and XSS
• Security headers (X-Frame-Options, X-Content-Type-Options, etc.) prevent common vulnerabilities
• Errors are logged server-side with safe, generic messages returned to clients

Rate limiting

To protect our infrastructure and prevent abuse, we enforce rate limits on API requests:

• Authentication: 5 attempts per 15 minutes per IP address
• API calls: 100 requests per hour per user
• Data export: 10 exports per hour per user
• Account deletion: 3 attempts per hour per user
• General requests: 50 requests per minute per user

If you exceed these limits, you will receive a 429 (Too Many Requests) response and must wait before making additional requests. Repeated violations may result in temporary or permanent account suspension.

Account security responsibility

You are responsible for maintaining the confidentiality of your password and account credentials. We strongly recommend using a strong, unique password and enabling any available two-factor authentication. We are not liable for unauthorized access if you fail to protect your credentials.

What we log

We maintain detailed audit logs of sensitive operations for security, compliance, and legal purposes:

• Authentication events (login, logout, failed login attempts)
• Data export and account deletion requests (GDPR compliance)
• Admin actions and permission changes
• Suspicious activity and security events
• IP addresses and user agents for forensic analysis

Immutable audit logs

Audit logs are immutable and retained indefinitely. They cannot be deleted or modified, ensuring integrity for compliance, security investigations, and legal proceedings. This is essential for regulatory compliance (UK GDPR, SOC 2, HIPAA).

Log access and privacy

You can view your own non-sensitive activity logs from your account. Admins can access comprehensive logs for legitimate business and security purposes. Audit logs are protected by row-level security policies to prevent unauthorized access.

Compliance certifications

Our security practices are designed to comply with:

• UK GDPR: Data protection and privacy regulations
• SOC 2: Security, availability, and confidentiality controls
• HIPAA: If handling health-related data (audit trails, access logs)

You are responsible for:

• Maintaining the confidentiality of your password and account
• All activity that occurs under your account
• Providing accurate, complete, and current account information
• Reviewing all AI-generated content before use
• Complying with all applicable laws when using the Service
• Obtaining necessary permissions before pitching, contacting, or mentioning third parties

You agree not to:

• Use the Service to send unsolicited bulk emails or spam
• Impersonate others or misrepresent your identity, credentials, or affiliation
• Use the Service to harass, threaten, or defame any person
• Attempt to gain unauthorized access to the Service or other users' accounts
• Reverse-engineer, disassemble, or attempt to derive the source code or algorithms
• Use the Service in violation of any laws or regulations
• Scrape, crawl, or automatically access the Service without permission
• Upload malware, viruses, or other harmful code

Violation of this Acceptable Use Policy may result in immediate suspension or termination of your account without refund.

Your content

You retain ownership of all content you create, upload, or input into the Service. You grant us a non-exclusive, worldwide, royalty-free license to use, reproduce, and modify your content solely to provide the Service and comply with legal obligations.

Our intellectual property

All code, design, branding, trademarks, and other intellectual property belonging to Visibility Command Centre remain our property. You may not copy, modify, distribute, or use our intellectual property without express written permission.

To the maximum extent permitted by law, we are not liable for any indirect, incidental, special, consequential, or punitive damages, including loss of revenue, profits, data, business opportunities, or goodwill, even if we have been advised of the possibility of such damages.

Our total liability for any claim arising out of or relating to the Service shall not exceed the total amount you have paid us in the 12 months preceding the claim, or £100, whichever is greater.

This limitation applies to all claims, whether based on warranty, contract, tort, strict liability, or any other legal theory.

The Service integrates with third-party services including Google, Stripe, Anthropic, Apple Podcasts, Taddy, Supabase, and others. These services are governed by their own terms and privacy policies. We are not responsible for the availability, quality, or accuracy of third-party services.

Disconnecting your account from third-party services is your responsibility. Removing integrations does not guarantee that those services have deleted your data — review their privacy policies for details.

Your use of the Service is governed by our Privacy Policy. Please review the Privacy Policy to understand our data handling practices. By using the Service, you consent to our collection and processing of data as described in the Privacy Policy.

Billing

Subscriptions are billed monthly or annually depending on your plan. Billing occurs on the same day each month or year unless otherwise agreed. All prices are in GBP unless otherwise stated.

Refunds

Subscription fees are non-refundable except where required by law. You may cancel your subscription at any time, and you will retain access until the end of your current billing period.

Payment methods

Payments are processed by Stripe. You authorize us to charge your payment method for any amounts due. If payment fails, we may suspend your account.

We may terminate or suspend your account immediately without notice if you violate these Terms, engage in illegal activity, or pose a threat to the Service or other users.

You may terminate your account at any time by deleting it through the Service or contacting support. Upon termination, your account data will be deleted in accordance with our Privacy Policy.

We may update these Terms at any time. The “Last updated” date at the top of this page reflects when we last revised the Terms. Continued use of the Service after changes constitute your acceptance of the revised Terms.

Any dispute arising out of or relating to these Terms or the Service shall be governed by the laws of Scotland and shall be resolved in the courts of Scotland. If you are a consumer in the UK or EU, you may also have the right to pursue claims in your home country.

For questions about these Terms of Service, contact:

Andrew George
Visibility Command Centre
andrew@mrandrewgeorge.com