How It WorksFeaturesPricingFAQRequest Demo
← Back to Home

Terms of Service

Last Updated: June 27, 2026

Welcome to Baseplate Security. These Terms of Service (“Terms”) govern your access to and use of our website, compliance orchestration platforms, API endpoints, and Evidence Vault services (collectively, the “Services”).

By registering an account, purchasing a subscription, or using the Services, you agree to be bound by these Terms and our Privacy Policy. If you are entering into these Terms on behalf of a company, organization, or government subcontractor, you represent that you have the authority to bind that entity.

1. Services and License

Subject to these Terms and your timely subscription payment, we grant you a non-exclusive, non-transferable, revocable license to access and use the Baseplate SaaS platform solely for the purpose of preparing for and maintaining CMMC 2.0 and NIST SP 800-171 compliance assessments.

Auditing Disclaimer: Baseplate Security is a compliance orchestration software tool. We are not a Certified Third-Party Assessment Organization (C3PAO), nor do we issue formal CMMC certificates or SPRS registrar approvals. Using our software helps you prepare evidence and document policies, but does not guarantee passing a formal C3PAO assessment or audit.

2. Account Registration and Security

To use the Services, you must register a corporate workspace. You are responsible for:

  • Providing accurate, current, and complete corporate identity information.
  • Maintaining the security of user passwords, api keys, and MFA tokens.
  • All activities that occur under your workspace, including answers submitted to the logic engine.

3. Pricing, Billing, and Self-Serve Checkout

Our Services are billed on a subscription basis (monthly or annually) as selected during registration.

  • Self-Serve Payment: Credit card transactions are processed securely via Stripe. Your card will be billed automatically at the start of each renewal period.
  • Cancellations: You may cancel your subscription at any time. Cancellation stops future recurring charges, but previous billing periods are non-refundable.
  • Fee Adjustments: We reserve the right to modify pricing tiers with 30 days prior notice.

4. Acceptable Use and CUI Restrictions

You agree not to misuse our compliance systems. Specifically, you agree that:

  • You will not use the software to run reverse engineering, benchmark testing, or scraping activities.
  • You will not upload actual Controlled Unclassified Information (CUI) to the general platform unless explicitly handled inside designated end-to-end encrypted folders.
  • You will represent compliance answers truthfully; fabricating documentation or evidence metadata is a violation of these terms and federal guidelines (including false claims acts).

5. Intellectual Property

Baseplate owns all rights, title, and interest in the Services, logic engine branching structures, SSP prose compilation algorithms, and custom graphics. You own all rights to the raw answers, screenshots, and evidence files you upload into your workspace. Upon export, you hold full title to your compiled System Security Plan (SSP) and POA&M documents.

6. Limitation of Liability

In no event shall Baseplate Security, its officers, or directors be liable for any indirect, incidental, special, or consequential damages (including loss of government contracts, failed audits, or subcontractor penalties) arising out of or in connection with the use of the platform. Our total liability is capped at the amount paid by you to Baseplate during the 12 months preceding the claim.

7. Contact Us

If you have any questions regarding these Terms, please reach out to us at:

legal@baseplatesecurity.com