DeliverTrust
$50/mo
← Back to home

Terms of Service

Last updated: 2026-06-09

DeliverTrust (the “Service”) is owned and operated by Security Minded Solutions, LLC (DBA SecurityMinded), a Georgia limited liability company. The Service consists of (a) the public marketing website at www.delivertrust.io and (b) the DeliverTrust application at app.delivertrust.io (launching July 1, 2026), together with the Trust Pages we host on behalf of customers at delivertrust.io/t/<slug> or at a customer’s own custom domain.

By using the website, joining the waitlist, creating an account, publishing a Trust Page, or otherwise interacting with the Service, you (the “Customer” or “User”) agree to these Terms of Service (the “Agreement”). SecurityMinded may also be referred to as “Vendor.”

PLEASE READ THIS AGREEMENT CAREFULLY. IF YOU DO NOT AGREE TO THESE TERMS, DO NOT USE THE SERVICE OR JOIN THE WAITLIST.

1. The Service

DeliverTrust provides software-as-a-service that lets the Customer publish a branded “Trust Page” describing their security posture - including an Overview, a Controls library, a Subprocessors library, and a Documents library - to a public URL. The Service also provides an optional NDA-gated request workflow for sharing protected documents with the Customer’s prospects.

Before launch, the Service consists of this marketing website and an early-access waitlist. Joining the waitlist gives SecurityMinded permission to email you about launch readiness and design-partner opportunities at the email address you provided. You can unsubscribe by replying to any of those emails or by emailing support@delivertrust.io.

2. Customer responsibility for content (READ THIS)

Everything you publish on your Trust Page is your content and your responsibility. This includes, without limitation:

  • Claims you make in your Overview (e.g. “We are SOC 2 Type II certified”).
  • The names, descriptions, and statuses of items in your Controls library.
  • The vendors, scopes, and locations you list in your Subprocessors library.
  • Every document you upload to the Documents library, whether public or NDA-gated, including its accuracy, currency, and your right to distribute it.
  • The text of your NDA, the workflow copy, and any other freeform fields you edit through the admin app.

You represent and warrant that you own, license, or otherwise have the right to publish all such content, that it is accurate to the best of your knowledge at the time you publish it, and that publishing it does not infringe any third party’s rights.

SecurityMinded does not review, verify, audit, or endorse the accuracy of any Customer content. The Service is a publication and workflow platform, not a compliance certifier. SecurityMinded is not liable for any claim, loss, or damage arising from a Customer’s publication of inaccurate, misleading, or unauthorized content, or from any third party’s reliance on such content. Customers requesting documents from your Trust Page are relying on your representations, not on SecurityMinded’s.

3. The bundled NDA template is an example, not legal advice

DeliverTrust ships with a default Non-Disclosure Agreement template that is shown to visitors before gated documents are released. This template is provided for convenience only. It is a starting example and is not legal advice. SecurityMinded is not your lawyer, and the bundled template has not been reviewed, certified, or warranted to be enforceable in your jurisdiction or fit for your specific circumstances.

You should have qualified counsel review and adapt the NDA template before relying on it. SecurityMinded disclaims all liability for the enforceability, sufficiency, or applicability of the bundled template. You may freely edit, replace, or remove it through the workflow editor.

4. NDA acceptance and the visitor flow

When a visitor to your Trust Page accepts your NDA through the Service, DeliverTrust records the visitor’s verified email address, a hash of the NDA text they were shown, and a timestamp. This record is captured on your behalf, but the NDA itself is a contract between you and the visitor, not between SecurityMinded and the visitor. SecurityMinded is not a party to your NDAs and makes no representations about their validity or enforceability.

Visitors who submit your access-request form or accept your NDA do so in the context of their relationship with you. As between you and SecurityMinded, you are the controller of the personal information those visitors provide (name, work email, company, stated relationship); SecurityMinded processes it as your data processor solely to operate the request workflow on your behalf. You are responsible for having a lawful basis to collect it and for responding to those visitors’ data-protection requests. See the Privacy Policy for how that information is handled.

5. Access and use

Subject to your compliance with this Agreement and payment of any applicable fees, SecurityMinded grants you a non-exclusive, non-transferable right to access and use the Service for your internal business purposes and to allow your designated authorized users to do the same. You are responsible for the acts and omissions of your authorized users.

6. Acceptable use and prohibited uploads

Because the Service hosts files that your prospects and customers download through your Trust Page, the integrity of what you upload affects third parties beyond just you. You agree NOT to upload, host, link to, or otherwise distribute through the Service any:

  • Malicious software - viruses, worms, trojans, ransomware, cryptominers, spyware, keyloggers, exploit kits, or any file containing code intended to damage, disable, or surreptitiously access a recipient’s system or data.
  • Illegal content - anything whose distribution is unlawful in the jurisdictions where you operate or where your recipients are located, including infringing copies of third-party works, stolen credentials, illegal export-controlled material, or content depicting the abuse or exploitation of minors.
  • Confidential information you don’t own or have authority to share - including another vendor’s materials marked confidential, unredacted personal data of third parties, or security findings about systems you don’t own.
  • Content that is defamatory, harassing, hateful, deceptive, or that impersonates another organization.

SecurityMinded reserves the right (but is not obligated) to scan uploaded files for malware and to remove any file we reasonably believe violates this section. We may suspend or terminate a Customer’s account, with or without notice, for material or repeated violations, and we may cooperate with law enforcement requests where required by law.

7. Other restrictions

You may not:

  • Reverse-engineer, decompile, or attempt to derive the source code of the Service.
  • Resell, sublicense, or otherwise commercially exploit the Service.
  • Use the Service in a way that interferes with other tenants or the integrity of the platform (e.g. abusive traffic, attempts to exfiltrate other tenants’ data).
  • Attempt to bypass the NDA-gating mechanism to access another tenant’s gated documents.
  • Use the Service for any competitive purpose.

8. Service availability

SecurityMinded uses commercially reasonable efforts to keep the Service available, but DOES NOT WARRANT THAT THE SERVICE WILL BE UNINTERRUPTED OR ERROR-FREE. Scheduled maintenance, third-party outages, and acts beyond SecurityMinded’s reasonable control may cause downtime. SecurityMinded will use reasonable efforts to give advance notice of scheduled maintenance when feasible.

9. Data ownership and security

You retain all rights, title, and interest in the data and content you publish through the Service. SecurityMinded claims no ownership of your content. SecurityMinded encrypts your tenant data at rest under a per-tenant Cloud KMS key under SecurityMinded’s control, with 90-day automatic key rotation. Detailed security architecture is available on request.

10. Account deletion and data retention

Once the DeliverTrust product is live (July 1, 2026), Customers will be able to delete their tenant at any time through the Settings → General → Danger Zone control in the admin app. Deletion is irreversible. Upon deletion: (a) the Trust Page is immediately taken offline, (b) the tenant’s documents and metadata are removed from production systems, (c) the per-tenant encryption key is disabled and scheduled for destruction within 30 days (after which encrypted data is cryptographically irrecoverable), and (d) any active subscription is terminated.

Waitlist email addresses are retained until launch or until you ask us to delete them, whichever comes first. Email us at support@delivertrust.io to be removed from the waitlist at any time.

SecurityMinded may retain limited records (billing history, security logs, consent records) for as long as required to comply with legal, regulatory, or tax obligations. See the Privacy Policy for details.

11. Fees

Fees and billing terms (if any) are set forth in the order or pricing page applicable to your subscription. Free or trial use of the Service is provided AS-IS without warranty, and SecurityMinded may terminate free or trial access at any time. Joining the waitlist is free and creates no obligation to purchase.

12. Confidentiality

Each party will treat the other’s non-public information disclosed in connection with this Agreement as confidential, using at least reasonable care to prevent unauthorized disclosure. Customer content published to your public Trust Page is, by definition, not confidential to SecurityMinded.

13. Indemnification

You agree to defend, indemnify, and hold SecurityMinded harmless from any claim, liability, loss, or expense (including reasonable attorneys’ fees) arising from: (a) your content published through the Service, (b) your breach of this Agreement, (c) any third-party claim that your published content is inaccurate, misleading, or infringing, and (d) any dispute between you and a visitor regarding an NDA you executed through the Service.

14. Limitation of liability

IN NO EVENT WILL SECURITYMINDED’S AGGREGATE LIABILITY ARISING OUT OF OR RELATED TO THIS AGREEMENT EXCEED THE GREATER OF (A) THE TOTAL AMOUNT PAID TO SECURITYMINDED UNDER THIS AGREEMENT IN THE TWELVE (12) MONTHS PRECEDING THE CLAIM, OR (B) ONE HUNDRED DOLLARS ($100). NEITHER PARTY WILL BE LIABLE FOR ANY INDIRECT, SPECIAL, INCIDENTAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING LOST PROFITS OR LOST REVENUE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

15. Disclaimers

EXCEPT AS EXPRESSLY SET FORTH HEREIN, THE SERVICE IS PROVIDED “AS IS” AND SECURITYMINDED DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT. SECURITYMINDED MAKES NO WARRANTY REGARDING THE ACCURACY, ENFORCEABILITY, OR LEGAL SUFFICIENCY OF THE BUNDLED NDA TEMPLATE OR ANY OTHER BUNDLED CONTENT.

16. Termination

You may terminate this Agreement at any time by deleting your tenant (once launched) or by asking to be removed from the waitlist. SecurityMinded may suspend or terminate your access for material breach, non-payment, or activity that endangers the platform’s integrity. Sections 2, 9, 10, 12, 13, 14, 15, and 17 survive termination.

17. Governing law

This Agreement is governed by the laws of the State of Georgia, USA, without regard to its conflict-of-laws principles. Disputes shall be resolved in the state or federal courts located in Fulton County, Georgia, and the parties consent to the personal jurisdiction of such courts.

18. Changes

SecurityMinded may update this Agreement from time to time. For material changes, SecurityMinded will give notice by email to the account contact or via a banner in the admin app at least 30 days before the change takes effect. Continued use of the Service after the change takes effect constitutes acceptance.

19. Contact

Questions about these Terms can be sent to compliance@delivertrust.io. Security-incident notices: security@delivertrust.io. Privacy / data-protection requests: privacy@delivertrust.io.