Effective date: February 23, 2026
Plain-English Summary: By downloading, installing, accessing or using SpyHuman, you agree to these Terms. If you do not agree, do not use the Service.
1.1 Legal Agreement. These Terms and Conditions ("Agreement" or "T&C") constitute a legally binding agreement between the purchaser/user ("User") and SpyHuman ("Provider").
1.2 Effective Date and Modifications. The effective date of these terms is shown above. Provider may modify these T&C; material changes will be notified and continued use constitutes acceptance.
1.3 Acceptance Mechanisms. Acceptance occurs via clickwrap, subscription checkout, or installation confirmation; Provider records acceptance timestamp and method.
Plain-English Summary: Defines terms used throughout these T&C for clarity and legal precision.
Plain-English Summary: Explains the limited license, eligibility requirements, permitted use cases, and installation prerequisites.
3.1 Limited License Grant. Provider grants the User a limited, non-exclusive, non-transferable, revocable license to install and use the Software for permitted purposes described below.
3.2 Ownership & Physical Access. User warrants legal ownership of the Target Device or documented explicit consent from the owner. Physical access is required for installation unless otherwise specified.
3.3 Permitted Use Cases. Parental control for minors by legal guardians; employee monitoring on employer-owned devices with prior written notice; personal-device security on devices owned by the User.
3.4 Installation Requirements & Restrictions. Advanced features may require administrative privileges, device configuration changes, or OS-specific steps (e.g., rooting/jailbreaking) — such actions are User responsibility.
Plain-English Summary: Users must represent legal authority to install and use the Software and to provide required consents.
4.1 Ownership Representation. User represents and warrants they own the Target Device or have documented consent from the owner.
4.2 Compliance Representation. User warrants use will comply with all applicable laws and will not be used to commit illegal surveillance.
4.3 Age and Capacity. User confirms they are of legal age and capacity to enter into these T&C where required by law.
Plain-English Summary: Users must provide clear notice and obtain verifiable consent from monitored persons where required by law.
5.1 Duty to Notify. The User must notify Monitored Users and obtain any legally required consents prior to monitoring.
5.2 Verifiable Parental Consent. For minors, User must secure verifiable parental/guardian consent consistent with applicable child data protections.
5.3 Employee Monitoring Notice. For employee monitoring on corporate devices, User must provide prior written notice and satisfy applicable employment and privacy laws.
5.4 Consent Withdrawal. Monitored Users or owners may withdraw consent; upon verified withdrawal, Software must be removed and data handling must follow relevant deletion obligations.
Plain-English Summary: Clearly lists prohibited activities (covert surveillance, illegal interception, harassment), and consequences for misuse.
6.1 Covert Surveillance Prohibition. Software must not be used as stalkerware or installed without the knowledge and affirmative consent of the device owner except where expressly lawful.
6.2 Illegal Interception Prohibition. User must not use the Software to intercept or record private communications in violation of local wiretapping or interception laws.
6.3 Enforcement. Provider may suspend or terminate accounts and may report misuse to law enforcement. No refund will be provided for confirmed illegal use.
Plain-English Summary: Obligations around account creation, authentication, proof of ownership, and reporting unauthorized access.
7.1 Account Creation. Users must provide accurate information and maintain account security. Provider may require identity verification for certain features.
7.2 Authentication & MFA. Strong authentication is recommended; Provider may enable multi-factor authentication and suspend access following suspicious activity.
7.3 Proof of Ownership Records. Provider may require or store proof-of-ownership or consent records (time, IP, installer identity) for abuse investigations.
Plain-English Summary: Scope of features, compatibility and availability disclaimers, and update behavior.
8.1 Service Description. Provider offers device monitoring, location tracking, app usage insights, call logs, web filtering, and related cloud services as described on the product pages.
8.2 Compatibility & Limitations. Features vary by device model, operating system version, and user privileges; Provider is not responsible for OS-level restrictions that limit functionality.
8.3 Updates & Interruptions. Provider may update or suspend service for maintenance, security or legal reasons; Provider will use commercially reasonable efforts to notify Users of planned downtime.
Plain-English Summary: What data is collected, why, how long it is retained, and the security safeguards applied.
9.1 Categories of Data Collected. Payload data (e.g., location, messages, media), metadata (timestamps, device identifiers), and consent/audit logs.
9.2 Purpose & Lawful Basis. Data is processed for the purposes described at collection (e.g., parental supervision, device security). Users must maintain lawful basis (consent, legitimate interest) as applicable.
9.3 Retention Policy. Payload data is retained for a maximum of ninety (90) days unless otherwise required by law; audit and consent records retained longer for compliance and investigations.
9.4 Security Measures. Provider implements reasonable administrative, technical and physical safeguards (TLS for transit, encryption at rest, access controls, logging).
9.5 Subprocessors. Provider may engage subprocessors; a list of subprocessors and applicable safeguards is or will be made available in Provider's Privacy Policy.
Plain-English Summary: Rights to access, correct, delete, and export personal data, plus breach notification and cross-border transfer practices.
10.1 Access & Rectification. Data subjects may submit requests to access or correct personal data; Provider will respond within applicable statutory timelines.
10.2 Erasure & Portability. Data subjects may request deletion or export of personal data subject to legal exceptions and other Users' rights.
10.3 Breach Notification. Provider will notify affected parties and regulators in accordance with applicable laws if a reportable breach occurs.
10.4 Cross-Border Transfers. Transfers of personal data outside the originating jurisdiction will be governed by appropriate safeguards (e.g., SCCs, contractual protections).
Plain-English Summary: Subscription types, billing cycles, taxes, renewal and payment failure handling.
11.1 Subscription Plans. Access is provided via subscription plans; features vary by plan.
11.2 Automatic Renewal. Subscriptions auto-renew unless cancelled; Users will receive renewal notices and may opt out per checkout terms.
11.3 Failed Payments & Suspension. Provider may suspend services for failed payments and attempt retries per billing policy.
Plain-English Summary: Refunds are only granted for technical failures that cannot be remedied by support; change-of-mind refunds are excluded where law permits.
12.1 Eligibility. Refunds considered only when Provider's technical support cannot resolve material service failures within a reasonable timeframe.
12.2 Exclusions. No refunds for change of mind, loss of access to Target Device, OS updates causing incompatibility, or refusal to carry out required device changes (e.g., rooting/jailbreaking) where such steps are the User's responsibility.
12.3 Procedure. Refund requests must be submitted via Support with supporting evidence and ticket reference; Provider will investigate prior to decision.
Plain-English Summary: Provider owns the Software and all related IP; Users receive only a limited license to use it under these T&C.
13.1 Ownership. All intellectual property rights in the Software and documentation are owned by Provider or licensors.
13.2 Restrictions. Users must not copy, modify, distribute, reverse-engineer, or create derivative works except as expressly permitted.
Plain-English Summary: Provider may integrate third-party services; external links are provided for convenience but Provider is not responsible for them.
14.1 Third-Party Integrations. Use of third-party services is subject to their terms; Provider is not responsible for third-party practices.
14.2 External Links. Links to third-party sites do not imply endorsement; Users click at their own risk.
Plain-English Summary: Software is provided "AS-IS" without warranties; Provider does not warrant that the service will meet every User's needs or be uninterrupted.
15.1 No Warranties. Provider disclaims all warranties to the fullest extent permitted by law.
Plain-English Summary: Limits indirect damages and caps monetary liability to the extent permitted by law, with statutory exceptions.
16.1 Exclusions. Provider is not liable for indirect, incidental, special or consequential damages to the extent permitted by law.
16.2 Liability Cap. Where enforceable, Provider's aggregate liability is limited to the fees paid by the User in the prior 12 months.
Plain-English Summary: Users agree to indemnify Provider for claims arising from unlawful use of the Software or breach of these T&C.
17.1 User Indemnity. User will indemnify, defend and hold harmless Provider against claims, liabilities, costs and expenses resulting from User's violation of law or misuse.
Plain-English Summary: How to report abuse, Provider's investigation process, evidence preservation, and cooperation with law enforcement.
18.1 Reporting Mechanism. Report suspected misuse to [email protected] or via Provider's abuse reporting portal.
18.2 Enforcement. Provider will investigate and may suspend or terminate accounts, preserve evidence, and cooperate with authorities as required.
Plain-English Summary: DMCA takedown and counter-notification procedures for copyright owners and repeat infringer policy.
19.1 Notice Procedure. Copyright owners may submit DMCA notices to Provider's designated agent; notices must contain required statutory elements.
19.2 Counter-Notices. Counter-notifications must comply with statutory requirements; Provider will follow the applicable DMCA process.
Plain-English Summary: Termination rights of Users and Provider, effects of termination, data deletion and export options.
20.1 Termination by User. Users may cancel subscriptions via account settings; cancellation does not necessarily entitle a refund.
20.2 Termination by Provider. Provider may suspend or terminate for breach, misuse, or legal reasons.
20.3 Data Post-Termination. Data will be handled in accordance with the Data Retention Policy and Users should export desired data before retention expiry.
Plain-English Summary: Dispute resolution processes (arbitration vs court), class action waiver and governing law selection.
21.1 Arbitration. Disputes may be subject to mandatory binding arbitration under the terms set out in this section, where enforceable.
21.2 Class Action Waiver. Users agree to resolve disputes individually and waive class or representative actions where permitted by law.
21.3 Governing Law. These T&C are governed by the law specified in the Provider's chosen jurisdiction unless local mandatory law provides otherwise.
Plain-English Summary: Localized addenda (GDPR, CCPA/CPRA, India DPDP) that supplement and, where required, modify baseline terms.
22.1 European Union (GDPR) Addendum. Data subject rights handling, lawful basis, DPIA guidance, and SCCs for transfers.
22.2 California (CCPA/CPRA) Addendum. Consumer rights, notice at collection, and opt-out mechanisms as required.
22.3 India Data Protection Addendum. DPDP-specific obligations, grievance officer/DPO contact, and parental consent protocols where applicable.
Plain-English Summary: Excusable non-performance due to causes beyond reasonable control (e.g., acts of God, strikes, government action).
23.1 Excused Performance. Provider is not liable for delays or failures caused by events beyond Provider's reasonable control; obligations are suspended for the duration of such events.
Plain-English Summary: If any provision is invalid, the remainder remains effective; failure to enforce is not a waiver of rights.
24.1 Severability. Invalid provisions will be replaced with valid terms that most closely reflect the intent.
24.2 No Waiver. Provider's failure to enforce any right is not a waiver of that right.
Plain-English Summary: Conditions under which rights and obligations may be assigned by Provider or User.
25.1 Assignment by Provider. Provider may assign its rights in connection with a corporate transaction; Users will be notified as required by law.
25.2 Assignment by User. Users may not assign rights without Provider's prior written consent.
Plain-English Summary: These T&C, Privacy Policy and any applicable addenda form the entire agreement between the parties.
26.1 Integration. This Agreement supersedes prior understandings and constitutes the complete agreement between User and Provider.
Plain-English Summary: How to contact Provider for support, legal notices, privacy requests, or abuse reports.
27.1 Legal Notices. Service of legal process: [email protected] (or the postal address provided in the Privacy Policy).
27.2 Data Protection & Grievance Officer. For privacy requests, contact [email protected]; designated DPO/grievance contact details are provided in the Privacy Policy.
27.3 Customer Support. For product support and refund requests, contact [email protected].