Complaro

Terms of Service

Last updated: March 30, 2026

1. Agreement

These Terms of Service ("Terms") govern your use of the Complaro platform operated by Complaro ApS (CVR 46053362), Copenhagen, Denmark ("Complaro", "we", "us"). By creating an account or using our service, you agree to these Terms. If you are using Complaro on behalf of an organization, you represent that you have the authority to bind that organization.

2. Service description

Complaro is a software-as-a-service platform that helps organizations achieve compliance with the EU Cyber Resilience Act (CRA). The service includes SBOM management, vulnerability scanning, CRA classification analysis, compliance scoring, ENISA report generation, and CI/CD integrations.

Complaro is a compliance assistance tool. It does not provide legal advice and does not guarantee regulatory compliance. You are responsible for ensuring your products meet all applicable legal requirements.

3. Accounts

You must provide accurate information when creating an account. You are responsible for maintaining the security of your account credentials and for all activity under your account. Notify us immediately at info@complaro.com if you suspect unauthorized access.

4. Plans and billing

Complaro offers a free tier and paid subscription plans. Paid plans are billed monthly or yearly via Stripe. Prices are listed on our pricing page and are denominated in EUR.

  • Subscriptions renew automatically at the end of each billing period.
  • You can change or cancel your plan at any time via the Stripe customer portal in Settings.
  • Cancellations take effect at the end of the current billing period. No partial refunds are provided.
  • We reserve the right to change pricing with 30 days' notice. Existing subscriptions are honored until their next renewal.

5. Product limits

Each plan includes a maximum number of products you can create (Free: 1, SMV: 10, Mid-market: 50, Enterprise: custom). If you downgrade to a plan with a lower limit, your existing products are retained but you cannot create new ones until you are within the limit.

6. Your data

You retain all rights to the data you upload to Complaro (SBOMs, product descriptions, reports). We do not claim ownership of your content. We process your data solely to provide the service, as described in our Privacy Policy.

You are responsible for ensuring you have the right to upload any data to our platform. Do not upload data that is classified, subject to export controls, or that you are not authorized to share with a third-party service.

7. API keys and integrations

API keys grant programmatic access to your account. Treat them as passwords. We are not responsible for unauthorized actions taken with compromised API keys. You can revoke keys at any time in Settings.

Third-party integrations (Slack, Jira, CI/CD) are configured at your discretion. We are not responsible for the availability or security of third-party services.

8. Acceptable use

You agree not to:

  • Use the service for any unlawful purpose.
  • Attempt to gain unauthorized access to other accounts or our infrastructure.
  • Interfere with or disrupt the service (including circumventing rate limits).
  • Resell, sublicense, or redistribute access to the service without written permission.
  • Use automated tools to scrape or extract data beyond normal API usage.

We may suspend or terminate accounts that violate these terms.

9. Availability and support

We aim for high availability but do not guarantee uninterrupted service. Planned maintenance will be communicated in advance when possible. Support is provided via info@complaro.com. Enterprise plan customers receive priority support as agreed in their contract.

10. Disclaimer of warranties

The service is provided "as is" and "as available". To the maximum extent permitted by law, we disclaim all warranties, express or implied, including warranties of merchantability, fitness for a particular purpose, and non-infringement.

Vulnerability data is sourced from public databases (NVD, GitHub Advisories, CISA KEV) and may be incomplete or contain false positives. CRA classification results are based on keyword analysis and should be reviewed by qualified personnel before relying on them for regulatory decisions.

11. Limitation of liability

To the maximum extent permitted by Danish law, Complaro's total liability for any claim arising from or related to the service is limited to the amount you paid us in the 12 months preceding the claim. We are not liable for indirect, incidental, special, consequential, or punitive damages, including loss of profits, data, or regulatory fines.

12. Termination

You may delete your account at any time by contacting info@complaro.com. We may terminate or suspend your account for violation of these Terms with reasonable notice. Upon termination, your data will be deleted within 30 days, except where retention is required by law.

13. Open source components

Complaro uses open source software, including our cra-scanner CLI (MIT license). The SaaS platform itself is proprietary. Use of the CLI is governed by its own license.

14. Changes to these terms

We may update these Terms from time to time. Material changes will be communicated via email or a notice in the app at least 30 days before they take effect. Continued use of the service after changes take effect constitutes acceptance.

15. Governing law

These Terms are governed by the laws of Denmark. Any disputes shall be resolved by the courts of Copenhagen, Denmark. Nothing in these Terms limits your rights under mandatory consumer protection laws.

16. Contact

Complaro ApS
Copenhagen, Denmark
CVR 46053362
info@complaro.com