Tresor AI - Terms of Service

You must be at least 18 years old to use the Services, or at least 16 years old with the verifiable consent of a parent or legal guardian. Paid subscriptions and API access require that you are 18 or older as an individual, or that you are authorized to act for the organization on whose behalf you subscribe. You also represent that you are not barred from using the Services under applicable laws, export controls, or sanctions.

You may need an account to use certain features. You must provide accurate registration information and keep it current. You are responsible for safeguarding your login credentials, encryption keys or recovery material under your control, and API keys. Accounts and API keys are personal to you or your organization and may not be shared with or transferred to third parties. You are responsible for all activity that occurs under your account and API keys.

Important: because the Services use end-to-end encryption, Tresor may be technically unable to restore access to encrypted content if you lose your credentials or recovery keys. Keep your recovery material safe.

Notify us promptly through a support request on tresor.co or inside the app if you suspect unauthorized use of your account or API keys.

Tresor provides two principal Services:

• Tresor Workspace: a hosted AI assistant with chat, projects, document understanding (retrieval-augmented generation), team collaboration, and related features. User content is encrypted on your device before it leaves it, and AI processing takes place inside attested confidential computing environments (secure enclaves).
• Tresor Confidential Inference API: OpenAI-compatible API endpoints that route inference requests through hardware-secured enclaves to attested inference providers. Prompts and responses are not retained after the response is returned; Tresor stores only encrypted receipts and usage metadata as described in Section 4.

We use "secure enclave" to describe a hardware-isolated confidential virtual machine or equivalent confidential computing environment. These environments rely on hardware, firmware, cloud infrastructure, and vendor attestation roots, including AMD, Intel, and NVIDIA technologies where used.

We may update, improve, suspend, or discontinue parts of the Services, and software we provide may update automatically. Where a change materially reduces core functionality of a paid Service, we will inform affected paying customers in advance where reasonably possible, and your statutory rights remain unaffected. If you use third-party services together with Tresor, those services are governed by their own terms and privacy policies.

The Services are designed so that Tresor does not have access to the plaintext content of your prompts, documents, conversations, or AI responses ("Content"). Content is protected through client-side encryption and processed only inside attested confidential computing environments. Before forwarding any request to an upstream inference provider, the Tresor enclave verifies that provider's hardware attestation; requests are not sent to providers that cannot prove they run inside a genuine enclave. On request or where enabled, the Services produce signed, independently verifiable receipts evidencing how a request was processed.

The operational data visible to Tresor includes information needed to run the Services, such as account and authentication data, billing information, token counts and usage metrics, security and infrastructure logs, signed receipts, and support communications. This metadata is protected by standard access controls and is described further in our Privacy Policy .

Confidential computing substantially reduces risk, but no security architecture can eliminate all risk. Hardware or firmware vulnerabilities, side-channel attacks, defects in third-party attestation infrastructure, compromised user credentials or devices, and misconfiguration on your side may affect security. We therefore cannot guarantee the confidentiality of data under all conceivable circumstances, and Section 14 applies.

You remain responsible for ensuring that the data you share with the Services complies with your own legal, contractual, and internal policy obligations.

You may submit prompts, files, messages, feedback, and other content to the Services ("Your Content"). You retain all rights in Your Content. You are responsible for Your Content and for ensuring you have the rights needed to submit it.

Tresor does not use Your Content to train AI models and, by design, cannot read Content processed through the confidential computing path. For communications you send to us outside that path, such as support requests or feedback, you grant us a non-exclusive license to use them to respond, operate, and improve the Services.

AI outputs are generated by machine learning models and may be inaccurate, incomplete, or unsuitable for your purpose. You must review outputs before relying on them or sharing them. The Services and their outputs do not constitute legal, medical, financial, tax, or other professional advice. You retain any rights you may have in outputs generated for you, to the extent permitted by applicable law and the licenses of the underlying open-source models.

We process personal data in accordance with the EU General Data Protection Regulation (GDPR) and Luxembourg data protection law, as described in our Privacy Policy .

Where you use the Services to process personal data of third parties in a business context, you act as controller and Tresor acts as processor for that data to the extent Tresor processes it at all. Our Data Processing Agreement applies to such processing and is incorporated into these Terms for business users. Note that for Content processed exclusively inside attested enclaves under the zero-access design, Tresor has no technical access to plaintext; the scope of processing attributable to Tresor is described in the Data Processing Agreement.

7.1 Workspace subscriptions
The Tresor Workspace is offered under subscription plans with the features, seat counts, usage allowances, and prices published on our website at the time of purchase. Subscriptions are billed monthly or annually in advance and renew automatically for successive periods of the same length unless cancelled before the renewal date. You can cancel in your account settings or by contacting us; access continues until the end of the current billing period.

7.2 Confidential Inference API
API usage is billed on a consumption basis per token processed, at the prices published on our website or in your account dashboard. Both input and output tokens are billable unless stated otherwise. Usage is measured continuously and billed monthly in arrears. Token counts in signed receipts can be reconciled against billing records.

7.3 Free tiers and trials
We may offer free tiers or trial allowances with limited volume or functionality. Their scope and conditions are defined on our website and may be modified or discontinued at any time.

7.4 Price changes, taxes, and non-payment
We may change prices with at least 30 days' notice by email or through the Services. For subscriptions, price changes apply from the next renewal, not during the current paid term. Fees are exclusive of VAT and other applicable taxes unless stated otherwise. Payments are processed by third-party payment processors identified at checkout. We may suspend or terminate access for non-payment after reasonable notice. Except where required by law or expressly stated, fees already paid are non-refundable.

If you are a consumer in the European Union, you have a statutory right to withdraw from a distance contract within 14 days without giving any reason. To exercise this right, inform us of your decision within 14 days of entering into the contract by submitting a support request via our website or within the app. We will reimburse payments received from you without undue delay and no later than 14 days after we are informed of your withdrawal, using the same means of payment you used.

If you request that the Services begin during the withdrawal period, you owe us a proportionate amount for the Services provided until you informed us of your withdrawal. Where you expressly consent to immediate full performance of a contract for digital content and acknowledge that you thereby lose your right of withdrawal, the right of withdrawal lapses in accordance with applicable law.

The Services are not designed for fail-safe or high-risk environments such as life-support systems, air traffic control, weapons systems, or critical infrastructure where failure could lead to death, personal injury, or severe physical or environmental damage. Where applicable law, including the EU AI Act, imposes requirements on your use case (such as human oversight, transparency notices, or involvement of licensed professionals), you are responsible for complying with them. You may not use AI outputs as the sole basis for decisions with legal or similarly significant effects on individuals without appropriate human review.

We apply reasonable rate limits, quotas, and fair-use restrictions to protect the Services and may adjust them. We may investigate suspected violations of this Section and may throttle, suspend, or terminate access, remove or disable access to content where technically possible, report unlawful activity, and cooperate with valid legal requests. Note that due to the zero-access design, Tresor cannot monitor or moderate the Content of your prompts and responses.

We provide the Services with reasonable skill and care, but we do not guarantee that they will be available without interruption or error at all times. Maintenance and updates may temporarily affect availability; where reasonably possible, we will announce significant planned interruptions in advance. Emergency maintenance may occur without notice.

Support is available to paying customers at support@tresor.co during Luxembourg business hours, with an initial response target of 48 hours on business days. Enterprise-specific service levels, uptime commitments, and service credits apply only if stated in a signed order form or separate written agreement.

Features labeled alpha, beta, preview, early access, or similar are provided as is, may contain defects, may change or be discontinued at any time, and are excluded from any service-level targets and support commitments unless we state otherwise in writing.

Tresor and its licensors own the Services, including software, designs, interfaces, documentation, logos, and other materials, except for Your Content and except for open-source components, which remain subject to their own licenses. We grant you a limited, non-exclusive, non-transferable, revocable right to access and use the Services in accordance with these Terms. You may not copy, modify, distribute, sell, lease, reverse engineer, or create derivative works from the Services except as permitted by mandatory law, an applicable open-source license, or a separate written agreement. We do not grant you rights to use Tresor trademarks or brand assets except as we separately permit.

If you believe in good faith that material made available through the Services infringes your intellectual property rights, notify us using the contact details in Section 19 with sufficient detail to identify the material and your rights. We will review notices and take appropriate action, which may include disabling access where technically possible and, for repeat infringers, terminating accounts.

You may stop using the Services or delete your account at any time in your account settings or by contacting us. Upon account deletion we delete personal data under our control, subject to the retention periods and exceptions in our Privacy Policy, including legal, billing, security, and dispute-resolution records. Encrypted content for which only you hold the keys becomes permanently irrecoverable upon deletion.

We may suspend or terminate your account or access to the Services with immediate effect for good cause, including material or repeated violation of these Terms, use that creates security or legal risk, non-payment after reasonable notice, or where required by law. Otherwise, we may terminate free Services with reasonable notice and paid Services effective at the end of the current paid period.

Provisions that by their nature should survive termination (including payment obligations, intellectual property, disclaimers, limitations of liability, indemnities, and governing law) survive.

Nothing in these Terms excludes or limits any liability that cannot be excluded or limited under applicable law, including liability for willful misconduct (dol), gross negligence (faute lourde), death or personal injury, or mandatory statutory warranty and consumer rights.

Subject to the foregoing, Tresor is liable only for damage caused by a breach of a material contractual obligation and only to the extent such damage was reasonably foreseeable at the time the contract was concluded. To the fullest extent permitted by law, Tresor is not liable for indirect or consequential damage, loss of profit, loss of goodwill, loss of data caused by circumstances outside our reasonable control, or business interruption.

For business users, Tresor's total aggregate liability for claims relating to the Services in any 12-month period is limited to the greater of EUR 100 or the amounts you paid to Tresor for the affected Service in the 12 months preceding the event giving rise to the claim. This cap does not apply in the cases listed in the first paragraph of this Section.

The Services depend on third-party hardware, firmware, attestation infrastructure, and inference providers. While we select and verify these with professional diligence, we are not responsible for failures attributable to events beyond our reasonable control.

These Terms are governed by the laws of the Grand Duchy of Luxembourg, excluding its conflict-of-law rules and the UN Convention on Contracts for the International Sale of Goods. If you are a consumer habitually resident in the European Union, you additionally enjoy the protection of the mandatory provisions of the law of your country of residence.

The courts of Luxembourg City have exclusive jurisdiction over disputes arising out of or in connection with these Terms with business users. If you are a consumer, you may also bring proceedings in the courts of your place of residence, and proceedings against you may only be brought there.

Consumers in Luxembourg may also contact the Service national du Mediateur de la consommation or another competent consumer mediation body. Tresor is not obliged to participate in dispute resolution proceedings before a consumer arbitration board but will inform you in each case whether it is willing to do so.

You may not assign or transfer your rights or obligations under these Terms without our consent, which will not be unreasonably withheld for business users. We may assign these Terms in connection with a merger, acquisition, reorganization, or sale of assets, provided your rights are not materially impaired.

You must comply with applicable export control and sanctions laws, including those of the European Union, and may not use the Services in, or for the benefit of, embargoed or restricted countries or persons.

Our failure to enforce a provision is not a waiver. If any provision of these Terms is invalid or unenforceable, the remaining provisions remain in effect, and the invalid provision is replaced by a valid one that comes closest to its economic purpose. These Terms, together with the Privacy Policy and any other written agreement you enter into with Tresor, are the entire agreement between you and Tresor regarding the Services. We may communicate with you electronically; electronic communications satisfy any requirement that notices be in writing.