Terms & Conditions

1. Services

Secure Compass is a security and compliance management platform developed, owned, and operated by base2Services Pty Ltd. It provides analysis, reporting, and integrations with customer systems to improve security posture, compliance monitoring, and operational visibility.

2. Eligibility

You must be at least 18 years of age and legally able to enter binding agreements to use Secure Compass. By using the Services, you confirm that you meet these requirements.

3. Variations

We may amend these Terms at any time by publishing an updated version on our website. Continued use of the Services after any change constitutes acceptance of the revised Terms.

4. Access & Licence

We grant you a limited, non-exclusive, revocable, non-transferable licence to access and use the Services in accordance with these Terms. All other rights are reserved.

5. Intellectual Property

All intellectual property in Secure Compass—including software, code, algorithms, data models, content, branding, and documentation—is owned or licensed by base2Services Pty Ltd.

You retain ownership of your own data, configurations, and intellectual property that is accessed or processed by Secure Compass.

6. Acceptable Use

You must not use Secure Compass in any way that:

• breaches applicable laws,
• infringes the rights of third parties,
• introduces malicious code, exploits, or other harmful materials,
• interferes with or disrupts the operation of Secure Compass or related infrastructure, or
• seeks to access data or systems without authorisation.

7. Third-Party Integrations

Secure Compass may connect with third-party platforms (such as AWS accounts, GitHub repositories, or configuration management systems). By enabling integrations, you authorise base2Services to access relevant data solely for the purpose of providing the Services.

We do not claim ownership of your data, configurations, or code. You retain full control and may revoke access at any time via the relevant third-party platform.

8. Privacy & Data Use

We respect your privacy and handle personal and organisational information in accordance with the base2Services Privacy Policy , which forms part of these Terms.

In addition to that policy, you acknowledge and agree that Secure Compass may access and process the following types of information in order to provide the Services:

• Credentials, configurations, logs, and security data from connected platforms (e.g., AWS accounts, GitHub repositories, or other cloud services);
• Infrastructure-as-code templates and related metadata (e.g., .tf, .yaml, .json files);
• Automatically generated compliance data such as control checks, evidence reports, and operational logs.

You retain ownership of all data processed through Secure Compass. However, you grant base2Services a non-exclusive, royalty-free licence to use such data in an aggregated and anonymised form for the purposes of:

• improving Secure Compass and related services;
• developing benchmarks, insights, and analytics;
• conducting research and security trend analysis; and
• preparing industry reports, marketing materials, and market insights.

We will never disclose your identifiable data or associate any results with your organisation without your prior written consent.

Marketing Communications

By using Secure Compass, you agree that base2Services Pty Ltd (including communications branded as base2Services or Secure Compass) may contact you with information about Secure Compass, related services, and other offerings from base2Services that may be relevant to your organisation. We may use the contact details you provide for these purposes.

You may opt out of receiving marketing communications at any time by following the unsubscribe instructions included in the communication or by contacting us directly. Service-related notices (such as security alerts, policy updates, or account information) are not considered marketing and will continue to be sent as required to deliver the Services.

9. Warranties & Disclaimers

Secure Compass is provided "as is" and "as available." We make no warranties that the Services will be uninterrupted, error-free, or free from vulnerabilities.

Nothing in these Terms excludes or limits your rights under the Australian Consumer Law.

10. Liability

To the maximum extent permitted by law, base2Services excludes all liability for loss, damage, or claims arising from or connected with the use of the Services, including indirect or consequential loss, loss of profits, loss of data, or reputational harm.

Where liability cannot be excluded, it is limited to the resupply of the Services or the cost of resupply.

11. Indemnity

You indemnify and hold harmless base2Services Pty Ltd, its officers, employees, and contractors against claims, losses, damages, costs, or expenses arising from your use of Secure Compass, your breach of these Terms, or your infringement of third-party rights. This indemnity survives termination.

12. Suspension & Termination

We may suspend or terminate your access to Secure Compass at any time if we reasonably believe you have breached these Terms. Upon termination, your licence to use the Services ceases immediately, but provisions relating to liability, indemnity, intellectual property, and dispute resolution will survive.

13. Dispute Resolution

If a dispute arises, the parties will attempt to resolve it through good-faith discussions between senior representatives within 21 days. If unresolved, either party may commence proceedings in the courts of Victoria, Australia.

14. Severability

If any provision of these Terms is invalid or unenforceable, it will be read down or severed to the extent necessary without affecting the remaining provisions.

15. Governing Law

These Terms are governed by the laws of Victoria, Australia. You irrevocably submit to the exclusive jurisdiction of the courts of Victoria.

16. Compliance Disclaimer

Secure Compass provides monitoring, reporting, and analysis tools to assist with security and compliance management. However, the outputs of Secure Compass are for informational purposes only and do not constitute legal, regulatory, or compliance advice.

You acknowledge and agree that:

• Secure Compass does not guarantee that your organisation is, or will remain, compliant with any particular law, regulation, or standard (including but not limited to ISO 27001, CPS 230, SOC 2, or similar frameworks).
• You remain solely responsible for ensuring your organisation's compliance obligations are met and for seeking independent legal, regulatory, or professional advice where necessary.
• base2Services is not liable for any loss, penalty, or liability arising from reliance on Secure Compass as a substitute for professional compliance assessment or advice.

17. Contact

For questions or notices relating to these Terms, please contact: