Terms & Conditions

1. Scope

These Terms & Conditions govern your use of websites, pages, content, contact forms, reports, services, and other materials operated by Quillmark LLC, including Quillmark, Compliance Flag, and Quillmark open-source project pages unless a more specific written agreement applies.

By using these websites or requesting services, you agree to these terms. If you do not agree, do not use the websites or submit information through them.

2. Quillmark LLC

Quillmark LLC is a small software and product studio focused on grounded AI systems, source-backed content workflows, review-support tooling, and related services. References to "Quillmark," "we," "us," or "our" mean Quillmark LLC.

3. Services And Engagements

Website content describes possible services, current projects, and examples of work. It is not a binding offer to provide services on any particular terms. Paid work, custom implementations, support, reports, or consulting may be governed by a separate statement of work, order form, written agreement, or project-specific terms. If those terms conflict with these website terms, the project-specific terms control for that engagement.

4. Regulated Data And Compliance Requirements

Unless a separate written agreement expressly says otherwise, Quillmark does not offer, design, host, audit, certify, validate, or warrant any website, application, workflow, integration, report, infrastructure, documentation, or service as compliant with HIPAA, HITECH, PCI DSS, GLBA, FERPA, GDPR, UK GDPR, CCPA/CPRA, SOC 2, ISO 27001, FedRAMP, ITAR, EAR, WCAG, securities or financial-services rules, health-care requirements, payment-card requirements, government procurement requirements, accessibility requirements, or any other legal, regulatory, contractual, certification, audit, insurer, platform, or industry compliance standard.

Do not send protected health information, electronic protected health information, medical records, payment-card data, cardholder data, financial account data, consumer reports, government-controlled information, export-controlled information, student records, children's data, special-category personal data, credentials, secrets, private keys, production database exports, or other regulated or highly sensitive information through public website forms or ordinary project intake channels.

If an engagement requires regulated data, regulated infrastructure, compliance controls, accessibility acceptance criteria, audit support, security attestations, retention requirements, breach-notice obligations, data-residency commitments, or a business associate agreement, data processing agreement, security addendum, subcontractor flowdown, or similar document, you must disclose that requirement before work begins and it must be accepted by Quillmark in a written agreement. Quillmark may decline, pause, or limit work when a requested scope would require legal, regulatory, security, operational, insurance, or certification obligations that Quillmark has not expressly agreed to assume.

You are responsible for identifying the laws, regulations, standards, contracts, policies, and professional review requirements that apply to your organization, users, clients, data, systems, and intended use. Quillmark is not responsible for determining whether your use of any deliverable satisfies those requirements unless a written agreement specifically assigns that responsibility and defines the applicable criteria.

5. No Professional Advice

Quillmark and Compliance Flag materials are for informational, product, workflow, and operational review-support purposes. They are not legal, compliance, regulatory, investment, tax, accounting, financial, or other professional advice.

Compliance Flag reports, articles, drafts, examples, and related materials do not determine whether any communication complies with SEC, FINRA, state, or other requirements. They identify potential issues for qualified personnel to evaluate. You are responsible for independent review by appropriate legal, compliance, regulatory, or professional advisers before relying on or using any output.

6. Open-Source Projects

Quillmark may publish open-source projects, including command-line tools, scripts, workflow recipes, examples, and documentation. Code and project files in public repositories are governed by the license included in the relevant repository. If a repository has no license, you should not assume permission beyond ordinary viewing of the public repository.

These website terms still apply to Quillmark websites, brand assets, service descriptions, reports, paid support, hosted pages, contact forms, and non-repository website content. Open-source availability does not grant rights to use Quillmark, Compliance Flag, or related names, logos, trade dress, or branding except as expressly permitted in writing or by the applicable repository materials.

Open-source projects may be experimental, incomplete, or intended for technical users. You are responsible for reviewing, testing, securing, and validating any project before using it in your own environment.

7. Third-Party AI And Model Providers

Compliance Flag is a Quillmark Open Source Python CLI that can use third-party AI model providers as part of its review-support workflow. Quillmark and Compliance Flag are not endorsed by, sponsored by, or affiliated with any model provider unless expressly stated in writing.

Your use of any third-party AI platform, API, model provider, package registry, repository host, or related service is governed by that provider's own terms, policies, account settings, and service availability. Quillmark is not responsible for third-party platform outputs, uptime, security controls, model behavior, billing, or policy decisions.

8. User Submissions

If you send us a message, website URL, prompt, content sample, project description, or other material, you represent that you have the right to provide it. You grant Quillmark permission to use that material to respond to you, evaluate fit, provide requested services, operate the websites, prevent abuse, maintain business records, and improve internal workflows.

Do not send confidential client information, regulated personal information, credentials, secrets, or other sensitive material through public website forms. If an engagement requires sensitive information, use a separately agreed channel and scope.

9. Acceptable Use

You may not misuse the websites or related systems. Prohibited conduct includes attempting to disrupt or bypass security controls, submitting malicious code, scraping or harvesting at scale without permission, impersonating others, violating applicable law, infringing intellectual property rights, or using the websites to transmit unlawful, harmful, or deceptive material.

10. Intellectual Property

Website text, designs, graphics, trade names, logos, report formats, and other site materials are owned by Quillmark LLC or its licensors unless otherwise stated. You may view and link to public website pages for ordinary informational purposes. You may not copy, modify, redistribute, sell, or reuse protected materials in a way that suggests endorsement, affiliation, or ownership without permission.

11. Third-Party Services And Links

The websites may link to third-party websites, repositories, documentation, payment pages, tools, or platforms. Quillmark is not responsible for third-party content, policies, availability, or security. Your use of third-party services may be governed by their own terms and policies.

12. Disclaimers

The websites, materials, examples, reports, software references, and open-source project materials are provided "as is" and "as available" without warranties of any kind, whether express, implied, or statutory. Quillmark does not warrant that materials will be error-free, complete, current, secure, uninterrupted, or fit for any particular purpose.

13. Limitation Of Liability

To the fullest extent permitted by law, Quillmark LLC and its owners, contractors, contributors, and affiliates will not be liable for indirect, incidental, consequential, special, exemplary, punitive, or lost-profit damages arising from your use of the websites, materials, reports, services, or open-source projects. Quillmark's aggregate liability for claims relating to the websites or these terms will not exceed one hundred U.S. dollars or the amount you paid Quillmark for the specific service giving rise to the claim, whichever is greater.

14. Indemnity

You agree to defend, indemnify, and hold harmless Quillmark LLC from claims, damages, liabilities, costs, and expenses arising from your misuse of the websites or materials, your violation of these terms, your submitted materials, or your violation of law or third-party rights.

15. Changes

We may update these terms from time to time. The updated version will be posted on this page with a revised date. Continued use of the websites after an update means you accept the updated terms.

16. Contact

Questions about these terms or service support can be sent to support@quillmark.ai.