Privacy and Terms

Authorised scanning only

ThirdEye Scanner is provided for security researchers, operators, companies, and authorised assessors who are scanning assets they own, control, or have clear permission to test. By buying, activating, or using any package, you confirm that every target you submit is within your authorised scope.

Responsibility for unauthorised scans

If a user scans a domain, IP address, application, cloud asset, or organisation without authorisation, the user is solely responsible for that activity and for any legal, contractual, operational, or reputational consequences that follow. ThirdEye Scanner does not grant permission to test third-party systems. The platform only provides tooling; the researcher or account holder remains responsible for verifying permission before any scan is started.

Abuse reports and permanent bans

If a company, organisation, hosting provider, network owner, or authorised representative contacts us and reports that scanning was performed from a ThirdEye Scanner account or associated infrastructure without permission, we may investigate account activity, scan targets, timestamps, and related account data. If the report indicates unauthorised scanning, abuse, harassment, spam, illegal testing, or activity outside the account holder's authorised scope, the account may be permanently banned from access. Package fees, remaining subscription time, beta access, and related privileges may be forfeited when an account is banned for abuse or unauthorised use.

Strict session control

Each package is licensed for one researcher or one authorised account holder unless a written company arrangement says otherwise. The same package must not be shared across a team, resold, rotated between operators, or used as a shared scanning pool. We maintain strict session control to reduce spam, payment abuse, account theft, and unauthorised scanning. If our team detects unusual device swapping, credential sharing, repeated location changes, automation abuse, or concurrent use inconsistent with a single researcher account, the account may be temporarily suspended while ownership and use are reviewed. Continued misuse may lead to permanent suspension.

Scope and acceptable use

You may use ThirdEye Scanner only for lawful security testing, vulnerability research, audit preparation, and defensive assessment of authorised systems. You must not use the service to attack third parties, disrupt production services, bypass access controls without permission, harvest data, perform denial-of-service activity, scan unrelated targets at scale, or hide the origin or purpose of unauthorised testing. You are expected to keep written permission, bug bounty scope, client authorisation, or internal approval available for every target you scan.

Data and scan records

The platform may store account information, contact details, selected package information, target names, scan metadata, findings, evidence snippets, timestamps, IP-related records, session information, and support communications so that scans can run, reports can be generated, abuse can be investigated, and accounts can be supported. We aim to collect only the information needed to operate the service, maintain security, process support requests, and enforce these terms. Sensitive findings and scan results should be treated by users as confidential security data.

Privacy

We do not sell user scan data. We may use operational data to provide the service, improve reliability, troubleshoot errors, prevent abuse, verify account ownership, answer support requests, and comply with lawful obligations. If a legitimate abuse report or legal request is received, relevant account and scan metadata may be reviewed or preserved. Users are responsible for ensuring that any personal data, client data, or confidential information included in scan targets or evidence is handled according to their own legal and contractual obligations.

Payments and package activation

Package activation may require manual payment confirmation. Currently supported payment methods are Bitcoin and UPI unless otherwise confirmed in writing. Access starts only after payment and account activation are completed. Beta pricing, module access, upcoming version access, and package benefits may depend on the selected package and active package period.

Copyright and ownership

ThirdEye Scanner, the ThirdEye name, user interface, code, documentation, copy, design assets, reports, workflows, and platform content are protected by copyright and other intellectual property rights. You may not copy, redistribute, resell, reverse engineer, clone, scrape, or commercially reuse platform materials except where explicitly permitted in writing. User-submitted targets and user scan results remain associated with the user account, but the service retains the rights needed to host, process, display, export, secure, and investigate that data as required to operate the platform.

Service limits and changes

Features, packages, modules, scan limits, beta benefits, pricing, support levels, and retention windows may change over time. Some modules may be experimental, rate-limited, disabled, or restricted when required for safety or platform stability. We may update these terms when the service changes. Continued use after updates means the account holder accepts the updated terms.

Contact: support@thirdeyescan.io · X: http://x.com/thirdeyescan