These Terms of Service form a binding agreement between you and InforceDesk. They cover how you use the product, what each side is responsible for, how billing works, what happens to the data you put in your workspace, and the limits of our liability. Read them carefully — by signing up or using the service, you agree to them.
1. Acceptance
By creating an account, accessing the platform, or clicking a button that says you agree, you accept these Terms of Service ("Terms") and our Privacy Policy. If you are signing up on behalf of a company or other organization, you represent that you have authority to bind that organization, and "you" in these Terms refers to that organization. If you do not agree, do not use the service.
You must be at least 18 years old and legally able to enter into a contract in your jurisdiction. The service is not intended for personal or household use; it is a business tool for licensed insurance professionals and the agencies that employ them.
2. Definitions
- "Service" or "Platform" means InforceDesk, including the web app at the InforceDesk domain, the public APIs, the marketing site, and any related software we provide.
- "Account Holder" means the individual or organization that owns a workspace and is on the hook for the bill.
- "Workspace" means an isolated tenant inside the Platform — a single agency, team, or solo agent with its own data, members, branding, and subscription.
- "Member" means a user added to a workspace under one of the roles defined in section 4.
- "Customer Data" means the records you upload to or generate inside your workspace, including leads, clients, notes, documents, tasks, follow-ups, appointments, email and SMS history, workflows, and custom field values.
- "Subscriber" means a person who has consented to receive email or SMS from you through the Platform.
- "Recipient" means anyone who receives a message you send through the Platform — a lead, a client, or a marketing-list contact.
3. Your account
You are responsible for the activity that happens under your account, including the actions of every member you add to your workspace. Keep your credentials confidential. Notify us promptly at [email protected] if you suspect unauthorized access.
You agree to provide accurate and current information when you sign up and to keep that information up to date. We may suspend or terminate accounts that contain false or misleading information, or that we reasonably believe are being used to evade these Terms.
The first user who completes signup for a workspace becomes the workspace owner. Ownership can be
transferred to another member at any time from /crm/me, and ownership transfer is the
prerequisite for the original owner to leave the workspace.
4. Workspaces, members, and roles
Each workspace has three role tiers with different permissions:
- Owner: full control. Can manage billing, invite and remove members of any role, change member roles, edit workspace settings, generate API keys, export workspace data, and delete the workspace.
- Admin: operational control. Can invite and remove members other than owner and other admins, edit most workspace settings, manage integrations, and view the audit log. Cannot access billing.
- Member: day-to-day CRM use. Can read and write Customer Data and run the features the workspace has enabled.
Each plan has a ceiling on how many seats and how many workspaces a single owner can have at once (see section 6). Owners are responsible for ensuring members understand and comply with these Terms.
5. Free trial
New workspaces receive a 30-day free trial of the Platform, with no credit card required. During the trial we apply hard caps to keep abuse uneconomic: 200 outbound emails, 50 outbound SMS messages, 1 gigabyte of document storage, and 1 seat per workspace. These caps reset only when you upgrade to a paid plan.
When the trial ends, the workspace is moved to a past-due state. Most operational routes stop working, but you can still log in, view billing, edit workspace settings, and export your data. Add a payment method and pick a plan to resume. If you do nothing, your workspace stays in past-due indefinitely until you choose to subscribe or delete it.
We may, at our discretion, modify trial length, trial caps, or eligibility — for example, to prevent a single business from spinning up unlimited trials by creating new accounts. Material changes are announced before they take effect.
The first 20 paying or trialing workspaces receive permanent founding-member pricing on V1 plans. The founding-member rate persists for the life of those workspaces unless they cancel and resubscribe under the standard catalog. After the first 20 workspaces sign up, the offer ends; we do not extend founding-member pricing retroactively.
6. Plans, pricing, and billing
6.1 Plan catalog
| Plan | Monthly | Annual | Email/mo | SMS/mo | Storage | Seats | Workspaces / owner |
|---|---|---|---|---|---|---|---|
| Solo | $29 | $278.40 (20% off) | 2,000 | 500 | 5 GB | 1 | 1 |
| Team | $59 / seat | $566.40 / seat (20% off) | 10,000 | 2,000 | 25 GB | Unlimited | 3 |
Annual subscriptions are billed up front for the full year and are equal to the monthly price times twelve, multiplied by 0.80 (a 20% discount). Prices are in United States dollars and exclusive of any taxes that apply in your jurisdiction. Where we are required to collect tax, it appears as a separate line on your invoice.
An owner's effective workspace cap is the most permissive plan they own. If you own a Team workspace and a Solo workspace, you can create up to three workspaces in total because Team allows three. Cancelling the Team subscription returns you to the Solo cap on your next renewal.
6.2 Payment
Billing is processed by Stripe, Inc. When you subscribe, you authorize us, via Stripe, to charge your payment method for the plan you selected, plus any taxes, on the cycle you chose (monthly or annual), and to do so automatically on each renewal until the subscription is cancelled. Stripe's terms apply to the payment instrument itself; we do not store full card numbers on our servers.
We do not refund partial billing periods. See section 8 for what happens when you cancel or downgrade.
6.3 Failed payments and dunning
If a payment fails, Stripe Smart Retries handles the actual retry attempts and we send dunning email to the workspace owner on day 1 and day 7 of the past-due window. The workspace stays in past-due during this window: most routes return a payment-required notice, but billing, workspace settings, the audit log, and logout remain reachable so you can fix the problem. If the payment is not resolved, the subscription will be cancelled by Stripe and the workspace moves to a 30-day grace window before permanent deletion (section 8).
6.4 Price changes
We may change prices for new subscriptions at any time. For existing paying subscribers on V1 catalog plans, we will give at least 30 days' notice before applying a price change at the next renewal. Founding-member rate-locked subscribers keep their rate for the life of those subscriptions unless they cancel and resubscribe under the standard catalog.
7. Quotas and rate limits
Each plan caps the volume of certain operations per billing period: outbound emails, outbound SMS, document storage in bytes, and (where applicable) the number of leads created per period. Once a cap is reached, the corresponding action returns a quota-exceeded error until the next period begins. Quotas reset on your subscription's billing cycle (or the first of each calendar month UTC while you are on a trial).
Independently of plan quotas, we apply per-tenant rate limits to outbound email and SMS so that one busy workspace cannot starve another running on the same infrastructure. Defaults are 60 emails per minute and 30 SMS per minute; both can be raised in workspace settings within reasonable limits. We may apply additional fairness throttling, abuse blocks, or carrier-imposed limits at our discretion.
8. Cancellation, downgrades, and refunds
You may cancel your subscription at any time from the billing page or the Stripe billing portal. Cancellation takes effect at the end of the current paid period; you keep access until then. Annual subscribers do not receive prorated refunds for the unused portion of a cancelled term.
30-day grace window after cancellation or workspace deletion. When you cancel a
subscription past its grace point, or when an owner soft-deletes a workspace, the workspace becomes
inaccessible to members but is held in a recoverable state for 30 days. The owner can restore it
from /crm/me during this window. After the window expires, an automated sweep
permanently deletes the workspace, including every lead, client, note, document, message log, audit
entry, and integration credential under it. Once permanent deletion runs, the data cannot be
recovered.
We do not offer refunds for unused time, partial periods, or change of mind. We may, at our discretion, refund or credit accounts in exceptional circumstances (for example, a billing error caused by us). Statutory consumer rights that cannot be waived are not affected by this section.
If you downgrade to a plan with lower quotas while you are over the new plan's caps (for example, your storage is currently above the lower-tier limit), the downgrade still takes effect; further activity on the over-cap metric will be blocked until you delete enough data to come back under the cap or upgrade again.
9. Customer data and ownership
You own your Customer Data. We do not claim any rights in it beyond the limited license needed to host, transmit, and operate the Platform on your behalf. That license is non-exclusive, royalty-free, and lasts for as long as the data is in your workspace.
We act as a processor with respect to Customer Data; you are the controller. Your relationship with the people whose data you upload (your leads and clients) is between you and them. You are responsible for having a lawful basis to collect, store, and process that data and for fulfilling any access, correction, deletion, or portability request they make to you. We will assist you in fulfilling those requests as a processor.
You can export every workspace-scoped table plus original document files at any time from
/crm/settings/export. The export is rate-limited to one per ten minutes per workspace.
Encrypted integration credentials, transient session rows, and password-reset tokens are excluded
from the export because their plaintext form is unrecoverable or has no value outside our system.
10. Acceptable use
You agree not to use the Platform to:
- Send spam or any communication that violates the CAN-SPAM Act, the Telephone Consumer Protection Act (TCPA), the Canadian Anti-Spam Legislation (CASL), the European e-Privacy Directive, or any other law that governs commercial messaging in the recipient's jurisdiction.
- Send messages to recipients who have not given you a lawful basis to contact them, or who have withdrawn consent.
- Send content that is fraudulent, deceptive, defamatory, harassing, threatening, hateful, or that infringes a third party's rights.
- Promote products or services that are illegal in the recipient's jurisdiction, or that violate Stripe's, Twilio's, Resend's, or Google's acceptable-use policies.
- Upload malware, attempt to reverse-engineer the Platform, probe for vulnerabilities outside an authorized program, or interfere with the operation of the service.
- Resell, sublicense, or white-label the Platform, or run a CRM service of your own on top of it, unless you have a written agreement with us that allows it.
- Scrape the Platform, train machine learning models on Customer Data of other workspaces, or otherwise harvest data you are not authorized to access.
- Bypass quotas, rate limits, audit logging, or per-workspace isolation; share API keys publicly; or attempt to access another workspace's data through any technical or social means.
- Use the Platform to store or transmit information that, if breached, would be subject to heightened regulatory regimes we have not opted in to (for example, payment card data subject to PCI DSS, or protected health information subject to a covered entity's HIPAA obligations). Storing such data is at your own risk and we have no obligation to enter a Business Associate Agreement.
- Specifically: do not upload protected health information (PHI). InforceDesk is not a HIPAA Business Associate, and we do not sign Business Associate Agreements. The Platform is built for the business and contact side of an insurance practice — pipelines, client records, policy and commission tracking — not the medical side. Do not upload medical records, lab results, diagnoses, prescriptions, or any other information whose disclosure would be a HIPAA breach for a covered entity. If you upload such data anyway, you accept sole responsibility for it. Carriers, policy details, premiums, beneficiaries, and signed applications are fine; lab work and clinical notes are not. See the Security page for the engineering controls underlying this position.
We may, on reasonable notice or, where the violation is severe, immediately, suspend or terminate access to a workspace that we believe is violating this section, and we may report illegal activity to the appropriate authorities.
11. Email and SMS compliance
The Platform sends messages under your sender identity, on your behalf, and at your direction. You are the sender for purposes of CAN-SPAM, the TCPA, and any other applicable communications law. You represent and warrant that:
- You have a lawful basis to contact every recipient — express written consent for marketing SMS under TCPA where applicable, and a valid sender-recipient relationship for marketing email under CAN-SPAM.
- You will honor opt-out requests promptly. The Platform appends unsubscribe footers to marketing email automatically, processes STOP keywords on inbound SMS automatically, and tracks email and SMS opt-outs separately. You will not attempt to circumvent these mechanisms.
- You will not send marketing SMS to numbers on the federal Do Not Call registry or to landlines. The Platform refuses to send SMS to landlines automatically; that does not relieve you of the independent duty to maintain consent records.
- You will respect TCPA quiet hours (8:00 a.m. to 9:00 p.m. in the recipient's local time). Outbound SMS through the Platform is gated to these hours by default in the operator's local time; you are responsible if you operate across multiple time zones.
- You will use accurate sender information and a physical mailing address in marketing email where required by law.
We will cooperate with reasonable abuse complaints from carriers, ESPs, and recipients. Repeated or severe complaints may result in termination of the affected workspace.
12. Third-party integrations
The Platform integrates with third-party services including Stripe (billing), Resend (email), Twilio (SMS and phone lookup), Google (Calendar, Ads, Analytics), and Cloudflare (Turnstile). When you connect one of these services to your workspace, your use of that service is governed by the service's own terms, which take precedence over these Terms in the event of a conflict that concerns the third-party service itself.
You authorize us to send and receive data on your behalf with these services using the credentials you provide. We store those credentials encrypted at rest with AES-256-GCM, but you remain responsible for the activity those credentials authorize, including any charges the third-party service bills you (for example, Twilio per-message charges, Resend overage fees, Stripe payout thresholds).
We are not responsible for the availability, accuracy, security, or terms of any third-party service. If a third-party service is unavailable, the corresponding feature in the Platform may be unavailable; we will not credit your account for downtime caused by a third-party service.
13. Intellectual property
The Platform, including the InforceDesk name, logo, brand, software, design, documentation, and every component we have authored, is owned by InforceDesk and protected by copyright, trademark, and other intellectual-property laws. We grant you a limited, non-exclusive, non-transferable, revocable license to access and use the Platform solely as permitted by these Terms and your active subscription.
You may not copy, modify, distribute, sell, lease, or create derivative works of the Platform; you may not remove or alter any proprietary notices; you may not use the InforceDesk brand to suggest that we endorse you or your services without written permission.
14. Feedback
If you send us suggestions, ideas, bug reports, or other feedback about the Platform, you grant us a perpetual, irrevocable, worldwide, royalty-free license to use that feedback for any purpose, including incorporating it into the product, without owing you any compensation or attribution. You are not required to send us feedback, and the existence of this section does not give us any ownership interest in your separate ideas, trade secrets, or work product unrelated to the Platform.
15. Confidentiality
Each side may receive non-public information from the other. Each side will use the other's confidential information only to perform under these Terms, will protect it with at least the same care it uses for its own confidential information of similar sensitivity, and will not disclose it to third parties except to its employees, contractors, and subprocessors who need to know and are bound by confidentiality. This obligation does not cover information that is or becomes public through no breach of these Terms, that the receiving side already had without obligation, that is independently developed, or that must be disclosed by law.
16. Privacy and security
Our handling of personal information is described in our Privacy Policy, which is incorporated into these Terms by reference. We apply reasonable technical and organizational measures to protect Customer Data — including TLS in transit, scrypt password hashes, AES-256-GCM at rest for integration credentials, parameterized SQL, server-side input validation, SSRF blocklists for outbound webhooks, per-IP and per-tenant rate limiting, append-only audit logs, and a build-time check that fails the build if any SQL touches a tenant table without a workspace filter. No system is perfect; we will notify you of a data breach affecting your Customer Data within the timeframe required by applicable law.
17. Term and termination
These Terms apply for as long as you have an account with us. Either side may end the relationship:
- You may end it at any time by cancelling your subscription and deleting your workspace. The 30-day grace window in section 8 applies; deletion becomes permanent at the end of that window.
- We may suspend or terminate your access immediately if you breach these Terms, if your account is past due, if we are required to do so by law, or if continued service exposes us or other customers to material risk. We will give you reasonable notice when circumstances allow.
Sections that by their nature are intended to survive termination — including ownership, feedback, confidentiality, warranty disclaimers, liability limits, indemnification, governing law, and miscellaneous provisions — will survive.
18. Warranty disclaimer
Except as expressly stated in these Terms, the Platform is provided "as is" and "as available." To the maximum extent permitted by law, InforceDesk disclaims all warranties, express, implied, or statutory, including the implied warranties of merchantability, fitness for a particular purpose, title, non-infringement, and quiet enjoyment. We do not warrant that the Platform will be uninterrupted, error-free, or free of harmful components, that any data will be accurate or reliable, or that any defect will be corrected.
Some jurisdictions do not allow limitations on implied warranties; in those jurisdictions, the limitations in this section apply only to the extent permitted.
19. Limitation of liability
To the maximum extent permitted by law, in no event will InforceDesk, its officers, employees, contractors, or agents be liable to you or any third party for any indirect, incidental, special, consequential, exemplary, or punitive damages, including lost profits, lost revenue, lost goodwill, lost data, or business interruption, arising out of or related to these Terms or the Platform, whether based in contract, tort, statute, or any other legal theory, even if we were advised of the possibility of such damages.
Our total cumulative liability arising out of or related to these Terms or the Platform will not exceed the greater of (a) one hundred United States dollars ($100) and (b) the total amount you paid us for the service in the twelve months immediately preceding the event giving rise to the claim.
Some jurisdictions do not allow the exclusion or limitation of certain damages; in those jurisdictions, the limits in this section apply only to the extent permitted.
20. Indemnification
You will defend, indemnify, and hold harmless InforceDesk and its affiliates, officers, employees, contractors, and agents from and against any third-party claim, loss, damage, liability, cost, or expense (including reasonable attorneys' fees) arising out of or related to: (a) your Customer Data, (b) your use of the Platform in breach of these Terms, (c) your violation of any law or any rights of a third party — including any claim that a recipient did not consent to receive a message you sent through the Platform, (d) the contents of any communication you sent through the Platform, or (e) any claim by one of your members, leads, or clients arising out of how you handled their data.
We will give you prompt notice of any claim, reasonable cooperation in the defense at your expense, and the right to control the defense and settlement, provided that any settlement that imposes a non-monetary obligation on us requires our prior written consent.
21. Governing law and disputes
These Terms are governed by the laws of the State of Utah, United States of America, without regard to its conflict-of-laws rules. The United Nations Convention on Contracts for the International Sale of Goods does not apply.
The exclusive venue for any dispute arising out of or related to these Terms or the Platform is the state or federal courts located in Salt Lake County, Utah, and each side submits to the personal jurisdiction of those courts. Either side may seek injunctive relief in any court of competent jurisdiction to protect intellectual-property rights or confidential information.
Each side waives any right to a jury trial and any right to participate in a class action, collective action, or representative action against the other, to the extent permitted by law. Disputes will be brought in an individual capacity only.
22. Changes to these terms
We may update these Terms from time to time. When we make a material change, we will revise the "Last updated" date at the top of the page and notify you by email or in-app notice at least thirty (30) days before the change takes effect, unless the change is required to address a legal, regulatory, or security issue, in which case it may take effect sooner. If you do not agree to a change, your remedy is to cancel your subscription before the change takes effect. Continued use of the Platform after the effective date constitutes acceptance.
23. Miscellaneous
- Entire agreement. These Terms, together with the Privacy Policy and any order form or written agreement we sign with you, are the entire agreement between us about the Platform and supersede prior or contemporaneous communications.
- No assignment. You may not assign these Terms, by operation of law or otherwise, without our written consent. We may assign these Terms to an affiliate or in connection with a merger, acquisition, financing, or sale of all or part of our business; we will let you know if we do.
- Severability. If any provision is held unenforceable, the rest remains in effect and the unenforceable provision will be reformed to the minimum extent necessary.
- No waiver. Our failure to enforce a provision does not waive our right to enforce it later.
- Independent contractors. Nothing in these Terms creates a partnership, joint venture, agency, employment, or franchise relationship.
- No third-party beneficiaries. These Terms are for the parties only; no third-party beneficiary rights are intended.
- Force majeure. Neither side is liable for failure to perform due to causes beyond its reasonable control, including acts of God, natural disasters, war, terrorism, civil unrest, labor disputes, government action, internet or telecommunications failure, or third-party-service outages.
- Notices. We will send notices to the email address on file for the workspace owner. You will send notices to [email protected].
- Export. You will comply with all applicable export control and sanctions laws when using the Platform.
- U.S. government rights. If you are a U.S. government entity, the Platform is "commercial computer software" provided with only the rights granted to commercial customers.
24. Contact
InforceDesk
Email: [email protected]
Questions about these Terms, requests for a written agreement, or notices of dispute should be directed to the address above.