By using our website and our services, you declare that you have previously understood and accepted without reservation the following terms:
If you do not agree with these terms, please do not use our website and do not use our services.
These general conditons of use discusses how the samples will be processed and / or malicious URLs sent to the laboratory CRDF Labs. They also affect the sending and processing of samples or URLs that can be potentially malicious through the CRDF Sandbox.
MPORTANT-READ THESE TERMS CAREFULLY BEFORE SUBMITTING FILES TO CRDF Labs FOR MALWARE ANALYSIS ("SERVICES"). BY USING THE SERVICE, YOU ACKNOWLEDGE THAT YOU HAVE READ THESE TERMS AND CONDITIONS, THAT YOU UNDERSTAND THEM, AND THAT YOU AGREE TO THEM.
These terms and conditions ("Terms") govern the relationship between you and CRDF France ("CRDF Labs") with respect to your use of the Services.
You agree to submit files to CRDF Labs only for the purpose of malware analysis. You agree that you shall have no right to any file after its submission and that all submissions shall be deemed NOT CONFIDENTIAL. CRDF Labs may use submitted files and the results of its test in any manner it sees fit and you grant CRDF Labs an irrevocable license to modify, use, display, perform, reproduce, transmit, and distribute any submitted files. You agree that all testing shall be conducted in CRDF Labs's sole and absolute discretion. CRDF Labs does not guarantee that a report will be generated for each file submitted. CRDF Labs does not guarantee that a generated report will be accurate or that CRDF Labs will detect all malware. Any generated report shall be solely owned by CRDF Labs.
By using the Service and using any data from CRDF Threat Center, you must comply with the license and the policy regarding the use of data from the said Service.
All information available on the CRDF Threat Center are classified: TLP:AMBER+STRIC.
Limited disclosure, recipients can only spread this on a need-to-know basis within their organization and its clients. Note that TLP:AMBER+STRICT restricts sharing to the organization only. Sources may use TLP:AMBER when information requires support to be effectively acted upon, yet carries risk to privacy, reputation, or operations if shared outside of the organizations involved. Recipients may share TLP:AMBER information with members of their own organization and its clients, but only on a need-to-know basis to protect their organization and its clients and prevent further harm. Note: if the source wants to restrict sharing to the organization only, they must specify TLP:AMBER+STRICT.
Any unauthorized commercial use is prohibited without written permission from CRDF Labs. Any commercial use of our data may result in legal proceedings.
Any failure to respect the classification of the data will be liable to result in the immediate suspension of the means of identification (private account or API key). Any sharing of a means of identification with a third party will also result in the immediate suspension of the means of identification.
Sharing of data from the CRDF Threat Center with a third party is strictly prohibited without the written permission of CRDF Labs. Compliance with the TLP classification is essential to comply with these conditions of use.
Access is granted to a single organization and the use of data is also conferred on this same organization. If an undeclared organization wishes to access data from the CRDF Threat Center, it must send a new request to the CRDF Labs laboratory.
In short, you have the right:
You agree to not use the Services to:
ANY USE OF THE SERVICES IS AT YOUR OWN RISK AND The SERVICES may NOT OPERATE AS INTENDED. CRDF Labs, ITS AFFILIATES, AND THEIR LICENSORS, SUPPLIERS, EMPLOYEES OR AGENTS SHALL NOT BE RESPONSIBLE FOR ANY USE OF THE SERVICES. THE SERVICES MAY NOT OPERATE ERROR FREE, OR IN AN UNINTERRUPTED FASHION. CRDF Labs MAKES NO REPRESENTATIONS THAT ANY DEFECTS OR ERRORS IN THE SERVICES WILL BE CORRECTED OR THAT THE SERVICES ARE COMPATIBLE WITH ANY PARTICULAR PLATFORM.
TO THE MAXIMUM EXTENT PERMITTED BY LAW, CRDF Labs DISCLAIMS ALL WARRANTIES OF ANY KIND, WHETHER EXPRESSED OR IMPLIED, IN EQUITY OR AT LAW, INCLUDING IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT. CRDF Labs DOES NOT WARRANT THAT THE SERVICES WILL MEET ANY REQUIREMENTS OR NEEDS YOU MAY HAVE.
CRDF Labs, ITS LICENSORS, AND AFFILIATES SHALL NOT BE LIABLE FOR ANY LOSS OR DAMAGE RELATED TO THE USE OR INABILITY TO USE THE SERVICES. CRDF Labs WILL NOT BE LIABLE FOR ANY INCIDENTAL OR CONSEQUENTIAL DAMAGES (INCLUDING INDIRECT, SPECIAL, PUNITIVE, OR EXEMPLARY DAMAGES FOR LOSS OF BUSINESS, LOSS OF PROFITS, BUSINESS INTERRUPTION, OR LOSS OF BUSINESS INFORMATION OR DATA) EVEN IF CRDF Labs HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
THE FOREGOING LIMITATIONS ON LIABILITY SHALL APPLY TO ALL CAUSES OF ACTION UNDER ALL LEGAL THEORIES, INCLUDINGTHEORIES OF CONTRACT, WARRANTY, STRICT LIABILITY, MISREPRESENTATION, NEGLIGENCE, AND OTHER TORTS. To the extent that your jurisdiction does not allow the limitation of exclusion of liability for incidental or consequential damages, this exclusion may not apply to you. In such circumstances, CRDF Labs's liability shall be limited to a maximum of the minimum allowable liability in that jurisdiction.
You agree to release, indemnify, defend and hold harmless CRDF Labs and any of its contractors, agents, employees, officers, directors, shareholders, affiliates and assigns from all liabilities, claims, damages, costs and expenses, including reasonable attorney's fees and expenses, of third parties relating to or arising out of (a) your breach of these Terms, (b) falsehoods or misrepresentations of fact by you, or (c) your use or misuse of the Services. CRDF Labs has the right to participate in any defense of a third-party claim related to your use of the Services, with counsel of our choice. You shall have sole responsibility to defend CRDF Labs against any claim, but you must receive CRDF Labs's prior written consent regarding any related settlement. The terms of this paragraph will survive these Terms.
These Terms shall be governed by and construed in accordance with the laws of the state of New Jersey, United States of America, without regard to any conflicts-of-law rules. You irrevocably consent to the exclusive jurisdiction and venue of the federal and state courts of New Jersey and waive any right you may have to object to or seek to change such jurisdiction or venue.
If any provision of these Terms is determined by a court of competent jurisdiction to be unenforceable or illegal, such provision shall be modified to the minimum extent necessary to make the provision enforceable. The remainder of the Terms shall remain in full force and effect.
CRDF Labs is not responsible for any cessation, interruption or delay in the operation of the Services or performance of its obligations hereunder due to earthquake, flood, fire, storm, natural disaster, act of God or the public enemy, war, armed conflict, terrorist action, strike, lockout, boycott, riot, release of hazardous or toxic substances, explosion, accident, or any other causes whether or not of the same class or kind as those specifically above named.
Any waiver of these Terms shall only be effective if it is in writing and signed by both parties. CRDF Labs may change the Terms and the Services without prior notice to you. You should check the Terms each time you use or access the Services. Your use of the Services after any changes to the Terms constitutes your acceptance of the new Terms. Section headings are for convenience only and shall not be considered in the interpretation of these Terms.
BY USING THE SERVICES AND CLICKING "SUBMIT", YOU AGREE TO BE BOUND BY AND COMPLY WITH ALL OF THE TERMS HEREIN. DO NOT USE THE SERVICES IF YOU DO NOT AGREE TO BE BOUND BY THESE TERMS AND CONDITIONS.
CRDF Labs works with partners who have access to the database files, URLs and / or malicious resources. A sample sent through our systems will be analyzed by automated analysis systems to determine their interest. According to their interests, the resource can be analyzed manually by one of our experts to add to our database. Please keep in mind that a confidential file should not be sent through our systems because it is shared with our partners.
Files and URLs sent to CRDF Threat Center Service will be shared with antivirus vendors and security companies so as to help them in improving their services and products. We do this because we believe it will eventually lead to a safer Internet and better end-user protection.
By default any file/URL submitted to CRDF Threat Center Service which is detected by at least one scanner is freely sent to all those scanners that do not detect the resource. Additionally, all files and URLs enter a private store that may be accessed by premium (mainly security/antimalware companies/organizations) CRDF Threat Center Service users so as to improve their security products and services.
Any declaration of a positive implies acceptance of the conditions of use of this.
The procedure of reporting a false positive allows a user, a company or a user to ask CRDF Labs to review the classification of its website. All websites contained in the CRDF Threat Center database are considered to violate our detection criteria.
Only the form accessible from our Website ("https://threatcenter.crdf.fr") makes it possible to declare a false positive to CRDF Labs. Any other way to report a false positive will not be taken into account and will be ignored. Once you have declared a false positive, the system will automatically assign you a reference that will allow us to trace your request. Without this reference number, please do not contact us because we will not be able to process your request. After submitting your false positive statement, you will have an answer within 24 hours. A decision will be made to tell you if your website is removed from our database. If you do not agree with this decision, you can contact us with your reference number to justify your motivation and discuss with us this refusal.
CRDF Labs never gives more information about a website considered contrary to our detection criteria. CRDF Labs is not intended to provide any evidence that a website is against our detection criteria. The purpose of CRDF Labs is to protect its users against security risks associated with a browser over the Internet.
These Terms and Conditions may be subject to change. The Customer is to keep abreast of future changes. In the event that the Customer notify CRDF its refusal of changes, such refusal would carry notice of termination of under this contract.
The interpretation and enforcement of these Terms and all acts that the result will be subject to French law. In case of dispute concerning the interpretation and enforcement of these, and Failing an amicable solution, exclusive jurisdiction is given to the competent courts.