Last updated: March 20, 2026 | Governing law: India (IT Act 2000, DPDP Act 2025)
By registering for, accessing, or using CognoShift's services ('Services'), you ('Customer', 'you', 'your') agree to be bound by these Terms of Service ('Terms'). If you are registering on behalf of an organisation, you represent that you have the authority to bind that organisation to these Terms.
These Terms constitute a legally binding agreement between you and CognoShift Security Pvt. Ltd. ('CognoShift'). If you do not agree to these Terms, do not use the Services.
CognoShift provides a SaaS-based DPDP (Digital Personal Data Protection) Act 2025 compliance platform including: (a) the CognoShift Sentinel agent for hardware compliance monitoring on Windows endpoints; (b) a web portal for compliance dashboards, audit reports, and government oversight; (c) automated DPDP audit reports and gap analysis; (d) Verifiable Parental Consent (VPC) gateway; and (e) related support services.
Subject to payment of applicable fees, CognoShift grants you a non-exclusive, non-transferable, revocable license to: install and use the Sentinel agent on your authorised endpoints; access the portal with your issued license key; and generate DPDP compliance reports for internal use.
You may not: (a) share your license key with unauthorised parties; (b) reverse engineer, decompile, or disassemble the Sentinel agent; (c) use the Services for any unlawful purpose or to violate the DPDP Act 2025 or IT Act 2000; (d) resell or sublicense the Services without prior written consent.
Services are provided on a monthly or annual subscription basis. Fees are as listed on the Pricing page and are subject to change with 30 days' notice.
Payment is due in advance. All prices are in Indian Rupees (INR) and exclude applicable GST. GST is charged at the prevailing rate.
Subscriptions renew automatically unless cancelled at least 7 days before renewal. Refunds are not provided for partial subscription periods.
We reserve the right to suspend access for non-payment after 7 days' notice.
You are responsible for: (a) obtaining valid verifiable parental consent under DPDP §9 before deploying Sentinel on school endpoints that process student data; (b) maintaining the security of your license key; (c) ensuring the Sentinel is deployed only on endpoints within your authorised organisation; (d) complying with all applicable laws, including DPDP Act 2025 and CERT-In Directive 2022.
You acknowledge that CognoShift provides compliance tooling, but final compliance responsibility lies with you as the Data Fiduciary under DPDP Act 2025.
As your Data Processor under DPDP Act 2025, CognoShift will process personal data only as instructed in these Terms and our Privacy Policy. We implement appropriate technical and organisational measures as described in our Security Documentation.
You, as Data Fiduciary, are responsible for ensuring a lawful basis for processing personal data of your students, employees, or users.
Starter plan: Best-effort uptime. No formal SLA.
Pro/Government plan: 99.5% monthly uptime SLA for the portal API. Scheduled maintenance excluded. Credits may be issued for breaches below this threshold.
The Sentinel agent operates in an offline-first mode — compliance data is stored locally in an encrypted vault and synced when connectivity is available.
CognoShift retains all intellectual property rights in the Services, including the Sentinel agent binary, portal code, and documentation. These Terms do not grant you any ownership rights.
You retain ownership of your compliance data. CognoShift's rights to your data are limited to what is necessary to provide the Services.
TO THE MAXIMUM EXTENT PERMITTED BY LAW, COGNOSHIFT'S TOTAL LIABILITY FOR ANY CLAIMS ARISING FROM THESE TERMS OR THE SERVICES SHALL NOT EXCEED THE AMOUNT YOU PAID TO COGNOSHIFT IN THE 3 MONTHS PRECEDING THE CLAIM.
COGNOSHIFT IS NOT LIABLE FOR: INDIRECT, INCIDENTAL, OR CONSEQUENTIAL DAMAGES; DPDP PENALTIES IMPOSED ON YOU BY THE DATA PROTECTION BOARD OF INDIA; DATA LOSS RESULTING FROM YOUR FAILURE TO MAINTAIN ADEQUATE BACKUPS; OR ANY BREACH RESULTING FROM YOUR FAILURE TO OBTAIN PARENTAL CONSENT.
Either party may terminate these Terms with 30 days' notice. CognoShift may terminate immediately for: non-payment, material breach, or use of the Services for unlawful purposes.
On termination: your license key is revoked; you must uninstall the Sentinel agent from all endpoints; your data will be deleted from our systems within 30 days per DPDP §12.
These Terms are governed by the laws of India. Any disputes shall first be attempted to be resolved through mediation. Failing mediation, disputes shall be subject to the exclusive jurisdiction of courts in Haryana, India.
Nothing in these Terms prevents either party from seeking injunctive relief.
Legal notices: legal@cognoshift.in
Support: support@cognoshift.in
CognoShift Security Pvt. Ltd., India