Kaseya Compliance Manager GRC, Network Detective Pro, Cyber Hawk and VulScan Terms of Use
Updated as of July 11, 2025.
These Terms of Use (“Terms”) govern access to and use of the following Kaseya Products: Compliance Manager GRC, Network Detective Pro, Cyber Hawk and VulScan, and their related services (collectively, the “Products”). Legacy versions of the Products are not covered by these Terms of Use. By purchasing or using any of the Products, you agree to be bound by these Terms, which are incorporated into the Kaseya Master Agreement accessible here or such other master agreement (the “Agreement”) between you and the Kaseya entity from which you purchase Products (“Kaseya”). Capitalized terms not defined in these Terms have the meaning given to them in the Agreement. For clarity, the Products include the Kaseya Services related to the Products. In the event of any conflict between the Agreement and these Terms, these Terms will take precedence with respect to the Products.
Additional definitions relevant to these Terms are as follows:- “Device” means a server, work station, mobile device, or network device if and as supported by the applicable Product type.
- “Endpoint” means a cloud-based environment (such as SaaS applications) or a Device.
- “Report” means the compilation of information that is produced through use of the Product, and that is based on the processing of your Content and other data. For each Product, a Report is as follows:
- Compliance Manager GRC – the evidence of compliance reports and supporting documentation.
- Network Detective Pro – network assessment reports.
- Cyber Hawk – reports/alerting for anomalous user behavior and configuration changes.
- VulScan – reports of network and machine-based application vulnerabilities.
- “Scanning” means a function performed by a Product that examines or probes Scan Targets for information, reportable events, assets or states of being. Depending on the Product, Scanning may be performed to find vulnerabilities, find anomalous behavior of users, confirm compliance with a particular standard, or otherwise provide network and Scan Target information.
- “Scan Target” is a network or Endpoint that is the subject of Scanning.
- “Site” is an organization (or division thereof, such as a department or physical office location of an organization) that is reported upon as a discreet unit by the Products.
- USE OF PRODUCTS
- About the Products. Through use of the Products, Kaseya helps IT professionals by enhancing network visibility, monitoring for suspicious activity, and providing guidance for compliance with respect to various data protection and security standards. The Products also capture relevant data and allow for reporting. More specifically:
- Compliance Manager GRC (“Compliance Manager”) helps you stay compliant with various IT security requirements including government and industry standards, cyber insurance requirements, and other IT policies.
- Network Detective Pro automatically collects data from Scan Targets on your network, captures information about the network’s health, performance and security posture, and identifies and remediates issues based on objective risk scores.
- VulScan performs Scanning from both inside and outside of your network for vulnerabilities, and detects and prioritizes the weaknesses that hackers can exploit.
- Cyber Hawk detects and alerts you to suspicious changes, misconfigurations and activities across your network that can create vulnerabilities in your system.
- Right to Use. Subject to your compliance with these Terms, the Agreement and receipt by us of all applicable fees, Kaseya grants you a limited, revocable, non-sublicensable, non-exclusive right and license during the applicable Product Subscription’s Committed Service Term to access and use the Product for the number of Licenses specified in an Order. If your use of a Product involves the use of Agent Software, you hereby agree to the terms of all applicable Agent Software licenses, and we grant you the non-exclusive, non-assignable, limited right to download, install and use the Agent Software solely to facilitate your use of the Products as specified in an Order. Your right to use such Agent Software will terminate upon the termination of the Service Subscription associated with the Product.
- Right to Perform Scanning. By initiating the act of Scanning through a Product, you hereby authorize Kaseya to access the Scan Targets in order to provide the Product Services, and it is your responsibility to confirm such authorization with your Clients. You understand that Scanning may originate or appear to originate from a Kaseya URL, and you will inform relevant personnel or Clients that such should not be mistaken for a cyber attack.
- Third Party Feeds. Certain Products incorporate third party threat information, or other such information that Scan Target data and Product information is compared against (“Third Party Feeds”). Kaseya may drop, add or substitute Third Party Feeds at any time, without notice, in its discretion. Information about the then-current Third Party Feed(s) may be available to you from your Kaseya Account Manager. Third Party Feeds are a form of Third-Party Technology, as that term is defined in the Agreement.
- Compliance Services Pro. Compliance Services Pro is a form of Professional Services, as defined in the Agreement, and are subject to the Kaseya Professional Services Terms of Use, accessible by clicking here. Compliance Services Pro can be used to help Customers navigate the assessments performed by Compliance Manager. Compliance Services Pro are not performed by professional auditors, attorneys or compliance experts. GUIDANCE PROVIDED THROUGH COMPLIANCE SERVICES PRO IS NOT PROFESSIONAL ADVICE, AND IS NOT A SUBSTITUTE FOR LAWYERS, COMPLIANCE PROFESSIONALS, OR OTHER TYPES OF ADVISORS OR EXPERTS. PERSONNEL PROVIDING SERVICES THROUGH COMPLIANCE SERVICES PRO ARE NOT ACTING AS YOUR AGENT OR FIDUCIARY. INFORMATION EXCHANGED THROUGH COMPLIANCE SERVICES PRO IS NOT COVERED BY THE ATTORNEY CLIENT PRIVILEGE OR SIMILAR PROFESSIONAL PRIVILEGES.
- About the Products. Through use of the Products, Kaseya helps IT professionals by enhancing network visibility, monitoring for suspicious activity, and providing guidance for compliance with respect to various data protection and security standards. The Products also capture relevant data and allow for reporting. More specifically:
- SERVICE SUBSCRIPTIONS
- Service Subscription Required. All rights to use the Products are conditioned upon enrollment in a valid Product Service Subscription for which we receive timely payment. All Subscriptions include applicable Licenses to the technology needed to perform the functions of the Product and access to standard Kaseya Technical Support. The term of a Service Subscription is indicated on the applicable Order and is for a defined number of consecutive months (a “Committed Service Term”). A Service Subscription begins on the date of activation as set forth on the Order (the “Activation Date”). License counts are set forth on the Applicable Order. Licenses for the same Product may be purchased in pools, and such Licenses will have the same Committed Service Term end date. Upon mutual agreement, Licenses may be added to an existing pool or purchased to create a new pool, as described in the applicable Order.
- Licensing. The basis for Licensing varies depending on the Product, as well as whether the user of the Product is an MSP providing services on behalf of a Client, or if the user is internal personnel. Please see information below for Licensing information.
- If you are an MSP and purchased Product to provide services to Clients, Licensing is on a “per Site” basis. Each Site will have a discreet set of reports. If a Site is deleted, Reports, raw data, Content and other information associated with that Site will be destroyed by Kaseya. Limitations on Scans, Use of Scans and Storage is as follows:
Product Limitations on Scans/Use/Storage Compliance Manager GRC - Scanning is performed on your demand only.
- Each Site License covers up to that number of Devices as set forth on the applicable Order. If no such number is listed on your Order, a Site License covers up to one hundred (100) Devices, and therefore multiple Site Licenses may be required for a Site depending on the number of Devices.
Network Detective Pro - Scanning is performed on your demand or as scheduled by you.
- Each Site License covers up to that number of Devices as set forth on the applicable Order. If no such number is listed on your Order, a Site License covers up to one hundred (100) Devices, and therefore multiple Site Licenses may be required for a Site depending on the number of Devices.
VulScan - Scanning is performed on your demand or as scheduled by you.
Cyber Hawk - Scanning is performed at set intervals.
- Each Site License covers up that number of Devices as set forth on the applicable Order. If no such number is listed on your Order, a Site License covers up to one hundred (100) Devices, and therefore multiple Site Licenses may be required for a Site depending on the number of Devices.
- If you are a customer that has purchased Product for use by internal personnel, Licensing is on a “per Device” basis, assigned to a Site. Each Site will have a discreet set of reports. If a Site is deleted, Reports, raw data, Content and other information associated with that Site will be destroyed. License amounts (per Device) are set forth on the applicable Order. Scanning and Use are as follows:
Product Limitations on Scans/Use/Storage Compliance Manager GRC Scanning is performed on your demand only. Network Detective Pro Scanning is performed on your demand or as scheduled by you. VulScan Scanning is performed on your demand or as scheduled by you. Cyber Hawk Scanning is performed at set intervals. - Retention of Reports. The Products do not allow you to choose or configure custom retention periods for your Reports. The Products store Reports during the period of an active Product Subscription. The raw data (including Content) upon which the Reports are based is not necessarily stored, and Kaseya reserves the right to destroy such raw data in its discretion. Upon termination of the Subscription Services, Kaseya reserves the right to delete Reports and any other information associated with a Subscription after thirty (30) days. Please note that once a Subscription Service has terminated, there will be no further right to download Reports from your account. You hereby confirm that Kaseya is not responsible for your data retention compliance requirements, and it is your obligation to download and store any Reports needed to be retained by you during the Term of your Product Subscription. If a Site is deleted from a Subscription, you may use the Site License for an alternate Site, however, all Reports and other information associated with the deleted Site will be destroyed immediately.
- If you are an MSP and purchased Product to provide services to Clients, Licensing is on a “per Site” basis. Each Site will have a discreet set of reports. If a Site is deleted, Reports, raw data, Content and other information associated with that Site will be destroyed by Kaseya. Limitations on Scans, Use of Scans and Storage is as follows:
ADDITIONAL DISCLAIMERS
In addition to the disclaimers set forth in the Agreement, the following disclaimers apply with respect to the Products:- Accuracy of Scanning. KASEYA MAKES NO GUARANTEE THAT A SUCCESSFUL SCANNING CONFIRMS COMPLIANCE, SECURITY, OR THAT THE RESULTING REPORT IS ERROR FREE. For example, a Product’s indication of a successful HIPAA scanning result does not guarantee compliance with the HIPAA standard.
- Audit of Information. KASEYA WILL NOT AUDIT OR OTHERWISE VERIFY INFORMATION YOU PROVIDE, AND KASEYA IS NOT RESPONSIBLE FOR REPORTS (INCLUDING SCANNING RESULTS) OR YOUR COMPLIANCE WITH ANY STANDARD OR APPLICABLE LAW.
- No Professional Advice: THE PRODUCTS ARE NOT INTENDED TO PROVIDE PROFESSIONAL ADVICE AND ARE NOT A SUBSTITUTE FOR THE ADVICE OF LEGAL, COMPLIANCE, OR OTHER TYPES OF ADVISORS OR EXPERTS. Scanning results, Reports, and other information generated by or provided through our Products must be reviewed by you in consultation with your professional advisors. Kaseya is not acting as your agent or fiduciary in connection with your use of the Products, or in any other manner.