Terms of Service

1. Acceptance of Terms

By accessing or using the Stella Unified platform ("Service") operated by Stellar IT Support Inc. ("Company", "we", "us", "our"), a Canadian-Controlled Private Corporation incorporated in Alberta, Canada, you agree to be bound by these Terms of Service ("Terms"). If you are accessing or using the Service on behalf of an organization, you represent and warrant that you have the authority to bind that organization to these Terms, and references to "you" throughout will refer to that organization.

If you do not agree to these Terms in their entirety, you must immediately cease all use of the Service.

2. Service Description

Stella Unified is a Software-as-a-Service (SaaS) platform designed for Managed Service Providers (MSPs) and IT professionals. The Service provides:

• Microsoft 365 Security Scanning — automated assessment of your M365 tenant configuration against security baselines and compliance frameworks.
• Auto-Remediation — governed, approval-gated modification of M365 settings including Conditional Access policies, Exchange Online configuration, and Intune device profiles.
• Compliance Framework Deployment — one-click deployment of industry frameworks including SOC 2, ISO 27001, NIST CSF, CIS Controls, CMMC, and HIPAA.
• Compliance Reporting — professional PDF and interactive reports documenting compliance posture, findings, remediation history, and audit trails.
• Multi-Tenant Management — a unified dashboard to manage compliance across multiple Microsoft 365 tenants from a single portal.
• RMM Capabilities — remote monitoring and management of endpoints within connected tenants.

The Service is provided on a subscription basis. Features available to you depend on your subscription tier.

3. Account Registration

To use the Service you must create an account by providing accurate, current, and complete information. You agree to:

• Keep your account credentials confidential and not share them with unauthorized persons.
• Promptly notify us at [email protected] if you suspect unauthorized access to your account.
• Accept full responsibility for all activity that occurs under your account credentials.
• Maintain accurate account information and update it promptly if it changes.

We reserve the right to suspend or terminate accounts where fraudulent or inaccurate registration information is provided.

4. Microsoft 365 Integration

Stella Unified integrates with your Microsoft 365 tenant via Microsoft's delegated Graph API. By connecting a tenant you:

• Authorize Stella Unified to access your Microsoft 365 tenant data through the OAuth 2.0 consent flow presented by Microsoft.
• Confirm that you have the authority within your organization to grant such consent.
• Acknowledge that the specific Microsoft Graph API permissions requested are listed and explained during the consent flow and within the platform's integration documentation.

4.1 Credential Storage

We do not store your Microsoft account password or any Microsoft administrative credentials. We store OAuth tokens (access tokens and refresh tokens) that Microsoft issues to our application following your consent. These tokens are:

• Encrypted at rest using AES-256 encryption with per-tenant encryption keys.
• Stored exclusively in Canadian PostgreSQL database infrastructure.
• Scoped only to the permissions you granted during the consent flow.
• Revocable at any time by revoking the Stella Unified application consent in your Microsoft Entra ID (Azure Active Directory) admin centre.

4.2 Microsoft's Terms

Use of the Microsoft Graph API is also subject to Microsoft's own terms of service and acceptable use policies. We are not affiliated with or endorsed by Microsoft Corporation.

5. Auto-Remediation Disclaimer

Stella Unified operates in governed mode: the platform categorizes all remediation actions by risk level. High-risk changes (including but not limited to Conditional Access policy creation or deletion, Global Administrator modifications, and Exchange transport rule changes) require explicit, individual human approval before execution. Low-risk changes may be grouped for batch approval.

By clicking "Fix", "Approve", or deploying a compliance framework, you:

• Authorize Stella Unified to execute the described configuration changes in your Microsoft 365 tenant on your behalf.
• Accept full responsibility for the resulting configuration state of your M365 environment.
• Acknowledge that you have reviewed the proposed change and assessed its suitability for your environment.

Stellar IT Support Inc. is not liable for misconfigurations, service disruptions, data loss, or any other consequences resulting from auto-remediation actions that you have authorized, whether such consequences arise from the action itself or from interactions with your existing configuration.

We strongly recommend maintaining a Microsoft 365 configuration backup and testing framework deployments in a non-production tenant before deploying to production.

6. Data Residency

All customer data — including tenant configurations, security scan results, OAuth tokens, remediation history, audit logs, and account information — is processed and stored exclusively on database and compute infrastructure physically located in Canada.

6.1 Edge Portal Access Nodes

Stella Unified deploys web portal access nodes ("edge nodes") in multiple geographic regions to provide low-latency access to the application interface. These edge nodes:

• Serve only the web application interface (HTML, CSS, JavaScript assets).
• Do not process, cache, or store any customer data.
• Relay authenticated API requests to Canadian backend infrastructure over encrypted channels.
• Do not retain any data about your M365 tenant, scan results, tokens, or any other customer information.

If you access the Stella Unified portal from outside Canada, your browser receives application code from the nearest edge node, but all data queries and responses originate from and are processed by Canadian infrastructure.

6.2 Encryption

All customer data is encrypted at rest using AES-256 and in transit using TLS 1.3 or higher. OAuth tokens use additional per-tenant SQL-level encryption.

7. Multi-Tenant Isolation

Stella Unified is a multi-tenant platform. Each customer organization ("tenant") is logically isolated from all other tenants. We implement the following isolation controls:

• Encrypted per-tenant token storage — each tenant's Microsoft OAuth tokens are encrypted with tenant-specific keys stored separately from the token data.
• Scoped API access — all Microsoft Graph API calls are made using the specific tenant's OAuth token, ensuring no cross-tenant data access is possible at the API level.
• Row-level data isolation — all database records are scoped by tenant ID with enforced query filtering.
• Role-based access control — users can only access tenants to which they have been explicitly granted access by an authorized administrator.

No customer will ever have access to another customer's M365 data, scan results, tokens, or configuration.

8. Subscription & Billing

8.1 Free Trial

New accounts receive a 14-day free trial. The trial provides audit and reporting capabilities only. Auto-remediation and framework deployment features are not available during the trial period. No payment information is required to start a trial.

8.2 Paid Subscriptions

Paid subscriptions are billed at a flat monthly rate based on the selected tier. Billing occurs monthly in advance from the date your paid subscription begins. All prices are in Canadian dollars (CAD) unless otherwise stated. Applicable taxes (including GST/HST) will be applied based on your billing address.

8.3 Cancellation

You may cancel your subscription at any time through the billing settings within the portal or by contacting [email protected]. Cancellation takes effect at the end of the current billing period. You will retain access to the Service until the billing period ends. We do not provide prorated refunds for partial billing periods.

8.4 Price Changes

We reserve the right to change subscription pricing with a minimum of 30 days written notice. Continued use of the Service after the effective date of a price change constitutes your acceptance of the new pricing.

9. Prohibited Use

You agree not to use Stella Unified to:

• Attempt to access, scan, or remediate Microsoft 365 tenants for which you do not have explicit authorization from the tenant owner.
• Exploit the platform to gain unauthorized access to other customers' data or to cross tenant isolation boundaries.
• Submit prompt injection attacks, adversarial inputs, or malformed data intended to circumvent the platform's security or governance controls.
• Reverse engineer, decompile, disassemble, or otherwise attempt to derive the source code, algorithms, or cognitive architecture of the platform.
• Resell, sublicense, or white-label the Service without an express written reseller agreement with Stellar IT Support Inc.
• Use the Service for any unlawful purpose or in violation of any applicable Canadian federal or provincial law, including but not limited to unauthorized computer access under the Criminal Code of Canada.
• Circumvent, disable, or interfere with security features of the platform including rate limiting, authentication, or audit logging.
• Use automated scripts or bots to access the platform beyond normal API usage, or in a manner that places unreasonable load on our infrastructure.

10. Limitation of Liability

10.1 Disclaimer of Warranties

THE SERVICE IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT. WE DO NOT WARRANT THAT THE SERVICE WILL BE UNINTERRUPTED, ERROR-FREE, OR FREE FROM SECURITY VULNERABILITIES.

10.2 Exclusion of Consequential Damages

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, STELLAR IT SUPPORT INC. SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, EXEMPLARY, OR PUNITIVE DAMAGES ARISING FROM YOUR USE OF OR INABILITY TO USE THE SERVICE, INCLUDING BUT NOT LIMITED TO LOSS OF DATA, LOSS OF PROFITS, BUSINESS INTERRUPTION, SERVICE DISRUPTIONS, OR COSTS OF SUBSTITUTE SERVICES, EVEN IF WE HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

10.3 Cap on Liability

Our total aggregate liability to you for any and all claims arising out of or relating to these Terms or the Service shall not exceed the total subscription fees you paid to us in the twelve (12) calendar months immediately preceding the event giving rise to the claim.

The foregoing limitations apply to the fullest extent permitted by the laws of the Province of Alberta, Canada.

11. Intellectual Property

Stella Unified, the BlackHole Ecosystem cognitive platform, and all associated software, algorithms, user interfaces, trade names, trademarks, service marks, logos, documentation, and other intellectual property are owned by or licensed to Stellar IT Support Inc. All rights are reserved.

Nothing in these Terms grants you any right, title, or interest in or to the Service, its underlying technology, or any intellectual property owned by the Company, other than the limited right to use the Service in accordance with your subscription.

You retain ownership of all data you upload to or create within the Service. You grant Stellar IT Support Inc. a limited, non-exclusive, royalty-free licence to process your data solely for the purpose of providing the Service to you.

12. Termination

12.1 Termination by You

You may terminate your account at any time by cancelling your subscription as described in Section 8.3 and requesting account deletion at [email protected].

12.2 Termination by Us

We may suspend or terminate your access to the Service immediately and without notice if:

• You breach any provision of these Terms.
• We determine that your use of the Service poses a security risk to the platform or to other customers.
• We are required to do so by applicable law or by lawful order of a government authority.
• Your account remains unpaid for more than 15 days past the due date.

12.3 Data Deletion Upon Termination

Upon termination of your account for any reason, we will delete your customer data (including all M365 data, scan results, and OAuth tokens) within 30 days of the termination date. Audit logs may be retained for up to 1 year as required for our own compliance obligations. We will revoke all Microsoft Graph API access tokens associated with your account.

We recommend exporting any reports or data you wish to retain before terminating your account.

13. Governing Law

These Terms are governed by and construed in accordance with the laws of the Province of Alberta and the applicable federal laws of Canada, without regard to conflict of laws principles. Any dispute arising out of or relating to these Terms or the Service shall be subject to the exclusive jurisdiction of the courts of the Province of Alberta, Canada.

If any provision of these Terms is found to be invalid or unenforceable by a court of competent jurisdiction, that provision will be modified to the minimum extent necessary to make it enforceable, and the remaining provisions will continue in full force and effect.

14. Changes to These Terms

We may modify these Terms at any time. When we make material changes, we will provide you with at least 30 days notice by:

• Sending an email to the address associated with your account.
• Displaying a prominent notice within the Stella Unified portal.

Continued use of the Service after the effective date of updated Terms constitutes your acceptance of the changes. If you do not agree to the updated Terms you must cease using the Service before the effective date.

15. Contact

For questions, concerns, or notices regarding these Terms of Service, please contact us:

See also our Privacy Policy for information on how we handle your personal data.