Terms of Service.

These terms govern your use of DealTracker. Please read them carefully, with particular attention to the sections on AI output, limitation of liability, and the order of precedence with your Order Form and Data Processing Agreement.

Last updated: 28 June 2026

These Terms of Service (the “Terms”) are entered into between DealTracker Technologies, Inc., a Delaware corporation (“DealTracker,” “we,” “us,” or “our”), and the organization that subscribes to or otherwise uses the Service (“Customer,” “you,” or “your”). They govern your access to and use of the DealTracker platform, the system of record for confidential mergers and acquisitions and financing transactions. By accessing or using the Service, you agree to these Terms.

1. Agreement structure and order of precedence

These Terms form the master agreement governing all use of the Service. Together with the documents listed below, they constitute the entire agreement between you and DealTracker (collectively, the “Agreement”):

Where an Order Form references these Terms, the Order Form governs the commercial relationship for the products and quantities it describes, and these Terms govern all other aspects of that relationship. In the event of a conflict, the following order of precedence applies, from highest to lowest: (a) the executed Order Form, for its subject matter; (b) the DPA, for the processing of Personal Data; (c) the Security Addendum, for security measures; (d) these Terms; and (e) any other referenced policy. The DPA controls over these Terms with respect to its subject matter.

2. Definitions

Capitalized terms used in these Terms have the meanings set out below.

“Service”
the DealTracker software-as-a-service platform, including its websites, applications, application programming interfaces, AI Features, documentation, and any related support, as described in an Order Form.
“Order Form”
an ordering document or enterprise agreement executed by the parties that specifies the subscribed products, the number of Authorized Users or seats, the term, the fees, and the data-residency region. EU and US Azure regions are available, selected per customer at onboarding and pinned in the agreement; the identity tenant follows the data region; multi-region high availability and disaster recovery remain on the roadmap.
“Customer Data”
all data, documents, deal records, obligations, notes, contacts, calendar items, email metadata, and other content that Customer or its Authorized Users submit to, upload to, or generate within the Service, including Input and Output.
“Input”
the prompts, instructions, documents, and other Customer Data that Customer or its Authorized Users submit to the AI Features.
“Output”
the results generated by the AI Features in response to Input, including extracted fields, summaries, drafts, and agent responses.
“AI Features”
the artificial-intelligence-assisted functionality of the Service, including document extraction, analysis, and the in-product agent.
“Authorized User”
an individual whom Customer authorizes to use the Service under Customer’s account, such as a partner, associate, in-house counsel, or administrator at a law firm or in-house legal team.
“Workspace”
the isolated tenant environment within the Service that holds a Customer’s data and to which its Authorized Users have access.
“Confidential Information”
non-public information disclosed by one party to the other that is identified as confidential or that a reasonable person would understand to be confidential, as further described in Section 10.
“Personal Data”
any information relating to an identified or identifiable natural person, as defined under applicable data-protection law and the DPA.
“Documentation”
the user guides, security and trust materials, and technical specifications that DealTracker makes generally available for the Service.
“Sub-processor”
a third party engaged by DealTracker to process Customer Data in connection with the Service, as listed in the sub-processor register referenced in the DPA and in our Trust Center.

3. Acceptance and authority to bind

You accept these Terms by executing an Order Form that references them, by clicking to accept them, or by accessing or using the Service. If you accept these Terms or use the Service on behalf of an organization, you represent and warrant that you have the legal authority to bind that organization to the Agreement, and references to “you” and “Customer” mean that organization. If you do not have that authority, or if you do not agree to these Terms, you must not access or use the Service. Continued use of the Service after an update to these Terms takes effect, in accordance with Section 21, constitutes acceptance of the updated Terms.

4. The Service and license to use it

Subject to the Agreement and to Customer’s payment of the applicable fees, DealTracker grants Customer a limited, non-exclusive, non-transferable, non-sublicensable, revocable right to access and use the Service during the subscription term, solely for Customer’s internal business purposes and only by its Authorized Users. The scope of this right, including the number of seats or Authorized Users and any usage limits, is set out in the applicable Order Form.

This is a grant of a right to access a hosted service; it is not a sale, and no copy of the underlying software is delivered to Customer. DealTracker reserves all rights in and to the Service not expressly granted in the Agreement. DealTracker may modify, enhance, or discontinue features of the Service from time to time, provided that it will not materially reduce the core functionality subscribed under an active Order Form during its term.

5. Accounts, Authorized Users, and security responsibilities

To use the Service, Customer and its Authorized Users must register an account. Customer is responsible for the accuracy of its account information and for maintaining the confidentiality of all credentials used to access the Service. Access is invitation-based; there is no self-service signup into an existing Workspace.

Customer is responsible for all activity that occurs under its account and its Authorized Users’ accounts, and for ensuring that each Authorized User complies with the Agreement. Workspace administrators manage user access, roles, and permissions within the Workspace, and are responsible for promptly deactivating accounts that should no longer have access. Customer must keep credentials and multi-factor authentication factors secure and must notify DealTracker promptly at security@getdealtracker.com of any suspected unauthorized access to or use of the Service. DealTracker is not responsible for losses arising from unauthorized use of credentials that Customer or its Authorized Users failed to keep secure.

6. Acceptable use and prohibited conduct

Customer and its Authorized Users must use the Service in compliance with all applicable laws and with the Agreement. Customer must not, and must not permit any Authorized User or third party to:

DealTracker may suspend an Authorized User’s or Customer’s access in accordance with Section 14 where it reasonably believes the Service is being used in breach of this Section, where required to protect the security, availability, or integrity of the Service, or where required by law.

7. Customer Data and ownership

As between the parties, Customer owns and retains all right, title, and interest in and to Customer Data, including its documents, deal records, Input, and Output. DealTracker claims no ownership of, and acquires no intellectual-property rights in, Customer Data.

Customer grants DealTracker a limited, non-exclusive, worldwide license to host, copy, transmit, process, and display Customer Data solely as necessary to provide, maintain, secure, and support the Service for Customer, and as otherwise instructed by Customer through its use of the Service. This license exists only to operate the Service and ends when Customer Data is deleted or the Agreement terminates, except as needed to complete deletion and to comply with law.

For Customer Data and the Personal Data within it, DealTracker acts as a processor and Customer (the law firm or in-house legal team) acts as the controller, as further described in the DPA referenced in Section 19. DealTracker processes Customer Data only on Customer’s documented instructions and does not process it for its own purposes. DealTracker does not sell or share Customer Data, and, as set out in Section 9, does not use Customer Data to train, fine-tune, or improve any AI model. Where the Service produces Output, any similarity between Output generated for different customers reflects the general capabilities of the underlying models and the nature of the request; it is not, and must not be construed as, the disclosure of one customer’s content to another.

Customer is responsible for the accuracy, quality, and legality of Customer Data and for its right to submit Customer Data to the Service. Customer must not submit data to the Service that it is not entitled to process, and must obtain all consents and provide all notices required for DealTracker to process Customer Data as contemplated by the Agreement.

8. AI Features, output disclaimers, and human review

The Service includes AI Features that draft, summarize, extract, and answer questions over deal content. These features are research and drafting tools intended to support the work of qualified professionals, not to replace their judgment.

Output is informational only and is not legal advice. Output generated by the AI Features does not constitute legal advice, and the use of the Service does not create an attorney-client relationship between Customer (or any individual) and DealTracker. DealTracker is not a law firm and does not practice law.

Output may contain errors and is provided without any warranty of accuracy or completeness. AI-generated Output may be incomplete, inaccurate, or otherwise unsuitable for a particular purpose. DealTracker makes no representation or warranty that Output is accurate, current, complete, or fit for any purpose, and Output must not be relied upon without independent verification.

A qualified human must review Output before any reliance. Customer is responsible for reviewing, validating, and exercising independent professional judgment over all Output before relying on it or acting on it, and a qualified lawyer must review Output where it bears on legal matters. Where Output is grounded in source material, the Service provides citations so that a reviewer can check Output against the underlying record. As between the parties, Customer is solely responsible for any decision made or action taken on the basis of Output.

The AI Features operate under a human-in-the-loop model for actions that change data: the agent can retrieve, summarize, and propose an action, but no deal record, obligation, contact, or other matter data is created, changed, or sent until an authenticated, authorized Authorized User confirms the specific change. AI Features run under the same access controls and Workspace scoping as the requesting user, and a feature runs on its declared model and returns an error rather than rerouting silently to another model or provider.

Customer and its Authorized Users remain solely responsible for compliance with applicable rules of professional conduct, including competence, confidentiality, and supervision of non-lawyer tools, and nothing in the Service or Agreement transfers, reduces, or satisfies those duties.

9. AI training and data-use restrictions

DealTracker does not use Customer Data, including documents, deal data, Input, or Output, to train, fine-tune, retrain, evaluate for product improvement, or otherwise improve any foundation model or shared model. This commitment is contractual and is not an account setting that can be toggled.

The AI Features perform inference on foundation models hosted within Microsoft Azure, in Customer’s pinned data-residency region: OpenAI GPT through the Azure OpenAI Service and Anthropic Claude through Azure AI Foundry. DealTracker selects the best model for each task; the choice is configured per service and verified at publish. A feature runs on its declared model and returns an error rather than rerouting silently to another model or provider. A Customer may opt out of a specific provider. In production, DealTracker does not call OpenAI or Anthropic directly; both are reached only as model providers hosted inside Azure, which acts as the processor for inference. The applicable Azure AI service terms prohibit the use of prompts and completions to train, retrain, or improve any Microsoft or third-party model, and that prohibition extends to both providers for data processed through those services.

Customer Data is not persisted beyond what is required to operate the Service: the agent’s conversation context is held in a short-lived cache with a 24-hour time-to-live and is not written to the database, and the raw model request and response are held only in memory for the duration of the call. Separately, and outside DealTracker’s stores, the Azure OpenAI service may retain prompts and completions for up to 30 days for abuse monitoring and policy enforcement, within Customer’s region and not subject to routine human review, unless contractual Zero Data Retention is established for a deployment; Zero Data Retention is not in force by default today. Matter document content processed for extraction runs on the assigned path under each provider’s no-training “Covered Models” terms, is used only to perform that request, and is not retained beyond it. The full treatment of AI data handling is set out in our Trust Center and, for the binding terms, in the DPA. DealTracker may collect and use aggregated, de-identified usage data that does not identify Customer, any Authorized User, or any Customer Data, solely to operate, secure, and improve the Service.

10. Confidentiality

Each party (the “Receiving Party”) may have access to the Confidential Information of the other party (the “Disclosing Party”). Customer Data is Customer’s Confidential Information. The Receiving Party must: (a) use the Disclosing Party’s Confidential Information only to perform under or exercise its rights under the Agreement; (b) protect it with at least the degree of care it uses for its own confidential information of like importance, and in no event less than reasonable care; and (c) not disclose it to any third party except to its personnel, advisors, and Sub-processors who need it to perform under the Agreement and who are bound by confidentiality obligations no less protective than these.

Confidential Information does not include information that the Receiving Party can show is or becomes publicly available without breach of the Agreement, was rightfully known to it without confidentiality obligation before disclosure, is rightfully received from a third party without confidentiality obligation, or is independently developed without use of the Confidential Information. If the Receiving Party is compelled by law or legal process to disclose Confidential Information, it must, to the extent legally permitted, give the Disclosing Party prompt notice so that the Disclosing Party may seek protective treatment, and must disclose only what is legally required. The obligations in this Section survive termination of the Agreement and continue for so long as the information remains confidential.

11. Intellectual property and reservation of rights

As between the parties, DealTracker owns and retains all right, title, and interest in and to the Service, including its software, models, configurations, user interfaces, Documentation, and all improvements, enhancements, and derivative works of any of the foregoing, together with all intellectual-property rights therein. Except for the limited rights expressly granted in Section 4, no rights in the Service are granted to Customer by implication, estoppel, or otherwise.

Customer retains ownership of Customer Data and Output as set out in Section 7. If Customer or an Authorized User provides DealTracker with suggestions, ideas, or other feedback about the Service, Customer grants DealTracker a perpetual, irrevocable, royalty-free, worldwide license to use that feedback to operate and improve the Service, without obligation or attribution to Customer.

12. Third-party services and integrations

The Service may offer optional integrations with third-party services and may rely on Sub-processors to deliver core functionality. The optional Microsoft Outlook integration, for example, connects to Customer’s own Microsoft 365 tenant through Microsoft Graph; when an Authorized User opens a linked email in DealTracker, the body is fetched live from Customer’s tenant for that request only and is never written to DealTracker’s stores. DealTracker stores only email metadata (sender, subject, timestamp, conversation identifier, a deep link back to the source message, and an optional bounded preview snippet), never email bodies or attachments.

Customer’s use of any third-party service is governed by that third party’s own terms and privacy practices, and Customer is responsible for enabling, configuring, and authorizing such integrations. DealTracker is not responsible or liable for third-party services that it does not control. DealTracker engages Sub-processors under written agreements with data-protection terms; the maintained sub-processor register, the regions in which each operates, the change-notice commitment, and Customer’s right to object are described in our Trust Center and govern under the DPA.

13. Fees and payment

Fees for the Service are set out in the applicable Order Form and are governed by it. Unless the Order Form states otherwise, fees are stated exclusive of taxes, are invoiced as described in the Order Form, and are payable in the currency and within the period specified there. Customer is responsible for all taxes, levies, and duties associated with its purchase, other than taxes based on DealTracker’s net income.

Undisputed amounts not paid when due may accrue interest at the lower of one and one-half percent per month or the maximum rate permitted by law, and DealTracker may suspend the Service for non-payment in accordance with Section 14 after providing notice and a reasonable opportunity to cure. If Customer disputes an invoice in good faith, it must notify DealTracker in writing before the due date and identify the disputed amount; the parties will work in good faith to resolve the dispute, and Customer will pay all undisputed amounts when due. Except as expressly stated in the Agreement or required by law, fees are non-refundable and payment obligations are non-cancelable. Refund handling on termination, if any, is governed by the Order Form.

14. Term, suspension, and termination

The Agreement begins on the effective date of the first Order Form and continues for the subscription term stated there. Subscription terms renew, if at all, on the terms set out in the applicable Order Form, including any auto-renewal mechanics and renewal-notice periods specified there.

Either party may terminate the Agreement or an Order Form for cause if the other party materially breaches the Agreement and fails to cure the breach within thirty (30) days after receiving written notice of it. Termination for convenience, if available, is governed by the applicable Order Form. DealTracker may suspend Customer’s or an Authorized User’s access to the Service, in whole or in part, on notice where reasonably necessary to address: (a) a material breach of Section 6; (b) a security risk to the Service or its users; (c) a violation of applicable law; or (d) non-payment of undisputed fees that remains uncured after notice. DealTracker will limit any suspension to what is reasonably necessary and will restore access promptly once the cause is resolved.

Effect of termination

On expiration or termination of the Agreement, Customer’s right to access the Service ends. For a defined period following termination, as stated in the Order Form, Customer’s Workspace administrators may export Customer Data from the Service, and DealTracker will, on request, provide reasonable assistance with export. After that period, and in any event on Customer’s instruction, DealTracker will delete Customer Data in accordance with the Agreement and its published retention and deletion practices: verified deletion completes in the live structured stores within thirty (30) days, and deleted records then age out of the encrypted backup window as it rolls forward, subject to any legal hold and to obligations to retain data as required by law. On Customer’s request, DealTracker will provide a written, signed certificate of destruction confirming deletion across all stores, naming the stores covered, the live-store completion date, and the backup roll-off date. Any provision of the Agreement that by its nature should survive termination, including Sections 7, 9, 10, 11, 13 (for accrued amounts), 16, 17, 18, 20, 22, and 23, survives termination.

15. Representations and warranties

Each party represents and warrants that it has the legal power and authority to enter into the Agreement and that it will comply with all laws applicable to its performance under the Agreement. DealTracker warrants that the Service will perform materially in accordance with its Documentation during the subscription term; Customer’s exclusive remedy, and DealTracker’s sole obligation, for a breach of this warranty is the correction of the non-conformity or, if DealTracker cannot do so within a reasonable period, termination of the affected subscription and a refund of any prepaid fees for the unused portion of the term. Customer represents and warrants that it has all rights necessary to submit Customer Data to the Service and to grant the license in Section 7, and that its use of the Service will comply with Section 6.

16. Disclaimer of warranties

Except for the express warranties stated in Section 15, and to the maximum extent permitted by applicable law, the Service is provided “AS IS” and “AS AVAILABLE,” and DealTracker disclaims all other warranties, whether express, implied, statutory, or otherwise, including any implied warranties of merchantability, fitness for a particular purpose, title, and non-infringement, and any warranties arising from course of dealing or usage of trade. DealTracker does not warrant that the Service will be uninterrupted, error-free, or secure, or that it will meet Customer’s requirements. Without limiting the foregoing, and as set out in Section 8, DealTracker makes no warranty as to the accuracy, completeness, or fitness of any Output, which is AI-generated, may contain errors, is not legal advice, and must be reviewed by a qualified human before reliance.

17. Limitation of liability

To the maximum extent permitted by applicable law, neither party will be liable to the other for any indirect, incidental, special, consequential, exemplary, or punitive damages, or for any loss of profits, revenue, goodwill, or anticipated savings, or for any loss or corruption of data beyond DealTracker’s obligations under the Agreement, arising out of or relating to the Agreement, even if the party has been advised of the possibility of such damages.

To the maximum extent permitted by applicable law, each party’s total aggregate liability arising out of or relating to the Agreement will not exceed the total fees paid or payable by Customer for the Service in the twelve (12) months immediately preceding the event giving rise to the claim.

The limitations and exclusions in this Section do not apply to: (a) Customer’s payment obligations; (b) either party’s indemnification obligations under Section 18; (c) a party’s breach of its confidentiality obligations under Section 10 (other than a breach arising from a security incident affecting Customer Data, which is subject to the cap above); (d) either party’s infringement or misappropriation of the other party’s intellectual-property rights; or (e) liability that cannot be limited or excluded under applicable law, including liability for fraud, gross negligence, or willful misconduct. The parties agree that the allocation of risk in this Section is a fundamental basis of the bargain between them.

18. Indemnification

DealTracker will defend Customer against any third-party claim alleging that the Service, when used in accordance with the Agreement, infringes or misappropriates that third party’s intellectual-property rights, and will indemnify Customer for damages and reasonable costs finally awarded against it or agreed in settlement for such a claim. DealTracker has no obligation under this Section to the extent a claim arises from Customer Data, from Customer’s use of the Service in breach of the Agreement, from modifications not made by DealTracker, or from combination of the Service with items not provided by DealTracker. If the Service becomes, or DealTracker believes it may become, the subject of an infringement claim, DealTracker may, at its option, procure the right for Customer to continue using the Service, modify or replace the Service to make it non-infringing, or terminate the affected subscription and refund any prepaid, unused fees.

Customer will defend DealTracker against any third-party claim arising from Customer Data or Input, from Customer’s or its Authorized Users’ use of the Service in breach of the Agreement or applicable law, or from Customer’s reliance on or use of Output, and will indemnify DealTracker for damages and reasonable costs finally awarded or agreed in settlement for such a claim. The indemnified party must give the indemnifying party prompt written notice of the claim, reasonable cooperation, and sole control of the defense and settlement, provided that no settlement imposing a non-monetary obligation or admission on the indemnified party may be entered into without its consent, not to be unreasonably withheld.

19. Data protection and the DPA

For its processing of Personal Data within Customer Data, DealTracker acts as a processor (and, under the California Consumer Privacy Act and the California Privacy Rights Act, as a service provider) on behalf of Customer, who acts as the controller (or business). The parties’ respective obligations for the processing of Personal Data are set out in the Data Processing Agreement, which is incorporated into the Agreement by reference and which, where executed, governs and controls over these Terms with respect to its subject matter. The DPA carries the full Article 28 terms required under the EU General Data Protection Regulation and the UK GDPR, the EU Standard Contractual Clauses and the UK International Data Transfer Addendum (and reliance on the EU-US Data Privacy Framework where applicable), the sub-processor regime with advance change-notice and a right to object, assistance with data-subject requests, the security measures in any Security Addendum, and the deletion and certificate-of-destruction commitments referenced in Section 14. DealTracker does not sell or share Personal Data. As set out in the DPA, DealTracker’s processor breach-notification follows the DPA’s commitment to notify Customer without undue delay, and within 72 hours of confirmation. To execute or review the DPA, contact privacy@getdealtracker.com.

20. Governing law and dispute resolution

The Agreement, and any dispute arising out of or relating to it or to the Service, is governed by the laws of the State of Delaware, United States, without regard to its conflict-of-laws principles, and excluding the United Nations Convention on Contracts for the International Sale of Goods. Subject to the following sentence, the parties submit to the exclusive jurisdiction of the state and federal courts located in the State of Delaware, and each party waives any objection to venue in those courts. Before initiating proceedings, the parties will attempt in good faith to resolve any dispute through escalation to senior representatives of each party. Nothing in this Section prevents either party from seeking injunctive or other equitable relief in any court of competent jurisdiction to protect its intellectual property or Confidential Information. Where mandatory data-protection law of Customer’s jurisdiction (including in the European Union or United Kingdom) grants Customer rights or forums that cannot be waived by contract, nothing in this Section limits those rights.

21. Changes to these terms

DealTracker may update these Terms from time to time. For material changes, DealTracker will notify Workspace administrators at least thirty (30) days before the change takes effect, by email or through the Service. For Customers under an active paid subscription, changes to these Terms apply on the start of the next renewal term unless the parties agree otherwise or the change is required by law or to address a security or legal risk. Continued use of the Service after a change takes effect constitutes acceptance of the updated Terms. Where required by an Order Form or by law, changes that materially diminish Customer’s rights during a paid term will not apply to that term without Customer’s consent.

22. Miscellaneous

Entire agreement. The Agreement is the entire agreement between the parties regarding the Service and supersedes all prior or contemporaneous agreements, proposals, and communications, whether written or oral, on that subject. No term in a Customer purchase order or similar document is binding on DealTracker.

Severability. If any provision of the Agreement is held unenforceable, that provision will be limited or severed to the minimum extent necessary, and the remaining provisions will remain in full force and effect.

Waiver. No failure or delay by a party in exercising any right under the Agreement is a waiver of that right, and no waiver is effective unless in writing and signed by the waiving party.

Assignment. Neither party may assign the Agreement without the other party’s prior written consent, except that either party may assign the Agreement in its entirety, on notice and without consent, to a successor in connection with a merger, acquisition, corporate reorganization, or sale of all or substantially all of its assets. Any attempted assignment in violation of this Section is void. The Agreement binds and benefits the parties and their permitted successors and assigns.

Subcontracting. DealTracker may engage Sub-processors and subcontractors to perform under the Agreement, and remains responsible for their performance, subject to the sub-processor terms of the DPA.

Force majeure. Neither party is liable for any delay or failure to perform (other than payment obligations) caused by events beyond its reasonable control, including acts of God, natural disasters, war, terrorism, civil unrest, labor disputes, governmental action, internet or utility failures, or failures of third-party providers.

Relationship of the parties. The parties are independent contractors. The Agreement does not create any partnership, joint venture, agency, fiduciary, or employment relationship, and neither party may bind the other.

Export and sanctions compliance. Each party will comply with applicable export-control, sanctions, and anti-corruption laws. Customer represents that it and its Authorized Users are not subject to sanctions or located in an embargoed jurisdiction, and that it will not use the Service in violation of such laws.

Notices. Notices under the Agreement must be in writing. Notices to DealTracker must be sent to legal@getdealtracker.com and, where a hard copy is required, to DealTracker’s registered office at 131 Continental Dr, Suite 305, Newark, Delaware 19713 and to its UK principal place of business at 172 Floyer Road, Small Heath, Birmingham, B10 9NA, United Kingdom; notices to Customer may be sent to the administrative contact on its account. Notices are effective on receipt, or, for email, on confirmed delivery during business hours.

23. Notices and contact

For questions about these Terms or to send a legal notice, contact us at legal@getdealtracker.com.

For data-protection matters, the DPA, and data-subject or erasure requests, contact privacy@getdealtracker.com. For security questionnaires and vulnerability reports, contact security@getdealtracker.com.

DealTracker Technologies, Inc. · getdealtracker.com

Registered office: 131 Continental Dr, Suite 305, Newark, Delaware 19713. UK principal place of business: 172 Floyer Road, Small Heath, Birmingham, B10 9NA, United Kingdom.