Terms of Service

Compass DaaS provides structured restaurant discovery, restaurant enrichment, and conservative dietary-fit decision endpoints. The Service is designed to return explainable, evidence-backed, deterministic, verifiable, traced, structured, and grounded outputs about restaurants and related dietary signals. Compass DaaS is a business-to-business API. It is not a consumer restaurant directory, emergency service, medical service, nutrition service, or food safety certification service.

The current public API includes search, enrichment, and restaurant-fit decision endpoints. Compass may add, remove, or change API endpoints, fields, examples, SDKs, documentation, scoring methods, source policies, and operational controls as the Service develops. Material changes to stable public API behavior will be described in documentation, changelog notes, customer notices, or order forms where commercially reasonable.

You may use Compass DaaS only if you are at least 18 years old and are acting for a business, product team, research organization, or other legal entity that can enter into a binding contract. You may not use Compass DaaS if you are barred from doing so under applicable law, sanctions rules, export controls, or a prior suspension by Compass.

You must provide accurate account, billing, and contact information and keep it current. Compass may send operational, billing, security, legal, and service notices to the email address associated with your account. You are responsible for all activity under your account, API keys, and Customer product integrations, whether or not you authorized the activity, except to the extent caused by Compass's breach of these Terms.

Compass issues API keys for authenticated access. Sandbox keys use a test prefix such as cmp_test_*. Paid production keys use a live prefix such as cmp_live_*. Customer integrations must use current Compass key formats.

You are responsible for keeping all API keys and related secrets confidential. You must not publish, embed in public client code, commit to public repositories, share in unsecured tickets, or expose cmp_live_* keys to end users. You must use reasonable technical and organizational safeguards for key storage, access, rotation, and revocation.

If you believe a key has been exposed, compromised, misused, or accessed without authorization, you must promptly rotate or revoke the key through the customer portal or available API-key management flow and notify Compass at security@compassfoodtechnologies.com. Compass may rotate, revoke, suspend, or limit keys when necessary to protect the Service, Customer data, other customers, or third parties.

Compass may support zero-downtime key rotation by issuing a replacement key and allowing the old key to work for a limited grace period. The current technical flow uses a 24-hour grace period before the old key is deactivated. Compass may shorten or bypass the grace period if there is evidence of compromise, abuse, nonpayment, or legal risk.

Public self-serve pricing is based on Compass credits. Unless a separate written order form says otherwise, launch pricing is:

Compass may offer trials, coupons, credits, private pricing, negotiated Enterprise order forms, or legacy plans. If there is a conflict between these Terms and an executed order form, the order form controls for that Customer.

Paid self-serve subscriptions are billed through Stripe or another payment processor shown at checkout. You authorize Compass and its payment processor to charge applicable subscription fees, taxes, and usage charges. You must keep billing information accurate and promptly update failed or expired payment methods.

Fees are non-refundable except where required by law or expressly stated in an order form. Compass may change future pricing or plan limits with reasonable notice. Price changes do not apply retroactively to amounts already billed.

Compass credits measure API usage. Unless the documentation or an order form states a different multiplier, each successful or authenticated API request consumes one Compass credit. Certain endpoints, batch operations, refresh jobs, high-volume exports, or Enterprise features may consume more than one credit per operation if documented or agreed in writing.

Self-serve plans use a hard monthly quota cap by default. When a Customer reaches the monthly quota or burst rate limit for its plan, Compass may return a rate-limit or quota-exceeded response instead of processing additional requests. Compass is not required to provide automatic overages for Sandbox, Indie, Pro, or Team plans. A Customer that needs more volume should upgrade or enter an Enterprise order form.

Enterprise plans may include custom volume, negotiated overage pricing, custom rate limits, a separate SLA, and additional redistribution terms. Those terms must be in a written order form or other signed agreement.

Compass may show usage through headers, dashboards, invoices, or usage reports. Compass's usage records are the system of record for billing and quota enforcement unless an order form states another process for dispute resolution.

Subject to these Terms, Compass grants you a limited, non-exclusive, non-transferable, revocable right during the subscription term to access Compass DaaS and use Compass outputs in your own product, service, internal workflow, research, customer support workflow, or end-user experience.

You may use Compass outputs inside your product or service delivered to your end users, including in restaurant discovery, travel planning, hospitality, delivery, food-planning, or agent workflows, so long as the output is used as part of your product and not sold as a standalone raw data product.

You may not:

1. Sell, license, publish, or provide bulk access to raw Compass output as a standalone data product.
2. Use Compass output to create, train, seed, populate, benchmark, or operate a competing DaaS, restaurant data API, dietary scoring API, or substantially similar commercial dataset.
3. Redistribute Compass's dataset, scoring methodology, reason-code system, evidence pointers, or raw outputs in a way that allows a third party to reconstruct Compass's dataset or substitute for Compass DaaS.
4. Remove required attribution, provenance, source notices, or disclaimers.
5. Present Compass output as certified safe, medically reviewed, nutritionally complete, allergy-safe, legally compliant, or guaranteed accurate.

Enterprise customers may receive broader redistribution rights, white-label rights, bulk delivery, custom caching, or internal data export rights only through a written order form or separate license.

You may use Compass outputs to support Customer product features, including retrieval, ranking, classification, prompt context, evaluation, analytics, and product-specific models that operate within Customer's own application or service.

You may not use Compass outputs to train, fine-tune, evaluate, distill, or improve a general-purpose foundation model, broadly available model, or third-party model platform without a separate written license from Compass. You also may not use Compass outputs to train a model that competes with Compass DaaS or allows third parties to obtain a substitute for Compass's dataset, scoring methods, reason codes, or dietary-fit decisions.

This section does not limit Compass's own rights to operate, maintain, test, improve, secure, and develop Compass DaaS, subject to Compass's Privacy Policy, DPA, source-risk policy, and applicable law.

You must use Compass DaaS lawfully, fairly, and within plan limits. You must not use the Service to harm users with dietary needs, mislead end users, evade rate limits, interfere with service integrity, reverse engineer protected systems, scrape Compass output at scale outside plan rights, or violate source restrictions.

The Acceptable Use Policy is incorporated into these Terms. Compass may enforce it by warning, limiting, suspending, terminating, or seeking damages where appropriate. If the Acceptable Use Policy conflicts with these Terms, these Terms control unless the Acceptable Use Policy states a stricter operational rule for abuse prevention or security.

You retain ownership of Customer data that you submit to Compass DaaS, such as account information, support messages, billing metadata, request inputs, restaurant records submitted for matching, and configuration settings. You grant Compass the rights needed to receive, host, process, log, secure, transmit, and return that data to provide and improve the Service, prevent abuse, comply with law, and enforce these Terms.

You are responsible for ensuring that you have the rights and legal bases needed to send data to Compass. You must not send sensitive personal data, health data, payment card data, children's data, login credentials, or data that requires special safeguards unless a written agreement with Compass expressly permits it.

Compass's processing of personal data is described in the Privacy Policy. Where Compass processes personal data on behalf of a Customer as a processor or service provider, Compass's Data Processing Agreement, available on request, governs that processing. Where Compass acts as a controller for its own account, billing, security, marketing, support, and website data, the Privacy Policy governs.

Unless a written agreement states otherwise, Compass may retain API request logs for up to 90 days for debugging, quota accounting, abuse detection, security, reliability, and support. Compass may retain abuse, security, fraud, and audit logs for up to 12 months where necessary to protect the Service, investigate incidents, enforce these Terms, or comply with legal obligations, and longer if needed for an active investigation or legal hold.

Customer account data is retained while the account is active. After termination or account closure, Compass will delete or de-identify Customer account data within 30 days where reasonably feasible, except for data retained for billing, tax, legal, security, dispute, backup, fraud-prevention, or compliance purposes. Billing, tax, invoice, and accounting records may be retained as required by law, often up to 7 years.

Restaurant data, source-derived evidence, scoring methods, reason-code taxonomy, and Compass-created outputs are not Customer-specific account data and may remain in Compass's dataset after a Customer account terminates, subject to Compass's source-risk policy, privacy obligations, and applicable law.

This clause is important and should be surfaced to Customer teams and end users where Compass output affects dietary decisions.

Compass output is informational only. Compass output is not medical, nutritional, dietary, allergy, religious, ethical, or food-safety advice. Compass does not warrant that any restaurant, menu item, dish, ingredient, venue, score, reason code, label, or decision is safe, suitable, complete, current, or accurate for any specific person, allergy, intolerance, medical condition, pregnancy, medication, religious requirement, ethical requirement, strict vegan requirement, kosher requirement, halal requirement, gluten-free requirement, or other dietary requirement.

Compass outputs can be incomplete, stale, wrong, or based on limited evidence. Restaurants may change menus, ingredients, preparation surfaces, fryers, suppliers, staff practices, allergen disclosures, or ownership without notice. Cross-contact risk may be unknown even when a restaurant appears suitable.

Customer is responsible for independent verification before relying on Compass output in end-user-facing decisions. Customer must provide clear, appropriate disclaimers to its end users and must not tell users that Compass has certified, guaranteed, or medically reviewed any restaurant, dish, or dietary decision. If a user has an allergy, medical condition, strict dietary requirement, or religious requirement, Customer should direct that user to verify directly with the restaurant, venue, qualified professional, or other appropriate source before acting.

Compass and its licensors retain all rights in Compass DaaS, including the API, software, documentation, datasets, database structures, source policies, scoring methodology, reason-code taxonomy, evidence model, user interface, trademarks, service marks, and Compass-created outputs, except for the limited license granted to Customer in these Terms.

Customer retains rights in Customer's own products, applications, prompts, workflows, submitted data, and end-user relationships. Customer does not acquire ownership of Compass IP by accessing the Service, receiving outputs, paying fees, or integrating Compass DaaS.

Feedback is voluntary. If you provide suggestions, comments, benchmarks, bug reports, feature requests, or other feedback, Compass may use that feedback without restriction or compensation, so long as Compass does not disclose Customer confidential information contrary to these Terms.

Each party may receive nonpublic business, technical, financial, security, product, or operational information from the other party that is marked confidential or should reasonably be understood to be confidential. The receiving party must use confidential information only to perform under these Terms, protect it with reasonable care, and disclose it only to personnel, contractors, advisors, processors, or representatives who need to know it and are bound by confidentiality duties.

Confidential information does not include information that is public without breach, already known without restriction, independently developed without use of the disclosing party's confidential information, or lawfully received from a third party without confidentiality duties. A party may disclose confidential information when required by law if it gives legally permitted notice and reasonable cooperation.

Compass will use commercially reasonable care to operate Compass DaaS, maintain access controls, preserve the explainable and traced nature of outputs, and address security, reliability, and data-quality issues consistent with the maturity of the Service and the applicable plan.

Except for that commitment and any express commitments in an order form, Compass DaaS is provided "as is" and "as available." To the maximum extent permitted by law, Compass disclaims all warranties, whether express, implied, statutory, or otherwise, including warranties of merchantability, fitness for a particular purpose, non-infringement, uninterrupted availability, error-free operation, and accuracy or completeness of outputs.

Compass does not guarantee that the Service will meet Customer's requirements, that any restaurant or menu data will be complete or current, that any decision will be correct for a specific user, or that any output will satisfy Customer's legal, medical, food-safety, religious, or compliance obligations.

To the maximum extent permitted by law, neither party will be liable for indirect, incidental, special, consequential, exemplary, or punitive damages, or for lost profits, lost revenue, lost goodwill, lost data, business interruption, or substitute services, even if the party knew or should have known that such damages were possible.

To the maximum extent permitted by law, each party's total aggregate liability arising out of or relating to these Terms will not exceed the amounts Customer paid to Compass for the Service during the 12 months before the event giving rise to liability. If Customer used only the free Sandbox plan, Compass's total aggregate liability will not exceed USD $100.

Customer will defend, indemnify, and hold harmless Compass and its officers, directors, employees, contractors, affiliates, and agents from and against claims, damages, losses, liabilities, costs, and expenses, including reasonable attorneys' fees, arising from or related to:

1. Customer's product, service, integration, or end-user claims.
2. Customer's misuse of Compass DaaS or Compass output.
3. Customer's breach of these Terms, the Acceptable Use Policy, an order form, or applicable law.
4. Customer's failure to provide appropriate end-user disclaimers or verification steps.
5. Claims that Customer data, Customer instructions, or Customer use of outputs violates third-party rights.
6. End-user dietary, allergy, medical, nutritional, religious, ethical, or food-safety claims arising from Customer's product or Customer's reliance on Compass output.

Compass will promptly notify Customer of a covered claim, allow Customer to control the defense, and reasonably cooperate at Customer's expense. Customer may not settle a claim in a way that admits fault by Compass or imposes non-monetary obligations on Compass without Compass's written consent.

Compass may suspend or limit access immediately if Compass reasonably believes that continued access would create security risk, service instability, legal risk, nonpayment risk, source-risk exposure, harm to users, breach of the Acceptable Use Policy, or risk to Compass or another customer. Compass will try to give notice where reasonable, but notice may be delayed or omitted for urgent security, abuse, or legal reasons.

Either party may terminate a subscription for material breach if the breach is not cured within 30 days after written notice. Compass may terminate or suspend for nonpayment if payment is not made within the stated payment period or after reasonable notice. Customer may terminate self-serve paid plans at the end of the then-current billing period through the available account or billing flow. Enterprise termination rights are governed by the applicable order form.

Upon termination, Customer must stop using Compass DaaS, stop using live API keys, and delete or stop serving Compass outputs except to the extent a written agreement allows continued use of previously received outputs. Sections on fees, license restrictions, confidentiality, IP, disclaimers, liability, indemnification, data retention, and dispute resolution survive termination.

The Privacy Policy explains Compass's privacy practices. Compass's Data Processing Agreement is available on request and applies where Compass processes personal data on behalf of a Customer as a processor or service provider. The Acceptable Use Policy sets operational rules for misuse, security, and prohibited conduct. An SLA applies only if it is included in an Enterprise order form or other signed agreement. Public marketing statements do not create an SLA unless they are expressly incorporated into a written agreement.

If there is a conflict, the order of priority is: signed order form, DPA for data-processing matters, these Terms, SLA for service-credit matters, Acceptable Use Policy, and documentation.

Compass may update these Terms from time to time. Compass will provide at least 30 days' notice for material changes that reduce Customer rights or materially increase Customer obligations, unless a shorter period is needed for legal, security, abuse-prevention, or operational reasons. Notice may be given by email, account notice, website notice, documentation notice, or another reasonable method.

Continued use of Compass DaaS after the effective date of updated Terms means Customer accepts the updated Terms. If Customer does not agree to a material change, Customer may stop using the Service and terminate the affected subscription before the change takes effect.

These Terms are governed by the laws of the State of Delaware, United States, without regard to conflict-of-law rules.

Before starting a formal claim, the parties will try to resolve the dispute informally for 30 days after written notice. If the dispute is not resolved, the dispute will be resolved by binding arbitration administered by a recognized arbitration provider under its commercial rules, seated in Delaware, in English, with one arbitrator. Either party may seek injunctive or equitable relief in court for misuse of confidential information, infringement, security risk, or unauthorized use of Compass IP.

Legal notices to Compass should be sent to legal@compassfoodtechnologies.com and to Compass Food Technologies Inc., 131 Continental Dr, Suite 305, Newark, New Castle County, Delaware 19713, United States. Privacy requests should be sent to privacy@compassfoodtechnologies.com. Abuse reports should be sent to abuse@compassfoodtechnologies.com. Security reports should be sent to security@compassfoodtechnologies.com.

Compass may send notices to the email address associated with Customer's account, through the customer portal, or through other reasonable means.

Neither party may assign these Terms without the other party's prior written consent, except that Compass may assign these Terms in connection with a merger, acquisition, corporate reorganization, or sale of substantially all assets. These Terms do not create a partnership, joint venture, agency, fiduciary relationship, franchise, or employment relationship. If any provision is unenforceable, the remaining provisions remain in effect. Failure to enforce a provision is not a waiver. These Terms, together with referenced policies and order forms, are the entire agreement between the parties for Compass DaaS.