Reliquary
Sign In

Reliquary Terms and Conditions

Effective Date: May 1, 2026
Service Provider: ACM Concepts, LLC, operating the Reliquary service
Contact: ACM Concepts, LLC, 56 Broad St STE 14227, Boston, MA 02109, (617) 683-1622, help@myreliquary.com

These Terms and Conditions (the "Terms") govern access to and use of Reliquary, including the Reliquary website, web application, storage and preservation workflow tools, public transfer pages, related APIs and infrastructure, support, documentation, and other services that link to these Terms (collectively, the "Service"). In these Terms, "Reliquary," "we," "us," and "our" mean ACM Concepts, LLC. "You" means the person or entity using the Service.

Please read these Terms carefully. By creating an account, clicking to accept, accessing or using the Service, executing an order form, or unlocking, previewing, or downloading a public transfer, you agree to these Terms. If you use the Service for an organization, you represent that you have authority to bind that organization, and "you" includes that organization.

1. Important Reliquary-Specific Notices

Reliquary is a cloud software, storage, and digital preservation workflow platform. It is not a regulated compliance service, legal hold platform, chain-of-custody system, professional records-management authority, backup replacement, cybersecurity guarantee, digital rights management system, or permanent or tamper-proof repository.

Without a separate written agreement signed by Reliquary:

  1. Reliquary does not provide legal, compliance, archival, records-management, security, privacy, tax, or professional advice.
  2. Reliquary does not promise compliance with HIPAA, FERPA, PCI DSS, SEC 17a-4, CUI, ITAR, export-control, eDiscovery, legal-hold, evidentiary, or other regulated requirements.
  3. Reliquary does not provide an uptime, support response, restoration, recovery, data durability, data availability, or preservation service-level commitment.
  4. BagIt packaging, checksums, manifests, validation, verification, previews, logs, dashboards, and storage estimates are technical tools and status indicators, not guarantees.
  5. Direct Uploads are raw stored files and are not BagIt packages.
  6. Preview Only transfer mode is not DRM, copy protection, or a guarantee that a recipient cannot capture, copy, cache, record, screenshot, save, or redistribute content.
  7. Password-protected transfers use optional link access controls. Reliquary does not verify recipient identity unless a separate written agreement expressly provides otherwise.
  8. Public transfer URLs, noindex tags, noarchive directives, and similar search-engine controls are not security controls and are not guarantees against discovery, indexing, caching, archiving, or third-party use.
  9. You are responsible for keeping independent backups or alternate copies of important files.
  10. Reliquary does not routinely review, classify, or scan Customer Content for legality, sensitivity, malware, rights, or regulatory status.

2. Definitions

Account means a Reliquary login, profile, team membership, billing profile, or similar account record.

Authorized User means a person invited or permitted by a Customer or Team Administrator to use the Service.

Bag means a digital package created or managed through the Service using BagIt-related workflows, including associated manifests, metadata, and stored files.

Customer means the person or entity that creates an Account, creates or controls a Team, enters into an Order, pays for the Service, or otherwise uses the Service.

Customer Content means all files, bags, direct uploads, manifests, metadata, names, paths, object names, descriptions, notes, transfer labels, deletion reasons, support submissions, and other content, information, data, or materials submitted to, stored in, transferred through, or processed by the Service by or for Customer.

Direct Upload means a raw file uploaded directly into Reliquary storage outside the BagIt workflow.

Documentation means Reliquary help materials, support pages, technical documentation, pricing pages, product notices, and other service documentation that Reliquary makes available.

Fees means subscription, seat, storage, operation, retrieval, egress, download, preview, extraction, staging, transfer, early deletion, tax, support, professional service, and other charges associated with the Service.

Order means an online checkout flow, subscription selection, pricing page, order form, statement of work, enterprise agreement, or other ordering document accepted by Reliquary.

Staging Files means temporary, operational, extracted, preview, upload, or working files created or used by the Service during uploads, bagging, verification, extraction, preview, transfer, cleanup, or other operations.

Team means a workspace, organization, vault environment, or other multi-user account area within the Service.

Team Administrator means a Customer representative or Authorized User with administrative permissions for a Team.

Transfer means a public or restricted link, transfer page, preview, download, or other sharing workflow created through the Service.

Transfer Recipient means any person who accesses, unlocks, previews, downloads, or otherwise interacts with a Transfer, whether or not that person has a Reliquary Account.

Vault means a Customer's protected cloud storage environment or storage area made available through Reliquary.

3. Accounts, Teams, Authority, and Eligibility

3.1 Minimum age

You must be at least 18 years old to create an Account or use the Service. The Service is not directed to children.

3.2 Authority to bind organizations

If you create, administer, or use a Team for a company, institution, library, archive, museum, nonprofit, agency, department, or other organization, you represent and warrant that you have authority to accept these Terms on behalf of that organization and to authorize Reliquary to process Customer Content, metadata, billing information, and related records for that Team.

3.3 Responsibility for users and activity

Customer is responsible for all activity under its Accounts and Teams, including activity by Authorized Users, Team Administrators, contractors, employees, agents, transfer creators, and anyone who obtains access through Customer's credentials, invitations, transfer links, passwords, or systems. Customer is responsible for maintaining accurate account, billing, and contact information.

3.4 Team administration and internal disputes

Team Administrators may add or remove users, configure settings, manage billing, create or deactivate Transfers, view or download Customer Content and metadata, view logs, submit deletion requests, and take other actions available to their role. Reliquary may rely on instructions from Account owners, Team Administrators, billing contacts, and Authorized Users shown in the Service. Reliquary is not responsible for disputes among team members, employees, contractors, departments, donors, successors, owners, or other parties claiming rights in a Team or Customer Content. Reliquary may suspend access, preserve data, require documentation, or decline instructions where we believe there is an ownership, authority, employment, billing, abuse, legal, or security dispute.

3.5 Account security

You are responsible for safeguarding passwords, OAuth accounts, email accounts, devices, browsers, sessions, transfer passwords, backup codes, and any multi-factor authentication settings. You must promptly notify Reliquary if you suspect unauthorized access. Reliquary may require email verification, reset credentials, revoke sessions, require additional authentication, restrict access, or suspend an Account for security reasons.

4. The Service

4.1 Service description

Reliquary provides software tools for storing, organizing, packaging, validating, retrieving, previewing, deleting, and transferring digital files. The Service may include Team workspaces, Vault provisioning, BagIt workflows, Direct Uploads, storage dashboards, public Transfer links, previews, downloads, billing tools, support, and related operational features.

4.2 Feature changes and limits

Reliquary may add, change, suspend, discontinue, or limit any feature at any time, including file types, file sizes, file counts, storage amounts, bandwidth, transfer limits, preview functionality, metadata fields, supported formats, APIs, storage classes, storage locations, retention settings, pricing, or user roles. Reliquary may block, throttle, reject, fail, pause, retry, or require repeat performance of uploads, downloads, extractions, previews, transfers, verifications, deletions, or other operations that exceed limits or create legal, security, cost, operational, provider, or reputational risk.

4.3 Separate written agreements

A separate written agreement signed by Reliquary may supplement or supersede these Terms only to the extent it expressly says so. Data processing agreements, business associate agreements, standard contractual clauses, institution-specific terms, custom API access, professional services, support SLAs, security commitments, regulated-data handling, or compliance-specific obligations apply only if expressly agreed in a separate written agreement.

5. Customer Content and License

5.1 Customer ownership

As between Customer and Reliquary, Customer retains ownership of Customer Content. Reliquary does not claim ownership of Customer Content.

5.2 License to operate the Service

Customer grants Reliquary and its service providers a worldwide, non-exclusive, royalty-free license to host, store, copy, transmit, process, index metadata, search metadata, display, package, validate, verify, extract, preview, stream, transfer, download, generate signed URLs for, create manifests or checksums for, back up, troubleshoot, secure, bill for, delete, and otherwise use Customer Content as necessary or appropriate to provide, maintain, secure, support, improve, enforce, comply with law regarding, and operate the Service.

5.3 Metadata and operational records

Customer Content includes metadata and descriptors such as filenames, paths, object names, bag metadata, file-level metadata, descriptions, notes, transfer labels, and deletion reasons. These items may contain personal data, confidential information, or sensitive information. Reliquary may store, index, search, display, log, and use metadata and operational records for Service operation, billing, support, security, abuse prevention, legal compliance, and dispute resolution.

5.4 No AI training on Customer Content

Reliquary will not use Customer Content to train artificial intelligence or machine learning models unless Customer expressly agrees in a separate written agreement. Reliquary may use aggregated or deidentified service metrics, usage data, diagnostic information, and operational statistics to operate, analyze, secure, and improve the Service, provided such data does not identify Customer or individuals in Customer Content.

5.5 Content access by Reliquary

Reliquary does not routinely review Customer Content. However, automated systems process Customer Content and metadata to provide the Service, and Reliquary personnel or service providers may access Customer Content or metadata when necessary for support, troubleshooting, security, abuse investigation, billing, deletion, legal process, Terms enforcement, or Service operation.

6. Customer Responsibilities

Customer is solely responsible for:

  1. selecting, uploading, describing, classifying, managing, retaining, transferring, previewing, exporting, and deleting Customer Content;
  2. ensuring that Customer has all rights, licenses, consents, permissions, notices, authorizations, and legal bases needed to upload, store, process, index, package, validate, preview, transfer, disclose, and delete Customer Content;
  3. ensuring Customer Content, metadata, transfer settings, passwords, retention decisions, deletion decisions, and recipient choices comply with applicable law and third-party obligations;
  4. determining whether Reliquary is appropriate for Customer's legal, institutional, donor, privacy, cultural, ethical, security, retention, export-control, and records-management requirements;
  5. maintaining independent backups or alternate copies of important files;
  6. verifying that uploads are complete, correct, and suitable for Customer's purposes;
  7. verifying that metadata, file paths, descriptions, manifests, bag details, and other descriptors are accurate and appropriate;
  8. evaluating whether downloaded, extracted, previewed, or transferred content remains usable, readable, complete, authentic, and appropriate for Customer's purposes; and
  9. all acts and omissions of Authorized Users and Transfer Recipients.

Reliquary does not pre-screen, classify, monitor, or scan Customer Content for legality, sensitivity, malware, regulated data, personal data, completeness, accuracy, authenticity, rights ownership, or compliance status.

7. Sensitive and Regulated Content

Unless Reliquary expressly agrees in a separate written agreement, Customer must not upload, store, process, transfer, or use the Service for content that requires special legal or compliance safeguards, including protected health information, payment card data, student education records, children's data, classified information, controlled unclassified information, export-controlled or ITAR-controlled technical data, sanctions-restricted data, highly sensitive biometric or genetic data, data subject to a legal hold requirement, or data whose storage or transfer would require Reliquary to comply with a special regulatory, contractual, governmental, or institutional framework.

If Customer uploads such content without a separate written agreement, Customer does so at its sole risk and remains fully responsible for all resulting obligations, claims, losses, and costs. Reliquary may suspend, disable, delete, restrict, or refuse to process such content.

8. Acceptable Use and Restrictions

You must not, and must not permit others to:

  1. use the Service unlawfully or in violation of these Terms, Documentation, an Order, or third-party rights;
  2. upload, store, transfer, or make available illegal content, malware, viruses, exploit code, destructive files, phishing materials, credential theft materials, spam, botnet activity, or content that facilitates unauthorized access or system abuse;
  3. upload, store, transfer, or make available content that infringes intellectual property rights, violates privacy, publicity, personality, confidentiality, contractual, donor, cultural, or ethical restrictions, or that Customer lacks rights to use;
  4. upload, store, transfer, or make available export-controlled, classified, sanctions-restricted, regulated, or high-risk content except as expressly permitted in a separate written agreement;
  5. use the Service to harass, threaten, defraud, impersonate, exploit, or harm others;
  6. bypass, disable, interfere with, probe, scan, test, overload, scrape, crawl, reverse engineer, decompile, or attempt to access non-public parts of the Service or underlying infrastructure;
  7. access or attempt to access Reliquary's internal API, gateway keys, API keys, signed URL generation, object storage, buckets, cost endpoints, idempotency keys, upload sessions, internal object names, or infrastructure except through authorized Service interfaces or a separate written agreement;
  8. share credentials, transfer passwords, signed URLs, sessions, or tokens in a way that violates these Terms or compromises security;
  9. remove proprietary notices or use Reliquary branding except as permitted by Reliquary;
  10. resell, sublicense, rent, lease, time-share, or provide the Service to third parties except as expressly permitted by the Service or a separate written agreement;
  11. use the Service for benchmarking, competitive analysis, model training, scraping, bulk extraction, or automated data collection without Reliquary's written permission;
  12. conduct vulnerability testing, penetration testing, load testing, or security research except through Reliquary's approved vulnerability reporting process; or
  13. use the Service in a way that could harm Reliquary, customers, Transfer Recipients, service providers, or the public.

Reliquary may suspend, restrict, disable, remove, preserve, report, or investigate any Account, Team, upload, file, Bag, Direct Upload, Transfer, preview, download, link, or activity if Reliquary believes it may violate these Terms, law, third-party rights, provider rules, payment obligations, or the rights, safety, security, or reputation of Reliquary or others.

9. Fees, Billing, Taxes, and Payment

9.1 Free accounts and paid features

Reliquary may permit free Account creation. Free or unpaid Accounts may be limited. Vault creation, cloud storage workflows, Bag creation, Direct Uploads, Transfers, previews, downloads, extraction, verification, storage dashboards, or other features may require active billing.

9.2 Subscription, seat, and usage fees

Customer must pay all Fees associated with its Account, Team, Order, plan, and use of the Service. Fees may include subscription charges, seat charges, stored bytes, storage class charges, operations, retrieval, egress, downloads, previews, transfer activity, extraction, staging files, early deletion, taxes, support, professional services, corrections, and other usage-based or service-related charges.

Reliquary may charge based on third-party provider measurements, Reliquary records, usage data, cost records, logs, estimates, storage line items, billing runs, pricing pages, Orders, or other reasonable billing sources. Reliquary may apply a markup, margin, platform fee, minimum fee, or other pricing component to underlying provider costs and is not required to disclose raw provider costs.

9.3 Payment processor

Reliquary may use Stripe or another payment processor. Customer authorizes Reliquary and its payment processor to charge Customer's payment method for all Fees. Customer must keep payment and billing information current. Payment processor terms may apply to payment processing.

9.4 Auto-renewal

Unless an Order says otherwise, paid subscriptions renew automatically for successive billing periods until cancelled in accordance with the Service or Order. Cancellation stops future renewal charges but does not automatically delete Customer Content, waive accrued Fees, or eliminate usage charges incurred before cancellation or while data remains stored.

9.5 Estimates and calculators are not binding

Storage estimates, current-month estimates, dashboard amounts, public calculator outputs, usage charts, billed-operations displays, and cost previews are informational only. They may be delayed, incomplete, rounded, estimated, corrected, or based on third-party provider data. They are not quotes, budgets, final invoices, audit trails, compliance reports, forensic logs, PREMIS event logs, chain-of-custody records, or legal records. Actual charges may differ and may include charges not shown in an estimate or calculator.

9.6 Invoices, corrections, and disputes

Reliquary may invoice monthly, at checkout, at renewal, or at other times, including corrective, supplemental, prorated, or off-cycle invoices. Reliquary may issue credits, adjustments, or corrections. Customer must raise any billing dispute within 30 days after the invoice date or charge notice, or Customer waives the dispute to the maximum extent permitted by law.

9.7 Taxes

Fees are exclusive of taxes unless expressly stated. Customer is responsible for all sales, use, VAT, GST, withholding, duties, levies, and similar taxes or charges, except taxes based on Reliquary's net income. If withholding is required, Customer must gross up payments so Reliquary receives the full amount due, unless prohibited by law.

9.8 Refunds

Fees are non-refundable except as required by law or expressly stated in an Order.

9.9 Nonpayment, chargebacks, and delinquency

For failed payment, chargeback, cancellation, delinquency, or prolonged nonpayment, Reliquary may, in its sole discretion and subject to applicable law: restrict the Account or Team to read-only mode; disable new uploads, Direct Uploads, verification, extraction, Transfers, previews, extensions, reactivations, or other billable activity; continue storing Customer Content; continue assessing storage or related charges; preserve files in archival storage until repayment or resolution; require payment before export or further access; send amounts to collection; suspend or terminate access; delete Customer Content after notice; or otherwise handle Customer Content case by case. Reliquary may retain billing, security, legal, support, abuse, deletion-review, and operational records regardless of Account status.

10. Vaults, Protected Storage, and Retention Controls

10.1 Vault provisioning

Vault creation and related storage workflows may require active billing and successful provisioning. Vault setup may fail, be delayed, require retries, require support, or be unavailable. Reliquary does not provide a provisioning time commitment unless expressly stated in a separate written agreement.

10.2 Storage controls

Reliquary may use cloud storage, retention policies, object versioning, bucket lock, public access prevention, uniform bucket-level access, encryption, access controls, and other technical safeguards designed to protect stored objects. These are technical service features and do not establish that Customer's use satisfies any legal, regulatory, evidentiary, archival, WORM, chain-of-custody, or records-management requirement.

10.3 Default retention periods

Reliquary's standard configuration may include a default 30-day retention period for archival storage and a default 7-day retention period for operations or staging storage. Retention policies, object versioning, provider behavior, legal requirements, account disputes, security review, nonpayment, and technical constraints may delay modification or deletion. Reliquary may change storage architecture, providers, storage classes, regions, retention settings, or retention periods prospectively or as needed for security, legal, operational, provider, or product reasons.

10.4 No permanence or immutability promise

Reliquary does not promise permanent storage, tamper-proof storage, legal immutability, WORM compliance, uninterrupted access, or preservation forever. Customer must maintain independent backups or alternate copies of important Customer Content.

11. BagIt Workflows, Validation, and Verification

Reliquary may provide BagIt-related workflows that allow users to create drafts, add metadata, preserve folder structure, upload files, generate packages, create manifests, calculate checksums, validate, verify, extract, download, or store completed Bags.

BagIt packaging, checksums, manifests, validation, verification, status indicators, and related outputs are preservation workflow tools provided on a commercially reasonable, best-effort basis. They are not a warranty that Customer Content is complete, accurate, authentic, legally admissible, legally compliant, malware-free, unaltered, corruption-free, restorable, readable in the future, or suitable for Customer's purposes. Reliquary does not guarantee that validation, verification, or fixity checks will detect all corruption, data loss, upload problems, metadata errors, malicious modifications, hidden content, unsupported formats, or authenticity issues.

Customer is responsible for verifying that selected files are correct, complete, lawful, appropriately described, backed up, and suitable for preservation. Verification, extraction, preview, and download operations may generate additional charges and may be unavailable in lapsed, read-only, suspended, or terminated states.

12. Direct Uploads

Direct Uploads are raw stored files. They are not BagIt packages and do not receive BagIt packaging, BagIt manifest validation, BagIt verification, BagIt extraction, metadata profile workflows, or BagIt status indicators unless Reliquary separately offers and Customer uses such functionality.

Direct Uploads may be stored, downloaded, previewed, transferred, billed, retained, and deleted through the Service and are subject to the same ownership, license, acceptable-use, payment, transfer, security, access, deletion, and limitation terms that apply to other Customer Content.

13. Staging Files, Extractions, Signed URLs, Downloads, and Previews

13.1 Staging and operations files

Staging Files are temporary working copies used for uploads, extractions, previews, transfers, cleanup, and other operations. They are not preserved Vault records. Reliquary may create, retain, charge for, display, hide, delete, or automatically clean up Staging Files. Customer deletion of active Staging Files may interrupt, fail, or terminate uploads, extractions, transfers, previews, or other operations.

13.2 Extraction and restoration expectations

Extraction creates temporary files or artifacts and may be subject to time limits, storage charges, retrieval charges, egress charges, cleanup, and technical failures. Reliquary does not guarantee that Customer Content can be extracted, previewed, rendered, restored, opened, migrated, or used by any particular software, system, browser, viewer, recipient, or environment.

13.3 Signed URLs, uploads, and downloads

Uploads, downloads, previews, and access links may use short-lived signed URLs, same-origin routes, redirects, direct browser-to-cloud-storage transfers, resumable upload sessions, or streaming mechanisms. These may expire, fail, need to be regenerated, be revoked, be limited, or incur charges. Browser behavior, network interruptions, CORS settings, cloud provider behavior, signed URL expiration, and client-side errors can affect upload and download success. Customer is responsible for confirming that uploads, downloads, exports, and transfers complete as intended, and is responsible for downloaded, exported, cached, previewed, printed, recorded, or otherwise accessed copies after access occurs.

13.4 Viewer and preview limitations

Preview functionality depends on browser behavior, file type, file size, network conditions, security restrictions, viewer libraries, conversion limits, and recipient systems. Unsupported, unsafe, oversized, or failed previews may show limited metadata or no preview. Preview functionality does not guarantee that content is safe, accurate, complete, accessible, private, or suitable for display.

14. Transfers and Transfer Recipient Terms

14.1 Customer responsibility for Transfers

Customer is solely responsible for deciding whether to create a Transfer, what content to include, which recipients receive the link or password, which access mode applies, when the Transfer expires, whether a password is used, whether the link is deactivated, and whether the Transfer is appropriate for the content. Customer is responsible for all consequences of sharing Transfer links or passwords.

14.2 Public links and passwords

Transfer links are public URLs, even if difficult to guess, password protected, expired later, deactivated later, or subject to noindex or noarchive controls. Passwords are optional link access controls, not identity verification. Anyone with the link and any required password may be able to access the Transfer. Reliquary does not verify recipient identity unless a separate written agreement expressly provides otherwise.

14.3 Expiration and deactivation

Expiration or deactivation may stop future access through the Reliquary link, but it cannot recall or delete copies already downloaded, previewed, cached, captured, printed, saved, recorded, screenshot, forwarded, indexed, archived, or otherwise obtained. Reliquary may disable, expire, refuse, modify, or restrict Transfer access because of pending deletion, nonpayment, abuse, security concerns, legal process, service limits, recipient activity, technical failures, or other lawful reasons.

14.4 Search-engine and crawler controls

Reliquary may use robots.txt, noindex, nofollow, noarchive, noai, or similar directives for certain pages. These directives are requests to compliant third parties; they are not security controls. Reliquary does not guarantee that any URL, page, metadata, preview, or content will not be discovered, crawled, indexed, cached, archived, scraped, trained on, recorded, or used by third parties.

14.5 Access modes and Preview Only

Transfer access modes may include download-only, download-and-preview, preview-only, or other modes. Preview Only generally removes visible download controls and blocks ordinary download routes, but it is not digital rights management, encryption, copy protection, or a guarantee that a recipient cannot obtain a copy. File bytes, rendered content, browser cache, media buffers, accessibility features, developer tools, network tools, screenshots, screen recordings, print-to-PDF, save-page behavior, extensions, or other methods may allow a recipient to copy, capture, store, or redistribute content. Customer should use Preview Only only with recipients it trusts and only for content Customer is willing to expose for viewing.

Preview attempts may be logged separately from downloads, may not increment download counts, and may generate usage, egress, retrieval, preview, or other charges.

14.6 Transfer logs

Reliquary may log Transfer activity, including public slug access, password submissions, preview attempts, download attempts, object names, file names, timestamps, IP addresses, user agents, success or failure status, cookies or session state, and related technical data. Reliquary may make these logs visible to Customer, Team Administrators, and others authorized by Customer. Transfer logs are operational and billing records, not guaranteed forensic, compliance, chain-of-custody, or legal audit records.

14.7 Transfer Recipient Terms

By accessing, unlocking, previewing, downloading, or otherwise using a Transfer, each Transfer Recipient agrees to these Transfer Recipient Terms and to the Privacy Policy:

  1. The Transfer Recipient represents that the Reliquary Customer who provided the link or password authorized the recipient to access the Transfer.
  2. The Transfer Recipient may access and use the Transfer content only as authorized by the Customer and applicable law.
  3. The Transfer Recipient must not bypass access controls, guess passwords, scrape, crawl, automate, attack, overload, interfere with, copy beyond authorization, redistribute beyond authorization, or attempt unauthorized access to the Service or content.
  4. The Transfer Recipient acknowledges that Transfer access may be logged by Reliquary and shared with the Customer and Team Administrators.
  5. The Transfer Recipient acknowledges that passwords are link access controls, not identity verification.
  6. The Transfer Recipient acknowledges that Preview Only is not DRM or copy protection and does not itself authorize copying or redistribution beyond the Customer's permission.
  7. The Transfer Recipient understands that Transfers may expire, be disabled, or become unavailable at any time.
  8. The Transfer Recipient agrees that Reliquary is not responsible for the Customer's decision to share content, the content itself, or any downstream use of the content.

15. Deletion Requests and Data Disposition

15.1 Request process

Customer may request deletion of certain Bags, Direct Uploads, or other Customer Content through the Service where available. Deletion is a manual, administrator-reviewed process and is not immediate. Reliquary will process deletion requests on a reasonable timeline, subject to these Terms, technical feasibility, account permissions, billing status, and applicable law.

15.2 Delay, denial, and limitations

Reliquary may acknowledge, approve, reject, delay, limit, or complete a deletion request based on retention settings, object versioning, legal process, legal holds, abuse or security investigations, account disputes, nonpayment, compliance obligations, technical constraints, active disputes, backups, provider limitations, court orders, law enforcement requests, or other lawful reasons.

15.3 Meaning of permanently deleted

A status of "permanently deleted" means Reliquary has completed the applicable deletion action for the relevant production storage object after manual administrative intervention. It does not necessarily mean that all related metadata, non-production copies, Staging Files, logs, indexes, backups, billing records, security records, support records, deletion-review records, legal records, or previously accessed, downloaded, previewed, cached, captured, recorded, or shared copies have been deleted.

15.4 Records retained after deletion

Reliquary may retain logs, billing records, usage records, security records, transfer logs, support messages, deletion-request records, admin notes, dispute records, legal records, aggregated or deidentified data, and other records for billing, tax, legal, security, abuse prevention, dispute resolution, audit, product operation, and compliance purposes, as described in the Privacy Policy.

16. Third-Party Services and Providers

Reliquary may use third-party service providers to host, store, transmit, process, bill, authenticate, monitor, analyze, support, secure, and operate the Service. These providers may include Google Cloud Platform services, Google Cloud Storage, Cloud SQL, Cloud Run, Cloud Scheduler, Secret Manager, Stripe, Crisp, Sentry, Google Analytics, CAPTCHA providers, Google OAuth, email providers, file-preview libraries, static or content delivery services, professional advisors, and other providers.

Third-party outages, changes, provider terms, abuse blocks, pricing changes, legal requirements, API changes, deprecations, availability limits, data-center behavior, security incidents, or provider failures may affect the Service. Reliquary is not responsible for third-party services except to the extent required by applicable law or a separate written agreement.

17. Security, Vulnerability Reporting, Support, and Availability

17.1 Security measures

Reliquary uses administrative, technical, and organizational measures designed to protect the Service. No Internet or cloud service can be guaranteed secure, uninterrupted, error-free, available, or immune from unauthorized access, disclosure, corruption, deletion, loss, malware, provider failure, or other security events.

17.2 Customer security responsibilities

Customer remains responsible for credential security, MFA configuration if available, email and OAuth account security, device security, browser security, Team membership, Authorized User management, transfer link sharing, transfer password selection, recipient verification, security settings, and independent backups.

17.3 Vulnerability reporting

Suspected vulnerabilities should be reported to help@myreliquary.com. Reliquary does not operate a formal bug bounty program and does not offer compensation unless expressly agreed in writing. Security researchers and users must not access, alter, exfiltrate, disclose, destroy, or disrupt data or systems; must not test against third-party systems without permission; must not conduct denial-of-service, social engineering, spam, phishing, physical attacks, or destructive testing; and must give Reliquary a reasonable opportunity to investigate and remediate before public disclosure.

17.4 Support and no SLA

Reliquary may provide support through email, chat, documentation, or other channels. Unless a separate written agreement says otherwise, support is provided on a commercially reasonable basis with no response-time, resolution-time, uptime, restoration, recovery, data durability, data availability, or service-level commitment. Reliquary may perform maintenance, upgrades, migrations, security fixes, provider changes, feature changes, emergency actions, suspensions, and service interruptions.

18. Privacy

Reliquary's Privacy Policy describes how Reliquary collects, uses, discloses, and retains personal data. Customer is responsible for providing required notices and obtaining required consents for personal data contained in Customer Content, metadata, Transfers, support submissions, and other materials Customer submits to or processes through the Service. Team Administrators and organization owners may access, export, view, delete, or otherwise control information associated with a Team according to their permissions.

19. Reliquary Intellectual Property; Feedback

Reliquary and its licensors own all rights, title, and interest in and to the Service, software, interfaces, workflows, designs, Documentation, trademarks, logos, service marks, templates, reports, aggregated analytics, know-how, and related intellectual property, excluding Customer Content. No rights are granted except as expressly stated in these Terms.

If you submit suggestions, ideas, feedback, bug reports, feature requests, or other recommendations, Reliquary may use them without restriction or compensation to you, provided Reliquary does not identify you as the source without permission.

20. Suspension and Termination

20.1 Termination by Customer

Customer may stop using the Service or cancel a subscription as described in the Service or applicable Order. Cancellation does not automatically delete Customer Content, waive accrued Fees, eliminate charges for stored content or prior usage, or remove records Reliquary may retain under these Terms or the Privacy Policy.

20.2 Suspension or termination by Reliquary

Reliquary may suspend, restrict, disable, or terminate access to any Account, Team, feature, Customer Content, Transfer, preview, download, or other part of the Service if Reliquary believes: you violated these Terms; payment is overdue; a chargeback occurred; use creates legal, security, abuse, provider, billing, operational, or reputational risk; Customer Content may be unlawful or infringing; an Account dispute exists; required information is inaccurate; the Service is discontinued; or suspension is necessary to protect Reliquary, customers, providers, recipients, or the public.

20.3 Effect of termination

Upon suspension or termination, Customer must stop using the affected Service. Reliquary may disable access, restrict the Account to read-only mode, allow or deny export, preserve files in archival storage, continue assessing Fees, delete Customer Content after notice where appropriate, or take other lawful action. Sections that by their nature should survive survive termination, including payment obligations, ownership, licenses needed to wind down or enforce rights, acceptable-use obligations, deletion and retention provisions, disclaimers, limitations of liability, indemnities, dispute resolution, and general terms.

21. Copyright and DMCA Notices

Reliquary respects intellectual property rights. If you believe content available through the Service infringes your copyright, you may send a notice to:

ACM Concepts, LLC
Attn: Copyright Notice / Reliquary
56 Broad St STE 14227
Boston, MA 02109
(617) 683-1622
help@myreliquary.com

A copyright notice should include: (1) your physical or electronic signature; (2) identification of the copyrighted work claimed to be infringed; (3) identification of the allegedly infringing material and information reasonably sufficient to locate it; (4) your contact information; (5) a statement that you have a good-faith belief the use is not authorized by the copyright owner, its agent, or the law; and (6) a statement, under penalty of perjury, that the information in the notice is accurate and you are authorized to act on behalf of the copyright owner.

Reliquary may remove or disable access to allegedly infringing content, disable Transfers, notify the Customer, terminate repeat infringers, or take other action. If you believe your content was removed by mistake, you may send a counter-notice with the information required by applicable law. Reliquary may restore content where permitted by law.

22. Disclaimers

To the maximum extent permitted by law, the Service and all Customer Content processing, storage, uploads, downloads, Transfers, previews, BagIt workflows, validation results, verification results, extraction results, storage dashboards, billed-operations displays, estimates, calculators, logs, reports, support, Documentation, and third-party services are provided "as is" and "as available."

Reliquary disclaims all warranties, whether express, implied, statutory, or otherwise, including warranties of merchantability, fitness for a particular purpose, title, non-infringement, accuracy, availability, security, quiet enjoyment, data durability, data integrity, compliance, preservation, authenticity, legal admissibility, future readability, and course of dealing or usage of trade.

Reliquary does not warrant that the Service will be uninterrupted, timely, secure, error-free, complete, accurate, compatible, compliant, recoverable, non-corrupt, malware-free, or available at any particular time or location; that Customer Content will be preserved, readable, restorable, usable, legally admissible, compliant, or error-free; that validation, verification, checksums, manifests, or logs will detect all problems; that cost estimates or billing dashboards will be accurate or complete; or that public links, passwords, preview-only settings, search-engine directives, or security controls will prevent unauthorized access, copying, indexing, caching, disclosure, capture, or use.

23. Limitation of Liability

To the maximum extent permitted by law, Reliquary and its affiliates, officers, directors, employees, contractors, agents, licensors, and service providers will not be liable for any indirect, incidental, consequential, special, exemplary, punitive, enhanced, or similar damages; lost profits; lost revenue; lost savings; loss of goodwill; business interruption; procurement of substitute services; replacement costs; restoration costs; data reconstruction costs; loss, corruption, deletion, disclosure, unavailability, or failure to preserve Customer Content; loss of records; inability to comply with obligations; recipient misuse; transfer-link misuse; or third-party claims arising from Customer Content, Transfers, recipients, or Customer's use of the Service.

To the maximum extent permitted by law, Reliquary's total aggregate liability for all claims arising out of or relating to the Service or these Terms will not exceed the greater of (a) the Fees paid by Customer to Reliquary for the Service giving rise to the claim during the 12 months before the event giving rise to liability, or (b) US$100. For Transfer Recipients or users who have not paid Fees, Reliquary's total aggregate liability will not exceed US$100.

These limitations apply regardless of legal theory, whether contract, tort, negligence, strict liability, warranty, statute, equity, or otherwise, and even if a limited remedy fails of its essential purpose. The Fees and allocation of risk in these Terms reflect these limitations.

Some jurisdictions do not allow certain limitations. In those jurisdictions, Reliquary's liability is limited to the greatest extent permitted by law.

24. Indemnification

To the maximum extent permitted by law, Customer will defend, indemnify, and hold harmless Reliquary and its affiliates, officers, directors, employees, contractors, agents, licensors, and service providers from and against all claims, demands, actions, damages, losses, liabilities, penalties, fines, settlements, costs, expenses, attorney fees, investigation costs, remediation costs, provider charges, chargebacks, taxes, and other amounts arising out of or relating to:

  1. Customer Content, metadata, or Customer's use of Customer Content;
  2. Customer's use of the Service;
  3. Customer's Authorized Users, Team Administrators, transfer creators, or Transfer Recipients;
  4. Transfers, public links, passwords, previews, downloads, recipient selection, recipient misuse, or downstream distribution;
  5. alleged or actual infringement, misappropriation, privacy violation, publicity-right violation, confidentiality breach, donor restriction violation, export-control violation, regulated-data violation, or other legal violation involving Customer Content;
  6. Customer's failure to obtain rights, licenses, consents, notices, or legal bases;
  7. illegal content, malware, sensitive or regulated data, or prohibited content submitted by or for Customer;
  8. Customer's breach of these Terms, an Order, or applicable law; or
  9. disputes among Customer's users, employees, contractors, owners, donors, departments, successors, or other parties claiming rights in an Account, Team, or Customer Content.

Reliquary may control the defense of any indemnified matter. Customer may not settle any matter in a way that imposes obligations or liability on Reliquary without Reliquary's prior written consent.

25. Dispute Resolution, Arbitration, Class Waiver, and Governing Law

25.1 Informal resolution

Before filing a claim, you and Reliquary agree to try to resolve the dispute informally. The party raising the dispute must send written notice describing the dispute and requested relief. Notices to Reliquary must be sent to ACM Concepts, LLC, 56 Broad St STE 14227, Boston, MA 02109, with a copy to help@myreliquary.com. The parties will have 30 days after notice to attempt resolution, unless emergency relief is needed.

25.2 Governing law

These Terms and any dispute arising out of or relating to the Service are governed by the laws of the State of Delaware, without regard to conflict-of-law rules, except that the Federal Arbitration Act governs the interpretation and enforcement of the arbitration provisions below.

25.3 Arbitration agreement

Except for the exceptions below, you and Reliquary agree that any dispute, claim, or controversy arising out of or relating to these Terms or the Service will be resolved by binding arbitration administered by the American Arbitration Association under its applicable rules. The arbitration will be conducted in English. Unless the arbitrator requires otherwise, the proceeding may be conducted by video conference, telephone, or written submissions. The arbitrator may award individual relief available in court, subject to these Terms.

25.4 Exceptions

Either party may bring an individual claim in small claims court if it qualifies. Either party may seek injunctive or equitable relief in court for intellectual property misuse, unauthorized access, security abuse, confidentiality violations, nonpayment, or misuse of the Service. Reliquary may bring collection actions for unpaid Fees in court or arbitration.

25.5 Class action and jury trial waiver

To the maximum extent permitted by law, you and Reliquary agree to bring claims only on an individual basis and not as a plaintiff or class member in any class, collective, consolidated, private attorney general, or representative action. The arbitrator may not consolidate claims or preside over any class or representative proceeding. To the maximum extent permitted by law, you and Reliquary waive any right to a jury trial.

25.6 Venue if arbitration does not apply

If a claim is not subject to arbitration, or if the arbitration agreement is found unenforceable for a claim, the parties consent to the exclusive jurisdiction and venue of the state and federal courts located in Delaware, except for small claims and emergency equitable relief where another venue is legally required.

25.7 Arbitration opt-out

You may opt out of arbitration by sending written notice to ACM Concepts, LLC, 56 Broad St STE 14227, Boston, MA 02109, within 30 days after you first accept these Terms. The notice must include your name, email address, Account or Team name if applicable, and a clear statement that you opt out of arbitration. Opting out of arbitration does not opt you out of the class action waiver, jury trial waiver, governing law, or venue provisions to the extent enforceable.

26. Changes to These Terms

Reliquary may update these Terms from time to time. Reliquary may provide notice by posting updated Terms, sending email to the Account address, providing in-app notice, including notice on an invoice, or other reasonable means. Updated Terms are effective on the date stated unless a later date is provided. Continued use of the Service after the effective date constitutes acceptance of the updated Terms. If you do not agree to updated Terms, you must stop using the Service and cancel your subscription, subject to accrued payment obligations and data disposition terms.

27. General Terms

27.1 Order of precedence

If these Terms conflict with an Order or separate written agreement signed by Reliquary, the Order or separate agreement controls only for the conflicting term and only for the Customer and Service covered by that Order or agreement.

27.2 Export and sanctions

You must comply with all applicable export-control, sanctions, and trade laws. You represent that you are not located in, organized under the laws of, or ordinarily resident in a country or region subject to comprehensive U.S. sanctions and are not on any restricted party list. You must not use the Service for prohibited end uses or with prohibited parties.

27.3 U.S. service posture

The Service is intended for use in the United States. Reliquary does not intentionally target or localize the Service for other jurisdictions unless expressly agreed in writing. If you access the Service from outside the United States, you do so at your own risk and are responsible for compliance with local law, subject to rights that cannot be waived by law.

27.4 Force majeure

Reliquary is not liable for delay or failure caused by events beyond its reasonable control, including cloud provider failures, internet failures, power failures, labor disputes, natural disasters, war, terrorism, civil unrest, government action, legal process, cyberattacks, security incidents, epidemics, payment processor failures, third-party service outages, or supply constraints.

27.5 Assignment

You may not assign these Terms or any rights or obligations under them without Reliquary's prior written consent. Reliquary may assign these Terms in connection with a merger, acquisition, financing, corporate reorganization, sale of assets, change of control, or by operation of law.

27.6 Severability and waiver

If any provision is unenforceable, it will be modified to the minimum extent necessary to make it enforceable, or severed if modification is not possible, and the remaining provisions will remain in effect. Reliquary's failure to enforce a provision is not a waiver.

27.7 Notices

Reliquary may send notices by email, in-app notification, posting, invoice notice, or other reasonable means. You must send legal notices to ACM Concepts, LLC, 56 Broad St STE 14227, Boston, MA 02109, with a copy to help@myreliquary.com.

27.8 Entire agreement

These Terms, the Privacy Policy, any applicable Order, and any separate written agreement signed by Reliquary form the entire agreement between you and Reliquary regarding the Service and supersede prior or contemporaneous agreements on the same subject.

28. Contact

Questions about these Terms may be directed to:

ACM Concepts, LLC
Attn: Reliquary Legal
56 Broad St STE 14227
Boston, MA 02109
(617) 683-1622
help@myreliquary.com