Last updated: March 3, 2026
Cloud Evidence (“the Service”) provides automated compliance evidence collection and framework mapping for AWS cloud infrastructure. The Service scans AWS resource configuration metadata via a read-only IAM role deployed in your account and generates compliance reports, scores, and exportable evidence packages.
The Service is intended for internal compliance monitoring and audit evidence generation. You may export and share evidence packages with your auditors, compliance teams, and authorized third parties as needed for your compliance program.
The Service operates exclusively through a read-only IAM role. We do not create, modify, or delete any resources in your AWS account. Our scanner collects configuration metadata only — we never access the contents of your S3 objects, databases, or application data.
We strive for continuous availability but do not guarantee a specific uptime SLA during the current product phase. Scheduled maintenance windows will be communicated via email. Scan results are retained for 400 days.
Cloud Evidence provides compliance evidence and framework mappings as informational tools. The Service does not constitute legal, regulatory, or audit advice. Compliance determinations are ultimately the responsibility of your organization and your auditor. We are not liable for audit outcomes or regulatory decisions based on evidence generated by the Service.
You may terminate your account at any time. Upon termination, we will delete your data in accordance with our Privacy Policy. We reserve the right to suspend accounts that violate these terms or engage in abusive use of the platform.
We may update these terms from time to time. Material changes will be communicated via email to the address on your account. Continued use of the Service after changes take effect constitutes acceptance of the updated terms.
For questions about these terms, contact us at legal@cloudevidence.io.