EULA & customer terms.

Published clause

§ Audit & Verification

The OrbitalReg software is licensed per installation — one installation is one independent OrbitalReg cluster with its own Postgres database and its own install_id. Customer's order form names the maximum number of installations Customer may operate under the licence.

Each installation embeds an Ed25519 signing key generated locally at first boot. On request, and no more often than twice in any twelve-month period, Customer agrees to run orbital license audit-export on every installation operated under the licence and to email the resulting signed envelope to support@orbitalreg.com within fifteen (15) business days of the request.

The envelope contains the installation's install_id, first-boot timestamp, host fingerprints (hostname, hashed MAC addresses, hashed machine-id), and a footprint snapshot (projects / repositories / artifacts counts and the most recent upload timestamp). No project, repository, artifact, user, or permission data leaves the installation — only counts and hashes.

Orbital Holdings UG (haftungsbeschränkt) verifies the envelope signatures offline against the public key the installation established with its first report under the licence. If the number of distinct install_id / fingerprint pairs received under a single licence exceeds the contracted maximum, Customer agrees to either (i) provide a signed audit envelope retiring the excess installation within thirty (30) days, or (ii) procure additional installation seats at the then-current list price.

The audit-export command is fully offline-capable; the envelope never leaves the installation through any channel other than the ones Customer's own operators choose. Air-gapped installations can transport the envelope on removable media. We treat received envelopes as confidential under the same provisions as the rest of Customer's data.