Terms of Service

Effective 2026-04-20. Plain-language draft — this is v1 developer-facing; a legal-reviewed version will supersede it.

Intended use

AppAttest delivers your API keys and service tokens to your iOS app after Apple App Attest verifies the app at runtime. The secrets live in our infrastructure until your app proves it's really your app, and then they land in the device Keychain.

The pattern we support is secrets-of-secrets: the keys AppAttest delivers authenticate calls from your app to services you operate or consume, such as third-party APIs, a backend you run, or signed upload endpoints. The end user of your app is not a user of AppAttest.

What you can store

Things AppAttest is designed for:

• API keys for third-party services (OpenAI, Anthropic, Stripe publishable or restricted keys, analytics vendors, feature flag services).
• Short-lived service tokens issued to your app.
• Signing or encryption keys used by your app to call services you operate.
• Per-environment configuration values that must not ship in the binary.

What you cannot store

The following categories are prohibited on AppAttest. Uploading them is a Terms violation and may result in account suspension without refund.

• Protected health information (PHI), as defined by HIPAA or equivalent regulation.
• Payment card data (PCI), including cardholder data, primary account numbers, CVV / CVC values, or full magnetic stripe / chip data.
• Government-issued identifiers, including Social Security numbers, national ID numbers, passport numbers, driver's license numbers, and tax IDs.
• End-user personally identifiable information (PII). AppAttest secrets belong to your app as an identity, not to the people using it. Do not stage per-user data here.
• Credentials that grant administrative control over your AppAttest account or billing.
• Any data you are contractually or legally required to encrypt at rest under a key you control exclusively.

If a secret's disclosure would trigger a regulated breach-notification obligation, it does not belong in AppAttest.

Acceptable use

• One tenant's secrets stay within that tenant. You may not use AppAttest to relay secrets across accounts you do not own.
• You may not use AppAttest to deliver payloads unrelated to authenticating your app, such as application content, configuration at the feature level for end users, or executable code.
• You are responsible for registering bundle identifiers you have the right to use.
• Automated traffic that attempts to exhaust another tenant's quota or to extract secrets outside the attested-device path is prohibited and will be blocked.

Billing

Each project on AppAttest is independent for billing. Sandbox usage is included indefinitely for development. A project becomes live by subscribing: subscribing IS the act of going live. The per-project subscription includes an allowance of requests per cycle; usage above that allowance is metered against the rates published on the pricing page and drawn from a per-project prepaid balance you fund via top-up. Subscription and balance are independent — canceling the subscription does not affect the balance, and topping up the balance does not affect the subscription. Balance can never go below zero; when allowance and balance are both exhausted, delivery for that project pauses until you top up or the next cycle resets.

Each project gets a small trial allowance of production requests before subscribing — drawn from the eventual first cycle's allowance, so the total budget for cycle one is unchanged. The trial lets you verify your live configuration end-to-end without committing.

Termination

You can cancel at any time from the dashboard. We can suspend accounts for violations of the content prohibitions above, for repeated automated abuse, or for non-payment. On suspension, delivery stops. On deletion, stored secrets are destroyed within 30 days.

Liability

AppAttest is provided on an as-is basis. Our liability is limited to the fees you paid in the 12 months preceding the event giving rise to the claim. Apple App Attest is a service of Apple Inc. and subject to Apple's own terms; AppAttest is not responsible for Apple platform outages or policy changes that affect attestation availability.

Contact

Questions or a suspected violation: hello@appattest.dev.