Welcome to Doppler™. Doppler is a platform for engineering teams to manage their digital authentication credentials, including passwords, API keys, certificates, tokens, and encryption keys across all of their environments, tools, and processes.
These Terms of Service (“Terms”) define your rights and our rights in relation to the use of the services provided by Doppler Technologies, Inc. (“Doppler”, “we”, “us”, “the Company”) through the website at doppler.com (the “Doppler Website”), through any applications and/or through any Command Line Interfaces (the “Doppler CLI”). The Doppler Website and applications, the Doppler CLI and the services provided by or through the Doppler Website and applications and the Doppler CLI are collectively known in these Terms as the “Services”.
Doppler is constantly modifying and improving the Services. We may introduce new products and features, change existing products and features, or discontinue products and features from the Services at any time. Currently we offer the following products:
1.1 Enclave. Enclave vaults and manages your secrets and configurations (“Secrets”). It includes access controls, logs, versioning and can also be installed for use in a local development environment using the Doppler CLI.
Projects and Environments: You can create projects on Enclave to manage your Secrets. Each project holds a list of configurations that live in an environment and support user access control and versioning of changes. The environments currently supported in a project are development, staging and production.
User Access: Doppler currently offer 3 levels of user access for Enclave – owner, admin and member. Owners have access to everything in the Doppler workplace. Admins have access to the entire Doppler workplace except the Team, Settings, and Billing dashboards. Members are individual contributors. They do not have access to Enclave projects initially and must be added by an owner or admin. You can add users to your workplace through manual invites, email Single-Sign-On, and SAML Single-Sign-On. Note that Doppler may continue to modify/add access controls.
Additional Features: Enclave supports combining Secrets with a straightforward pattern and has a few special secrets you can use which make it easier to track where you are in your CI/CD pipeline. A logging and versioning system is also built into Enclave. Every action within a configuration, like adding a Secret, is logged.
1.2 Radar. Radar is a continuous monitoring tool that connects to GitHub and scans your repositories in real-time for accidentally committed Secrets, including API keys, database connection strings, credentials, certificates, and other sensitive data. This is intended to curb Secrets sprawl, fraudulent use of and unauthorized access to Secrets. Some of the use cases that Radar is designed to tackle with continuous usage are: (i) preventing new Secrets from entering your codebase, (ii) detecting attempts to bypass policies, (iii) tracking migration Secrets from codebase to Secrets manager over time, (iv) educating engineers on next steps and best security practices, and (v) detailing a disaster relief plan for rotation.
1.3 Doppler CLI. The Doppler Command Line Interface (CLI) provides a consistent experience when developing locally to production. It is a lightweight binary that comes provided in a number of package managers and Docker images.
2.1 If you sign up for an account on the Services, you agree to (a) provide accurate, current and complete information as may be prompted by account setup forms on the Services (“Registration Data”); (b) maintain the security of your password and account information; (c) maintain and promptly update the Registration Data, and any other information you provide to Doppler, and keep it accurate, current and complete. You are responsible for all activity on your Doppler account, and for all charges related to your Doppler account. Note that the Services are not intended for, and should not be used by, anyone under the age of 16.
2.2 Logging In. You can login to your Doppler account using (i) your Doppler credentials, (ii) your Google account or (iii) Single Sign-On (SSO) authentication (provided through third parties such as Okta, Azure Active Directory and Onelogin).
2.3 Two-factor Authentication. We offer two-factor authentication which adds another layer of security to your account. For example, if you choose two factor authentication via Authy, you'll be required to enter a time-sensitive code generated by your authenticator app during login.
2.4 Unauthorized Account Use. You agree to notify us immediately at firstname.lastname@example.org if you become aware of any unauthorized use of or access to your account. You understand and agree that we may require you to provide information that may be used to confirm your identity and help ensure the security of your account.
3.1 Doppler Security. Doppler aims to keep your data secure by using end-to-end encrypted communication channels, encrypting data at rest, and by ensuring our infrastructure doesn’t have direct access to your Secrets. We also prohibit our employees from accessing any sensitive customer data (such as environment variables, Doppler issued API keys, and user passwords) without explicit customer permission and regularly assess our policies and practices to improve our security readiness.
To learn more about how data flows through our systems, where/how it is encrypted, and how your data is secured at rest with our security partner visit the Doppler security page. Doppler implements robust physical, technical and administrative security measures designed to protect your information from unauthorized or accidental access, destruction, use, modification or disclosure. However, no method of transmission over the Internet, and no means of electronic or physical storage, is entirely free of risk, and thus we cannot ensure or warrant the absolute security of your information.
3.2 User Support. In the event a Doppler support agent needs to access your workplace, you will need to manually grant them access by inviting them via email to the team page. We recommend restricting their access to those projects and configs that need assistance and revoking their access after the support ticket has been closed.
3.4 Subpoenas. Nothing in these Terms prevents us from disclosing your data to the extent required by law, subpoenas or court orders, but we will use commercially reasonable efforts to notify you where permitted to do so. Doppler strives to balance your privacy rights with other legal requirements.
You agree to pay all fees and charges applicable to your use of the Services. Please contact Doppler at email@example.com for detailed pricing information. We partner with Stripe, Inc. (“Stripe”) to manage payments. By using our Services you agree to provide Stripe accurate, current, complete and authorized information about yourself and your business, and your credit, debit or other payment card data. By providing Stripe with your payment information, you agree that Doppler is authorized to immediately charge you for all fees and charges due and payable to Doppler hereunder and that no additional notice or consent is required. You agree to immediately update your payment details in Stripe if there is any change in your billing address or the credit card used for payment hereunder.
We reserve the right to suspend or terminate your account and the Services provided to you if any fees or charges remain unpaid. All payments are exclusive of federal, state, local and foreign taxes, duties, tariffs, levies, withholdings and similar assessments, and you agree to bear and be responsible for the payment of all such charges, excluding taxes based upon Doppler’s net income. We reserve the right to change the fees and other charges from time to time, by notifying you via email or through the Services.
Doppler does not guarantee that the Services will maintain integrations with any Third-Party Services and Doppler may disable or deactivate integrations of the Services with any Third-Party Services at any time. If Doppler’s deactivation of an integration will materially impact the Services provided, Doppler will notify users of such deactivation. For clarity, these Terms govern users’ use of and access to the Services, even if accessed through an integration with a Third-Party Services. WE DO NOT ENDORSE, AND HEREBY DISCLAIM ALL LIABILITY OR RESPONSIBILITY TO YOU OR ANY OTHER PERSON FOR ANY THIRD-PARTY SERVICE.
6.2 Acceptable Use. You must comply with the following rules regarding acceptable use of the Services. You may not:
6.3 Misuse of the Services. You may not utilize the Services to carry out, promote or support:
6.4 User Content Standards Within the Services. You may not store, manage or post any User Content on the Services that:
6.5 Violations of this Section. In addition to any other remedies that may be available to us, Doppler reserves the right to take any remedial action it deems necessary, including immediately suspending or terminating your account or your access to the Services, upon notice and without liability for Doppler should you fail to abide by the rules in this Section or if, in Doppler’s sole discretion, such action is necessary to prevent disruption of the Services for other users.
7.1 User Content and Submissions on the Services. The Services allow you to perform various functions, including creating projects to manage Secrets and submit associated information, text, files, and other materials (collectively, “User Content”) and to share that User Content with others. User Content submitted or otherwise made available to the Services is owned and controlled by the organization or entity to which the applicable account belongs (“Account Holder”). Doppler maintains a limited, non-exclusive and non-transferable (except in connection with the sale or transfer of its business) license to access, use and transmit User Content for the following limited purposes: (i) to maintain, provide and improve the Service; (ii) to prevent or address technical or security issues and resolve support requests (provided that in the event a Doppler support agent needs to access a workplace, the owner of that workplace will need to manually grant the agent access by inviting their email in the team page); (iii) to comply with a valid legal subpoena, request, or other lawful process; and (v) as expressly permitted in writing by the Account Holder.
7.2 Downloading, Exporting and Deleting User Data. Provided you have the appropriate access level (owner), you can: (i) download your workplace Secrets anytime through the Doppler dashboard or Doppler CLI (ii) delete your workplace Secrets through the Doppler dashboard or the Doppler CLI. You may also email us at firstname.lastname@example.org with a request to export your Secrets Note that we reserve the right to verify your identity and authorization to access such Secrets on behalf of the Account Holder before we provide it to you.
7.3 Feedback on the Services. The Services may have certain features that allow you to respond to surveys, submit comments, information, and other materials (collectively, “Feedback”) to Doppler or others. By submitting Feedback through the Services, you grant Doppler a license to access, use, copy, reproduce, process, adapt, publish, transmit, host, and display that Feedback for any purpose (including in testimonials or other Doppler marketing materials and where required to do so by law or in good faith to comply with legal process).
7.4 User Content and Feedback Representations. You acknowledge and agree that you have all required rights to submit User Content and Feedback without violation of any third-party rights.
The Services are owned and operated by Doppler and contain materials (including all software, design, text, editorial materials, informational text, photographs, illustrations, audio clips, video clips, artwork and other graphic materials, and names, logos, trademarks and services marks) which are derived in whole or in part from materials supplied by Doppler and its partners, as well as other sources, and are protected by United States copyright laws, international treaty provisions, trademarks, service marks and other intellectual property laws. The Services are also protected as a collective work or compilation under U.S. copyright and other law and treaties. You agree to abide by all applicable copyright and other laws, as well as any additional copyright notices or restrictions contained in the Services. You acknowledge that the Services have been developed, compiled, prepared, revised, selected, and arranged by Doppler and others through the application of methods and standards of judgment developed and applied through the expenditure of substantial time, effort, and money and constitute valuable intellectual property of Doppler and such others. You agree to protect the proprietary rights of Doppler and all others having rights in the Services during and after the term of these Terms and to comply with all written requests made by Doppler or its suppliers and licensors (collectively, “Suppliers”) of content or otherwise to protect their and others’ contractual, statutory, and common law rights in the Services. You agree to notify Doppler immediately upon becoming aware of any claim that the Services infringe upon any copyright, trademark, or other contractual, statutory, or common law rights. All present and future rights in and to trade secrets, patents, copyrights, trademarks, service marks, know-how, and other proprietary rights of any type under the laws of any governmental authority, domestic or foreign, including without limitation rights in and to all applications and registrations relating to the Services shall, as between you and Doppler, at all times be and remain the sole and exclusive property of Doppler. Any unauthorized use of any material contained on or through the Services may violate copyright laws, trademark laws, the laws of privacy and publicity and communications regulations and statutes.
The Services, their “look and feel”, any and all related or underlying technology and any modifications or derivative works of the foregoing, including as they may incorporate Feedback and any performance information relating to the Services will be deemed Doppler’s confidential information (“Doppler Confidential Information”). Except as expressly authorized herein, you will (1) hold in confidence and not disclose any Doppler Confidential Information to third parties and (2) not use Doppler Confidential Information for any purpose other than fulfilling your obligations and exercising your rights under these Terms.
We may offer certain Services to you at no charge, including trial use and beta versions (collectively, “Beta Versions”). Your use of Beta Versions is subject to any additional terms that we specify and is only permitted during the term we designate. Except as otherwise set forth in this Section, these Terms fully apply to Beta Versions. We may modify or terminate your right to use Beta Versions at any time and for any reason in our sole discretion, without liability to you. You understand that any Beta Versions are still under development, may be inoperable or incomplete and are likely to contain more errors and bugs than generally available Services. We make no promises that any Beta Versions will ever be made generally available. In some circumstances, we may charge a fee in order to allow you to access Beta Versions, but the Beta Versions will still remain subject to this Section. All information regarding the characteristics, features or performance of any Beta Versions constitutes our Confidential Information. To the maximum extent permitted by applicable law, we disclaim all obligations or liabilities with respect to Beta Versions, including any support, warranty and indemnity obligations. NOTWITHSTANDING ANYTHING ELSE IN THESE TERMS, OUR MAXIMUM AGGREGATE LIABILITY TO YOU IN RESPECT OF BETA VERSIONS WILL BE US$100.
ALL SERVICES, SUPPORT AND BETA VERSIONS ARE PROVIDED “AS IS,” AND DOPPLER AND OUR SUPPLIERS EXPRESSLY DISCLAIM ANY AND ALL WARRANTIES AND REPRESENTATIONS OF ANY KIND, INCLUDING ANY WARRANTY OF NON-INFRINGEMENT, TITLE, FITNESS FOR A PARTICULAR PURPOSE, FUNCTIONALITY OR MERCHANTABILITY, WHETHER EXPRESS, IMPLIED OR STATUTORY. WITHOUT LIMITING OUR EXPRESS OBLIGATIONS IN THESE TERMS, WE DO NOT WARRANT THAT YOUR USE OF THE SERVICES, SUPPORT OR BETA VERSIONS WILL BE UNINTERRUPTED OR ERROR-FREE OR THAT WE WILL PRESERVE OR MAINTAIN YOUR DATA WITHOUT LOSS. YOU UNDERSTAND THAT USE OF THE SERVICES, SUPPORT AND BETA VERSIONS NECESSARILY INVOLVES TRANSMISSION OF YOUR DATA OVER NETWORKS THAT WE DO NOT OWN, OPERATE OR CONTROL, AND WE ARE NOT RESPONSIBLE FOR ANY OF YOUR DATA LOST, ALTERED, INTERCEPTED OR STORED ACROSS SUCH NETWORKS. WE CANNOT GUARANTEE THAT OUR SECURITY PROCEDURES WILL BE ERROR-FREE, THAT TRANSMISSIONS OF YOUR DATA WILL ALWAYS BE SECURE OR THAT UNAUTHORIZED THIRD PARTIES WILL NEVER BE ABLE TO DEFEAT OUR SECURITY MEASURES OR THOSE OF OUR THIRD-PARTY SERVICE PROVIDERS. WE WILL NOT BE LIABLE FOR DELAYS, INTERRUPTIONS, SERVICE FAILURES OR OTHER PROBLEMS INHERENT IN USE OF THE INTERNET AND ELECTRONIC COMMUNICATIONS OR OTHER SYSTEMS OUTSIDE OUR REASONABLE CONTROL. YOU MAY HAVE OTHER STATUTORY RIGHTS, BUT THE DURATION OF STATUTORILY REQUIRED WARRANTIES, IF ANY, WILL BE LIMITED TO THE SHORTEST PERIOD PERMITTED BY LAW.
11.1 CONSEQUENTIAL DAMAGES WAIVER. DOPPLER (NOR ITS DIRECTORS, OFFICERS, EMPLOYEES, AGENTS, OR OTHER REPRESENTATIVES) WILL HAVE ANY LIABILITY ARISING OUT OF OR RELATED TO THESE TERMS FOR ANY LOSS OF USE, LOST OR INACCURATE DATA, LOST PROFITS, FAILURE OF SECURITY MECHANISMS, INTERRUPTION OF BUSINESS, COSTS OF DELAY, OR ANY INDIRECT, SPECIAL, INCIDENTAL, RELIANCE OR CONSEQUENTIAL DAMAGES OF ANY KIND, EVEN IF INFORMED OF THE POSSIBILITY OF SUCH DAMAGES IN ADVANCE.
11.2 LIABILITY CAP. DOPPLER’S AGGREGATE LIABILITY ARISING OUT OF OR RELATED TO THESE TERMS WILL NOT EXCEED THE AMOUNT ACTUALLY PAID OR PAYABLE BY YOU TO US UNDER THESE TERMS IN THE TWELVE (12) MONTHS IMMEDIATELY PRECEDING THE CLAIM.
11.3 California Resident Waiver. If you are a California resident, you hereby waive California Civil Code §1542, which says: “A general release does not extend to claims which the creditor does not know or suspect to exist in his favor at the time of executing the release, which if known by him or her must have materially affected his or her settlement with the debtor.” This release includes the criminal acts of others.
You may choose to stop using the Services and terminate these Terms at any time for any reason upon written notice to us, but, upon any such termination, unless otherwise agreed in writing between you and Doppler, you will not be entitled to a refund of any pre-paid fees. Doppler may terminate or suspend your access to the Services at any time, with or without cause. Upon termination, you will no longer access (or attempt to access) the Service, provided that you may within 30 days of such termination request for your Secrets to be exported to you in a format chosen by Doppler. You shall not be entitled to any refund of any prepaid fees (unless terminated by Doppler without cause). All provisions of this Agreement which by their nature should survive termination shall survive termination, including, without limitation, all warranty disclaimers, limitations of liability and dispute resolution provisions.
14.1 Informal Resolution. In the event of any controversy or claim arising out of or relating to these Terms, the parties will consult and negotiate with each other and, recognizing their mutual interests, attempt to reach a solution satisfactory to both parties. If the parties do not reach settlement within a period of sixty (60) days, either party may pursue relief as may be available under these Terms. All negotiations pursuant to this Section will be confidential and treated as compromise and settlement negotiations for purposes of all rules and codes of evidence of applicable legislation and jurisdictions.
14.2 Governing Law; Jurisdiction. These Terms will be governed by and construed in accordance with the applicable laws of the State of California, USA, without giving effect to the principles of that State relating to conflicts of laws. Each party irrevocably agrees that any legal action, suit or proceeding arising out of or related to these Terms must be brought solely and exclusively in, and will be subject to the service of process and other applicable procedural rules of, the State or Federal court in San Francisco, California, USA, and each party irrevocably submits to the sole and exclusive personal jurisdiction of the courts in San Francisco, California, USA, generally and unconditionally, with respect to any action, suit or proceeding brought by it or against it by the other party. In any action or proceeding to enforce a party’s rights under these Terms, the prevailing party will be entitled to recover its reasonable costs and attorneys’ fees.
14.3 Injunctive Relief; Enforcement. Notwithstanding the provisions of Section 14.1 (Informal Resolution) and 14.2 (Governing Law; Jurisdiction), nothing in these Terms will prevent us from seeking injunctive relief with respect to a violation of intellectual property rights, confidentiality obligations or enforcement or recognition of any award or order in any appropriate jurisdiction.
15.1 Force Majeure. Under no circumstances shall Doppler be held liable for any delay or failure in performance resulting directly or indirectly from an event beyond its reasonable control.
15.2 No Waiver. No waiver of any provision of these Terms will be binding unless in writing, no waiver of any provisions of these Terms will be deemed a further or continuing waiver of such provision or any other provision, and the failure of Doppler to exercise or enforce any right or remedy in these Terms does not waive that right or remedy. If a court of competent jurisdiction finds any provision of these Terms to be invalid, the parties agree that the court should endeavor to give effect, to the maximum extent permitted by law, to the parties’ intentions as reflected in the provision, and the other provisions of these Terms will remain in full force and effect.
15.3 Third-Party Beneficiaries. You agree that, except as otherwise expressly provided in these Terms, there shall be no third-party beneficiaries to these Terms.
15.4 Statute of Limitations. Except in relation to privacy related claims or if you are a resident of New Jersey, you agree that regardless of any statute or law to the contrary, any claim or cause of action arising out of or related to the use of the Services and/or these Terms must be filed within one (1) year after such claim or cause of action arose or be forever barred.
15.5 Miscellaneous. These Terms (and all terms and conditions incorporated herein) constitute the entire agreement between you and Doppler and govern your use of the Services, and supersede any prior agreements between you and Doppler on the subject matter. These Terms, and any rights or licenses granted hereunder, may not be assigned or delegated by you. These Terms, and any rights or licenses granted hereunder, may be assigned or delegated by Doppler without restriction. These Terms bind and inure to the benefit of each party and the party’s successors and permitted assigns. These Terms may not be modified by an oral statement by a representative of Doppler. No agency, partnership, joint venture or employee-employer relationship is intended or created by these Terms. You agree that any agreements made by and between you and us in electronic form are as legally binding as if made in physical written form. The section titles in these Terms are for convenience only and have no legal or contractual effect. Any provision of these Terms that by its nature is reasonably intended to survive beyond termination of these Terms shall survive.
15.6 Notices. We may deliver notice to you by e-mail, posting a notice on the Services or any other method we choose and such notice will be effective on dispatch. If you give notice to us, it will be effective when received and you must use the following physical or email address: (1) Doppler Technologies, Inc. 340 S Lemon Avenue #5880 Walnut CA 91789; or (2) email@example.com.
If you have any questions about these Terms, please contact us at firstname.lastname@example.org.