Terms of Service

Last updated: 11 May 2026
Effective date: 1 May 2026

1. Agreement to Terms

These Terms of Service ("Terms") constitute a legally binding agreement between you, the licensed real estate agency or its authorised representative ("you", "your", or "the Agency"), and Korvos Pty Ltd (ABN 49 697 208 398) ("Korvos", "we", "us", or "our"), governing your access to and use of the Korvos platform, including all associated software, APIs, documentation, and services (collectively, the "Platform").

By creating an account, completing onboarding, or otherwise using the Platform, you acknowledge that you have read, understood, and agree to be bound by these Terms. If you are entering into these Terms on behalf of an agency, you represent and warrant that you have the authority to bind that agency.

If you do not agree to these Terms, you must not access or use the Platform.

2. Eligibility

The Platform is available only to:

  1. Licensed real estate agencies holding a current and valid licence issued by the relevant state or territory authority in Australia;
  2. Individuals who are at least 18 years of age and authorised to act on behalf of such a licensed agency; and
  3. Agencies that have a current Australian Business Number (ABN).

We reserve the right to verify your licensing status at any time, including by reference to the Office of Fair Trading (QLD), NSW Fair Trading, Consumer Affairs Victoria, or equivalent state and territory registers. If your agency licence is suspended, cancelled, or expires, we may immediately suspend or terminate your access to the Platform.

3. The Platform

3.1 What Korvos Does

Korvos is an autonomous AI real estate agency operator. The Platform performs operational tasks on behalf of your agency — including identity verification, AML/CTF compliance, statutory document preparation, transaction monitoring, condition tracking, and buyer communication — as the default actor, under the standing delegation you grant at onboarding (see Section 4).

Korvos acts on your agency's behalf under the standing delegation you grant at onboarding. Korvos holds the nine decisions Australian law requires a natural person to make to your attention as they arise. Everything else runs autonomously with a verified audit trail.

3.2 What Korvos Does Not Do

The Platform does not, and will never:

  1. Provide legal, financial, or tax advice. All generated documents carry the footer: "Prepared by Korvos under standing delegation from [Agency Legal Name]. Reviewed and approved by [Principal Name] on [Date]. This document does not constitute legal advice. The agency is the statutory responsible party."
  2. File suspicious matter reports (SMRs) or threshold transaction reports (TTRs) with AUSTRAC without a compliance officer's express decision. Korvos drafts the report; the compliance officer files it.
  3. Sign statutory instruments (including Form 6, REIQ Contract for Sale, or Form 2 Seller Disclosure) on behalf of parties. Parties sign their own instruments.
  4. Act outside the scope of the standing delegation document executed at onboarding.
  5. Guarantee compliance with any law or regulation. The Platform is a tool that assists your agency in meeting its obligations. The licensed principal retains statutory responsibility for all compliance decisions.
  6. Contract directly with sellers, buyers, or other parties. Korvos is a tool of licensed agencies and never operates without a licensed agency as the customer of record.
  7. Clone, replicate, or impersonate any natural person's voice. Voice AI uses a synthetic, Korvos-branded voice and identifies itself as AI at the commencement of every call.

4. Standing Delegation of Authority

4.1 Grant of Delegation

At onboarding, the licensed principal of the Agency grants Korvos a documented, scoped delegation of authority to act on the Agency's behalf in performing the operational functions described in these Terms. This delegation is consistent with Australian agency law, which permits delegation of administrative functions from a principal to an agent or administrator.

4.2 Scope of Delegation

The standing delegation authorises Korvos to perform the following categories of actions on the Agency's behalf:

  1. Compliance operations: Identity verification (DVS, PEP screening, sanctions screening), KYC/KYB orchestration, transaction monitoring, AML/CTF programme maintenance, risk assessment, training record management, and AUSTRAC export preparation.
  2. Document preparation: Drafting of statutory and operational documents (including Form 6 appointments, REIQ contracts, Form 2 seller disclosures, trust account receipts, settlement statements, commission tax invoices, condition notices, vendor update reports, and marketing schedules) from matter data.
  3. Agency-internal instrument execution:Electronic execution and dispatch of agency-internal instruments — including marketing schedules, condition satisfaction and waiver notices, vendor update reports, multiple-offer notifications, and commission tax invoices — under the principal's pre-authorised scope, without per-document approval.
  4. Communication: Sending automated notifications, chasing condition deadlines, dispatching vendor updates, and — where enabled for the Agency — handling inbound buyer inquiries via Voice AI.

4.3 Limits of Delegation

The standing delegation does not extend to decisions that Australian law reserves to a natural person. The following nine categories of decisions (the "Nine Irreducible Human Moments") require your express action:

  1. Senior manager approval of the AML/CTF programme, risk assessment, enhanced customer due diligence (ECDD), and reliance arrangements.
  2. Appointment and continued existence of a named natural-person compliance officer.
  3. The "reasonable grounds for suspicion" decision for suspicious matter reporting to AUSTRAC.
  4. Seller signing of the Form 2 Seller Disclosure Statement under the Property Law Act 2023 (Qld) s 99.
  5. Parties signing statutory instruments (Form 6, REIQ Contract for Sale).
  6. Daily batch electronic signature of trust account receipts by the principal ("person completing" under Agents Financial Administration Regulation 2014 reg 9).
  7. Engagement of an independent reviewer for the three-yearly independent review.
  8. Maintenance of a current agency licence and employment of licensed persons.
  9. The duty not to mislead under the Property Occupations Act 2014 (Qld) s 211 and the Australian Consumer Law — addressed at the system level through retrieval-grounded generation.

4.4 Revocation

You may revoke or modify the standing delegation at any time by written notice to us. Revocation may limit the Platform's ability to perform autonomous functions, and you acknowledge that certain features may become unavailable or require manual intervention.

4.5 Statutory Responsibility

The licensed principal retains full statutory responsibility for all decisions made under the Agency's name, including the compliance officer role. Korvos is a software tool that acts under the principal's delegation. The principal is the statutory responsible party.

5. Accounts and Access

5.1 Account Registration

To use the Platform, you must create an account and provide accurate, current, and complete information during registration and onboarding. You agree to update this information promptly if it changes.

5.2 User Roles

The Platform supports the following user roles within each agency account:

  1. Principal: Full access to all features, including compliance approvals, standing delegation management, and billing.
  2. Agent: Access to own listings and assigned matters.
  3. Admin: Read-only access to audit and compliance records.

5.3 Account Security

You are responsible for maintaining the confidentiality of your account credentials and for all activity that occurs under your account. You must notify us immediately of any unauthorised access or use. We are not liable for any loss arising from your failure to secure your account credentials.

5.4 User Limits

Each subscription tier includes a maximum number of users. If you exceed the user limit for your tier, you must upgrade to a higher tier or remove users to comply with your current plan.

6. Subscription and Billing

6.1 Subscription Tiers

The Platform is offered on a per-office, monthly subscription basis. Current tiers and pricing are published on our website and may be updated from time to time in accordance with Section 6.5. Tier features, user limits, and matter limits are as described on the pricing page at the time of your subscription.

6.2 Payment

All payments are processed through Stripe. You authorise us to charge your nominated payment method on a recurring monthly basis. All amounts are in Australian Dollars (AUD) and inclusive of GST where applicable. Korvos will issue a valid tax invoice for each payment.

6.3 Per-Document Fees

Certain features may incur additional per-document fees (for example, complex KYB entity chain verification, or search disbursements passed through at cost). These fees will be clearly disclosed before you incur them and will be charged to your payment method on a monthly billing cycle.

6.4 Free Access Period and 14-Day Free Trial

Free access until 1 July 2026. Subscriptions opened before 1 July 2026 (AUSTRAC Tranche 2 commencement) are provided at no charge until that date. Subscription billing begins on 1 July 2026 at the applicable rate (Section 6.5).

14-day free trial (sign-ups from 1 July 2026). Subscriptions opened on or after 1 July 2026 include a 14-day free trial of the subscription fee. Subscription billing begins at the end of the trial period. During the trial, the following features are not available and are unlocked only once a paid subscription is active: sealing of records to 7-year tamper-evident storage and export of the AUSTRAC compliance bundle. Pay-per-use charges (including DVS identity verification at the then-current per-check rate and any third-party search disbursements) are incurred and billed during the trial because Korvos pays these third parties on your behalf at the time the service is requested.

No money-back guarantee. The free access period and 14-day trial are provided in lieu of a money-back guarantee. Subscription fees and pay-per-use charges incurred outside those periods are non-refundable except where required by law (including non-excludable consumer guarantees under the Competition and Consumer Act 2010 (Cth), Schedule 2). Refunds may be issued at our discretion on a goodwill basis by contacting support@korvos.com.au; third-party disbursements (DVS, title searches, eSignature) remain non-refundable in all cases.

6.5 Founding Rate Lock and Price Changes

Founding rate.Subscriptions opened on or before 31 July 2026 qualify for the founding cohort rate. The founding rate is held for the first twelve (12) billed monthly periods commencing with the subscription's first paid period (i.e. 1 July 2026 for pre-commencement sign-ups, or the day following the 14-day trial for sign-ups from 1 July 2026 onwards). During this 12-month lock the subscription fee and the per-check DVS overage rate disclosed in your tier description at signup will not increase, regardless of third-party wholesale cost changes.

Post-lock pricing.At the end of the 12-month lock your subscription will auto-renew at the then-current standard rate for your tier. We will provide at least sixty (60) days' prior written notice of the post-lock standard rate before it takes effect, allowing you to cancel before the new pricing applies if you do not wish to continue.

Other price changes.Outside the founding rate lock, we may change subscription pricing or pay-per-use rates by giving you at least thirty (30) days' written notice before the change takes effect. If you do not agree to a price change, you may cancel your subscription before the new pricing applies. Continued use of the Platform after a price change constitutes acceptance of the new pricing.

6.6 Taxes

All stated prices are inclusive of GST. Korvos will remit GST to the Australian Taxation Office. You are responsible for any other taxes, duties, or charges imposed on your agency in connection with your use of the Platform, excluding taxes on our net income.

6.7 Late Payment

If payment fails, we will notify you and provide a 14-day grace period. If payment is not received within the grace period, we may suspend your access to the Platform. During suspension, your data remains intact and accessible for export. We will not delete your data due to non-payment without providing at least 30 days' notice after suspension.

7. Data Collection, Use, and Privacy

7.1 Collection of Personal Information

In the course of providing the Platform, we collect personal information including:

  1. Agency personnel data: Names, email addresses, phone numbers, and role designations of your staff who use the Platform.
  2. Party data: Names, dates of birth, addresses, identity document details, entity structures, beneficial ownership information, and contact details of individuals and entities involved in your real estate transactions, as entered by you or obtained through identity verification processes.
  3. Transaction data: Listing details, property information, contract terms, conditions, offer details, settlement information, commission details, and all associated documents.
  4. Compliance data: KYC/KYB verification results, PEP and sanctions screening outcomes, transaction monitoring alerts, risk assessments, AML/CTF programme records, training records, and SMR/TTR preparation data.
  5. Usage data: Login activity, feature usage, session duration, user interactions, error logs, and performance metrics.
  6. Voice AI data: Call recordings, transcripts, caller contact details, and structured data extracted from voice interactions (where Voice AI features are enabled).
  7. Communication data: Emails, notifications, and messages sent through or generated by the Platform.
  8. Device and technical data: IP addresses, browser type, operating system, and device identifiers.

This collection is reasonably necessary for the Platform's primary purposes: AML/CTF compliance, statutory document preparation, agency operation, and platform security, consistent with Australian Privacy Principle 3 (Privacy Act 1988 (Cth)).

7.2 Use of Personal Information

We use personal information for the following purposes:

  1. Primary purposes: Operating the Platform, providing AML/CTF compliance services, preparing statutory documents, executing standing delegation functions, identity verification, and managing your account.
  2. Related secondary purposes: Platform improvement, product development, customer support, security monitoring, fraud prevention, and service notifications — purposes you would reasonably expect in connection with the primary purpose (APP 6.2(a)).
  3. Legal obligations: Complying with applicable laws, regulations, and lawful requests from regulatory authorities, including AUSTRAC (APP 6.2(b)).
  4. Anonymised analytics: As described in Section 8.

7.3 Data Residency

All personal information is stored and processed within Australia, specifically in the ap-southeast-2 (Sydney) region. This includes our database (Supabase Postgres, ap-southeast-2), our AI inference endpoint (AWS Bedrock, ap-southeast-2), document storage (Supabase Storage, ap-southeast-2), and our application runtime (Vercel syd1). We do not transfer personal information outside Australia.

Our workflow orchestration service (Inngest) is hosted in the United States. To ensure compliance with APP 8, Inngest payloads contain only opaque unique identifiers (UUIDs) — no personal information, agency names, property addresses, party names, or any data that could identify an individual or transaction is transmitted to Inngest.

7.4 Data Security

We implement the following security measures, consistent with APP 11:

  1. Row-Level Security (RLS) enforced at the database level on every table, ensuring strict tenant data isolation.
  2. Encryption at rest (AES-256) for all stored data.
  3. Encryption in transit (TLS 1.2+) for all data transmission.
  4. Append-only AML/CTF record storage (INSERT and SELECT permissions only at the PostgreSQL level — no UPDATE or DELETE).
  5. SHA-256 hash chaining for tamper-evident audit trails.
  6. UPDATE, DELETE, and TRUNCATE permissions revoked from authenticated and anon roles on every AML/CTF table, with BEFORE-trigger functions as defence-in-depth, ensuring sealed records cannot be modified or deleted for the 7-year retention period.
  7. Service role key access restricted to tenant provisioning and administrative migrations — never used for user-facing data operations. Restriction is enforced by a CI lint rule that refuses imports outside an explicit allowlist.
  8. Input validation and sanitisation on all API boundaries.
  9. Cloudflare Turnstile bot gate and per-IP rate limits on every unauthenticated authentication endpoint (signup, login, password-reset).
  10. Per-tenant credential storage in Supabase Vault for the integrations that store credentials on the agency’s behalf (rolled out per integration as those features ship).

7.5 Privacy Policy

Our collection, use, disclosure, and handling of personal information is further described in our Privacy Policy, which forms part of these Terms. In the event of any inconsistency between these Terms and the Privacy Policy on matters of personal information handling, the Privacy Policy prevails.

7.6 Collection Notices for Third Parties

Where you enter personal information of third parties (including buyers, sellers, directors, trustees, and beneficial owners) into the Platform, you are responsible for ensuring those individuals have been notified of the collection in accordance with Australian Privacy Principle 5. We provide template collection notices within the Platform for this purpose.

7.7 Individual Access and Correction Rights

Individual rights of access (APP 12) and correction (APP 13) in respect of personal information held on the Platform are described in our Privacy Policy.

8. Anonymised Data, Intelligence, and Benchmarking

8.1 Aggregated and Anonymised Data

Korvos may collect, aggregate, and anonymise operational data from your use of the Platform to improve the Platform, develop benchmarks, train risk models, and enhance services for all users. Aggregated data is anonymised such that no individual, agency, or transaction is identifiable. This anonymised data may be retained indefinitely and used for product development, research, and industry reporting.

For the purposes of this Section, "anonymised data"means data that has been processed such that it can no longer be used to identify a specific individual, agency, property, or transaction, either directly or in combination with other data. Anonymised data is not "personal information" within the meaning of the Privacy Act 1988 (Cth) and is not subject to the Australian Privacy Principles.

8.2 Cross-Tenant Anonymised Pattern Matching

The Platform maintains an anonymised identity registry for the purpose of cross-tenant risk signal aggregation. The mechanism operates as follows:

  1. At KYC completion, a keyed HMAC-SHA256 cryptographic hash of the normalised legal name and date of birth of each verified party is computed and stored in a global registry.
  2. This hash is irreversible — it cannot be used to derive the original name or date of birth.
  3. The cryptographic key used for hashing is held exclusively by Korvos and is not shared with any Agency Customer or third party. Without access to this key, the hash cannot be computed or verified externally.
  4. No personal information, agency identity, or transaction detail crosses tenant boundaries.
  5. When a matching hash is detected, the Platform returns only banded signals — such as activity level (e.g., first-time buyer, active, investor) and historical fall-over risk band (e.g., low, medium, high).
  6. The originating agency's identity and data are never disclosed to the querying agency.

You consent to the creation and use of these anonymised hash records as a condition of using the Platform. This mechanism enables network intelligence (such as identifying repeat investors or fall-over risk patterns) without compromising the privacy of any individual or agency.

8.3 Intelligence Layer and Data Products

Korvos may use anonymised, aggregated data derived from Platform usage to develop and offer intelligence products and services, including but not limited to:

  1. Market intelligence reports containing anonymised transaction statistics, settlement velocity, finance clearance rates, and buyer composition data at the local government area (LGA) level.
  2. Compliance benchmarks comparing anonymised performance metrics across the platform (e.g., average KYC completion time, programme quality indicators).
  3. Risk model training using anonymised screening outcomes and transaction monitoring data to improve the accuracy of the Platform's risk assessment capabilities.
  4. Industry reporting and research publications using anonymised, aggregated statistics.
  5. Data products and APIs providing anonymised market intelligence to third parties, including mortgage brokers, property developers, institutional lenders, and government agencies.

All intelligence products are subject to the following safeguards:

  1. A minimum cell size of 20 records per data point to prevent re-identification (k-anonymity).
  2. No individual agency, transaction, party, or property is identifiable in any published or shared data.
  3. AML/CTF compliance data (including source-of-funds records, ECDD details, and SMR preparation data) is never included in intelligence products or cross-tenant aggregation. There is no query path from AML-prefixed tables to intelligence layer outputs.

8.4 Your Rights Regarding Anonymised Data

To the extent that data has been processed such that it no longer constitutes personal information under the Privacy Act 1988, it is not subject to access, correction, or deletion rights under the Australian Privacy Principles. Anonymised data may be retained indefinitely, including after termination of your subscription.

8.5 Self-Improving AI

The Platform uses anonymised operational feedback — including document edit patterns, monitoring alert outcomes, and verification results — to improve its performance over time. This includes adjusting risk model weightings, refining document drafting quality, and calibrating verification confidence thresholds. All feedback data used for this purpose is anonymised and aggregated across the platform. No individually identifiable data is used to train or fine-tune third-party AI models.

9. AML/CTF Record-Keeping and Retention

9.1 Statutory Retention Obligations

The Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth) requires reporting entities to retain certain records for seven (7) years from the date the last designated service was provided to the relevant customer. The Platform is designed to assist your agency in meeting these obligations.

9.2 Append-Only Records

All AML/CTF records stored in the Platform are maintained in append-only tables. This means:

  1. Records can be created and read, but not modified or deleted — at the database level, not merely at the application level.
  2. Each record includes a SHA-256 hash of the preceding record in its chain, providing cryptographic evidence of completeness and tamper-resistance.
  3. Generated PDFs and identity documents are held in tenant-prefixed Supabase Storage paths in ap-southeast-2; the underlying database records are append-only and hash-chained for the full retention period.

9.3 Post-Termination Data Retention

Upon termination or expiry of your subscription:

  1. AML/CTF records subject to the 7-year statutory retention requirement will be retained for the balance of the retention period, measured from the date the last designated service was provided to each relevant customer. These records will remain in append-only, hash-chained storage and will be available for export upon your request.
  2. Non-AML/CTF data (including matter records, documents, and operational data not subject to statutory retention) will be retained for 90 days following termination. During this period, you may request an export of your data in a standard, machine-readable format. After 90 days, non-retained data will be securely deleted.
  3. Where non-AML/CTF data is materially related to an AML/CTF record that is subject to ongoing statutory retention (for example, a listing document referencing a party who is also the subject of ongoing transaction monitoring), we may retain that related data for the duration of the AML/CTF retention period.
  4. Anonymised data (as described in Section 8) is retained indefinitely and is not subject to deletion upon termination, as it does not constitute personal information.
  5. We will provide you with an AUSTRAC-auditable export of all AML/CTF records upon request, at no additional charge, at any time during your subscription or during the post-termination retention period.

9.4 Legal Hold

If any matter is subject to litigation, regulatory investigation, or legal hold, you must notify us promptly. We will suspend automated retention processing for the relevant records until the hold is lifted.

9.5 Tipping-Off Protections

In accordance with s 123 of the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth), suspicious matter report (SMR) data is subject to strict access controls within the Platform. SMR preparation data, filing decisions, and AUSTRAC reference numbers are visible only to the compliance officer and senior manager roles. The Platform enforces role-based access to prevent inadvertent disclosure of SMR-related information to other staff or third parties. You acknowledge that tipping off is a criminal offence carrying a penalty of up to 2 years' imprisonment. You must ensure that your staff do not disclose the existence or content of any SMR or SMR preparation activity to any person not authorised to receive that information, including the subject of the report, in accordance with s 123 of the AML/CTF Act.

10. AI-Generated Documents and Verifier Framework

10.1 Document Generation

The Platform generates statutory and operational documents using AI (specifically, large language models accessed via AWS Bedrock Sydney). Every generated document field traces to a data source: the source may be a verified data provider (such as ABR, Geoscape, QBCC, or InfoTrack), a party record entered by you, listing terms, a calculation, or AI-generated content that is retrieval-grounded against verified data with source citations.

10.2 Verifier Agents

Every document generated by the Platform is independently reviewed by a separate verifier AI before it can be sealed. The verifier:

  1. Re-reads every source document cited by the generating AI;
  2. Confirms every extracted field matches its source within tolerance;
  3. Runs applicable statutory rule-engines (for example, Property Occupations Act 2014 (Qld) s 104 for the 90-day cap on exclusive agency authority periods, s 106 for rebate disclosure, Agents Financial Administration Regulation 2014 reg 9 for trust receipt structure, A New Tax System (Goods and Services Tax) Act 1999 s 29-70 for tax invoice format); and
  4. Refuses to seal documents with unresolved anomalies, instead surfacing the specific disputed field to the exception queue.

10.3 Exception-Based Review

Document fields are automatically included in the final document when they meet all of the following criteria: the extraction confidence exceeds the applicable threshold, the value falls within historical variance, and the field is not on a statutory-critical list requiring human review. Fields that do not meet these criteria are surfaced for your review as exceptions.

10.4 Retrieval-Grounded Generation

For all contract-inducing content (including property descriptions, vendor updates, offer presentations, and marketing materials), the Platform uses retrieval-grounded generation. This means every factual claim is sourced from a verified data provider or record, and the source citation is captured in the audit trail. The Platform does not generate free-form content from model training data for public-facing or contract-inducing artefacts.

10.5 Document Liability

AI-generated documents are tools prepared on behalf of your agency under standing delegation. You acknowledge that:

  1. The licensed principal is the statutory responsible party for all documents issued under the Agency's name.
  2. While the Platform employs verifier agents and statutory rule-engines to reduce errors, no automated system is infallible. The principal retains supervisory responsibility.
  3. The document generation liability footer is automatically applied to every generated PDF and must not be removed.
  4. Korvos does not warrant that any generated document is free from error. Our liability for document errors is limited as set out in Section 14.

11. Voice AI

11.1 Disclosure

Where Voice AI features are enabled, the Platform handles inbound buyer inquiries using a synthetic, Korvos-branded AI voice. The AI identifies itself as an AI system at the commencement of every call, in compliance with applicable consumer protection and telecommunications laws.

11.2 Retrieval-Grounded Responses

Voice AI responses are grounded in verified listing data from the relevant matter record. The Voice AI does not generate unsourced claims about properties. All responses are traceable to verified data in the matter record.

11.3 Call Recording and Transcription

Voice AI calls may be recorded and transcribed. Recordings and transcripts are stored in the matter record as part of the audit trail. You are responsible for ensuring that call recording complies with applicable state and territory laws regarding recording of telephone conversations (noting that in most Australian jurisdictions, one-party consent is sufficient).

11.4 Data from Voice Interactions

Structured data extracted from voice interactions (including buyer contact details, property interest, inspection booking requests, and buyer qualification signals) is written to the relevant matter record and treated as party data under these Terms.

12. Intellectual Property

12.1 Platform IP

Korvos retains all intellectual property rights in the Platform, including all software, algorithms, AI models, verifier frameworks, statutory rule-engines, user interface designs, documentation, and branding. Nothing in these Terms transfers any IP rights to you, except the limited licence to use the Platform during your subscription.

12.2 Your Data

You retain ownership of all data you input into the Platform, including party records, listing details, and transaction data. You grant us a non-exclusive, royalty-free, worldwide licence to use, process, and store your data for the purposes of providing the Platform services, complying with legal obligations (including statutory record retention), and generating anonymised, aggregated data as described in Section 8.

12.3 Generated Documents

Documents generated by the Platform on behalf of your agency are your property. We retain no proprietary claim over the content of documents generated from your data. We retain the right to use the structure, templates, and methodology of document generation as part of our Platform IP.

12.4 Feedback

If you provide feedback, suggestions, or feature requests regarding the Platform, you grant us a non-exclusive, royalty-free licence to use, modify, and incorporate the ideas, concepts, and suggestions contained in that feedback into the Platform without compensation. You retain any intellectual property in the feedback itself.

13. Acceptable Use

You agree not to:

  1. Use the Platform for any purpose that is unlawful or prohibited by these Terms.
  2. Attempt to access data belonging to another agency or tenant on the Platform.
  3. Reverse engineer, decompile, or disassemble any part of the Platform.
  4. Use the Platform to store or transmit malicious code, malware, or any harmful software.
  5. Interfere with or disrupt the integrity or performance of the Platform.
  6. Use the Platform on behalf of an agency that does not hold a current, valid licence in the relevant Australian state or territory.
  7. Remove, alter, or obscure the document generation liability footer from any generated document.
  8. Enter false or misleading information into the Platform, including fabricated party details, transaction data, or compliance records.
  9. Use the Platform to circumvent, avoid, or undermine AML/CTF obligations, including by failing to report suspicious matters or by structuring transactions to avoid threshold reporting.
  10. Resell, sublicence, or provide access to the Platform to third parties without our prior written consent.
  11. Use automated scripts, bots, or crawlers to access the Platform except through our published APIs.

14. Limitation of Liability

14.1 Consumer Guarantees

The Platform is supplied to you as a business-to-business service. To the extent permitted by law, including the Competition and Consumer Act 2010 (Cth), Schedule 2 (Australian Consumer Law), our liability for breach of any consumer guarantee that cannot be excluded is limited, at our option, to:

  1. Resupply of the affected services; or
  2. Payment of the cost of having the services resupplied.

14.2 Exclusion of Certain Liabilities

To the maximum extent permitted by law, Korvos excludes all liability for:

  1. Indirect and consequential loss: Loss of profits, revenue, business, goodwill, data (except as required by statutory retention obligations), anticipated savings, or any indirect, special, or consequential loss or damage, howsoever caused.
  2. Third-party actions or omissions: Acts or omissions of third-party service providers integrated with the Platform, including identity verification providers, search brokers, eSignature providers, and CRM platforms.
  3. Regulatory outcomes: Any decision, finding, or penalty issued by AUSTRAC, the OFT, or any other regulatory body. The Platform is a compliance tool; it does not guarantee compliance outcomes.
  4. Content accuracy: Errors or inaccuracies in data obtained from third-party sources (including land title registries, council records, government registers, and search providers) that are incorporated into generated documents.
  5. Standing delegation actions:Any loss arising from actions taken by the Platform under the standing delegation you grant, except to the extent caused by (i) a defect in the Platform's software, (ii) our negligence in the design or operation of the Platform, or (iii) inaccurate data provided by you or your staff that caused the loss.

Nothing in this Section excludes or limits our liability for fraud, wilful misconduct, or death or personal injury caused by our negligence.

14.3 Liability Cap

Subject to Sections 14.1 and 14.2, our total aggregate liability to you under or in connection with these Terms, whether in contract, tort (including negligence), statute, or otherwise, is limited to the greater of:

  1. The total subscription fees paid by you in the 12-month period immediately preceding the event giving rise to the claim; or
  2. AUD $5,000.

14.4 Unfair Contract Term Acknowledgement

Nothing in these Terms is intended to operate as an unfair contract term within the meaning of the Competition and Consumer Act 2010 (Cth) ss 23–28 and the Australian Securities and Investments Commission Act 2001 (Cth) ss 12BF–12BM. If any term is found to be unfair by a court of competent jurisdiction, that term is void and severable, and the remaining Terms continue in force.

15. Indemnification

15.1 Your Indemnity

You indemnify and hold harmless Korvos, its officers, employees, and agents from and against all claims, losses, damages, liabilities, costs, and expenses (including reasonable legal fees) arising out of or in connection with:

  1. Your breach of these Terms.
  2. Your failure to comply with applicable laws, including AML/CTF obligations, real estate licensing requirements, and the Privacy Act.
  3. Inaccurate or misleading data entered by you or your staff into the Platform.
  4. Any claim by a third party arising from documents generated by the Platform based on data provided by you.
  5. Your use of the Platform in a manner inconsistent with the standing delegation scope.

15.2 Our Indemnity

Korvos indemnifies you against any claim that the Platform infringes the intellectual property rights of a third party in Australia, provided that: (a) you notify us promptly of such claim; (b) you grant us sole control of the defence and settlement; and (c) you provide reasonable assistance at our expense. This indemnity does not apply to claims arising from your data, your modifications to the Platform, or your use of the Platform in combination with third-party products.

16. Service Availability

16.1 Availability Target

We target 99.5% uptime for the Platform, measured monthly, excluding scheduled maintenance. This is a target, not a guarantee. We do not offer service level credits unless expressly agreed in a separate Enterprise agreement.

16.2 Scheduled Maintenance

We will provide at least 24 hours' notice of scheduled maintenance that may affect Platform availability. Where practicable, maintenance will be scheduled outside of Australian Eastern Standard Time business hours (9:00 AM to 5:00 PM AEST).

16.3 Force Majeure

Neither party is liable for any failure or delay in performing its obligations under these Terms to the extent that such failure or delay is caused by circumstances beyond its reasonable control, including natural disasters, acts of government, internet or telecommunications failures, infrastructure provider outages, cyberattacks, or pandemics.

16.4 Graceful Degradation

The Platform is designed so that the failure of any single integrated service (such as a CRM, search provider, or identity verification service) does not prevent the use of other Platform features. If a third-party integration is unavailable, the Platform degrades gracefully to manual entry or alternative workflows.

17. Termination

17.1 Termination by You

You may cancel your subscription at any time through the Platform or by written notice to us. Cancellation takes effect at the end of your current billing period. You are not entitled to a refund for any partial billing period. The free access period and 14-day free trial (Section 6.4) operate in lieu of any money-back guarantee.

17.2 Termination by Us

We may terminate or suspend your access to the Platform:

  1. Immediately, if you breach any material provision of these Terms and fail to remedy the breach within 14 days of written notice.
  2. Immediately, if your agency licence is suspended, cancelled, or expires.
  3. Immediately, if we reasonably believe your use of the Platform constitutes or facilitates money laundering, terrorism financing, or other criminal activity.
  4. On 90 days' written notice, for any reason, including discontinuation of the Platform.

Where we terminate without cause under paragraph (d), we will ensure data export facilities remain available throughout the notice period at no additional charge.

17.3 Effect of Termination

Upon termination:

  1. Your right to access and use the Platform ceases immediately (or at the end of the billing period, for voluntary cancellation).
  2. Data retention and export rights apply as set out in Section 9.3.
  3. Sections that by their nature should survive termination will survive, including Sections 8 (Anonymised Data), 9 (AML/CTF Record Retention), 12 (Intellectual Property), 14 (Limitation of Liability), 15 (Indemnification), 18 (Dispute Resolution), and 19 (Governing Law).

17.4 Data Portability

Upon written request during your subscription or during the 90-day post-termination period, we will provide an export of your data in a standard, machine-readable format (JSON or CSV). AML/CTF records can be exported in AUSTRAC-auditable ZIP format at any time.

18. Dispute Resolution

18.1 Good Faith Negotiation

If a dispute arises under or in connection with these Terms, the parties agree to first attempt to resolve the dispute by good faith negotiation for a period of 30 days from written notice of the dispute.

18.2 Mediation

If the dispute is not resolved by negotiation within 30 days, either party may refer the dispute to mediation administered by the Resolution Institute (or its successor body) in Brisbane, Queensland. The costs of mediation will be shared equally.

18.3 Litigation

If the dispute is not resolved by mediation within 60 days of referral, either party may commence legal proceedings in the courts of Queensland, Australia. Nothing in this Section prevents either party from seeking urgent injunctive or interlocutory relief.

19. Governing Law and Jurisdiction

These Terms are governed by and construed in accordance with the laws of Queensland, Australia. Each party irrevocably submits to the exclusive jurisdiction of the courts of Queensland and the Federal Court of Australia (Queensland registry) in respect of any dispute arising under or in connection with these Terms.

20. Modifications to Terms

20.1 Changes

We may modify these Terms from time to time. We will provide you with at least 30 days' written notice of material changes by email to the address associated with your account and by displaying a notice within the Platform. Non-material changes (such as formatting, typographical corrections, or clarifications that do not alter the substance of any provision) may take effect immediately upon posting.

20.2 Acceptance

Your continued use of the Platform after the effective date of any modification constitutes your acceptance of the modified Terms. If you do not agree to a material modification, you may terminate your subscription in accordance with Section 17.1 before the modification takes effect.

20.3 Historical Versions

Previous versions of these Terms are available upon request by emailing legal@korvos.com.au.

21. General Provisions

21.1 Entire Agreement

These Terms, together with the Privacy Policy and any order form or Enterprise agreement executed between the parties, constitute the entire agreement between you and Korvos in relation to the Platform and supersede all prior representations, understandings, and agreements.

21.2 Severability

If any provision of these Terms is found to be invalid, illegal, or unenforceable by a court of competent jurisdiction, that provision is severed and the remaining provisions continue in full force and effect.

21.3 Waiver

A failure or delay by either party in exercising any right or remedy under these Terms does not constitute a waiver of that right or remedy.

21.4 Assignment

You may not assign or transfer your rights or obligations under these Terms without our prior written consent. We may assign our rights and obligations under these Terms to a successor entity in connection with a merger, acquisition, or sale of substantially all of our assets, provided the successor agrees to be bound by these Terms.

21.5 Notices

All notices under these Terms must be in writing and sent by email. Notices to us must be sent to legal@korvos.com.au. Notices to you will be sent to the email address associated with your account. Notices are deemed received on the business day following the day of sending.

21.6 Relationship of Parties

Nothing in these Terms creates a partnership, joint venture, or employment relationship between the parties. Korvos acts as an independent contractor and, under the standing delegation, as a delegated administrator — not as an employee, partner, or joint venturer of the Agency.

21.7 Third-Party Rights

These Terms do not confer any rights on any third party. Sellers, buyers, and other parties to real estate transactions are not parties to these Terms and have no rights under them.

22. Notifiable Data Breach

22.1 Our Obligations

In the event of an eligible data breach (as defined in Part IIIC of the Privacy Act 1988 (Cth)) affecting personal information held by us in connection with the Platform, we will:

  1. Notify you as soon as practicable after becoming aware of the breach.
  2. Assess the breach in accordance with the Notifiable Data Breaches (NDB) scheme and cooperate with you in determining whether notification to affected individuals and the Office of the Australian Information Commissioner (OAIC) is required.
  3. Take reasonable steps to contain the breach and mitigate any resulting harm.
  4. Provide you with sufficient information to enable you to meet your own NDB obligations as a reporting entity.

22.2 Your Obligations

You must notify us promptly if you become aware of any actual or suspected data breach involving your account credentials, your staff's access, or any personal information accessible through the Platform.

22.3 Cooperation

Both parties agree to cooperate in good faith in the investigation, containment, and remediation of any data breach, and to comply with all applicable breach notification laws.

23. Audit Trail and Record Integrity

23.1 Audit Trail

The Platform maintains a comprehensive audit trail for every action performed on the Platform, including: the action taken, the identity of the actor (user or system), the tenant, the timestamp, the IP address and user agent (for user actions), and the state before and after the action. For document generation, the audit trail additionally records the AI model identifier, model version, prompt hash, extraction confidence score, and source document identifiers. For human review actions, the audit trail records the field identifier, system-proposed value, human-entered value, the action taken (approve, edit, or reject), and the review duration.

23.2 Ownership

Audit trail records generated by the Platform in connection with your use are your data and are subject to the data portability provisions in Section 17.4. The structure and format of audit trails are Platform IP.

23.3 Tamper Evidence

Audit trail records are append-only and hash-chained. Any attempt to modify or delete a record would break the hash chain, providing cryptographic evidence of tampering. We do not modify or delete audit trail records, except as required by law or court order.

24. Statutory Footer

Every document generated by the Platform carries the following footer:

Prepared by Korvos under standing delegation from [Agency Legal Name]. Reviewed and approved by [Principal Name] on [Date]. This document does not constitute legal advice. The agency is the statutory responsible party.

This footer is applied automatically and must not be removed, altered, or obscured. Documents from which this footer has been removed are not covered by any warranty, indemnity, or limitation of liability under these Terms.

25. Contact

For questions about these Terms, contact us at:

Korvos Pty Ltd
Email: legal@korvos.com.au
Website: korvos.com.au

These Terms of Service were last reviewed on 20 April 2026. Korvos Pty Ltd reserves all rights not expressly granted herein.