Last updated: March 2026
By accessing or using KavachIQ ("the Service"), you agree to be bound by these Terms of Service. If you do not agree, do not use the Service.
KavachIQ provides backup, restore, and data protection services for Microsoft 365 workloads including Exchange Online, OneDrive for Business, SharePoint Online, Microsoft Teams, and Entra ID (Azure AD).
You must provide accurate information during registration. You are responsible for maintaining the security of your account credentials and for all activities under your account.
You authorize KavachIQ to access your Microsoft 365 tenant data via Microsoft Graph API for the sole purpose of performing backup and restore operations. You retain all ownership rights to your data.
All backup data is encrypted at rest using AES-256-GCM with per-tenant data encryption keys (DEKs) wrapped by a master key encryption key (KEK). Data is stored in your configured storage backend (Azure Blob Storage, S3-compatible, or local storage).
Backup data is retained according to the SLA policies you configure. WORM (Write-Once-Read-Many) locked data cannot be deleted before the retention period expires. Legal hold data is retained indefinitely until the hold is released.
We will use commercially reasonable efforts to maintain service availability. Backup schedules are best-effort and depend on Microsoft Graph API availability and rate limits.
KavachIQ is provided "as is" without warranty of any kind. We are not liable for data loss, service interruptions, or damages arising from the use of the Service. Our total liability is limited to the fees paid in the 12 months preceding the claim.
Either party may terminate at any time. Upon termination, your backup data will be retained for 30 days, after which it will be permanently deleted unless a longer retention period is required by applicable law or WORM policy.
We may update these terms at any time. Continued use of the Service after changes constitutes acceptance of the revised terms.