KMayerProfessionele IT-diensten voor bedrijven in EuropaDienstenNeem contact op

Gebruiksbeleid tool

Grenzen van publieke passieve review, governed authorized_deep controls en the operating rules for the product family.

This policy explains what the tool is designed to do, what it refuses to do, how private verification and noindex results are handled en how read-only connector evidence, trusted exports, vendor ecosystem mapping, passive asset inventory, monitoring, history en KMayer-assisted remediation stay governed.

Review startenHoe het werktVeelgestelde vragen

Identiteit and ownership

Provideridentiteit and output ownership stay explicit so the tool is not mistaken for a separate company or an unrestricted content source.

Provider- en toolidentiteit

Beheersened use
  • KMayer is the provider. KMayer Exposure Lens AI is the tool and service family offered by KMayer for passive external posture review, private verified results en governed deeper review when eligible.
  • The tool name should not be read as a separate company, a stand-alone managed-service provider, or an identity outside KMayer.

Copyright, IP en output-use boundary

Internal review
  • © 2026 KMayer. Alle rechten voorbehouden. KMayer owns the tool interface, report layout, scoring logic, summaries en visual presentation.
  • Private outputs are provided for the requesting recipient's internal review and may not be copied, republished, resold, reverse engineered, or used to create a competing service without written permission from KMayer.

Publieke modus en veiligheid

The public lane is useful because it stays bounded, passive en verification-aware.

Public lane exclusions

Passive only
  • The public lane allows no brute force, no exploit workflow, no credential attacks, no intrusive testing in the public lane, no private data access en no bypass attempts.
  • Deeper review requires verified ownership, active engagement, approved scope en explicit consent.

Grenzen van publieke passieve review

Passive only
  • Every anonymous request starts in passive_public and stays limited to public DNS, mail posture, HTTPS, TLS, visible headers, trust files, indexing signals en a tightly capped set of same-host public pages.
  • The public lane is designed to show what matters first in a passive external posture review. It is not presented as a full security assessment or unrestricted discovery workflow.

No exploit behavior, no brute force, no login attempts en no intrusive testing

No exploit behaviorNo brute force
  • No exploit attempts, no exploit workflow, no credential attacks, no credential spraying, no brute-force discovery, no authenticated interaction, no private data access, no bypass attempts, no hidden-path probing en no offensive testing in the public lane.
  • No active internet-wide scanning, no private endpoint guessing, no intrusive testing in the public lane en no following of unrelated third-party estates discovered in page content.

Privéverificatie en toegangsafhandeling

Verified access
  • De verificatiemail wordt eerst verzonden en no private result delivery occurs until the intended recipient completes the verification click.
  • Private routes use opaque tokens, verification-aware access controls, safe reuse or expiry behavior en results-ready email delivery only after verification and completion.

Beheersened deeper evidence

authorized_deep, connector-backed evidence en trusted export intelligence remain approval-based and non-offensive.

vereisten voor authorized_deep

Beheersened deep review
  • authorized_deep requires verified ownership, active engagement, approved scope en explicit consent for the reviewed domain, account, or evidence source.
  • The deeper lane is not anonymously available and it does not replace the passive boundary that applies to public submissions.

Read-only connectorbewijs

Read-only bewijs
  • Only read-only connector evidence is permitted en only when the reviewed tenant or domain is approved for that governed workflow.
  • Connector-backed evidence must stay attributable, bounded en tied back to the reviewed account or domain instead of being used as a broad authenticated scanning path.

Trusted exports, quarantine, review en approved-for-parse controls

Approved export
  • Trusted exports and customer-provided artifacts are not parsed on arrival. They enter quarantine first and remain blocked until scanner or manual review plus approved-for-parse controls allow structured extraction.
  • Weigerened, unapproved, or out-of-scope artifacts do not become active evidence simply because they were uploaded.

Advanced capability boundaries

Advanced output stays evidence-backed and governed instead of turning into unlimited discovery or public leakage.

Leveranciersecosysteem and passive asset inventory boundaries

Passive only
  • Mapping van het leveranciersecosysteem en passieve assetinventaris blijven evidence-backed. Ze gebruiken eerst publiek bewijs en kunnen later goedgekeurde connector- of exportbevestigingen bevatten wanneer de workflow daarvoor in aanmerking komt.
  • These capabilities do not authorize intrusive subdomain brute forcing, internet-wide active probing, or silent conflict collapse when evidence disagrees.

Monitoring, history en noindex private results behavior

Verified accessPrivé noindex
  • Monitoring en historie apply only where that continuity is enabled. The system may retain diffs, alerts, audit trails, suppression context en change explanations so recurring behavior stays explainable instead of noisy.
  • Public informational pages may be indexed, but private results stay noindex, noarchive, nofollow en out of sitemap discovery for the verified recipient journey.

Assisted remediation and deeper review boundaries

Beheersened deep review
  • The product is designed to show what matters, why it matters en what to fix first. It is not packaged as a full self-serve remediation playbook for every environment.
  • KMayer can help validate findings, review authorized_deep eligibility, interpret approved evidence sources en move the work into assisted remediation planning when the engagement supports it.

What authorized_deep changes for decision quality

Beheersened deep review
  • It can improve provenance, ownership confidence, provider alignment en the quality of remediation sequencing when the engagement is eligible.
  • It does not mean anonymous public scans automatically gain private connector, export, or monitoring context.

Wat bewust governed blijft

Beheersened use
  • Private results are decision-ready on purpose, but raw connector internals, unrestricted artifacts en environment-specific workbooks are not exposed as an open blueprint.
  • KMayer-assisted remediation is the path for deeper control validation, sequencing en change planning when the engagement supports it.

Confidentiality and reliance

Privélevering, completeness limits en reliance boundaries stay clear before the tool is promoted more broadly.

Confidentiality and private result URLs

Verified accessPrivé noindex
  • Private results are gated, non-indexed en intended for the verified recipient. Do not forward private result URLs to unauthorized parties.
  • KMayer may use submitted details and governed evidence sources to deliver the review, provide follow-up support en maintain quality, audit en security controls around the workflow.

No guarantee of completeness

Beheersened use
  • The tool provides an evidence-backed external posture review, not a guarantee that every issue, dependency, exposure path, or control failure has been discovered.
  • Availability, scope, freshness en confidence can vary based on public evidence quality, approved access, third-party permissions en the governed workflow that applies to the review.

Not legal, compliance, penetration-test, or incident-response advice

Beheersened use
  • The output is informational and prioritization-oriented. It is not a legal opinion, a formal compliance attestation, a penetration-testing service, or incident-response advice.
  • If you need environment-specific legal review, full compliance interpretation, offensive testing, or incident response, KMayer can help route the work appropriately instead of implying this tool replaces those diensten.

User responsibility and acceptable use

Internal review

Use the tool only for domains and evidence sources you own, administer, or are authorized to assess, or for legitimate passive informational analysis where that use is appropriate. Do not use it for harassment, competitor surveillance, phishing, impersonation, unlawful monitoring, unauthorized investigation, or any attempt to bypass the governed authorized_deep controls.

Gerelateerd beleid

Beheersened use

The tool should be read alongside KMayer’s Privacybeleid, Cookiebeleid en Algemene voorwaarden. Those pages govern the broader site relationship while this page explains the tool-specific operating rules.

Third-party and visual governance

Connector, dependency en future visual-asset use stay governed so the product is not misrepresented.

Third-party diensten and dependencies

Beheersened use
  • Connector outputs are read-only and remain subject to the permissions, terms, availability, rate limits en current configuration of the third-party diensten involved.
  • KMayer does not promise uninterrupted access to every external API, platform, or provider surface en evidence depth can change when those dependencies change.

Generated or assisted visual assets

Beheersened use
  • Any future generated visual asset requires KMayer approval before deployment and must not imply false certifications, fake customers, fake screenshots, or unsupported metrics.
  • Illustrative visuals must stay consistent with the KMayer brand and should be documented with source, prompt, date en approval state where practical.

Neem contact op and escalation path

Beheersened use
  • Use the Neem contact op page or [email protected] when you need clarification on scope, confidentiality, acceptable use, or a KMayer-led follow-up.
  • If the intended use, submitted evidence, or engagement boundary is unclear, pause and confirm with KMayer before relying on the tool outside its stated operating rules.

Safe-use lezing

Lees deze resources naast het toolbeleid wanneer u grenzen van passieve review verduidelijkt.

The policy remains the operating source of truth. These guides add business-readable context for passive exposure and trust signals.

Safe-use lezingPassieve externe exposure-reviewUnderstand what passive public-signal review can show and what it cannot claim.Safe-use lezingE-mail and Web Trust SignaalsReview SPF, DKIM, DMARC, TLS, HTTPS, headers en visible trust-signal basics.

Neem contact op

Neem contact op met KMayer

Heeft u vragen of deskundige IT-support nodig? Wij helpen graag. Of u nu managed diensten, cybersecurityoplossingen of cloudinfrastructuur zoekt, ons professionele team staat klaar. Laten we samen uw organisatie versterken met IT-oplossingen op maat.

Neem vandaag contact op

KMayer Ltd | European Trade Centre, 7th Kilometer Business District, 1784 Sofia, Bulgaria | +31 10 8998556

© 2026 KMayer Technology Solution. Alle rechten voorbehouden.

Clutch Icon
Erkend voor kwaliteit: 5-sterrenbeoordeling op Clutch.co
Call Icon
Gratis nummer Nederland: + 31 10 8998556
Email Icon
NL
KMayer - IT Service Provider
Privacybeleid

Our website is committed to protecting your privacy. We collect and process data to enhance your experience, such as recognizing you when you return and understanding how you interact with our content. Your information is used responsibly to ensure that our diensten remain valuable, secure en tailored to your needs. For a detailed explanation of how we handle and protect your data, please refer to our Privacybeleid