These Terms of Service apply when you use EmailIntel, including when you upload an email file, submit email text or headers, or send or forward an email to an EmailIntel analysis inbox.
By using EmailIntel, you agree to these Terms. If you do not agree, do not use the Service.
1. What EmailIntel does
EmailIntel is an email analysis tool provided by Orbits. It helps users inspect suspicious emails, email headers, embedded attachments, links, sender information, technical indicators, and related metadata.
EmailIntel is part of Orbits’ broader security services and research activities. The Service may provide classifications, technical observations, risk indicators, and security recommendations based on the submitted email.
EmailIntel is intended to support phishing analysis, malware triage, email security review, and security awareness. It does not replace professional incident response, legal advice, compliance advice, or security tooling inside your own environment.
2. Ways to submit content
You may submit content to EmailIntel by:
- uploading supported email-related files, such as
.eml,.msg,.txt, email headers, or raw email text; - sending or forwarding an email to an EmailIntel analysis inbox;
- using other submission methods that Orbits may make available later.
Standalone attachment uploads are not supported unless Orbits explicitly enables them. Attachments that are already contained inside a submitted .eml or .msg file may be analyzed as part of that email.
Orbits may block, reject, or ignore unsupported files, oversized submissions, encrypted files, corrupted files, or content that cannot reasonably be analyzed.
3. Your responsibility for submitted content
You are responsible for the content you submit.
By submitting content to EmailIntel, you confirm that:
- you are allowed to submit the email, file, header, text, or related content for security analysis;
- the submission does not violate confidentiality obligations, employment rules, contractual duties, or applicable law;
- you are not submitting the content for an unlawful, offensive, abusive, or malicious purpose;
- where the content contains personal data, you have a valid reason or permission to submit it for analysis.
You do not need to own every technical element inside an email to submit it. However, you must have a legitimate basis to provide the email or its contents to Orbits for analysis.
If an email contains unnecessary personal data, confidential information, medical information, financial information, credentials, secrets, or other sensitive material, you should remove or redact that information before submission where this is practical and does not break the analysis.
4. Privacy and GDPR
Orbits is based in the Netherlands and treats privacy and GDPR compliance as a core part of EmailIntel.
Where EmailIntel processes personal data, Orbits intends to follow the principles of Regulation (EU) 2016/679, the General Data Protection Regulation, including lawfulness, fairness and transparency, purpose limitation, data minimisation, storage limitation, integrity and confidentiality, and accountability as described in GDPR Article 5.
EmailIntel may process personal data contained in submitted emails, including sender addresses, recipient addresses, display names, header data, message text, URLs, domains, IP addresses, file hashes, and technical metadata.
Orbits processes submitted content only for the purposes described in these Terms and in the EmailIntel Privacy Policy.
The main purposes are:
- performing the requested email analysis;
- generating a report or result for the user;
- detecting phishing, malware, fraud, spoofing, abuse, or other suspicious activity;
- improving EmailIntel and Orbits’ security detection capabilities;
- building and improving anonymized or pseudonymized threat intelligence, including OrbitsIntel;
- protecting EmailIntel, Orbits, users, and others against abuse of the Service.
When you upload, send, or forward content to EmailIntel, you ask Orbits to process that content for analysis. This processing may include automated parsing, extraction, classification, enrichment, reputation checks, and security review.
Depending on the context, Orbits may rely on one or more lawful bases under GDPR Article 6. For user-requested analysis, this may include processing that is necessary to provide the requested Service or to take steps requested by the user before entering into a service relationship under GDPR Article 6(1)(b). For abuse prevention, security improvement, threat intelligence, and protection of the Service, this may include legitimate interests under GDPR Article 6(1)(f), balanced against the rights and freedoms of the people whose data may appear in the submitted email. Where consent is specifically requested, Orbits may rely on consent under GDPR Article 6(1)(a).
Orbits will provide privacy information in a concise, transparent, intelligible, and easily accessible way, in line with GDPR Article 12. The Privacy Policy provides further information required under GDPR Article 13, including the purposes of processing, categories of data, retention, recipients or categories of recipients, and user rights.
The Privacy Policy explains this processing in more detail, including your rights under GDPR.
5. No storage of submitted emails after analysis
EmailIntel is designed to avoid storing submitted email bodies longer than needed. This supports the GDPR Article 5 principles of data minimisation, purpose limitation, and storage limitation.
Submitted emails and uploaded email files are held temporarily for analysis. After analysis is completed, the submitted email content is deleted from EmailIntel’s temporary analysis environment.
Orbits does not intentionally keep the full submitted email after analysis in the current version of EmailIntel.
After the submitted email has been analyzed and deleted, Orbits may retain extracted technical indicators and analysis metadata where this is necessary for security, abuse prevention, service improvement, or threat intelligence purposes. This retention is limited to data that Orbits considers relevant and proportionate for those purposes.
Orbits may retain extracted technical indicators and analysis metadata, such as:
- domains;
- URLs;
- IP addresses;
- sender infrastructure indicators;
- authentication results;
- file names;
- file hashes;
- malware or phishing indicators;
- classification results;
- timestamps;
- campaign or infrastructure patterns;
- anonymized or pseudonymized analysis data.
Orbits does not use the original To recipient address from submitted emails for threat intelligence enrichment. Where an email is forwarded to EmailIntel, Orbits may process the forwarding address where needed to return results, prevent abuse, maintain service records, or manage communication related to the submitted analysis.
Temporary system logs, mail server logs, security logs, queue metadata, backups, or infrastructure traces may exist for a limited time as part of normal technical operation. Orbits will limit such retention as much as reasonably possible and will not use those logs as a replacement for storing submitted email bodies.
Where deletion, access, rectification, objection, restriction, or other privacy rights apply, Orbits will handle requests in line with GDPR Articles 15, 16, 17, 18, 21, and related provisions.
6. Use of indicators for security intelligence
Orbits may use extracted indicators and analysis results to improve EmailIntel, OrbitsIntel, and related security services. This use is based on data minimisation and purpose limitation under GDPR Article 5, and where applicable legitimate interests under GDPR Article 6(1)(f).
This may include using submitted data to improve detection logic, enrich threat intelligence, identify phishing infrastructure, detect recurring campaigns, improve scoring, and protect other users.
Where practical, Orbits will anonymize, pseudonymize, aggregate, or minimize data used for these purposes. Orbits does not need the full original email body for most intelligence purposes and aims to avoid retaining it.
Pseudonymisation and other protective measures may be used as part of Orbits’ security and privacy approach, consistent with GDPR Article 32 and the GDPR’s general approach to data protection by design and by default under GDPR Article 25.
7. Third-party security enrichment and sharing
EmailIntel may use third-party security, research, enrichment, infrastructure, or reputation services to analyze indicators extracted from submitted content.
Where personal data is shared with or processed by third parties, Orbits will do so only where there is a valid purpose and lawful basis under GDPR Article 6, and where appropriate under processor, controller, or other applicable data protection arrangements.
This may include sharing or querying indicators such as URLs, domains, IP addresses, file hashes, sender infrastructure, authentication data, and similar technical artifacts with other security or research companies, threat intelligence providers, abuse databases, reputation services, sandboxing systems, or infrastructure lookup providers.
Orbits does not publish a full list of these third parties. This is partly to protect the integrity of the Service and to reduce abuse by attackers attempting to tune phishing or malware against known analysis paths.
Orbits aims to avoid sharing unnecessary personal data with third-party services. Where third-party enrichment is used, Orbits will share the minimum information reasonably needed for the analysis, security enrichment, abuse prevention, or threat intelligence purpose.
If personal data is transferred outside the European Economic Area, Orbits will address those transfers in the Privacy Policy and will use an appropriate transfer mechanism where required by GDPR Chapter V.
8. Forwarding inboxes and future mail redirection services
If you send or forward an email to an EmailIntel analysis inbox, you agree that Orbits may process that email for analysis under these Terms and the Privacy Policy.
Orbits may later offer services where emails are routed to Orbits before being delivered to your mailbox or your organization’s mailbox. Those services may require additional terms, technical setup, data processing agreements, commercial agreements, or customer-specific privacy documentation.
Using the public EmailIntel upload page or analysis inbox does not automatically create a managed mail security gateway service, monitoring service, or enterprise support relationship.
9. Marketing and service communication
Orbits may send necessary service-related messages, such as analysis results, operational notices, security notices, abuse notices, legal notices, or account-related communication where relevant.
Service-related communication may be necessary to provide the requested Service or to protect the Service. Marketing communication will be handled separately from the email analysis request.
Marketing emails, newsletters, product updates, or promotional messages will only be sent where Orbits has a lawful basis to do so, including consent where required. Where consent is used, it will be handled in line with GDPR Article 6(1)(a) and the GDPR requirements for consent. Marketing emails will include a way to unsubscribe where required.
Submitting an email for analysis does not by itself mean you agree to receive unrelated marketing emails.
10. Permitted use
You may use EmailIntel for lawful defensive, educational, personal, non-profit, research, or security analysis purposes.
EmailIntel is available for personal and non-profit use. Business, commercial, or internal organizational use should be licensed through Orbits. Orbits may choose not to enforce this requirement during the current rollout, but Orbits reserves the right to require a commercial arrangement for business, commercial, or organizational use.
Examples of business or organizational use include:
- using EmailIntel as part of an internal SOC, helpdesk, IT, compliance, or security workflow;
- submitting emails on behalf of an employer, client, or organization;
- integrating EmailIntel into a commercial service;
- using EmailIntel to support paid consulting, managed services, or security operations;
- recurring, automated, or high-volume submissions.
11. Prohibited use
You must not use EmailIntel to:
- develop, improve, test, validate, evade detection for, or distribute phishing emails, malware, credential theft, spam, scams, or other harmful content;
- test phishing or malware against third parties without authorization;
- upload stolen data, leaked mailboxes, illegally obtained communications, or content you are not allowed to submit;
- submit content that primarily contains unlawful material unrelated to security analysis;
- use the Service to attack, overload, disrupt, scrape, reverse engineer, or bypass protections of EmailIntel, Orbits, or third-party systems;
- attempt to determine which vendors, scanners, rules, sandboxes, or third-party services Orbits uses;
- use analysis results to improve malicious infrastructure, lures, bypasses, payloads, or social engineering;
- submit high volumes of content without permission;
- impersonate another person or organization;
- misrepresent EmailIntel results as a final legal, forensic, or compliance determination.
Orbits may block, limit, suspend, or reject submissions that appear abusive, unsafe, unlawful, automated, excessive, or inconsistent with these Terms.
12. Malware, suspicious files, and attachments
EmailIntel may analyze attachments that are part of a submitted email file, such as attachments inside a .eml or .msg file.
You may submit suspicious attachments only as part of an email and only for lawful defensive analysis.
You must not submit malware, payloads, droppers, exploit files, scripts, or suspicious attachments for the purpose of building, improving, distributing, testing, or evading detection of malicious content.
Orbits may refuse to process certain file types, remove attachments before analysis, detonate files in controlled environments, extract hashes only, or stop processing a submission if it creates unreasonable risk.
13. Results and limitations
EmailIntel results are provided for informational and security support purposes.
The Service may classify emails, URLs, domains, files, headers, senders, or other indicators as suspicious, malicious, benign, unknown, inconclusive, or requiring review. These results may be incomplete, incorrect, delayed, or based on limited available information.
A benign result does not guarantee that an email is safe. A malicious or suspicious result does not guarantee that an email is unlawful, intentionally harmful, or part of a confirmed attack.
You remain responsible for your own security decisions, incident response actions, user notifications, blocking decisions, reporting decisions, and compliance obligations.
Do not rely on EmailIntel as the sole basis for legal, employment, financial, disciplinary, compliance, or high-impact security decisions.
14. Availability and changes
EmailIntel may be changed, limited, interrupted, suspended, or discontinued at any time.
Orbits may change supported file types, submission limits, analysis methods, third-party enrichment paths, scoring logic, retention behavior, abuse controls, and service availability.
Orbits may update these Terms from time to time. The updated version will apply from the effective date stated above or from the date it is published, unless a different date is stated.
15. No accounts and no API access in the current version
The current version of EmailIntel does not provide user accounts or public API access.
If Orbits later introduces accounts, API access, paid plans, organizational dashboards, mail routing, or managed services, additional terms may apply.
16. Intellectual property
Orbits owns or licenses the software, design, analysis logic, reports, scoring methods, documentation, branding, and other materials used in EmailIntel.
You may use the analysis result for your own defensive, educational, or internal security purposes, subject to these Terms.
You may not copy, reproduce, resell, scrape, mirror, reverse engineer, or use EmailIntel’s service logic, output format, scoring, reports, or branding to create a competing or abusive service.
17. Feedback
If you provide suggestions, bug reports, ideas, samples, comments, or other feedback, Orbits may use that feedback to improve EmailIntel, OrbitsIntel, and related services without owing compensation.
This does not give Orbits ownership of your submitted email content.
18. Security of processing
Orbits will apply appropriate technical and organisational measures to protect submitted content and extracted data, taking into account the nature, scope, context, and purposes of processing, and the risks involved. This reflects the security of processing requirement under GDPR Article 32.
These measures may include temporary processing, access limitation, logging, abuse controls, deletion after analysis, data minimisation, pseudonymisation where practical, secure infrastructure, and controlled use of third-party enrichment.
No internet-facing service can be guaranteed to be perfectly secure.
19. Disclaimers
EmailIntel is provided “as is” and “as available”.
To the maximum extent permitted by law, Orbits makes no warranties about accuracy, completeness, availability, fitness for a particular purpose, uninterrupted operation, or suitability for your specific environment.
Security analysis is messy by nature. Attackers lie, headers can be forged, infrastructure can be reused, indicators can be stale, and perfectly normal systems can look cursed when viewed through enough logs.
20. Limitation of liability
To the maximum extent permitted by law, Orbits is not liable for indirect, incidental, special, consequential, punitive, or exemplary damages, including loss of profit, loss of data, business interruption, reputational damage, security incidents, missed detections, false positives, or reliance on analysis results.
For free use of EmailIntel, Orbits’ total liability is limited to the maximum extent permitted by applicable law.
For paid services, liability may be governed by a separate written agreement.
Nothing in these Terms limits liability where such limitation is not allowed under applicable law.
21. Indemnity
You agree to hold Orbits harmless from claims, damages, losses, liabilities, costs, and expenses arising from:
- content you submit;
- your misuse of EmailIntel;
- your violation of these Terms;
- your violation of applicable law;
- your submission of content you were not allowed to provide;
- your use of EmailIntel results in a harmful, unlawful, or misleading way.
22. Governing law
These Terms are governed by the laws of the Netherlands.
Unless mandatory law provides otherwise, disputes relating to these Terms or EmailIntel will be handled by the competent courts in the Netherlands.
23. Contact
For questions about EmailIntel, these Terms, privacy, deletion requests, commercial use, abuse, or security issues, contact: