Skip to content

Terms of Service

These are the terms that govern your use of Localport. Read them. If you do not agree with them, do not use the service.

Last updated: May 30, 2026

1. Agreement

These Terms of Service (the "Terms") are a binding contract between you and Masteren Labs, a sole proprietary concern based in India ("Masteren Labs," "Localport," "we," "us"), covering your use of the Localport product and related services. By creating an account, connecting a tunnel, downloading the Localport CLI, or otherwise using the service, you accept these Terms. If you are using Localport on behalf of an organisation, you confirm that you have authority to bind it.

The Privacy Policy and the Refund Policy form part of these Terms. If you also have a signed enterprise agreement or an order form with us, that agreement controls where it conflicts with these Terms.

2. The Service

Localport is a managed tunnelling service. It accepts traffic at a public endpoint and forwards it to a client or service you control, and back. The service is delivered through the Localport website, the dashboard at dashboard.localport.io, the tunnel domains (including localport.dev and localport.app), the public APIs, the Localport CLI, and the supporting documentation.

We add, change, restrict, or retire features from time to time. Where a change materially reduces a paid feature, we will give reasonable notice unless we need to act urgently, for example for security, legal, or abuse reasons.

3. Accounts and Teams

You must be at least 18, or the age of legal majority in your country, to use Localport. You must give us accurate account and billing information and keep it current.

  • You are responsible for everything done under your account: by you, by your team members, by your tokens, and by your clients.
  • Keep your credentials, tunnel tokens, mTLS keys, and certificate bundles confidential. Revoke them at the first sign of compromise and tell us.
  • Team owners and administrators are responsible for invitations, permissions, billing actions, and the resources their team creates.
  • We are entitled to rely on instructions that appear to come from a team owner or administrator unless we have reason to think the account is compromised or the instruction is unlawful.

4. What You Own

You decide what to expose through Localport. You decide who can reach it, how it authenticates them, and whether exposing it is safe in the first place. We provide the route. We do not vet the destination.

You are responsible for your own application's security: authentication, authorisation, patching, input validation, rate limiting, logging, monitoring, backups, and incident response. Localport is not a substitute for any of this.

You represent and warrant, on a continuing basis, that any service you expose through Localport is properly patched, configured securely, and lawful where you make it available, that you have authority to expose it, and that you have obtained any consents, licences, registrations, and approvals required to make it accessible to its intended audience.

If your service handles personal data, payment data, health data, credentials, source code, regulated material, or anything else that requires special care, you are responsible for ensuring that your use of Localport is lawful for that data and that you have whatever consents, contracts, or approvals are needed.

5. Acceptable Use

You will not use Localport, allow anyone else to use Localport, or expose any service through Localport, for any of the following:

  • malware, ransomware, spyware, botnets, viruses, worms, droppers, exploit kits, command-and-control infrastructure, credential theft, or any other malicious software or activity;
  • phishing, impersonation, brand misuse, deceptive login pages, fake support pages, or any form of credential harvesting;
  • unauthorised access, scanning, probing, scraping, intrusion attempts, password attacks, token stuffing, vulnerability exploitation, or data exfiltration;
  • denial-of-service attacks, stress testing against systems you do not own and have permission to test, reflection or amplification attacks, abusive automation, or traffic designed to degrade another network or service;
  • child sexual abuse material, sexual exploitation, non-consensual intimate material, extremist or terrorist material, or any content that is unlawful to possess, transmit, or make available in the relevant jurisdiction;
  • infringement of intellectual property, privacy, publicity, contractual, or other rights;
  • regulated activity (including financial services, healthcare, gambling, and adult content) that you lack the licences, approvals, or compliance controls to carry out;
  • violations of sanctions, export controls, anti-money-laundering, anti-bribery, or anti-corruption laws;
  • circumventing plan limits, usage metering, payment enforcement, geographic restrictions, security controls, or abuse-prevention systems;
  • resale, sublicensing, white-labelling, or providing the service as a managed offering to your own customers without our prior written consent;
  • benchmarking, competitive analysis, or load testing of Localport itself without our prior written consent;
  • reverse engineering, decompiling, or otherwise attempting to extract source code from the hosted service, except to the extent applicable law expressly permits it;
  • high-risk activities. Localport is general-purpose tunnelling infrastructure. It is not designed for, and must not be deployed in, any environment where a failure, delay, interruption, or error could lead to death, personal injury, environmental damage, or material physical or financial harm. This includes life-support systems, medical devices, emergency response services, aviation or air-traffic control, nuclear facilities, weapons systems, autonomous vehicles, industrial control of critical infrastructure, and any other safety-critical or mission-critical context. You assume all risk of using Localport in any such context.

You are also responsible for ensuring that your end users, contractors, and anyone acting on your behalf do not do any of the above through services you expose with Localport.

6. Suspension, Termination, and Enforcement

We investigate suspected breaches of these Terms, abuse reports, security risk, payment fraud, and legal demands. Where we believe action is needed we may, at our sole discretion and without prior notice, take any of the following steps in any combination: block traffic, revoke tokens, disable tunnels, restrict features, suspend or block a user account, suspend or block a team account, terminate a subscription, terminate an account, preserve relevant records, withhold release of reserved resources, refer the matter to law enforcement, or notify affected providers, network operators, and downstream recipients.

Suspension pauses access to all or part of the service. While an account or team is suspended, tunnels are disconnected, paid features may be restricted, the dashboard or API may return limited responses, and active subscriptions continue to run for billing purposes unless we say otherwise. Suspension may be lifted once the underlying issue is resolved to our satisfaction. Termination is the end of your right to use the service and is intended to be final.

We may suspend or terminate without notice, and without owing refunds, credits, damages, or compensation, for any of the following: breach of these Terms, the Acceptable Use Policy, or any other policy referenced in these Terms; abuse or repeated complaints from third parties; a credible risk to the security, reliability, or integrity of the service or to other users; suspected fraud, payment fraud, chargeback abuse, or sanctions risk; failure to pay fees that are due; instructions from a competent court or law-enforcement authority; or any other conduct that, in our reasonable judgment, exposes us, our other customers, or the public to legal or reputational risk.

If you believe a suspension or termination has been applied in error, write to [email protected] from the email address on the account, explain the position, and we will review in good faith. Review of a suspension is not a guarantee that it will be lifted. We are not obliged to disclose the source of any abuse report or the detail of any investigation.

Reports of abuse can be sent to [email protected].

7. Fees and Billing

  • Paid plans are billed in advance on the cycle shown at checkout or in your order form.
  • You authorise us and our payment processors to charge the payment method you provide for subscription fees, usage above plan limits where applicable, taxes, and adjustments.
  • Payment details are handled by our payment processors under their own terms. We do not store full card numbers or CVV codes.
  • Trial details (length, whether a payment method is required, and whether the trial converts to a paid subscription) are shown at checkout or in the dashboard. If a trial is set to convert automatically, you need to cancel before the conversion date to avoid being charged.
  • If a payment fails we may retry it, restrict paid features, or terminate the subscription. A failed payment does not by itself release you from amounts already due.
  • Prices, plan limits, and feature bundling may change. Changes to an existing subscription normally take effect at the next renewal unless an order form says otherwise.
  • Enterprise plans and custom orders are governed by the applicable enterprise agreement or order form.

8. Cancellation and Refunds

You can cancel a paid subscription from the dashboard or, where available, the payment portal. Cancellation stops future renewals. Unless the Refund Policy or an enterprise agreement says otherwise, paid access continues until the end of the current billing period, and we do not refund that period.

Refunds are narrowly limited and are governed by the Refund Policy. Fees are otherwise non-refundable. Chargebacks, payment disputes, and unpaid invoices may result in suspension or termination. You are responsible for bank fees, currency conversion charges, taxes, collection costs, and similar amounts that we did not cause.

9. Customer Content

"Customer Content" means the data, requests, responses, applications, files, configurations, domains, certificates, and other material you send through or store on Localport.

You own your Customer Content. You grant us a limited, worldwide, non-exclusive licence to host, process, transmit, route, cache temporarily where necessary, display in the dashboard, and back up Customer Content, only to the extent needed to operate, secure, support, enforce, and improve the service. This licence ends when the content is removed from the platform on normal deletion or backup rotation.

You are responsible for the rights, consents, and permissions needed for us to process Customer Content as described in these Terms and the Privacy Policy. You are responsible for the users who interact with services you expose.

10. Privacy and Data Protection

We operate Localport in line with applicable data protection law, including the GDPR, the UK GDPR, and the CCPA where they apply, and we honour the equivalent rights granted by the other jurisdictions our users are in. While a tunnel is active, the traffic flowing through it stays in the region you selected for that tunnel and is not transferred out of that region by Localport. The other data we hold, including account, billing, tunnel configuration, and operational records, is stored in the European Union, as described in the Privacy Policy.

If you use Localport to process personal data on behalf of your own customers, you are responsible for deciding whether you need a separate data processing agreement, additional notices, or a specific legal basis before doing so. Localport is not certified for every regulated workload by default; if your use case requires specific certifications, contact us before relying on the service.

A data processing addendum (DPA) is available to paying customers on request, on the standard form we publish. The DPA, once executed, supplements these Terms for the personal data we process on your behalf. Email [email protected] to request a copy. Until a DPA is signed, no DPA is in force and no additional commitments to act as your processor apply.

11. Intellectual Property

Localport, the Localport name, the logo, the wordmark, the website, the dashboard, the hosted infrastructure, the documentation, the server-side software, and any related designs, layouts, copy, and audiovisual material are owned by Masteren Labs or its licensors and are protected by copyright, trademark, and other intellectual property laws. All rights not expressly granted in these Terms are reserved.

You will not use the Localport name, the logo, the wordmark, the tunnel domains, or any confusingly similar mark, in advertising, marketing, products, services, packaging, domain names, social media handles, or anywhere else, without our prior written consent. Nominative or referential use solely to identify Localport as a service you use is permitted, provided that it does not imply endorsement, partnership, or affiliation, and that it complies with any brand guidelines we publish.

The Localport CLI is released under the open-source licence identified in its repository. That licence applies to the CLI source code only. It does not grant rights to the hosted service, the server-side code, the trademarks, the tunnel domains, the brand assets, or the supporting infrastructure. Forking the CLI does not grant rights to run a competing managed service under any name that suggests affiliation with Localport.

If you send us feedback, suggestions, ideas, or proposed improvements relating to Localport, you grant us a perpetual, worldwide, royalty-free, sublicensable, irrevocable licence to use them without restriction and without owing you anything for them.

12. Third Parties

Localport relies on third-party providers, including infrastructure, payment, email, identity, DNS, and support tools, and we may link to third-party sites. We are not responsible for those third parties, their pricing, their outages, their privacy practices, or their terms. If a third-party change disrupts Localport, we may modify or suspend the affected parts of the service.

13. Availability

We aim to keep Localport up. We do not promise specific uptime unless a signed enterprise agreement says otherwise. Planned maintenance, emergency patches, capacity events, network incidents, upstream provider outages, security incidents, abuse mitigation, legal process, and events beyond our reasonable control may interrupt the service.

Beta, preview, free, and trial features are offered as-is and may change or stop at any time. They may have lower reliability, support, and retention than paid features.

14. What Localport Is Not

Localport carries traffic between a public endpoint and a service you run. It also exposes a small set of access and abuse-control features, namely IP allowlists, mTLS where available, plan limits, and limited abuse and volumetric protections, that reduce the easiest forms of misuse. These features help, but they are not a security product for the service behind your tunnel.

Unless an order form or signed enterprise agreement expressly states otherwise, Localport is not a web application firewall, an intrusion detection system, a managed DDoS scrubber, a vulnerability scanner, an antivirus product, a malware sandbox, an endpoint protection product, a managed SOC, a fraud-prevention system, a content-moderation system, a data loss prevention tool, a backup service, or an authentication provider for your application. We do not warrant that hostile traffic, malware, exploit attempts, brute-force attempts, scraping, fraud, or any other attack will be detected, blocked, sanitised, or stopped before it reaches your service.

We have no obligation to monitor, screen, filter, classify, or moderate tunnel traffic or Customer Content. Any action we take or do not take in response to any specific traffic, content, request, or report is at our sole discretion and does not create a duty to take similar action in the future, a course of dealing, or any liability to you or to any third party.

You are responsible for losses, compromise, downtime, data exposure, malware infection, third-party claims, or hostile traffic affecting services you expose through Localport, except to the extent directly caused by our wilful misconduct.

15. Disclaimers

THE SERVICE IS PROVIDED "AS IS" AND "AS AVAILABLE." TO THE FULLEST EXTENT PERMITTED BY LAW, MASTEREN LABS DISCLAIMS ALL WARRANTIES, WHETHER EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE, INCLUDING ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, NON-INFRINGEMENT, ACCURACY, AVAILABILITY, AND UNINTERRUPTED OR ERROR-FREE OPERATION.

WE DO NOT WARRANT THAT LOCALPORT WILL MEET YOUR REQUIREMENTS, OPERATE WITHOUT INTERRUPTION, RESIST EVERY ATTACK, PREVENT EVERY UNAUTHORISED ACCESS, DETECT EVERY PIECE OF MALWARE, PRESERVE DATA, OR BE FREE FROM DEFECTS, VULNERABILITIES, VIRUSES, OR HARMFUL COMPONENTS. NOTHING IN THESE TERMS EXCLUDES LIABILITY THAT CANNOT BE EXCLUDED UNDER APPLICABLE LAW.

16. Limitation of Liability

TO THE FULLEST EXTENT PERMITTED BY LAW, MASTEREN LABS AND ITS AFFILIATES, OFFICERS, DIRECTORS, EMPLOYEES, CONTRACTORS, SUPPLIERS, AND AGENTS WILL NOT BE LIABLE FOR INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, EXEMPLARY, PUNITIVE, OR ENHANCED DAMAGES; FOR LOSS OF PROFITS, REVENUE, GOODWILL, BUSINESS, REPUTATION, DATA, USE, OR SAVINGS; FOR THE COST OF SUBSTITUTE SERVICES; FOR SERVICE INTERRUPTIONS OR DELAYS; FOR ANY SECURITY INCIDENT, MALWARE, RANSOMWARE, ATTACK, INTRUSION, EXPLOIT, FRAUD, OR UNAUTHORISED ACCESS AFFECTING ANY SERVICE YOU EXPOSE THROUGH LOCALPORT OR ANY SYSTEM CONNECTED TO IT; FOR THE ACTS OR OMISSIONS OF YOUR USERS, CONTRACTORS, OR ANY THIRD PARTY; OR FOR ANY DAMAGE TO HARDWARE, SOFTWARE, DATA, OR NETWORKS ARISING FROM YOUR USE OF THE SERVICE.

OUR TOTAL AGGREGATE LIABILITY FOR ALL CLAIMS ARISING OUT OF OR RELATING TO THE SERVICE OR THESE TERMS, WHETHER IN CONTRACT, TORT, STATUTE, OR ANY OTHER LEGAL THEORY, WILL NOT EXCEED THE LESSER OF (A) THE FEES YOU ACTUALLY PAID TO MASTEREN LABS FOR THE AFFECTED SERVICE IN THE TWELVE (12) MONTHS BEFORE THE EVENT GIVING RISE TO THE CLAIM, OR (B) USD $100. IF YOU USED ONLY TRIAL, BETA, OR EVALUATION FEATURES, OUR TOTAL LIABILITY IS LIMITED TO USD $50.

THIS CAP IS AGGREGATE. THE EXISTENCE OF MORE THAN ONE CLAIM, INCIDENT, USER, ACCOUNT, OR THEORY OF LIABILITY DOES NOT INCREASE THE CAP. THE LIMITS IN THIS SECTION APPLY EVEN IF A REMEDY FAILS OF ITS ESSENTIAL PURPOSE, EVEN IF WE WERE ADVISED THAT DAMAGES WERE POSSIBLE, AND EVEN IF THE LOSS WAS FORESEEABLE. NOTHING IN THIS SECTION EXCLUDES OR LIMITS LIABILITY THAT, UNDER APPLICABLE LAW, CANNOT BE EXCLUDED OR LIMITED.

17. Indemnification

You will defend, indemnify, and hold harmless Masteren Labs and its affiliates, officers, directors, employees, contractors, suppliers, and agents against any claim, demand, investigation, loss, liability, damage, penalty, settlement, cost, and expense (including reasonable legal fees) arising out of or related to:

  • your Customer Content or the services you expose through Localport;
  • activity on your account, your teams, or your tokens;
  • any breach of these Terms or violation of law by you or your users;
  • any infringement or misappropriation of a third party's rights;
  • any security incident, malware infection, or attack involving your systems or services exposed through Localport;
  • any claim by your end users, customers, or visitors arising out of the services you expose.

We may, at our own expense, take over the defence and settlement of any claim you are required to indemnify. If we do, you will cooperate fully and will not settle any matter affecting our rights or reputation without our written consent. Your obligations under this Section 17 are not subject to the limitation of liability in Section 16. This obligation does not apply only to the extent a claim is finally determined by a court of competent jurisdiction to have been directly caused by our wilful misconduct.

18. Governing Law

These Terms are governed by the laws of India, without regard to its conflict-of-law rules. Subject to mandatory law, the courts having jurisdiction over the place of business of Masteren Labs have exclusive jurisdiction over disputes arising out of or relating to these Terms or the service.

Before bringing a claim, each party will give the other written notice and an opportunity to resolve the matter in good faith for at least thirty (30) days, except where urgent injunctive relief is needed. Any claim relating to the service or these Terms must be brought within one (1) year after the claim arises, unless applicable law requires a longer period.

19. General

  • Notices. We may give notice by email, dashboard message, or website posting. Legal notices to us must go to [email protected].
  • Assignment. You may not assign these Terms without our written consent. Any attempted assignment in breach of this clause is void. We may assign them in connection with a merger, acquisition, financing, reorganisation, or sale of assets without your consent.
  • Severability. If any part of these Terms is unenforceable, that part is to be modified to the minimum extent necessary to make it enforceable, and the rest remains in full force.
  • No waiver. A failure or delay in enforcing a provision is not a waiver of it. A waiver is effective only if given in writing.
  • Force majeure. We are not liable for delay or failure caused by events outside our reasonable control, including natural disasters, war, civil unrest, labour action, network failures, internet or cloud-provider outages, denial-of-service events, cyber-attacks, government actions, embargoes, sanctions, public-health events, and changes in law.
  • Survival. Any provision that by its nature is intended to survive will survive termination or expiry of these Terms, including Sections 4 (What You Own), 9 (Customer Content), 11 (Intellectual Property), 14 (What Localport Is Not), 15 (Disclaimers), 16 (Limitation of Liability), 17 (Indemnification), 18 (Governing Law), and this Section 19.
  • No third-party beneficiaries. These Terms are for the benefit of you and Masteren Labs only. They do not create rights or remedies in any other person.
  • Relationship. Nothing in these Terms creates an employment, agency, partnership, joint-venture, or fiduciary relationship between you and Masteren Labs.
  • Headings. Section headings are for convenience and do not affect interpretation.
  • Entire agreement. These Terms together with the documents they incorporate are the entire agreement for the service, except for any signed enterprise agreement or order form. They supersede any earlier agreement on the same subject matter.

20. Contact

Masteren Labs (sole proprietary concern, India)
Legal: [email protected]
Abuse: [email protected]
Grievance: [email protected]
Support: [email protected]
Website: https://localport.io