Terms of Service

For the purposes of this Agreement, the following definitions apply:

• "Platform" refers to the PrivateStress.ru website, infrastructure, API, panel, and all associated services operated by the Company.
• "User" refers to any individual or legal entity that registers an account or uses the Platform in any capacity.
• "Load Test" or "Stress Test" refers to the deliberate transmission of high-volume network traffic to a target system for the purpose of evaluating its performance, capacity, and resilience.
• "Target" refers to any IP address, hostname, domain, or network endpoint designated by the User as the destination of a load test.
• "Authorized Target" refers to any Target that the User owns outright or has obtained explicit, documented, written permission to test from its lawful owner or operator.
• "Unauthorized Target" refers to any Target that does not meet the definition of Authorized Target.
• "Token" or "API Key" refers to the unique authentication credential assigned to a User's account granting access to the Platform API.
• "Blacklisted Range" refers to any IP range, ASN, or network block that the Company has designated as permanently off-limits for testing, including government, critical infrastructure, healthcare, financial, and CDN networks.
• "Violation" refers to any use of the Platform that contravenes these Terms.

To use the Platform, you must:

• Be at least 18 years of age or the age of legal majority in your jurisdiction, whichever is greater.
• Have the legal capacity to enter into a binding contract under the laws of your country of residence.
• Not be located in a country subject to international sanctions or trade embargoes, including but not limited to those maintained by the United States Office of Foreign Assets Control (OFAC), the European Union, or the United Nations.
• Not be a person or entity listed on any government denied-parties list.
• Provide accurate, complete, and up-to-date registration information. Providing false information constitutes immediate grounds for termination and may constitute fraud.
• Have a legitimate, demonstrable need for load testing services related to infrastructure you own or administer.

The Company reserves the right to refuse registration to any individual or entity at its sole discretion, without being required to provide a reason.

By registering, you represent and warrant that you meet all eligibility requirements. If you are registering on behalf of a legal entity, you further represent that you are duly authorized to bind that entity to these Terms.

PrivateStress.ru is a professional infrastructure load testing platform. Its purpose is to allow system administrators, network engineers, DevOps teams, and security professionals to validate the performance, fault tolerance, and stability of infrastructure they own or control.

The service operates in the same category as recognized industry tools such as Apache JMeter, Locust, k6, Gatling, LOIC (in authorized contexts), and commercial services like BlazeMeter, Loader.io, and LoadNinja. Load testing is a standard, recognized, and necessary practice within the fields of software engineering, network administration, and information security.

The Company provides the technical means to perform load tests. The Company does not direct, instruct, or encourage Users to test any specific Target. All Target selection is made exclusively by the User, who bears full and sole legal responsibility for ensuring that each Target is an Authorized Target.

The Platform may be used exclusively for the following legitimate, lawful purposes:

• Capacity planning: Determining the maximum concurrent user load a system can sustain before degradation.
• Stress testing: Identifying the breaking point of your own servers, VPS instances, dedicated machines, or cloud resources.
• DDoS mitigation validation: Testing the effectiveness of your own DDoS protection solutions (e.g., Cloudflare, OVH VAC, Voxility) on infrastructure you own.
• Network benchmarking: Measuring throughput, latency, and packet loss under load conditions on your own network segments.
• Firewall and rate-limiter validation: Confirming that your own firewall rules, rate-limiting configurations, and intrusion detection/prevention systems behave as expected under synthetic load.
• CDN & reverse-proxy performance evaluation: Testing how your own CDN configuration responds to traffic spikes.
• Game server and application server testing: Simulating peak-load conditions on dedicated game servers, web servers, APIs, or databases you own or operate.
• Security research: Testing the resilience of your own infrastructure in a controlled environment as part of a documented security assessment.
• Educational purposes: Learning about network behavior under load in a sandboxed, self-owned environment.

In all permitted use cases, the User must be able to produce documentation proving ownership or explicit written authorization upon request.

The following activities are absolutely prohibited and constitute a material breach of this Agreement:

• Initiating any load test against a Target that you do not own or for which you do not possess explicit written authorization from the lawful owner.
• Attempting to disrupt, degrade, or take offline any third-party service, website, server, or network resource.
• Using the Platform to conduct what would legally constitute a Distributed Denial of Service (DDoS) attack against any person, organization, or entity.
• Targeting government agencies, public sector infrastructure, defense systems, emergency services, or military networks at any level (municipal, regional, national, or international).
• Targeting financial institutions, payment processors, stock exchanges, or banking infrastructure.
• Targeting hospitals, healthcare providers, emergency dispatch systems, or any infrastructure that, if disrupted, could endanger human life.
• Targeting educational institutions, schools, universities, or academic research networks.
• Targeting internet service providers (ISPs) or telecommunications carriers in a manner that degrades service for third-party customers.
• Targeting any system you do not have legal authority to test, regardless of whether the system is publicly accessible.
• Using the Platform to conduct competitive sabotage — targeting business competitors' infrastructure.
• Reselling, sublicensing, or granting third parties access to your account or API key.
• Using automated scripts, bots, or tools to circumvent the Platform's rate limits, blacklists, or verification systems.
• Providing false or fabricated proof of authorization to the Company.
• Attempting to test Blacklisted Ranges by using IP rotation, proxy chains, or any other obfuscation method.
• Using the Platform to retaliate against individuals in personal disputes.

The Company reserves the right, at any time and at its sole discretion, to require a User to produce documented proof that a Target is an Authorized Target. Such proof may include, but is not limited to:

• Domain WHOIS records demonstrating ownership of the target domain, with matching registrant information corresponding to the User's account.
• Hosting provider invoices, control panel screenshots, or server management credentials demonstrating that the User administers the target server.
• A signed authorization letter from the infrastructure owner, on official company letterhead, explicitly naming the target IP address or domain, the User's name or company, the scope of authorized testing, and the authorized testing period.
• Legal contracts, service agreements, or penetration testing scopes of work that include authorization to stress test the target infrastructure.
• Cloud provider (AWS, GCP, Azure, OVH, Hetzner, etc.) account ownership proof tied to the target IP.

Failure to produce satisfactory proof of authorization within 48 hours of a request will result in immediate account suspension. The Company is under no obligation to provide advance notice before requesting authorization evidence.

Submitting fraudulent, forged, or fabricated authorization documents constitutes a violation of this Agreement and may constitute fraud under applicable criminal law. The Company will retain all submitted documentation and may disclose it to law enforcement authorities.

The Company maintains a comprehensive and continuously updated blacklist of IP ranges, ASNs, and network blocks that are permanently prohibited as test targets, regardless of any claimed authorization. This blacklist includes:

• All IP ranges allocated to government agencies and public sector bodies at municipal, regional, national, and international levels.
• All IP ranges belonging to military and defense organizations worldwide.
• All IP ranges belonging to healthcare systems, hospitals, pharmaceutical infrastructure, and emergency services.
• All IP ranges belonging to financial institutions, banking networks, payment processors, and stock exchanges.
• All IP ranges registered to major internet infrastructure providers, root DNS servers, and internet exchange points (IXPs).
• All IP ranges belonging to major CDN and cloud security providers including but not limited to Cloudflare, Akamai, Fastly, Imperva, and AWS Shield.
• All IP ranges belonging to telecommunications carriers and internet service providers where testing would affect third-party customers.
• Ranges specifically identified by threat intelligence feeds as belonging to critical infrastructure operators.
• Any range placed on the blacklist following an abuse report, court order, or law enforcement request.

Any attempt to test a blacklisted target will result in the immediate and permanent suspension of the User's account without refund. Attempts to bypass blacklist protections through proxy chains, VPN tunneling, or IP spoofing constitute aggravated violations and will be reported to relevant authorities.

The blacklist is maintained at the Company's sole discretion. The Company is not obligated to disclose the complete contents of the blacklist, and its composition may change at any time without notice.

By using the Platform, you expressly represent, warrant, and covenant that:

• You have the full legal right, power, and authority to initiate a load test against each and every Target you designate.
• Every Target you submit for testing is an Authorized Target, and you will be able to produce documented proof of authorization upon request.
• You understand that the transmission of high-volume network traffic to a system you do not own or have not authorized constitutes a criminal act in most jurisdictions.
• You will not use the Platform in any manner that violates any applicable local, national, or international law or regulation.
• You will not use the Platform to cause harm to any individual, organization, business, or infrastructure.
• You are solely responsible for understanding and complying with all laws applicable to your use of the Platform in your jurisdiction.
• You will promptly notify the Company if you become aware of any unauthorized use of your account or API key.
• All information you provide to the Company is and will remain accurate, complete, and truthful.
• You will not attempt to reverse-engineer, decompile, or extract the source code of the Platform or its underlying attack infrastructure.
• You will not use the Platform in any manner that could damage the reputation, infrastructure, or legal standing of the Company.

These representations are continuous and are deemed renewed each time you use the Platform. Any breach of these representations constitutes an immediate material breach of this Agreement.

You are entirely responsible for maintaining the confidentiality and security of your account credentials, including your username, password, and API key (Token). Specifically:

• You must not share your login credentials or API key with any other person or entity, under any circumstances.
• You must not embed your API key in publicly accessible code repositories, client-side scripts, or any location where it may be discovered by third parties.
• You must regenerate your API key immediately if you believe it has been compromised.
• You must use a strong, unique password for your PrivateStress.ru account and enable any available two-factor authentication mechanisms.
• All activities conducted through your account — regardless of whether you personally initiated them — are your sole legal responsibility.

"I did not perform that test" is not a valid defense. If your account credentials were used to conduct a test, you are responsible. If you suspect unauthorized access, you must report it to the Company immediately and cooperate fully with any resulting investigation.

The Company will never ask for your password via email, chat, or support channels. Any such request should be treated as a phishing attempt.

The Company maintains detailed logs of all platform activity, including but not limited to:

• Complete records of all tests launched, including the originating User account, Target IP address, Target port, test method, test duration, and launch timestamp.
• Account registration data, including IP addresses used during registration and all subsequent logins.
• All API requests made using a User's Token, including request timestamps and originating IP addresses.
• All payment transactions, including amounts, cryptocurrency wallet addresses, and timestamps.
• All support communications and authorization documents submitted by Users.

These logs are retained for a minimum of 24 months and are available for disclosure to law enforcement, judicial authorities, and other legally authorized parties in response to valid legal process, including subpoenas, court orders, search warrants, and international mutual legal assistance treaty (MLAT) requests.

The Company may, at its discretion, proactively monitor test activity in real time to identify potential abuse patterns. This monitoring does not create any obligation to detect or prevent violations.

The Company is committed to full cooperation with law enforcement authorities and takes a zero-tolerance stance toward the use of the Platform for illegal activities. In this regard:

• The Company will respond to all valid legal process (subpoenas, court orders, warrants, MLAT requests) from law enforcement agencies with appropriate jurisdiction.
• The Company may proactively report suspected illegal activity to relevant authorities, including the FBI Cyber Division (IC3), Europol EC3, national CERTs, and local law enforcement, without prior notice to the User.
• The Company will preserve and protect all logs and records related to a suspected violation upon becoming aware of it, in compliance with evidence preservation obligations.
• The Company may share User account data, IP logs, test records, and any other relevant information with investigators without requiring a court order in jurisdictions where voluntary disclosure is legally permissible.
• The Company will cooperate with victims of any attacks that may have originated from the Platform, including by providing records to assist in civil litigation.

The anonymity of cryptocurrency payments does not protect Users from legal accountability. The Company's comprehensive activity logs, combined with IP records, payment blockchain data, and other metadata, provide sufficient information to identify Users who abuse the Platform.

Users are advised that this cooperation policy is designed to protect the integrity of the Platform and its legitimate users, and to ensure that bad actors cannot use a "technical intermediary" defense to evade responsibility.

The Company reserves the right to suspend or permanently terminate any User account at any time, with or without prior notice, for any of the following reasons:

• Any actual or suspected violation of these Terms.
• Failure to provide proof of authorization upon request within the specified timeframe.
• Submission of fraudulent authorization documentation.
• Receipt of an abuse report, court order, or law enforcement request relating to the User's activity.
• Detection of automated abuse, API flooding, or circumvention attempts.
• Any activity that, in the Company's sole judgment, poses a legal, reputational, or operational risk.
• Chargebacks or payment disputes filed without legitimate cause.
• Inactivity exceeding 12 months.

Suspended accounts are not entitled to a refund of any unused plan balance or credits. The Company will retain all logs associated with suspended accounts and may disclose them to relevant authorities.

If you believe your account was suspended in error, you may contact support. The Company is under no obligation to reinstate any account and its decision regarding suspensions is final.

Upon termination, all licenses granted to you under this Agreement are immediately revoked, and you must cease all use of the Platform.

All payments on PrivateStress.ru are processed via cryptocurrency. By making a payment, you acknowledge and accept the following:

• All sales are final. Due to the nature of digital services and the immediate provisioning of platform access upon payment confirmation, payments are generally non-refundable.
• Refunds may be issued at the Company's sole discretion only in the event of documented, verified platform downtime exceeding 48 consecutive hours attributable to the Company's infrastructure, and only for the prorated value of the service unavailable during that period.
• No refund will be issued for accounts that are suspended or terminated due to a violation of these Terms, regardless of any remaining plan balance.
• No refund will be issued for User error, including testing the wrong target, selecting an incorrect plan, or misjudging capacity needs.
• Chargebacks initiated against the Company without prior good-faith attempt at resolution will result in immediate, permanent account termination and may be pursued as fraudulent chargebacks under applicable law.
• The Company is not responsible for any fees charged by cryptocurrency networks, exchanges, or wallet providers in connection with payments.
• Payment confirmation times vary based on blockchain network congestion and are outside the Company's control.

The Company reserves the right to modify its pricing at any time. Price changes will not apply retroactively to existing active subscriptions, unless otherwise stated.

All content, technology, software, source code, algorithms, methods, interfaces, branding, and materials on the Platform are the exclusive intellectual property of PrivateStress.ru and are protected by applicable copyright, trademark, trade secret, and intellectual property laws.

• You are granted a limited, non-exclusive, non-transferable, revocable license to use the Platform solely for the purposes described in these Terms and only for the duration of your active subscription.
• You may not copy, reproduce, distribute, modify, create derivative works of, publicly display, reverse-engineer, decompile, disassemble, or extract any component of the Platform.
• You may not use the Company's name, logo, trademarks, or branding without prior written consent.
• Any feedback, suggestions, or ideas you submit regarding the Platform may be used by the Company without restriction or compensation.

Unauthorized use of the Platform's intellectual property constitutes infringement and may give rise to civil and criminal liability.

THE PLATFORM IS PROVIDED ON AN "AS IS" AND "AS AVAILABLE" BASIS, WITHOUT ANY WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, THE COMPANY EXPRESSLY DISCLAIMS ALL WARRANTIES, INCLUDING WITHOUT LIMITATION:

• Any implied warranties of merchantability, fitness for a particular purpose, and non-infringement.
• Any warranties regarding the availability, reliability, accuracy, completeness, or timeliness of the Platform or its outputs.
• Any warranties that the Platform will be free of errors, defects, malware, or interruptions.
• Any warranties regarding the results that may be obtained from using the Platform.

The Company does not warrant that the Platform will meet your specific requirements, that it will operate without interruption, or that any defects will be corrected. You use the Platform entirely at your own risk.

TO THE FULLEST EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL PRIVATESTRESS.RU, ITS OPERATORS, EMPLOYEES, CONTRACTORS, AFFILIATES, OR AGENTS BE LIABLE FOR ANY:

• Indirect, incidental, special, consequential, exemplary, or punitive damages.
• Loss of profits, revenue, data, business, or goodwill.
• Damages arising from the User's misuse of the Platform, including damages caused to third parties.
• Damages arising from unauthorized access to or alteration of the User's transmissions or data.
• Damages arising from the conduct of third parties.
• Damages arising from system downtime, service interruptions, or data loss.

In all cases where the Company is found liable despite the above limitations, the Company's maximum aggregate liability shall not exceed the total amount paid by the User to the Company in the 30-day period preceding the event giving rise to liability.

The User expressly acknowledges that the Platform is a technical tool, and that the Company bears no responsibility for how the User chooses to employ it. The User is the sole actor in deciding what to test and bears full legal and financial responsibility for any consequences of their testing activities.

You agree to fully indemnify, defend, and hold harmless PrivateStress.ru, its operators, employees, contractors, affiliates, and agents from and against any and all claims, demands, actions, losses, damages, liabilities, costs, and expenses (including reasonable attorney's fees) arising out of or in connection with:

• Your use of the Platform in any manner that violates these Terms or applicable law.
• Any test you initiate against an Unauthorized Target.
• Any civil or criminal proceeding brought against the Company as a result of your actions on the Platform.
• Any third-party claims arising from disruption, damage, or harm caused by tests you initiated.
• Any false or misleading information you provided to the Company.
• Your violation of any third party's rights, including intellectual property rights, privacy rights, and contractual rights.
• Any regulatory investigation, fine, or penalty levied against the Company in connection with your activities.

This indemnification obligation will survive the termination of your account and this Agreement. The Company reserves the right to assume exclusive control of any matter for which you are required to indemnify it, at your expense.

The Company collects and processes certain personal data in connection with providing the Platform. By using the Platform, you consent to the following data processing activities:

• Registration data: Your username, email address, and any other information provided during account creation are stored to maintain your account and verify your identity.
• IP address logging: Your IP address is recorded at registration, each login, and each test launch. This information is stored for security and compliance purposes.
• Test activity records: Full records of all tests launched from your account are retained as described in Article 10.
• Communication records: Emails, support messages, and other communications with the Company are retained.
• Payment records: Cryptocurrency transaction data associated with your account is retained. Note that blockchain transactions are inherently public.

The Company does not sell your personal data to third parties. Data may be shared with law enforcement as described in Article 11, with service providers acting on the Company's behalf under appropriate confidentiality obligations, and as required by applicable law.

Data is retained for the periods described in Article 10 or as required by law. You may request deletion of personal data by contacting the Company, subject to the Company's legal obligations to retain certain records.

This Agreement and any dispute arising out of or in connection with it shall be governed by and construed in accordance with applicable law. Users acknowledge that computer crime laws vary by jurisdiction and that unauthorized testing may violate the laws of:

• United States: Computer Fraud and Abuse Act (18 U.S.C. § 1030), Electronic Communications Privacy Act (18 U.S.C. § 2511), and state-level equivalents.
• European Union: Directive 2013/40/EU on Attacks Against Information Systems, and national implementing legislation of each member state.
• United Kingdom: Computer Misuse Act 1990 (as amended by the Serious Crime Act 2015).
• Canada: Criminal Code of Canada, sections 342.1 and 430(1.1).
• Australia: Criminal Code Act 1995, Division 477 (Serious Computer Offences).
• France: Code Pénal Articles 323-1 to 323-7 (atteintes aux systèmes de traitement automatisé de données).
• Germany: Strafgesetzbuch (StGB) §§ 202a, 303a, 303b.
• Any other jurisdiction whose laws are applicable to the User's activities.

The Company bears no responsibility for ensuring that your use of the Platform complies with the laws of your jurisdiction. That obligation rests entirely with you. You are strongly advised to consult legal counsel in your jurisdiction before using the Platform for any activity that may raise legal questions.

In the event of any dispute, claim, or controversy arising out of or relating to these Terms or the Platform ("Dispute"), the parties agree to the following resolution process:

• Good faith negotiation: Before initiating any formal proceedings, the parties agree to attempt to resolve the Dispute through good-faith negotiation for a period of at least 30 days from the date one party notifies the other of the Dispute in writing.
• Binding arbitration: If negotiation fails, the Dispute shall be resolved through binding arbitration. Each party shall bear its own costs unless the arbitrator determines that one party's position was frivolous or brought in bad faith.
• No class actions: You agree that any Dispute will be resolved on an individual basis. You waive the right to participate in any class action, collective action, or representative proceeding against the Company.
• Exceptions: Nothing in this Article prevents either party from seeking emergency injunctive or other equitable relief from a court of competent jurisdiction where necessary to prevent irreparable harm.

Notwithstanding the above, nothing in this Agreement limits the right of any law enforcement authority, regulatory body, or judicial authority to investigate, prosecute, or adjudicate violations of applicable criminal or civil law.

If any provision of this Agreement is found by a court or arbitrator of competent jurisdiction to be invalid, illegal, or unenforceable under applicable law, such provision shall be modified to the minimum extent necessary to make it enforceable, or if modification is not possible, severed from the Agreement. The remaining provisions of the Agreement shall continue in full force and effect and shall not be affected by the invalidity or unenforceability of any single provision.

This Agreement, together with any additional policies or guidelines incorporated herein by reference, constitutes the entire agreement between you and the Company with respect to the Platform and supersedes all prior or contemporaneous communications, representations, or agreements, whether oral or written, relating to the same subject matter.

No waiver by the Company of any breach of this Agreement shall be deemed a waiver of any subsequent breach of the same or any other provision.

The Company reserves the right to modify these Terms at any time. When modifications are made:

• The "Last updated" date at the top of this document will be revised to reflect the date of the changes.
• For material changes, the Company will make reasonable efforts to notify active Users via email or an in-platform notification.
• Continued use of the Platform after the effective date of any modification constitutes your acceptance of the revised Terms.
• If you do not agree to the revised Terms, you must stop using the Platform immediately and notify the Company of your intent to terminate your account.

It is your responsibility to review these Terms periodically. The Company is not liable for any harm arising from your failure to review updated Terms.

For general inquiries, support, and abuse reports, contact the Company via:

• Telegram: t.me/privatestressru

For law enforcement inquiries, legal process, and preservation requests, the Company should be contacted via the Telegram channel above with appropriate credentials and request documentation.

Abuse reports: If you believe the Platform is being used to target your infrastructure, contact us immediately with your IP address, timestamps, and any logs you have available. The Company investigates all credible abuse reports promptly and will take appropriate action, including account termination and cooperation with your legal counsel or law enforcement.

Notices under this Agreement shall be deemed effective when delivered via the contact methods above, or when posted on the Platform.