Terms of Service

Please read these terms carefully before using SSLs For Free. They govern your access to and use of our SSL certificate platform and all related services.

Last Updated: March 11, 2026  |  Effective Date: March 11, 2026

1. Acceptance of Terms

These Terms of Service ("Terms") constitute a legally binding agreement between you ("User," "you," or "your") and SSLs For Free, a platform operated by DigitalHubz ("we," "us," or "our"). These Terms govern your access to and use of our Website at sslsforfree.com and all SSL certificate issuance, domain validation, and security services provided through it (collectively, the "Services").

By accessing our Website, creating an account, requesting an SSL certificate, or using any feature of our platform, you confirm that you:

  • Have read, understood, and agree to be bound by these Terms.
  • Are at least 18 years of age, or have the legal authority to enter into this agreement on behalf of an organization.
  • Have the authority to bind any organization you represent to these Terms.

If you do not agree to these Terms, you must stop using our Services immediately. Use of our Services is conditional on full acceptance of these Terms.

2. Description of SSL Services

SSLs For Free provides the following services to website owners, developers, and businesses:

  • Free SSL Certificates: Domain Validated (DV) SSL/TLS certificates at no cost, issued through trusted Certificate Authorities (CAs) including Let's Encrypt and ZeroSSL. Free certificates are typically valid for 90 days and can be renewed.
  • Paid SSL Plans: Extended validity certificates, Organization Validated (OV) certificates, and Wildcard SSL certificates available through our paid plans, issued by commercially trusted CAs.
  • SSL Management Tools: Certificate renewal tracking, expiry notifications, certificate status monitoring, and installation guidance.
  • SSL Checker: A publicly accessible tool to inspect and verify the SSL configuration of any domain.
  • CSR Generator: A tool to help you generate Certificate Signing Requests (CSRs) for use with any SSL provider.
  • Domain Validation Services: Tools and guidance to complete the domain validation process required for certificate issuance.
  • Security Resources: Educational content, installation guides, and documentation to help you secure your website.

We reserve the right to add, modify, or discontinue any service feature at any time with or without prior notice, subject to the notice provisions in these Terms.

3. SSL Certificate Issuance Process

The issuance of SSL certificates through our platform is governed by the following process and conditions:

3.1 Certificate Authority Standards

All SSL certificates issued through SSLs For Free are provided by publicly trusted Certificate Authorities (CAs) that operate under the CA/Browser Forum Baseline Requirements and the WebTrust for CAs audit framework. Our role is that of a Registration Authority (RA) or intermediary facilitating the issuance process on your behalf.

3.2 Validity Periods

  • Free DV certificates are valid for 90 days from the date of issuance. You are responsible for renewing certificates before they expire to maintain uninterrupted HTTPS on your website.
  • Paid certificates are valid for the period specified at the time of purchase, up to the maximum permitted under CA/Browser Forum rules (currently a maximum of 398 days).

3.3 Certificate Revocation

We and our partnered CAs reserve the right to revoke a certificate at any time if:

  • It is determined that you do not have legitimate control of the domain.
  • The certificate was issued based on fraudulent or inaccurate information.
  • The associated private key is compromised or suspected to be compromised.
  • The certificate is being used in violation of these Terms or applicable law.
  • The CA receives a valid, documented revocation request from an authorized domain contact.

3.4 Certificate Transparency

All publicly trusted SSL certificates issued through our platform are logged in public Certificate Transparency (CT) logs as required by industry standards. This means the domain name and certificate details become part of a publicly accessible, immutable audit record. By requesting a certificate, you acknowledge and accept this requirement.

4. Domain Ownership Verification

To protect the integrity of the SSL certificate ecosystem and comply with CA/Browser Forum requirements, we are required to verify that you have legitimate control over any domain for which you request a certificate before issuance. We offer the following domain validation methods:

  • HTTP File Validation: Uploading a specific verification file to a designated path on your web server (e.g., /.well-known/acme-challenge/). This confirms you have access to serve files on the domain.
  • DNS CNAME Record Validation: Adding a CNAME record to your domain's DNS zone as specified during the validation process. This confirms you control the domain's DNS settings.
  • Email Validation: Confirming ownership via a verification email sent to a pre-approved address for the domain (such as admin@yourdomain.com, webmaster@yourdomain.com, or the registered WHOIS contact).

You are solely responsible for completing the chosen validation method accurately and within the time limits specified during the process. Failure to complete validation will result in the certificate request being cancelled. We may impose rate limits on validation attempts to prevent abuse.

Warning: Attempting to obtain an SSL certificate for a domain you do not own or control is a violation of these Terms, CA/Browser Forum requirements, and may constitute fraud under applicable law.

5. User Responsibilities

By using our Services, you agree to the following responsibilities:

  • Accurate Information: You will provide accurate, complete, and up-to-date information when creating an account, requesting certificates, or contacting support. Providing false information to obtain a certificate is a violation of these Terms and applicable law.
  • Domain Legitimacy: You represent and warrant that you have the legal right to obtain SSL certificates for the domains you submit. You must not request certificates for domains owned by others without their explicit authorization.
  • Private Key Security: You are solely responsible for generating, securing, storing, and protecting your private keys. We strongly recommend generating private keys on your own infrastructure. If you believe a private key has been compromised, you must immediately revoke the associated certificate and obtain a replacement.
  • Certificate Renewal: You are responsible for monitoring certificate expiry dates and renewing certificates before they expire. We provide expiry notifications as a convenience, but uninterrupted HTTPS service is your responsibility.
  • Account Security: You are responsible for maintaining the confidentiality of your account credentials. You must immediately notify us of any unauthorized use of your account or suspected security breach.
  • Compliance: You will use our Services in compliance with all applicable local, national, and international laws and regulations.
  • Correct Installation: You are responsible for correctly installing and configuring your SSL certificate on your web server. We provide installation guides, but final configuration is your responsibility.

6. Acceptable Use Policy

Our Services are intended to help legitimate website owners secure their websites. The following uses are strictly prohibited:

  • Requesting SSL certificates for domains you do not own or control, or for which you do not have explicit authorization from the domain owner.
  • Using SSL certificates issued through our platform to enable phishing websites, malware distribution, fraud, identity theft, or any other deceptive or illegal activity.
  • Attempting to automate domain validation in a manner that circumvents or bypasses our security controls or rate limits.
  • Reselling or sublicensing certificates issued through our free plan without our express written consent.
  • Using our tools to conduct denial-of-service attacks, unauthorized scanning, or reconnaissance against third-party systems.
  • Sharing account credentials with unauthorized parties or allowing multiple users to share a single account without our authorization.
  • Using our Services to violate the terms of any third-party platform, API, or service.
  • Scraping, crawling, or using automated tools to extract content from our Website beyond what is permitted by our robots.txt file.

Violations of this Acceptable Use Policy may result in immediate account suspension, certificate revocation, and referral to law enforcement authorities where appropriate.

7. Service Availability

We strive to maintain a reliable and available platform. However, please note the following:

  • Our Services are provided on an "as is" and "as available" basis. We do not guarantee uninterrupted, error-free, or completely secure access to our platform at all times.
  • We may perform scheduled or emergency maintenance that temporarily renders our Services unavailable. We will make reasonable efforts to announce scheduled maintenance in advance.
  • The availability of free SSL certificates is dependent on the upstream availability of our partnered CAs (such as Let's Encrypt). We are not responsible for outages or rate-limiting imposed by those CAs.
  • We reserve the right to impose rate limits on certificate requests, tool usage, and API calls to protect the stability of our platform and comply with our CA partners' requirements.
  • Our free tier does not include a Service Level Agreement (SLA). SLA commitments, where available, apply only to paid plans as specified in the relevant plan documentation.

8. Limitation of Liability

To the fullest extent permitted by applicable law:

  • SSLs For Free and DigitalHubz shall not be liable for any indirect, incidental, special, consequential, or punitive damages arising from your use of or inability to use our Services, even if we have been advised of the possibility of such damages.
  • We are not liable for any loss of revenue, loss of data, loss of business, or reputational harm resulting from certificate expiry, misconfiguration, or service interruption.
  • We do not guarantee that an SSL certificate obtained through our platform will meet the requirements of every browser, device, or application. You are responsible for verifying compatibility.
  • We are not liable for the actions or inactions of our partnered Certificate Authorities, including their decisions to revoke, delay, or refuse certificate issuance.
  • In no event shall our total cumulative liability to you for any claims arising from your use of the Services exceed the greater of (a) the total fees you paid to us in the 12 months preceding the claim, or (b) USD $50.

This limitation of liability reflects a fair allocation of risk and is an essential element of the basis of the agreement between us.

9. Termination of Services

Either party may terminate the service relationship under the following conditions:

9.1 Termination by You

You may stop using our Services at any time and request account deletion by contacting our support team. Deleting your account does not revoke any certificates already issued. Certificate revocation must be requested separately.

9.2 Termination by Us

We may suspend or terminate your access to our Services, with or without prior notice, if:

  • You violate any provision of these Terms or our Acceptable Use Policy.
  • We are required to do so by law, a Certificate Authority, or a regulatory body.
  • We determine that your use of our Services poses a security risk to our platform or other users.
  • We discontinue all or part of our Services (with reasonable advance notice where possible).
  • You fail to pay fees for paid plans after a reasonable grace period.

9.3 Effect of Termination

Upon termination, your right to access your account and use our Services ceases immediately. Certificates already issued remain valid until their natural expiry unless separately revoked. Provisions of these Terms that by their nature should survive termination (including limitations of liability, indemnification, and dispute resolution) shall continue to apply.

10. Third-Party Certificate Authorities

SSL certificates issued through our platform are ultimately provided by third-party Certificate Authorities (CAs). You acknowledge and agree to the following:

  • Each CA operates under its own Certification Practice Statement (CPS) and Privacy Policy, which governs how certificate data is processed and stored by that CA.
  • The CA, not SSLs For Free, is the issuing authority for your certificate and retains ultimate responsibility for certificate revocation decisions under CA/Browser Forum rules.
  • We make no representations or warranties regarding the practices, policies, or long-term availability of any third-party CA.
  • If a CA changes its policies, ceases operations, or is removed from browser trust stores, we will use reasonable efforts to migrate affected users to an alternative CA, but we cannot guarantee continuity in all circumstances.
  • Let's Encrypt certificates are issued subject to Let's Encrypt's Subscriber Agreement and Certificate Policy. ZeroSSL certificates are issued subject to ZeroSSL's respective policies. Links to these policies are available from those organizations' websites.

11. Modifications to Terms

We reserve the right to modify these Terms at any time. When we make material changes, we will:

  • Update the "Last Updated" date at the top of this page.
  • Provide at least 14 days' advance notice via email to registered users before material changes take effect, except where changes are required immediately by law, a CA/Browser Forum requirement, or a security emergency.
  • Display a notice on our Website alerting users to the updated Terms.

Your continued use of our Services after the effective date of any changes constitutes your acceptance of the modified Terms. If you do not agree to the revised Terms, you must stop using our Services before the changes take effect.

12. Contact Information

For questions, concerns, or legal notices related to these Terms of Service, please contact us: