Disclaimer
1. No Guarantee of Detection Accuracy
SphereMail provides AI-assisted analysis of email threats. No email security tool — including SphereMail — can guarantee detection of all threats. The platform may:
- Produce false positives — flagging legitimate emails as threats
- Produce false negatives — failing to detect real threats, including sophisticated phishing, BEC, or zero-day attacks
- Produce inaccurate AI narratives due to LLM hallucination, training data limitations, or prompt edge cases
2. Analyst Verification Required
All SphereMail analysis outputs — including threat verdicts, risk scores, MITRE ATT&CK mappings, threat actor assessments, and SOC narratives — are preliminary analytical inputs that require human review before any action is taken. No security decision (blocking, quarantining, incident escalation, threat reporting, or legal action) should be made solely on the basis of SphereMail output.
3. Threat Actor Attribution Disclaimer
Threat actor attribution provided by SphereAI™ is explicitly non-definitive and inferential. The AI uses hedged language ("shares characteristics of", "consistent with TTPs commonly observed in") because it:
- Has no access to live threat intelligence feeds
- Cannot confirm attribution with forensic certainty
- Operates solely on observable email characteristics
Attribution assessments must not be cited as confirmed attribution in official reports, legal proceedings, or public statements without independent corroboration from authoritative threat intelligence sources.
4. Third-Party Data
SphereMail integrates data from VirusTotal and AbuseIPDB. SecureSphereLabs makes no representations as to the accuracy, completeness, or timeliness of third-party threat intelligence data. VirusTotal and AbuseIPDB verdicts are provided by their respective communities and automated systems and may contain errors.
5. No Legal or Professional Advice
Nothing in SphereMail's analysis outputs constitutes legal, compliance, forensic, or professional security advice. For incident response, legal proceedings, or regulatory compliance purposes, engage a qualified cybersecurity professional or legal counsel.
6. As-Is Service
SphereMail is provided on an "as-is" and "as-available" basis. SecureSphereLabs makes no warranty that the service will be uninterrupted, error-free, or fit for any particular purpose. See the full warranty disclaimer in the Terms of Service.
These documents were last updated on May 26, 2026. For questions, contact legal@securespherelabs.com. · Back to SphereMail
SphereMail