🚨 Important: API v2 launching in early 2026 - Pricing will change to subscription-based. Learn more and secure your lifetime access today!

Back

Terms and Conditions for Human Design API

Effective Date: December 29, 2025

1. Introduction

These Terms of Service ("Terms") govern your (the "Customer") access to and use of the Human Design API website located at https://humandesignapi.nl (the "Website") and the Human Design API service (the "API") offered by App de Bock (the "Company"). By accessing or using the Website or API, you agree to be bound by these Terms. If you disagree with any part of these Terms, you may not access or use the Website or API.   

2. User Accounts and Access

To access certain features of the API, you may be required to create an account and obtain an API key. You are responsible for maintaining the confidentiality of your account information, including your API key, and for all activity that occurs under your account. You agree to notify the Company immediately of any unauthorized use of your account or any other security breach.   

3. API Keys

To access certain features of the API, you may be required to create an account and obtain an API key from Human Design API. You are also required to obtain a Geocoder Google API Key from Google Cloud.

You are solely responsible for the security of both API keys. You agree to keep your API keys confidential and to take all necessary precautions to protect them from unauthorized access.

4. Packages and Payment

The Company offers various API access packages with different features and limitations. You can purchase a package through the Website. By purchasing a package, you are granted a non-exclusive, non-transferable license to use the API in accordance with the terms of your purchased package. You do not have the right to resell access to the API.

5. Refunds

You are entitled to a full refund within seven (7) days of your purchase. Do note that you will be charged 10 euros for the refund processing fee. To request a refund, please contact us at info@appdebock.nl.

6. User Data and Privacy

The Company collects certain user data, including your name, email, and payment information. The Company also collects non-personal data through web cookies. For more information on how the Company collects and uses your data, please refer to our Privacy Policy located at https://humandesignapi.nl/privacy-policy.

7. Intellectual Property

The Website, API, and all content contained therein are the intellectual property of the Company. You are granted a limited, non-exclusive license to use the API for your own personal or commercial use in accordance with your purchased package. You may not reverse engineer, decompile, or disassemble the API.

8. Disclaimers

The Website and API are provided "as is" and without warranties of any kind, express or implied. The Company disclaims all warranties, including but not limited to, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement. The Company does not warrant that the Website or API will be uninterrupted, secure, or error-free. 

The company acknowledges inspiration for its algorithms is from the work of Jonah Dempcy. Following his MIT license:

Copyright (c) 2016-2023 Jonah Dempcy

Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.

9. Data Processing Agreement (DPA)

9.1 Scope and Roles

This section applies to the processing of personal data (the "Birth Data": date, time and location of birth) submitted by the Customer to the API. In this context, the Customer is the Data Controller and the Service Provider (Human Design API) is the Data Processor. For the Customer's own account information (e.g. email address, billing information), the Service Provider acts as the Data Controller.

9.2 Documented Instructions

The Processor shall process the Birth Data only on documented instructions from the Controller. The Customer's use of the API constitutes the instruction to process the data for the sole purpose of returning a human design profile. The Processor shall not process this data for any other purpose. The Processor shall immediately inform the Controller if, in its opinion, an instruction infringes the GDPR or other applicable data protection laws.

9.3 Confidentiality

The Processor ensures that all personnel authorized to process the personal data have committed themselves to confidentiality or are under an appropriate statutory obligation of confidentiality.

9.4 Security

The Processor implements appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including the use of SSL encryption for data in transit and processing in secure, EU-based data centers.

9.5 Sub-processors

The Controller grants a general authorization to the Processor to engage sub-processors. The Processor currently utilizes Google Cloud Platform (GCP) for API infrastructure, with processing occurring on servers within the European Economic Area (EEA). The Processor shall inform the Controller of any intended changes concerning the addition or replacement of sub-processors, giving the Controller the opportunity to object.

9.6 Assistance to the Controller

Taking into account the nature of the processing, the Processor shall assist the Controller by appropriate technical and organizational measures, insofar as this is possible, for the fulfilment of the Controller's obligation to respond to requests for exercising the data subject's rights. The Processor shall also assist the Controller in ensuring compliance with the obligations pursuant to Articles 32 to 36 (Security, Breach Notification, and Data Protection Impact Assessments).

9.7 Deletion of Data

The Processor follows a "Privacy by Design" model. Birth Data is processed in-memory and is not stored on any disk or database. All Birth Data is automatically deleted immediately after the API response is generated. At the choice of the Controller, the Processor shall delete all existing copies of Birth Data immediately after processing, and upon termination of the agreement, shall cease all processing of such data, unless European Union or Member State law requires storage.

9.8 Audits and Inspections

The Processor shall make available to the Controller all information necessary to demonstrate compliance with the obligations laid down in Article 28 of the GDPR and allow for and contribute to audits, including inspections, conducted by the Controller or another auditor mandated by the Controller.

9.9 Customer Obligations

The Customer represents and warrants that it has a valid legal basis (such as explicit consent or contractual necessity) to process the Birth Data and to transfer it to the Service Provider for the purposes described in this Agreement. The Customer is solely responsible for providing any required notices to data subjects and for ensuring the accuracy and lawfulness of the data provided to the API.

10. Limitation of Liability

The Company shall not be liable for any damages arising from your use of the Website or API, including but not limited to, direct, indirect, incidental, special, consequential, or punitive damages.

11. Governing Law and Dispute Resolution

These Terms shall be governed by and construed in accordance with the laws of the Netherlands. Any dispute arising out of or relating to these Terms shall be subject to the exclusive jurisdiction of the courts of the Netherlands.   

12. Updates to the Terms

The Company may update these Terms at any time by posting a new version on the Website. You are advised to review the Terms periodically for any changes. Your continued use of the Website or API after the posting of any revised Terms constitutes your acceptance of the revised Terms.

13. Contact Us

If you have any questions about these Terms, please contact us at info@appdebock.nl.