SSL certificate maximum validity is being reduced to 200 days from March 2026. Read more →

SSL Certificates

Cheap SSL DV SSL Wildcard SSL Multi-Domain (SAN) OV & EV SSL

Specialty Certificates

Code Signing Document Signing Email / S/MIME VMC / BIMI
In effect now Certificate Lifetime

Automation

Overview Auto DNS FairSSL vs Let's Encrypt

Platforms

Windows Setup Linux & Kubernetes Appliances ACME Clients

Tools

SSL Scanner Certificate Decoder CAA Generator

Guides

Windows Server Linux & Open Source All guides

Company

About Us Contact Installation Service
News

Language

Dansk Svenska English

Currency

Login Create Account

Terms of Sale for FairSSL A/S

Effective from: 20 March 2026 Company reg. no. (CVR) 33075782

These terms of sale apply to all purchases of products and services from FairSSL A/S, Aabrovej 29, 8586 Oerum Djurs, Denmark. By placing an order with FairSSL, you accept these terms.

1. General

These terms are primarily written for business customers (B2B). If you are a consumer (B2C), mandatory rights under your national legislation take precedence over these terms.

FairSSL A/S is a Danish company that sells digital security products and related services. We are a reseller of certificates from several independent Certificate Authorities ("CAs"), including DigiCert, GlobalSign and Sectigo.

FairSSL is independent of all CAs and provides unbiased advice on the most suitable product for the customer's needs.

All employees at FairSSL are bound by confidentiality obligations. Information about the customer's systems, configuration and access credentials is treated as confidential.

These terms also apply where no other written agreement has been entered into between you and FairSSL.

2. Products and services

Products

FairSSL sells the following types of digital security products:

  • SSL/TLS certificates for securing websites and servers (DV, OV and EV)
  • Wildcard certificates for securing unlimited subdomains
  • Multi-Domain (SAN) certificates for securing multiple domains with a single certificate
  • S/MIME certificates for email signing and encryption
  • Code Signing certificates for signing software and code
  • eIDAS qualified certificates (QWAC and QSealC) for legally binding electronic identification
  • BIMI certificates (VMC and CMC) for displaying company logos in email inboxes
  • Adobe PDF DocumentSign certificates for digital signatures in PDF documents
  • USB crypto dongles for secure storage of certificates and private keys

All products are issued by the relevant CA and are subject to the CA's technical specifications and industry standards (CA/Browser Forum).

Paid services

  • Key and CSR generation: FairSSL generates a private and public key pair on the customer's behalf, creates a Certificate Signing Request (CSR) and delivers a complete certificate set ready for installation after issuance. The customer is advised that it is always more secure to generate keys directly on the server that will use them, and confirms understanding of this before using the service.
  • Remote installation (Standard): For typically simpler installations where the work is carried out via TeamViewer and a graphical user interface, or setting up automation with Simple-Acme and its included PowerShell scripts. For example Windows IIS, ADFS, Exchange, RDP, cPanel, Plesk.
  • Remote installation (Plus): For more complex situations where investigation or custom solutions are required. Installation of certificates or automation with or without a graphical user interface, typically involving changes via command line, configuration files or scripts. For example Apache, Nginx, Tomcat, appliances, macOS. Also applies if the customer requires access via RDP, VPN or a method other than TeamViewer.
  • Additional installation charges: For installation on multiple servers, multiple certificates, urgent requests or work outside normal business hours, additional fees apply by agreement.
  • ACME service: Automatic issuance and renewal of certificates via the ACME protocol (RFC 8555). The price covers up to 25 ACME clients per certificate per order year. Use of a 26th, 51st client, etc. triggers an additional ACME service charge for each commenced block of 25 clients.
  • Consulting: Advisory and technical assistance, billed per commenced 15 minutes with a minimum of 30 minutes, by prior agreement.

Free services

The following services are available free of charge to all customers via the FairSSL control panel:

  • Certificate monitoring: Automatic monitoring of certificate expiry and status.
  • Certificate Transparency Log monitoring: Monitoring of public CT logs for certificates issued to the customer's domains.
  • SSL/TLS scanning: Manual scanning of SSL/TLS services online by port and service.
  • Certificate decoding: Decoding of SSL certificates and CSR files.
  • Format conversion: Conversion between SSL certificate formats.
  • Self-signed certificates: Creation of self-signed SSL certificates and keys for testing and internal use.

FairSSL may at any time change, add or remove free services without notice.

3. Ordering and contract basis

A contract is formed when FairSSL has confirmed your order by email. FairSSL reserves the right to decline orders, for example in cases of suspected misuse, poor payment history or customers subject to sanctions.

Orders can be placed via:

  • The website (fairssl.dk, fairssl.se) with online payment or invoice
  • Email to info@fairssl.dk or info@fairssl.se
  • Phone on +45 77 34 56 78 (DK) or +46 10 101 03 34 (SE)

Changes to an order can be made via the website, email or phone, provided the product allows changes. Changes are only possible as long as the certificate has not been issued by the CA.

The contract basis consists of the order confirmation, these terms of sale and any written supplementary agreements. In case of conflict, supplementary agreements take precedence, then the order confirmation, and finally these terms.

4. Prices and currency

All prices are publicly available on the website. There are no hidden fees, no volume requirements and no minimum purchases to qualify for a given price.

All prices on the website are stated excluding VAT unless otherwise indicated. VAT is added to all orders unless the customer is established outside the EU, or is established in an EU country other than Denmark and holds a valid VAT number.

Prices are displayed by default in the currency corresponding to the customer's selected country:

  • DKK for Danish customers (fairssl.dk)
  • SEK for Swedish customers (fairssl.se)
  • EUR for other customers

In addition, the customer may choose to transact in NOK, GBP and USD. Not all payment methods support all currencies (see section 5).

The applicable price is always the price displayed during the ordering process, subject to obvious errors.

FairSSL reserves the right to change prices. In practice, price changes occur rarely (typically less than once a year) and are almost always because the Certificate Authorities have increased their prices. Price changes do not affect already confirmed orders.

Contract customers

Customers with higher volume or special requirements may enter into a contract for fixed prices and customised payment terms. Fixed prices may be changed with at least 30 days' notice, typically as a result of price changes from the Certificate Authorities (CAs).

Product changes from CAs

If a CA discontinues a product or removes access to it, the product is also removed from FairSSL's range and from the customer's account.

5. Payment methods and terms

5.1 Account with credit

Every customer at FairSSL is assigned an account with credit, so orders can be placed continuously without prepayment. There is no lock-in, no minimum payments and no requirement for a certain number of purchases. The account is the central business relationship between the customer and FairSSL.

All orders, invoices and payments are recorded together on the account. Payments are not product-specific but rather ongoing settlement of the account balance.

Product specifications on invoices are for the customer's own use (e.g. re-invoicing to end customers) and do not constitute separate contractual relationships.

FairSSL may change or revoke the credit, typically as a result of a changed risk assessment or payment history. A single order may also require prepayment if it represents an elevated risk.

5.2 Invoicing methods

The customer may choose from the following invoicing methods:

  1. Invoice per order (default): One invoice per ordered product, sent automatically at the time of order.
  2. Consolidated invoice: Outstanding balance below an agreed minimum threshold is invoiced at an agreed interval (e.g. monthly).
  3. Balance invoice: Invoice for a fixed amount when the account balance falls below an agreed minimum threshold.
  4. Manual prepayment invoice: The customer requests a prepayment deposit to the account.

The customer may also choose to pay per order by card, or use a saved card to pay an invoice.

All billing correspondence is sent electronically. FairSSL does not send letters by post. The customer chooses between two delivery channels for invoices and credit notes: PDF by email or electronic invoice via EAN/GLN/PEPPOL. Payment reminders and order confirmations are always sent as PDF by email. Payment reminders always include copies of the relevant invoices and credit notes.

5.3 Balance and prepayment

Prepayments are credited to the account balance and used to cover future orders.

The balance does not expire as long as the customer has at least one active (non-expired) product, or has placed at least one order within the past 18 months. Warnings about balance expiry are sent at least 30 days before expiry to the customer's registered email addresses.

Incoming payments are applied to outstanding invoices, oldest invoice first.

5.4 Payment methods

  • Visa, Mastercard and American Express: DKK, SEK, EUR, NOK, GBP and USD. Card payments can be made directly in the FairSSL control panel via Scanpay.
  • Dankort: DKK only. Via Scanpay.
  • Invoice (PDF): Electronic invoice sent to the specified invoice email address. Payment terms: 14 days net.
  • EAN/GLN/PEPPOL: Electronic invoicing via NemHandel/PEPPOL for public and private organisations. Payment terms: 30 days net.
  • Bank transfer (DKK): To FairSSL's Danish bank account at Nordea. FIK payment slips are included on DKK invoices.
  • Bankgiro (SEK): To FairSSL's Swedish bank account at Handelsbanken. Bankgiro number is included on SEK invoices.
  • SEPA transfer (EUR): To FairSSL's European bank account. IBAN and BIC/SWIFT are shown on EUR invoices.

Danish bank transfers and FIK payments

Danish customers can pay by bank transfer to FairSSL's Danish bank account in DKK at Nordea. Account details are shown on the invoice.

DKK invoices also include a FIK payment slip (creditor details), so the payment is automatically matched to the correct invoice.

Swedish bank transfers and Bankgiro payments

FairSSL has a Swedish bank account in SEK at Handelsbanken with an associated Bankgiro number. Swedish customers pay directly to this account, just as easily as to any other Swedish supplier.

The Bankgiro number and account details are automatically included on all SEK invoices.

International bank transfers

Customers outside Denmark and Sweden can pay by SEPA transfer in EUR to FairSSL's European bank account. IBAN and BIC/SWIFT are shown on EUR invoices.

All bank transfers must be made with shared charges (SHA). Any additional charges resulting from other charge methods are borne by the customer. The amount must be available in FairSSL's account no later than 12:00 noon (Danish time) on the due date.

5.5 Credit terms and default

The account must be kept current. All due invoices must be paid on time. If the credit terms are not met, all outstanding amounts past the payment deadline must be paid immediately.

Escalation in case of non-payment

In practice, FairSSL only exercises the rights below in rare cases, and always only after repeated attempts to contact the customer by email and phone to reach a payment arrangement. As long as there is dialogue, we will find a solution.

If the customer has several unpaid invoices, does not respond to communications, represents an elevated risk or otherwise abuses the credit facility, FairSSL reserves the right to:

  • Revoke the credit, so that new orders require prepayment.
  • Deactivate active products on the account, regardless of whether the specific product has been paid for. This may occur, for example, if the customer only pays for new orders but ignores older outstanding amounts, or if the customer does not respond to communications at all.

Changed circumstances for the customer

If the customer's business undergoes a material change, such as bankruptcy, suspension of payments, dissolution, merger or other significant corporate change, the customer may no longer meet the original credit assessment. The same rules as above apply.

Retention of title

FairSSL retains ownership of all products on the account until the account's total outstanding balance, including any fees and interest, has been paid in full.

Deactivation and reactivation

No compensation is provided for lost product time, loss of revenue, or other losses resulting from deactivation, regardless of whether the deactivation is due to financial circumstances, misuse or a deactivation request from the CA or the customer. Reactivation is possible upon full payment, but lost time is not extended.

FairSSL never deactivates products without first sending reminders and attempting direct contact with the customer.

End customer responsibility

Customers who order products on behalf of their own customers (end customers) confirm at the time of ordering that they have authorisation to accept the CA's terms on the end customer's behalf, and that the end customer has been informed that products may be deactivated in case of non-payment.

FairSSL cannot verify whether end customers have paid the customer for the products and bears no responsibility for end customers' losses resulting from deactivation.

Takeover

A bankruptcy estate has priority to take over the customer's products, provided that all outstanding amounts are settled. If the estate cannot or will not take over, other businesses with an interest in the products may settle the outstanding amounts and continue the products, potentially on a new account with a new contractual relationship.

Prepaying customers

Customers who prepay are not affected by this provision, as no outstanding amounts arise.

5.6 Late payment

In case of late payment, reminder fees and interest are charged in accordance with applicable legislation. Up to 3 reminders are sent with at least 10 days between each.

Country Customer type Reminder fee Compensation Interest
Denmark Private 3 x 100 DKK None Statutory rate (lending rate + 8%)
Denmark Business 3 x 100 DKK 310 DKK per invoice 2% per commenced month
Sweden Consumer 60 SEK None Reference rate + 8%
Sweden Business 60 SEK 450 SEK per invoice Reference rate + 8%
Other EU Business EU Late Payment Directive (2011/7/EU)

The compensation amount (DK 310 kr. / SE 450 kr.) may legally be charged from the first day the payment deadline is exceeded. FairSSL typically only adds the compensation amount when we carry out a thorough review of the customer's orders, invoices, card and bank payments. Once this review has been completed, the compensation amount is charged regardless of whether the underlying invoice is subsequently paid.

If payment is not received despite reminders, the claim is referred to debt collection with the addition of collection costs.

5.7 Refund of account balance

To prevent misuse of the account as a storage facility for funds or for money laundering, the following restrictions apply to refunds of account balance. This provision applies to deposits made after 31 March 2026.

Refunds are always made to the original payment method (the same payment card or bank account) from which the deposit originally came. It is not possible to have funds paid out to a third party or a different account.

Only deposits made within the past 12 months can be refunded upon account closure, and the maximum total refundable amount is the equivalent of EUR 10,000.

Any remaining balance exceeding these limits cannot be refunded. Since refunding the balance requires closure of the account, FairSSL recommends that the customer only deposits amounts expected to be consumed within one or at most two years.

6. Payment cards

6.1 Saved cards

Customers may choose to save a payment card in the FairSSL control panel for future payments. During checkout, the customer can choose to pay with an already saved card or a new card. Saving the card at checkout is optional.

Saved cards are displayed on an overview page in the control panel, where the customer can add new cards or delete existing ones. The customer may remove a saved card at any time.

6.2 Card details and security

Card details are stored with the payment processor (Scanpay/Clearhaus/Nets) in compliance with PCI DSS. FairSSL does not have access to the full card number.

6.3 Automatic card updating

Where available, FairSSL uses automatic card updating (Account Updater), so a saved card is automatically updated if the card issuer replaces the card number (e.g. on expiry or reissuance). The customer is notified when a card has been updated.

6.4 Receipts

Receipts for all card payments and refunds can be viewed under Finances - Payment Cards in the control panel. This applies to one-time purchases, payments with saved cards and recurring charges.

7. Subscriptions and recurring payments

Some products and services may be based on recurring payments, for example certificate renewals or ACME service. There is no lock-in period, and the customer may cancel at any time.

When the customer signs up for a recurring payment, the following applies:

What is charged: The agreed product or service as stated in the order confirmation. Amount: The price stated in the order confirmation. Price changes are notified at least 30 days before the next charge. Frequency: Charges occur at the frequency stated in the order confirmation (e.g. annually or upon renewal). Payment method: Recurring payments can be charged via saved payment card, account balance or invoice, depending on the customer's chosen payment method. Receipt: Receipts for card payments can be viewed in the control panel (see section 6.4). Invoice payments are documented via the invoice. Cancellation: The customer may cancel a recurring payment at any time via the control panel or by contacting FairSSL. The cancellation takes effect from the next billing period. Consent: Signing up for a recurring payment requires the customer's active consent at checkout.

The customer may cancel the product within 14 days after a renewal and receive a refund of the relevant charge. This also applies to the initial order.

FairSSL only charges a payment card when the customer has actively given consent to do so.

8. Delivery

All products are delivered electronically. No shipping charges apply unless the product requires physical shipment (e.g. USB crypto dongles).

Delivery times

Product type Typical delivery time
DV certificates (domain validation)Under 2 minutes
OV certificates (organisation validation)1-3 business days
EV certificates (extended validation)2-5 business days
ACME certificatesUnder 15 seconds
S/MIME, Code Signing, eIDAS, CMC/VMCVaries by product
USB crypto dongles1-2 business days (see physical shipment)

Physical shipment

Physical products (e.g. USB crypto dongles) are shipped via PostNord. Parcels are dispatched at 09:00 on business days.

  • Business addresses: Delivery next business day to the door.
  • Residential addresses: Delivery next business day to the nearest pickup point, or to the door within 2 business days.

Delivery times are estimates. Actual delivery time depends on the customer's timely provision of documentation, correct information and the CA's processing time.

Delivery is considered to have occurred when the certificate has been issued and made available as a download link, sent by email, delivered to an ACME client, or when a link has been sent for issuance of the certificate (e.g. Code Signing, document signing or qualified certificates). The delivery time applies regardless of whether the customer uses the link immediately or at a later time. This time also serves as the starting point for the withdrawal period (see section 9).

If the customer provides incorrect or incomplete information, delivery time may be extended or the order placed on hold.

9. Right of withdrawal and refunds

For business customers (B2B), FairSSL voluntarily offers a 14-day right of withdrawal from the time of delivery. For consumers, the statutory 14-day right of withdrawal for distance sales applies.

Exceptions

The following cannot be refunded:

  • Work already performed: Services that have already been carried out (remote installation, consulting and similar) cannot be refunded, not even partially.
  • Upgraded shipping: Upgraded shipping is not refunded once the work and shipment have been completed.
  • USB devices taken into use: USB crypto dongles that have been taken into use cannot be reset to their original state and therefore cannot be returned.

Services eligible for refund

ACME service and CSR generation can be refunded within the withdrawal period, as they are automated services that can be cancelled without loss.

How to withdraw

Most products can be cancelled directly from the order details in the control panel via the "Cancel order" button. Alternatively, you can contact FairSSL by email (info@fairssl.dk) or phone (+45 77 34 56 78) with your order number within the withdrawal period. Refunds are made to the payment method used for the purchase within 14 days.

10. Complaints

Errors in certificates? We will fix it

An SSL certificate is a digital product. If there are errors in the registered data (e.g. a spelling mistake in the company name or an incorrect domain), we will perform a free reissue, regardless of whether the error was caused by FairSSL, the issuing CA or a typo from the customer. If you have done your best to provide correct information, we will take care of the rest. Contact our support team and we will fix it as quickly as possible.

Complaint deadlines

If a product does not work as expected, for example incorrect data in the certificate, missing domains or other errors, please contact us and we will ensure the product is corrected or reissued. For business customers, complaints must be submitted within 1 year of delivery. For consumers, statutory complaint deadlines apply (2 years in Denmark, 3 years in Sweden).

Contact us by email (info@fairssl.dk) or phone (+45 77 34 56 78). We investigate and respond to complaints within a maximum of 5 business days.

11. Support

FairSSL offers free support by email and phone for all products. Support is provided in Danish, Swedish and English.

Response times

Email: 95% answered within 1 hour (08:00-23:00 Danish time) Phone: Weekdays 10:00-16:00 (Danish time) Urgent matters: Send an email with your phone number outside business hours, and we will call you back

FairSSL cannot guarantee a specific response time or resolution within a given timeframe. The better the problem is described, the faster we can resolve it.

Paid support

For tasks requiring remote access to the customer's server, FairSSL's remote installation prices apply (see section 2). Prices are available on the website.

12. Limitation of liability

General

FairSSL is not liable for indirect losses, loss of revenue, lost profits, consequential damages or losses resulting from the customer's use of FairSSL's products. This also applies to losses caused by interruptions, lack of compatibility between the product and the customer's hardware or software, or unauthorised access to the customer's systems.

FairSSL's liability is generally limited to the total amount the customer has paid to FairSSL within the 12 months preceding the event giving rise to the claim. This limitation does not apply where mandatory legislation provides otherwise.

Key generation on the customer's behalf

When the customer uses FairSSL's key and CSR generation service, the private key is created on FairSSL's servers. FairSSL takes all reasonable precautions to protect the key: it is encrypted during storage, processed in volatile memory and deleted as soon as the certificate set has been delivered to the customer.

The customer acknowledges that any private key generated outside the server that will use it carries an elevated risk compared to generating the key directly on the server. FairSSL always recommends that the customer generates keys on their own devices when possible.

By using the service, the customer accepts this risk. FairSSL is not liable for losses or damage arising from the compromise of a key generated via this service, unless the compromise is due to gross negligence on FairSSL's part.

No uptime guarantee

FairSSL strives for high uptime for its services. Over the past 10 years, uptime has exceeded 99.9%, but past uptime is not a guarantee of future performance. FairSSL provides no specific uptime guarantee or SLA. All services are delivered on a best-effort basis.

FairSSL maintains redundant systems and daily backups. In the event of a major outage, restoration is targeted within 24 hours. Issued certificates are not affected by downtime at FairSSL, as they are stored with the Certificate Authority.

ACME service

The ACME service is delivered on a best-effort basis. Customers should implement retry logic over at least 24 hours to handle brief periods of downtime.

FairSSL cannot guarantee that the ACME configuration will remain unchanged. Industry changes (e.g. new CA/Browser Forum requirements) or vendor requirements may mean the customer needs to create new DNS records, change key settings or make similar adjustments. FairSSL will notify the customer as soon as we become aware of such changes.

Vendor and industry changes

FairSSL depends on third-party CAs (DigiCert, GlobalSign, Sectigo) and industry standards (CA/Browser Forum). Changes at these parties may affect products and services without FairSSL being able to prevent it. FairSSL will notify affected customers as soon as possible.

CA warranties

Some Certificate Authorities offer financial warranties on their certificates. Such warranties are an agreement between the customer and the CA directly. FairSSL does not provide any independent financial warranties beyond what is required by law.

SLA and emergency contact

FairSSL does not offer a standard SLA. Businesses requiring an SLA, uptime guarantee or access to an emergency contact number should contact FairSSL to discuss individual options.

13. Force majeure

FairSSL is not liable for failure to perform or delayed performance of obligations caused by circumstances beyond FairSSL's reasonable control. This includes, but is not limited to:

  • Natural disasters, epidemics and pandemics
  • War, terrorism, sanctions and embargoes
  • Government intervention, legislative changes and regulatory requirements
  • Strikes, lockouts and labour disputes
  • Outages, cyberattacks (including DDoS) and security incidents at third-party suppliers, internet service providers or CAs
  • Power failures and telecommunications outages

FairSSL takes reasonable security measures against cyberattacks but cannot guarantee protection against all attacks.

In the event of force majeure, FairSSL will notify the customer as soon as possible and make every effort to minimise the consequences.

14. Personal data

FairSSL processes personal data in accordance with the EU General Data Protection Regulation (GDPR) and the Danish Data Protection Act.

Our full privacy policy, including information about what data we collect, how we use it, who we share it with, and your rights, can be found on a separate page: Privacy Policy.

15. Email preferences

Customers can use the control panel to choose which emails they wish to receive (newsletters, offers, etc.).

The following emails cannot be opted out of, as they are necessary for order management, security or compliance with legal requirements:

  • Order confirmations, invoices and payment reminders
  • Important information about certificates (issuance, expiry, revocation, configuration changes)
  • Important industry changes affecting the customer's products (e.g. shorter certificate lifetimes, changed validation requirements)

16. CA terms, data sharing and order administration

CA subscriber agreement

When ordering a certificate, the customer accepts the relevant Certificate Authority's subscriber agreement (DigiCert Subscriber Agreement, GlobalSign Subscriber Agreement or Sectigo Subscriber Agreement). FairSSL communicates the customer's acceptance to the CA on the customer's behalf. Links to the CA's terms are displayed at checkout.

Data sharing with CA

The customer authorises FairSSL to share the necessary information with the Certificate Authority to process the order and validate the certificate. This includes company name, contact person, email address, domain information and other details required by the CA.

Order administration

The customer grants FairSSL full access to manage certificate orders with the CA on the customer's behalf. This includes:

  • Issuance, renewal and reissuance of certificates
  • Cancellation and revocation, including at the customer's request, in the event of security incidents or non-payment
  • Changes to domain validation and other order details

This access is necessary for FairSSL to provide support, handle security incidents and protect the interests of both parties.

FairSSL never resells customer data for marketing purposes to third parties. Data is shared exclusively with Certificate Authorities to the extent necessary to process the order.

17. Changes to the terms

FairSSL may amend these terms of sale.

  • One-off purchases: Changes take effect from the next order. The version in force at the time of the order applies to that order.
  • Subscriptions and ongoing agreements: Changes are notified at least 30 days before they take effect. The customer may cancel before the effective date if the customer does not accept the new terms.

The current version is always available on the FairSSL website.

18. Disputes and governing law

These terms are governed by Danish law.

Any disputes that cannot be resolved by negotiation shall be settled at the Court of Aarhus as the agreed venue, with the usual right of appeal under the Danish Administration of Justice Act.

For consumers, the mandatory venue rules of the consumer's country of residence apply.