These Terms of Service govern your use of the ASecurity Global website and services. By engaging our services or using our website, you agree to these terms. Please read them carefully.
1. Services
ASecurity Global provides offensive security services including penetration testing, red team operations, vulnerability assessments, and security consulting. All engagements are conducted under a separate Statement of Work (SOW) and Non-Disclosure Agreement (NDA) which take precedence over these general terms.
2. Authorisation & Scope
All security testing is performed exclusively within the scope defined and authorised in writing by the client. We will never test systems, networks, or applications without explicit written authorisation. The client is responsible for ensuring they have the legal right to authorise testing of all in-scope systems.
Any changes to scope during an engagement must be agreed in writing by both parties before testing commences.
3. Client Responsibilities
You agree to:
- Provide accurate and complete information about the systems to be tested
- Ensure you have legal authority to authorise the testing of all in-scope assets
- Maintain appropriate backups before testing begins
- Notify relevant stakeholders (e.g. hosting providers, cloud platforms) as required
- Respond promptly to our requests for information during the engagement
4. Confidentiality
All findings, reports, and information exchanged during an engagement are strictly confidential. We will not disclose client information, vulnerabilities found, or engagement details to any third party without your written consent, except where required by law.
We sign a mutual NDA prior to any scoping discussion involving your technical environment.
5. Payment Terms
Payment terms are specified in the SOW. Typically, a 50% deposit is required before testing begins, with the balance due upon delivery of the final report. Invoices are due within 30 days of issue. Late payments may incur interest at 1.5% per month.
6. Limitation of Liability
Our liability for any claim arising out of or in connection with our services is limited to the fees paid for the specific engagement giving rise to the claim. We are not liable for indirect, incidental, or consequential damages. We conduct all testing with care to avoid service disruption, but cannot guarantee zero impact on complex production systems.
7. Intellectual Property
Upon receipt of full payment, you own the final deliverables (reports, findings, recommendations) produced for your engagement. We retain ownership of our methodologies, tools, and any generic knowledge developed during engagements. We may reference your engagement in anonymised case studies with your prior written consent.
8. Acceptable Use of Website
You may not use our website to transmit malicious code, conduct unauthorised security testing of our infrastructure, or engage in any activity that could harm our systems or other users. Any vulnerability discovered in our own infrastructure should be reported via our Responsible Disclosure programme.
9. Governing Law
These terms are governed by the laws of Singapore. Any disputes shall be subject to the exclusive jurisdiction of the courts of Singapore, unless otherwise agreed in the SOW.
10. Changes to These Terms
We may update these terms from time to time. Material changes will be communicated to active clients. Continued use of our services constitutes acceptance of the updated terms.
11. Contact
For questions about these Terms of Service, contact us at security@asecurity-global.com.