Terms of Service

Last updated: 1 December 2025

1. Introduction

These Terms of Service ("Terms") govern your use of the Cyber911 website and services. By accessing our website or engaging our services, you agree to be bound by these Terms.

Service Provider: Asmaa Jacobson trading as Cyber911, a sole trader operating in the United Kingdom.

Contact: info@cyber911.co.uk

These Terms should be read in conjunction with our Privacy Policy and any specific engagement agreements.

2. Definitions

  • "We", "us", "our" refers to Cyber911
  • "You", "your", "Client" refers to the individual or organisation using our services
  • "Services" refers to penetration testing, security assessments, and related cybersecurity consultancy services
  • "Website" refers to cyber911.co.uk and all associated pages
  • "Engagement" refers to a specific project or service agreement

3. Website Use

3.1 Permitted Use

You may use our website for lawful purposes only. You agree not to:

  • Use the website in any way that violates applicable laws or regulations
  • Attempt to gain unauthorised access to our systems or networks
  • Introduce viruses, malware, or other malicious code
  • Scrape, copy, or reproduce content without permission
  • Impersonate any person or entity
  • Interfere with the proper functioning of the website

3.2 Intellectual Property

All content on this website, including text, graphics, logos, and code, is owned by or licensed to Cyber911 and protected by copyright and other intellectual property laws.

You may not reproduce, distribute, or create derivative works without our prior written consent.

4. Service Engagement

4.1 Scope of Work

All penetration testing and security assessment engagements require a separate written agreement that specifies:

  • Detailed scope of testing
  • Target systems and networks
  • Testing methodology
  • Project timeline
  • Deliverables
  • Fees and payment terms

4.2 Client Authorisation

You warrant that you have proper authority to commission security testing on all target systems. You are responsible for:

  • Obtaining all necessary permissions and approvals
  • Notifying relevant stakeholders
  • Ensuring legal compliance in your jurisdiction
  • Providing accurate scope documentation

4.3 Rules of Engagement

All testing is conducted in accordance with:

  • Agreed scope and methodology
  • Industry best practices (OWASP, OSSTMM, PTES)
  • UK Computer Misuse Act 1990
  • Professional ethical standards

5. Confidentiality and Data Protection

5.1 Confidentiality

We maintain strict confidentiality of all client information, including:

  • Business and technical information
  • Security vulnerabilities discovered
  • Assessment findings and reports
  • Client identity (unless you provide permission for case study use)

5.2 Data Protection

We process personal data in accordance with UK GDPR and the Data Protection Act 2018. See our Privacy Policy for full details.

5.3 Security of Findings

You are responsible for securing assessment reports and implementing recommended remediation measures. We are not liable for breaches resulting from:

  • Failure to implement security recommendations
  • Disclosure of findings to unauthorised parties
  • Vulnerabilities outside the agreed scope

6. Fees and Payment

6.1 Service Fees

Fees are specified in the engagement agreement and may be based on:

  • Fixed project pricing
  • Daily or hourly rates
  • Time and materials

All fees are quoted exclusive of VAT (if applicable).

6.2 Payment Terms

Unless otherwise agreed:

  • Invoices are payable within 30 days of issue
  • A deposit may be required before work commences
  • Final reports may be withheld until full payment is received
  • Late payments may incur interest at 8% above Bank of England base rate

6.3 Expenses

Reasonable expenses incurred during the engagement (travel, accommodation, specialist tools) will be charged at cost unless otherwise agreed.

7. Limitations and Disclaimers

7.1 Service Limitations

Our services are limited to the agreed scope. We do not guarantee:

  • Discovery of all vulnerabilities
  • Complete elimination of security risks
  • Prevention of future security incidents
  • Compliance with specific regulations (unless explicitly agreed)

7.2 No Warranty

Services are provided on an "as is" basis. While we use reasonable skill and care, we make no warranties regarding:

  • Completeness of findings
  • Suitability for specific purposes
  • Accuracy of third-party information

7.3 Website Disclaimer

Information on this website is for general guidance only and does not constitute professional advice. We make reasonable efforts to keep content accurate and up-to-date but make no guarantees.

8. Liability

8.1 Limitation of Liability

Our liability under any engagement is limited to:

  • The fees paid for the specific engagement where the liability arose
  • Direct losses only (excluding indirect, consequential, or economic losses)

8.2 Exceptions

Nothing in these Terms excludes or limits liability for:

  • Death or personal injury caused by negligence
  • Fraud or fraudulent misrepresentation
  • Any other liability that cannot be excluded by law

8.3 Professional Indemnity Insurance

We maintain professional indemnity insurance appropriate to our business activities.

9. Termination

9.1 Termination by Client

You may terminate an engagement by providing written notice. You will be liable for:

  • All work completed up to the termination date
  • Reasonable costs incurred or committed
  • Any cancellation fees for third-party services

9.2 Termination by Us

We may terminate an engagement immediately if:

  • You breach these Terms or the engagement agreement
  • Payments are overdue by more than 30 days
  • We discover you lack proper authorisation
  • Continuing would be unlawful or unethical

10. Indemnification

You agree to indemnify and hold us harmless from any claims, damages, or expenses arising from:

  • Your lack of proper authorisation for testing
  • Your failure to notify affected parties
  • Your misuse of assessment findings
  • Your breach of these Terms
  • Claims by third parties related to your systems or data

11. Force Majeure

Neither party is liable for delays or failures caused by circumstances beyond reasonable control, including:

  • Natural disasters
  • Government actions or regulations
  • Telecommunications or internet failures
  • Cyber attacks or security incidents
  • Pandemics or health emergencies

12. Ethical Standards

We adhere to professional ethical standards, including:

  • Only testing authorised systems
  • Maintaining client confidentiality
  • Accurate and honest reporting
  • Responsible disclosure of vulnerabilities
  • Compliance with industry codes of conduct

13. Governing Law and Jurisdiction

These Terms are governed by the laws of England and Wales. Any disputes arising from these Terms or our services shall be subject to the exclusive jurisdiction of the courts of England and Wales.

For clients based in Scotland or Northern Ireland, specific provisions may apply under local law.

14. Changes to Terms

We reserve the right to update these Terms at any time. Changes will be effective immediately upon posting to the website. Continued use of our website or services after changes constitutes acceptance of the new Terms.

Existing engagements will be governed by the Terms in effect when the engagement agreement was signed.

15. Severability

If any provision of these Terms is found to be invalid or unenforceable, the remaining provisions shall continue in full force and effect.

16. Entire Agreement

These Terms, together with our Privacy Policy and any specific engagement agreement, constitute the entire agreement between you and Cyber911 regarding use of our website and services.

17. Contact Information

For questions about these Terms of Service, please contact us:

Email: info@cyber911.co.uk
Website: Contact Form

These Terms of Service are provided for general guidance. For specific legal advice regarding your engagement or circumstances, please consult with a qualified legal professional.