Terms of Service

By accessing our website (cybrdoc.com) or engaging CybrDoc's cybersecurity services, you confirm that you have read, understood, and agree to be bound by these Terms of Service ("Terms") and our Privacy Policy, which is incorporated herein by reference.

If you are entering into these Terms on behalf of an organisation, you represent that you have the authority to bind that organisation to these Terms. If you do not have such authority, or if you do not agree with these Terms, you must not use our services.

We reserve the right to update these Terms at any time. Continued use of our services after any changes constitutes acceptance of the revised Terms.

CybrDoc provides professional cybersecurity services to businesses and organisations, including but not limited to:

Vulnerability Assessment & Penetration Testing (VAPT). Authorised simulated attacks on your systems, networks, and applications to identify exploitable weaknesses before malicious actors do.

Malware Analysis & Reverse Engineering. Static and dynamic analysis of malicious software, including binary-level reverse engineering, IOC extraction, and threat attribution.

ISO 27001 Compliance Consulting. Gap analysis, risk treatment planning, ISMS policy development, controls implementation, and certification preparation.

Security Risk Assessment. Evidence-based evaluation of your organisation's security posture mapped to industry frameworks including NIST CSF and CIS Controls.

Incident Response & Digital Forensics. Emergency containment and investigation of security incidents, including forensic preservation of evidence and root-cause analysis.

Web Application Firewall (WAF) Setup & Tuning. Deployment and optimisation of WAF solutions to defend against OWASP Top 10 attacks and automated threats.

Security Awareness Training. Phishing simulations, workshops, and e-learning programmes to reduce human-layer risk.

Secure Web Development. Security-by-design consulting, code review, SAST/DAST integration, and developer security training.

All engagements are subject to a separately executed Statement of Work (SOW) or service agreement that defines scope, deliverables, timelines, and fees.

By using our services, you agree to the following responsibilities:

Authorisation. You warrant that you have legal authority to authorise all security testing activities performed by CybrDoc on your behalf. You are solely responsible for ensuring that penetration testing and other intrusive assessments do not violate applicable laws, regulations, or third-party rights.

Accurate information. You agree to provide accurate, complete, and current information about your systems, infrastructure, and requirements. Providing false or misleading information that results in testing outside the agreed scope is your responsibility.

Lawful use. You agree to use CybrDoc's services only for lawful purposes. You must not use our knowledge, reports, or tools to conduct unauthorised attacks, gain unauthorised access to systems, or cause harm to third parties.

Confidentiality. You agree to treat all deliverables, reports, and findings provided by CybrDoc as confidential. You must not disclose findings to unauthorised parties in a manner that could facilitate attacks on your own or third-party systems.

Compliance. You are responsible for ensuring that your use of CybrDoc's services complies with all applicable laws, regulations, and contractual obligations in your jurisdiction.

All intellectual property rights in CybrDoc's methodologies, tools, frameworks, templates, processes, and pre-existing materials remain the exclusive property of CybrDoc or its licensors.

Deliverables. Upon full payment, CybrDoc grants you a non-exclusive, non-transferable licence to use the deliverables produced during your engagement (such as penetration testing reports, risk assessments, and policy documents) for your internal business purposes.

No transfer of ownership. Unless explicitly agreed in writing, no intellectual property rights are transferred to you. You may not reproduce, distribute, or create derivative works from CybrDoc's proprietary methodologies without prior written consent.

Your data. You retain all rights in the data, systems, and information you provide to CybrDoc. CybrDoc will not use your data for any purpose other than delivering the agreed services.

Feedback. If you provide feedback or suggestions regarding our services, CybrDoc may use such feedback without obligation or compensation to you.

CybrDoc provides professional services rather than a continuous software platform. As such, availability is governed by the terms of each individual engagement agreement.

Project-based services. Penetration testing, risk assessments, and consulting engagements are delivered according to timelines agreed in each Statement of Work. We are not liable for delays caused by factors outside our reasonable control, including your failure to provide required access or information.

Emergency incident response. CybrDoc offers 24/7 emergency incident response on a best-efforts basis. Response times depend on current capacity and are specified in your incident response retainer agreement where applicable.

No uptime guarantee. CybrDoc's website and administrative portals are provided "as is" and without any guarantee of uninterrupted availability. We perform routine maintenance and may take systems offline temporarily without notice.

Subcontractors. CybrDoc may engage qualified subcontractors to assist in delivering services. We remain responsible for the quality and confidentiality obligations of any subcontractors we engage.

All fees for CybrDoc's services are as specified in the applicable Statement of Work, proposal, or service agreement.

Invoicing. Invoices are issued in accordance with the payment schedule in your engagement agreement. Standard payment terms are net 30 days from invoice date unless otherwise agreed.

Late payment. Invoices not paid within the agreed terms may attract late payment interest at the rate permitted by applicable law. CybrDoc reserves the right to suspend services on accounts with overdue balances.

Expenses. Where engagements require travel, specialist equipment, or third-party licensing, expenses will be agreed in advance and invoiced at cost.

Disputes. Payment disputes must be raised in writing within 14 days of the invoice date. Disputed amounts will be reviewed and resolved in good faith. Undisputed portions of an invoice remain payable within normal terms.

Taxes. Fees are exclusive of applicable taxes (including VAT, GST, or sales tax) unless stated otherwise. You are responsible for all applicable taxes in your jurisdiction.

To the fullest extent permitted by applicable law, CybrDoc's total liability to you for any claims arising out of or relating to these Terms or our services — whether in contract, tort, negligence, or otherwise — shall not exceed the total fees paid by you to CybrDoc in the twelve (12) months immediately preceding the event giving rise to the claim.

Exclusion of consequential loss. CybrDoc shall not be liable for any indirect, incidental, special, consequential, or punitive damages, including loss of profits, revenue, data, or business opportunities, even if advised of the possibility of such damages.

Security testing limitation. Authorised penetration testing and security assessments carry an inherent risk of service disruption. CybrDoc takes all reasonable precautions to minimise impact, but is not liable for unintended service disruption that occurs within the agreed scope of testing.

Third-party services. CybrDoc is not liable for the actions, omissions, or security posture of any third-party service providers you use, even if CybrDoc identifies or reports vulnerabilities in those services.

Jurisdiction. Some jurisdictions do not allow certain limitations of liability. In such cases, the above limitations apply to the maximum extent permitted by law.

You agree to indemnify, defend, and hold harmless CybrDoc and its officers, directors, employees, and contractors from and against any claims, damages, losses, liabilities, and expenses (including reasonable legal fees) arising out of or relating to:

Misuse of services. Your use of CybrDoc's services in violation of these Terms or any applicable law.

Scope violations. Any claims arising from testing activities that you authorised but that exceeded the permissions you actually held over the systems in question.

False representations. Claims arising from inaccurate or misleading information you provided to CybrDoc in connection with any engagement.

Third-party claims. Any third-party claims arising from your disclosure of CybrDoc's deliverables or findings in a manner that causes harm to others.

This indemnification obligation survives termination of these Terms and any individual engagement.

CybrDoc reserves the right to modify these Terms of Service at any time. When we make material changes, we will update the "Last Updated" date at the top of this page.

Continued use. Your continued use of our services after any modification constitutes your acceptance of the revised Terms. If you do not agree to the revised Terms, you must stop using our services.

Individual engagement terms. Changes to these general Terms do not automatically modify the terms of an existing engagement governed by a separately executed Statement of Work. The SOW terms remain in effect for the duration of that engagement.

Notice. For material changes that significantly affect your rights or obligations, we will make reasonable efforts to provide advance notice, such as by posting a notice on our website.

These Terms shall be governed by and construed in accordance with the laws of India, without regard to its conflict of law provisions. Where services are provided to clients in Australia, the Australian Consumer Law may also apply.

Jurisdiction. Any disputes arising out of or in connection with these Terms or CybrDoc's services shall be subject to the jurisdiction of the courts of India, unless otherwise agreed in writing.

International clients. If you are engaging CybrDoc from outside India or Australia, you acknowledge that these Terms are governed by Indian law, and you consent to the jurisdiction of Indian courts for the resolution of any disputes.

Dispute resolution. Before initiating any formal legal proceedings, both parties agree to attempt to resolve any dispute through good-faith negotiation for a period of at least 30 days.

If you have questions, concerns, or require clarification regarding these Terms of Service, please contact us:

Email: mail@cybrdoc.com Subject line: "Terms of Service Enquiry"

For general enquiries about our services, visit our Contact page or email mail@cybrdoc.com.

We will acknowledge your message within 2 business days and provide a full response within 14 calendar days.