Last updated: May 2026
SecureAudit provides web application security assessment services as described in a project-specific Statement of Work ("SOW") agreed with each client. These Terms govern use of our website and any engagement with our services.
By signing a SOW and making payment, the client confirms they have full legal authority to authorize security testing of the domains and systems listed in the SOW. Testing is conducted solely within the agreed scope. SecureAudit will not perform testing beyond the agreed scope under any circumstances.
Payment is due in full before testing begins, as stated in the SOW. Fees are non-refundable once testing has commenced. If no reportable findings are identified, the client receives a written clean-bill-of-health attestation letter at no additional charge.
SecureAudit treats all client information, systems, and findings as strictly confidential. We will not disclose findings to any third party without the client's written consent. This obligation survives termination of the engagement.
We will deliver a written security report within the timeframe stated in the SOW. The report includes findings with severity ratings, proof-of-concept details, and remediation guidance. Reports are delivered via encrypted email.
SecureAudit's liability in connection with any engagement is limited to the total fees paid for that engagement. We are not liable for any indirect, consequential, or incidental damages. Security assessments reduce risk but do not guarantee the absence of all vulnerabilities.
These Terms are governed by applicable international commercial law. Any disputes will be resolved through good-faith negotiation in the first instance.
Questions: info@appsecaudit.io