Purpose

These Terms of Engagement describe the general conditions under which Cysvera LLC (“Cysvera”, “we”, “us”, or “our”) provides cybersecurity testing and consulting services. They are intended to ensure that all testing is conducted safely, ethically, and lawfully.

All formal engagements are governed by a signed Statement of Work (SOW) and Rules of Engagement (ROE), which take precedence over this summary.

Authorization & Scope

  • All testing is performed only with written authorization from the client.
  • Testing scope is defined in the signed SOW and ROE for each project.
  • Cysvera does not perform denial-of-service (DoS) or destructive testing.
  • Testing methods follow industry standards including OWASP, NIST SP 800-115, and PTES.

Client Responsibilities

  • Provide accurate and complete information about systems and ownership.
  • Obtain required third-party permissions when applicable.
  • Notify internal stakeholders before testing begins to avoid false incident reports.
  • Apply remediation steps responsibly and schedule optional retests within 60 days.

Confidentiality & Data Handling

Cysvera treats all client information, credentials, and test results as confidential. Data collected during testing is stored securely and deleted within 30 days of engagement completion unless otherwise agreed in writing.

Reports are encrypted, shared only with authorized client representatives, and never distributed publicly without consent.

Liability

Cysvera’s total liability for damages arising from any engagement is limited to the total fees paid by the client for that specific engagement. Cysvera is not liable for indirect, incidental, or consequential damages, including data loss or business interruption.

Contact Information

For questions about these terms or our testing practices, please contact:

Cysvera LLC
Email: contact@cysvera.com
Website: https://cysvera.com