Terms of Service
1. Scope of Services
Jordan Security Group provides cybersecurity consulting and related services including, but not limited to, penetration testing, security posture reviews, risk assessments, incident response readiness planning, and security awareness training. Services are delivered in accordance with recognized industry frameworks such as OWASP, NIST CSF, CIS Controls, and ISO/IEC 27001. The specific scope of each engagement will be defined in a written Statement of Work (SOW).
2. Client Responsibilities
You must provide written authorization for us to perform testing or assessments on your systems. You agree to supply accurate information, credentials, and access necessary to complete the Services. You confirm that requesting such testing does not violate any laws, contracts, or third-party agreements. Remediation of identified vulnerabilities remains your sole responsibility.
3. Confidentiality
Both parties agree to maintain strict confidentiality of proprietary, sensitive, or personal data exchanged during the engagement. We will safeguard information using industry best practices and applicable data protection laws, including GDPR and HIPAA where relevant. Findings will not be disclosed to third parties without your consent unless required by law.
4. Legal and Regulatory Compliance
Our testing methods comply with applicable federal, state, and international laws. You are responsible for ensuring that your use of our Services aligns with all legal and regulatory requirements applicable to your industry, such as PCI DSS, HIPAA/HITECH, SOX, GLBA, FERPA, GDPR, and CCPA.
5. Limitations of Services
Our assessments are point-in-time evaluations and cannot guarantee that your systems will remain free of vulnerabilities. No engagement can identify every possible risk. Our role is advisory, and implementation of recommendations is your responsibility unless otherwise agreed in writing.
6. Warranties and Disclaimers
The Services are provided “as is” without warranties of any kind, whether express or implied. To the maximum extent permitted by law, our liability for any claim related to the Services shall not exceed the fees paid for those Services. We cannot guarantee that you will not experience a security incident, breach, or regulatory action after our work.
7. Intellectual Property
We retain ownership of our methodologies, templates, tools, and reports used in delivering Services, except for client-specific data. You are granted a limited, non-exclusive license to use deliverables for internal business purposes only.
8. Payment Terms
Fees and payment schedules are set forth in the applicable SOW or invoice. Payments are due within thirty (30) days unless otherwise agreed. Late payments may result in suspension of Services and may incur interest charges.
9. Termination
Either party may terminate the engagement for material breach if the breach is not cured within fifteen (15) days after written notice. Upon termination, all outstanding fees become immediately due, and we will deliver any completed work up to the termination date.
10. Governing Law and Dispute Resolution
These Terms are governed by and construed in accordance with the laws of the State of California, without regard to conflict of law principles. The parties agree to first attempt to resolve disputes through good-faith negotiation. If unresolved within thirty (30) days, disputes shall be submitted to binding arbitration in Los Angeles County, California, administered by the American Arbitration Association under its Commercial Arbitration Rules. Judgment on the award may be entered in any court of competent jurisdiction. Each party waives the right to a jury trial and agrees that disputes will be resolved solely on an individual basis, not through class actions.
11. Amendments
We may update these Terms of Service at any time. Updates will be posted on our website with a revised “Last Updated” date. Your continued use of our Services constitutes acceptance of the updated Terms.
12. Contact
Jordan Security Group
LinkedIn: