Terms of Service

By accessing the BugZero Cyber Solutions website (bugzero.solutions) or engaging our cybersecurity services, you agree to be bound by these Terms of Service and our Privacy Policy. If you do not agree, please do not use our services.

These terms constitute a legally binding agreement between you (the client or website visitor) and BugZero Cyber Solutions, a DPIIT-recognized startup incorporated under Indian law.

BugZero Cyber Solutions provides professional cybersecurity services including but not limited to:

- Vulnerability Assessment and Penetration Testing (VAPT)
- Web, mobile, API, network, and cloud security testing
- Bug bounty program management
- Security consulting and compliance services
- Security awareness training

All services are delivered by certified security professionals and governed by individual service agreements or statements of work (SOWs) executed prior to engagement.

Explicit Written Authorization Required: All security testing services require explicit written authorization from the authorized owner of the systems being tested. BugZero will not conduct any security testing without a signed engagement agreement.

Scope Limitation: Testing is strictly limited to the scope defined in the signed service agreement. Testing any systems outside the agreed scope is prohibited and may be illegal.

Client Responsibility: The client warrants that they have full legal authority to authorize security testing of the systems within scope. BugZero bears no liability for unauthorized testing based on incorrect client representations.

Both parties agree to maintain strict confidentiality:

- All security findings, vulnerability reports, and assessment results are confidential
- BugZero will not disclose client information to third parties without written consent
- Clients agree not to disclose BugZero's proprietary methodologies, tools, or processes
- Confidentiality obligations survive termination of the service agreement

A separate Non-Disclosure Agreement (NDA) may be executed for sensitive engagements.

- Invoicing: Invoices are issued upon project commencement or milestone completion as specified in the SOW
- Payment Schedule: 50% advance payment required before project start; balance due upon report delivery
- Late Payment: Overdue invoices accrue interest at 2% per month
- Taxes: All fees are exclusive of GST, which will be charged at applicable rates
- Refunds: No refunds after security testing has commenced, as the work product (vulnerability findings) cannot be returned

- Client Systems: All intellectual property in client systems remains with the client
- BugZero Tools & Methodology: BugZero retains ownership of all proprietary tools, scripts, and testing methodologies
- Reports: Security assessment reports are the property of the client upon full payment
- Anonymized Data: BugZero may use anonymized, non-identifiable security data for research and statistics

To the maximum extent permitted by Indian law:

- BugZero's total liability for any claim shall not exceed the fees paid for the specific engagement
- BugZero is not liable for indirect, incidental, or consequential damages
- BugZero is not liable for security incidents that occur after the assessment if recommendations were not implemented
- BugZero is not liable for vulnerabilities not discovered during the agreed scope of testing

These limitations reflect a fair allocation of risk and are a fundamental basis of the service pricing.

You may not use BugZero services or website to:

- Test systems you do not own or have authorization to test
- Conduct illegal security activities
- Infringe upon the rights of third parties
- Violate any applicable Indian or international law
- Attempt to hack or compromise BugZero's own systems or infrastructure

Violation of these terms will result in immediate service termination and may be reported to law enforcement authorities.

These Terms are governed by the laws of India. Any disputes arising from these Terms shall be:

1. First attempted to be resolved through good-faith negotiation
2. Submitted to mediation if negotiation fails
3. Resolved through arbitration under the Arbitration and Conciliation Act, 1996 if mediation fails

The courts of [City, India] shall have jurisdiction for any matters requiring judicial intervention.

BugZero reserves the right to modify these Terms at any time. Material changes will be communicated via email or prominent website notice at least 30 days before taking effect. Continued use of services after changes constitutes acceptance.