1. The content on this site is informational, written for educational and marketing purposes - not legal, security or compliance advice for your specific environment.
2. Active offensive testing engagements are governed by a separate signed agreement. Nothing on this website authorises any testing activity against CyberFortify systems or any third party.
3. Use of our content for your own commercial publications requires written permission.
// 01 Acceptance of terms
By accessing cyberfortify.co you agree to these terms. If you do not agree, please discontinue use of the website. These terms apply to all users including casual visitors, prospective customers, partners and competitors.
// 02 Content & intellectual property
All content on this website (text, graphics, structure, methodology descriptions, framework guides, branding) is owned by CyberFortify or licensed to us. You may read it, share links to it and quote short passages with attribution. Substantial reproduction, republication or commercial use of our content requires written permission - email [email protected].
// 03 No legal or security advice
Content on this website (including framework guides for OWASP Top 10, SOC 2, ISO 27001, PCI DSS, HIPAA, GDPR and NIST CSF) is general information drafted for educational and marketing purposes. It is not legal, audit, compliance or security advice tailored to your environment. Engagements through CyberFortify's compliance consulting or offensive testing services produce environment-specific deliverables - the website does not.
// 04 No authorisation for testing
Nothing published on this website constitutes authorisation to perform any offensive security activity against CyberFortify systems, infrastructure, customers, partners or any third party. Active engagements are governed by a separate, individually signed authorisation letter and rules-of-engagement document.
// 05 External links
This website contains links to third-party websites for reference (OWASP, NIST, MITRE, ISO, AICPA, PCI Security Standards Council, etc.). CyberFortify is not responsible for the content, availability, accuracy or privacy practices of those sites. Use them at your own discretion.
// 06 Warranty & liability disclaimer
The website is provided "as is" and "as available" without warranties of any kind, express or implied, including merchantability, fitness for a particular purpose and non-infringement. To the maximum extent permitted by law, CyberFortify is not liable for any indirect, incidental, special, consequential or punitive damages arising from your use of the website. This clause does not limit any liability that cannot be excluded by applicable law.
// 07 Engagement-specific terms
Active offensive security engagements (penetration testing, red teaming, compliance consulting) are governed by a separate Master Services Agreement, Statement of Work, Rules of Engagement and where relevant a Data Processing Addendum. Those documents take precedence over the website terms for engagement matters.
// 08 Privacy
Personal data submitted through this website is processed in accordance with our privacy policy. Cookie use is described in our cookie policy.
// 09 Governing law
These terms are governed by the laws of the State of New Mexico, United States, without regard to conflict-of-laws principles. Disputes will be resolved in the state or federal courts of New Mexico unless an alternative is agreed in a signed contract for an active engagement.
// 10 Changes to these terms
We may update these terms from time to time. The "Last reviewed" date reflects the latest revision. Continued use of the website after changes are posted constitutes acceptance of the updated terms.
// 11 Contact
Questions about these terms: [email protected] or 1209 Mountain Road Pl NE STE R, Albuquerque, NM 87110, USA.