Acceptable Use Policy
This policy governs acceptable use of our website and services. It exists to keep our systems, our clients, and the wider community safe.
Last updated: 29 June 2026
Prohibited activity
You must not use this site or our services to do any of the following:
- ▸Attempt to disrupt, degrade, or attack our systems or those of our clients
- ▸Gain or attempt to gain unauthorized access to any account, system, or data
- ▸Test, scan, or probe our infrastructure outside of an authorized engagement
- ▸Upload or transmit malware, or use the site to facilitate unlawful activity
- ▸Misrepresent your identity or infringe the rights of others
Testing authorization
Security testing of our infrastructure — or any infrastructure we manage — requires prior written authorization. Unauthorized testing is not permitted, regardless of intent. If you believe you have found a vulnerability, follow our Responsible Disclosure policy rather than continuing to test.
Our own engagements
When we perform offensive security work for clients, we operate strictly authorized-only: no testing begins without a signed authorization letter defining scope, rules of engagement, and emergency contacts. We hold ourselves to the same standard we ask of others.
Enforcement
We may suspend access and, where appropriate, report unlawful activity to the relevant authorities. We reserve the right to take any action necessary to protect our systems and our clients.
