// Legal

Terms of Engagement

Last updated: March 2026 · Version 1.0

// 01 — Scope of Services

NixSec Labs provides offensive security assessments, defensive security consultancy, and digital forensics services. All services are delivered under a written Statement of Work (SoW) or equivalent engagement letter, signed by both parties prior to commencement.

// 02 — Authorisation Requirement

No engagement begins without explicit written authorisation. Any penetration testing, red team operation, or forensic investigation conducted by NixSec Labs is performed solely within the scope and boundaries defined in the signed authorisation documentation. Unauthorised testing of systems outside the agreed scope is strictly prohibited.

// 03 — Confidentiality

All client information, engagement details, findings, and deliverables are treated as strictly confidential. NixSec Labs does not disclose client identities, engagement scope, or findings to any third party without express written consent, except where required by applicable law or court order.

A mutual Non-Disclosure Agreement (NDA) is executed prior to any scoping discussion involving sensitive client information.

// 04 — Deliverables

Deliverables are specified in the engagement SoW. Standard deliverables include:

Technical findings report with risk ratings and evidence
Executive summary suitable for board or C-suite presentation
Risk-ranked remediation roadmap
Live debrief session with the delivery operator team

Digital Forensics engagements additionally produce chain-of-custody documentation and, where applicable, court-admissible evidence packages.

// 05 — Payment Terms

Payment terms are specified in each engagement's SoW. Standard terms are 50% upon engagement commencement and 50% upon delivery of the final report. NixSec Labs reserves the right to withhold final deliverables until payment obligations are satisfied.

// 06 — Limitation of Liability

NixSec Labs' liability in connection with any engagement shall not exceed the total fees paid for that engagement. NixSec Labs shall not be liable for indirect, consequential, or incidental damages arising from the provision of services, except where such liability cannot be excluded by applicable law.

// 07 — Governing Law

These terms are governed by the laws of Sweden. Any disputes shall be subject to the exclusive jurisdiction of the Swedish courts, unless otherwise agreed in writing.

// 08 — Contact

For questions regarding these terms, contact contact@nixsec.se.

// Ready to Engage

Certified. Operators. Ready.

Initial assessment is confidential and obligation-free. Senior operator reply within 24 hours.

Initiate Audit →