Terms of Service

1. Acceptance of Terms

These Terms of Service (“Terms”) apply to your use of the Black Tower Cyber LLC (“Black Tower Cyber,” “we,” “us,” or “our”) website and general interactions with our services. By using this website or requesting services, you agree to these Terms.

For paid services, these Terms may be supplemented or replaced by a signed proposal, statement of work, master services agreement, retainer agreement, nondisclosure agreement, or other written contract.

2. Services

Black Tower Cyber may provide cybersecurity consulting, incident response, cloud security, digital forensics support, security assessments, Microsoft 365 and Google Workspace hardening, vulnerability management, managed detection support, security program advisory, and related services.

Specific scope, deliverables, timelines, fees, limitations, client responsibilities, and assumptions will be defined in the applicable written agreement or statement of work.

3. No Emergency Guarantee Unless Agreed in Writing

Website language may describe incident response availability or expected response goals. Unless a written agreement specifically states otherwise, submitting a website form, email, phone call, or scheduling request does not create a guaranteed emergency response obligation, service-level agreement, attorney-client relationship, insurer relationship, or managed security contract.

4. Authorized Use and Client Responsibilities

You agree that any systems, accounts, tenants, networks, domains, logs, or data you provide for review are owned by you or that you have proper authorization to request work on them. You are responsible for:

• Providing accurate information and timely access needed to perform services.
• Maintaining your own backups, business continuity plans, credentials, and administrative controls.
• Obtaining required approvals before requesting scans, tests, investigations, or changes.
• Reviewing recommendations and deciding whether to implement them.
• Complying with applicable laws, regulations, contracts, cyber insurance requirements, and internal policies.

5. Prohibited Uses

You may not use our website, communications, deliverables, or services to:

• Conduct unauthorized access, scanning, exploitation, surveillance, or attacks.
• Violate laws, contracts, privacy rights, intellectual property rights, or security policies.
• Submit malicious files, links, credentials, or sensitive data except as part of an authorized engagement using approved channels.
• Misrepresent your identity, authorization, ownership, or relationship to an organization or system.

6. Security Findings and Limitations

Cybersecurity services are based on the information, access, tools, evidence, timing, and scope available during the engagement. No assessment, scan, investigation, hardening project, or monitoring service can guarantee that all vulnerabilities, threats, misconfigurations, or compromises will be found or prevented.

Recommendations are provided to reduce risk, support decision-making, and improve security posture. You remain responsible for final risk acceptance, implementation, operations, and business decisions.

7. Incident Response and Forensics Limitations

Incident response and forensic support may involve incomplete logs, missing telemetry, overwritten evidence, third-party system limitations, attacker anti-forensics, client-side changes, or unknown prior activity. Findings are based on available evidence at the time of review and may change if additional evidence becomes available.

8. Confidentiality

We treat client information, incident details, security findings, reports, and environment details as confidential unless disclosure is authorized by the client, required by law, or necessary to perform services through approved third parties. Additional confidentiality terms may be included in a separate agreement.

9. Fees and Payment

Fees, billing terms, deposits, retainers, expenses, and payment schedules will be stated in the applicable proposal, invoice, or written agreement. Unless otherwise agreed, fees are due according to the invoice terms. Late or unpaid amounts may result in paused services, collection activity, or termination of work.

10. Intellectual Property

Our website content, branding, templates, frameworks, methods, playbooks, report structures, scripts, and materials are owned by Black Tower Cyber or our licensors unless otherwise stated. Clients receive the right to use final deliverables for their internal business purposes, subject to the applicable agreement.

11. Third-Party Tools and Services

We may use or recommend third-party tools, vendors, platforms, or services. We are not responsible for third-party outages, pricing, licensing, security, privacy practices, support quality, or changes. Your use of third-party services may be governed by their own terms.

12. Disclaimers

The website and general content are provided for informational purposes and are not legal, financial, insurance, regulatory, or compliance advice. Services and website content are provided “as is” unless otherwise agreed in writing. We disclaim warranties to the fullest extent permitted by law.

13. Limitation of Liability

To the fullest extent permitted by law, Black Tower Cyber will not be liable for indirect, incidental, consequential, special, punitive, or exemplary damages, including lost profits, lost revenue, lost data, business interruption, reputational harm, or security incidents, except where liability cannot be limited by law or where a written agreement states otherwise.

14. Termination

We may refuse, suspend, or terminate services or website access if we believe there is unauthorized activity, nonpayment, abuse, legal risk, scope violation, unsafe conditions, conflict of interest, or other reasonable business or security concern.

15. Governing Law

Unless a written agreement states otherwise, these Terms are governed by the laws of the State of Connecticut, without regard to conflict-of-law principles.

16. Changes to These Terms

We may update these Terms from time to time. The “Last updated” date will reflect the most recent revision. Continued use of the website or services after changes are posted means you acknowledge the updated Terms.

17. Contact

Questions about these Terms can be submitted through the Black Tower Cyber contact page.