Terms of Service

Definitions & Interpretation

For the purposes of these Terms, the following definitions shall apply:

• "Services" means all cybersecurity services provided by Dassell Network Resilience, including but not limited to intrusion detection monitoring, firewall rule optimization, endpoint security deployment, vulnerability assessment scans, system hardening services, and any related consulting, advisory, or maintenance activities.
• "Service Agreement" means any written contract, statement of work, proposal, or engagement letter executed between the Company and the Client that references these Terms.
• "Deliverables" means all reports, configurations, documentation, assessments, recommendations, and other work products produced by the Company during the course of performing the Services.
• "Confidential Information" means any non-public information disclosed by either party to the other, including technical data, network configurations, vulnerability findings, business strategies, client lists, pricing information, and proprietary methodologies.
• "Infrastructure" means the Client's network systems, servers, endpoints, applications, cloud environments, and any other technical assets that are subject to the Services.

Scope of Services

Dassell Network Resilience provides specialized technical security maintenance and infrastructure hardening for business networks. The specific scope of Services will be defined in each individual Service Agreement and may include any combination of the following:

2.1 Intrusion Detection Monitoring

Continuous 24/7 surveillance of network traffic patterns, log analysis, anomaly detection, and alert generation. This service includes deployment and management of network-based and host-based intrusion detection sensors, correlation of security events, and escalation of confirmed threats to designated Client personnel. The Company will maintain monitoring infrastructure and ensure sensor coverage across agreed-upon network segments.

2.2 Firewall Rule Optimization

Periodic and scheduled auditing of existing firewall rulesets, access control lists (ACLs), and network segmentation policies. This includes identification of redundant, conflicting, or overly permissive rules; recommendations for rule consolidation; implementation of least-privilege access policies; and documentation of all changes made to firewall configurations.

2.3 Endpoint Security Deployment

Installation, configuration, management, and continuous updating of endpoint protection platforms across all Client-designated devices. This encompasses antivirus/anti-malware solutions, endpoint detection and response (EDR) agents, device control policies, application whitelisting, and patch management coordination for endpoint operating systems and applications.

2.4 Vulnerability Assessment Scans

Systematic automated and manual scanning of internal and external network assets to identify software vulnerabilities, misconfigurations, unpatched systems, and other security weaknesses. Assessment deliverables include detailed vulnerability reports with severity ratings, remediation recommendations prioritized by risk, and executive summaries suitable for management review.

2.5 System Hardening Services

Configuration of operating systems, server environments, network appliances, and cloud platforms according to industry-recognized security benchmarks (CIS, NIST, DISA STIGs). This includes disabling unnecessary services, enforcing strong authentication policies, implementing encryption standards, configuring audit logging, and establishing security baselines for ongoing compliance monitoring.

Client Obligations

The Client agrees to the following obligations to enable the effective delivery of Services:

• Provide timely and accurate access to all network systems, documentation, and personnel necessary for the Company to perform the agreed-upon Services.
• Designate authorized points of contact who have the authority to approve changes to network configurations and security policies.
• Maintain current and valid licenses for all software and hardware systems within the Client's Infrastructure.
• Notify the Company promptly of any changes to network architecture, business operations, or regulatory requirements that may affect the scope or delivery of Services.
• Implement recommended remediation actions within agreed-upon timeframes to maintain the effectiveness of deployed security controls.
• Ensure that all Client personnel cooperate with Company staff during assessments, deployments, and maintenance activities.
• Maintain appropriate data backups prior to any system modifications performed by the Company.

Fees & Payment

All fees for Services will be as set forth in the applicable Service Agreement. Unless otherwise specified:

• Invoices are issued on a monthly basis for recurring services and upon completion for project-based engagements.
• Payment is due within thirty (30) days of the invoice date.
• Late payments shall accrue interest at the rate of 1.5% per month or the maximum rate permitted by applicable law, whichever is lower.
• All fees are quoted in United States Dollars (USD) and are exclusive of applicable taxes.
• The Company reserves the right to suspend Services if payment remains outstanding for more than sixty (60) days after the invoice date.
• Clients are responsible for all reasonable expenses incurred by the Company in connection with the delivery of Services, including travel, equipment, and third-party software licenses, where such expenses have been pre-approved by the Client.

Intellectual Property

All proprietary tools, methodologies, processes, templates, scripts, and software developed by Dassell Network Resilience, whether prior to or during the course of performing the Services, shall remain the exclusive intellectual property of the Company. The Client receives a non-exclusive, non-transferable license to use Deliverables solely for the Client's internal business purposes. The Client shall not reverse-engineer, decompile, or attempt to derive the source code of any Company tools or software. Client data, configurations, and pre-existing intellectual property shall remain the exclusive property of the Client at all times.

Confidentiality

Both parties agree to maintain the confidentiality of all Confidential Information received from the other party. Confidential Information shall not be disclosed to third parties without prior written consent, except as required by law, regulation, or court order. The receiving party shall use at least the same degree of care to protect Confidential Information as it uses to protect its own confidential information, but in no event less than reasonable care. These confidentiality obligations shall survive the termination of the Service Agreement for a period of five (5) years.

Limitation of Liability

To the maximum extent permitted by applicable law, in no event shall Dassell Network Resilience be liable for any indirect, incidental, special, consequential, or punitive damages, including but not limited to loss of profits, data, business opportunities, or goodwill, arising out of or related to the Services, whether based on warranty, contract, tort, negligence, strict liability, or any other legal theory.

The Company's total cumulative liability for all claims arising from or related to the Services shall not exceed the total fees paid by the Client to the Company during the twelve (12) month period immediately preceding the event giving rise to the claim. This limitation applies regardless of the form of action, whether in contract, tort, strict liability, or otherwise.

The Client acknowledges that no security solution can guarantee absolute protection against all threats, and the Company does not warrant that the Services will prevent all security incidents, data breaches, or unauthorized access. The Company's Services are designed to significantly reduce risk, not eliminate it entirely.

Warranties & Disclaimers

The Company warrants that all Services will be performed in a professional and workmanlike manner consistent with generally accepted industry standards for cybersecurity services. Except for the foregoing express warranty, the Services are provided "AS IS" and the Company disclaims all other warranties, express or implied, including but not limited to implied warranties of merchantability, fitness for a particular purpose, and non-infringement.

Indemnification

The Client agrees to indemnify, defend, and hold harmless Dassell Network Resilience, its officers, directors, employees, agents, and affiliates from and against all claims, damages, losses, costs, and expenses (including reasonable attorneys' fees) arising out of or relating to: (a) the Client's breach of these Terms; (b) the Client's failure to implement recommended security measures; (c) unauthorized use of the Company's tools or Deliverables; or (d) the Client's violation of applicable laws or regulations.

Term & Termination

The term of the engagement shall be as specified in the applicable Service Agreement. Either party may terminate the Service Agreement by providing sixty (60) days' written notice to the other party. Upon termination, the Client shall pay all fees for Services performed through the effective date of termination. The Company shall return or destroy all Client Confidential Information within thirty (30) days of termination, except as required by law or regulation to retain. Sections relating to intellectual property, confidentiality, limitation of liability, indemnification, and dispute resolution shall survive termination.

Data Protection & Security

The Company will handle all Client data in accordance with applicable data protection laws and regulations. The Company maintains administrative, technical, and physical safeguards designed to protect Client data from unauthorized access, use, or disclosure. In the event of a security incident affecting Client data in the Company's possession, the Company will notify the Client within seventy-two (72) hours of discovery and cooperate in investigating and remediating the incident.

Force Majeure

Neither party shall be liable for any failure or delay in performing its obligations under these Terms to the extent that such failure or delay results from circumstances beyond the party's reasonable control, including but not limited to acts of God, natural disasters, war, terrorism, government actions, epidemics, pandemics, power failures, internet outages, or cyberattacks on the Company's own infrastructure.

Dispute Resolution

Any dispute, claim, or controversy arising out of or relating to these Terms or the Services shall first be subject to good faith negotiations between senior representatives of both parties. If the dispute cannot be resolved through negotiation within thirty (30) days, it shall be submitted to binding arbitration administered by the American Arbitration Association (AAA) under its Commercial Arbitration Rules. The arbitration shall take place in Buena Vista, Colorado, and the arbitrator's decision shall be final and binding on both parties.

Governing Law

These Terms shall be governed by and construed in accordance with the laws of the State of Colorado, without regard to its conflict of laws principles. Any legal action not subject to arbitration shall be brought exclusively in the state or federal courts located in Chaffee County, Colorado.

Modifications

The Company reserves the right to modify these Terms at any time. Material changes will be communicated to the Client in writing at least thirty (30) days prior to becoming effective. Continued use of the Services after such modifications constitute acceptance of the updated Terms.

Severability

If any provision of these Terms is held to be invalid, illegal, or unenforceable, the remaining provisions shall continue in full force and effect. The invalid provision shall be modified to the minimum extent necessary to make it valid and enforceable while preserving its original intent.

Entire Agreement

These Terms, together with any applicable Service Agreement, constitute the entire agreement between the parties with respect to the subject matter hereof and supersede all prior and contemporaneous understandings, agreements, representations, and warranties, both written and oral.