Acceptable use, service scope, and client responsibilities.
ThreatForged AI provides specialized, AI-assisted penetration testing and security assessment services tailored for small and mid-sized businesses, credit unions, and community banks. Our services are designed to identify vulnerabilities within specified environments and provide actionable remediation guidance.
Our standard assessments are scoped exclusively to internal Active Directory (AD) environments, unless otherwise explicitly detailed in a separate Statement of Work (SOW) or formal agreement. ThreatForged AI will never execute testing outside of the explicitly defined scope. All potentially disruptive actions require explicit approval gates and authorization prior to execution.
By engaging ThreatForged AI, the Client represents and warrants that they own, operate, or possess explicit legal authorization to order penetration testing on the target systems, networks, and infrastructure. The Client agrees to:
ThreatForged AI handles all Client information with the highest degree of confidentiality. Any vulnerability data, network topology, user information, or sensitive corporate data discovered during an assessment will be securely processed, strictly limited to authorized personnel, and never disclosed to third parties unless required by law.
Report Ownership: Upon full payment for the assessment, the Client retains full ownership of the final executive and technical penetration testing reports delivered by ThreatForged AI.
Tool and Process IP: ThreatForged AI retains all rights, title, and interest in our proprietary testing methodologies, artificial intelligence systems, scripts, software, and tools used to execute the assessments.
Penetration testing inherently involves interacting with systems in ways that mimic real-world cyberattacks. While ThreatForged AI uses extensive precautions and approval gates to ensure testing is safe for live environments, the Client acknowledges that testing carries inherent risks. To the maximum extent permitted by law, ThreatForged AI shall not be liable for any indirect, incidental, special, consequential, or punitive damages, including but not limited to operational downtime, data loss, or loss of profits arising out of the performance of these services.
These Terms of Service and any separate agreements whereby we provide you services shall be governed by and construed in accordance with the laws of the State of Texas, without regard to its conflict of law provisions.