// Legal

Terms of Service

Last updated: June 2026 · NextLevelSec · Penang, Malaysia

[!] By accessing or using NextLevelSec services, you agree to be bound by these Terms. Read carefully before proceeding.

Acceptance of Terms

These Terms of Service ("Terms") govern your access to and use of the services, software, and website provided by NextLevelSec Inc. ("NextLevelSec", "Company"). By engaging our services or using our platform, you agree to these Terms.

Services Description

NextLevelSec provides cybersecurity services including but not limited to:

Penetration testing and vulnerability assessments
Security Operations Center (SOC) monitoring
Cloud security audits and configuration review
Compliance consulting (SOC 2, ISO 27001, GDPR, HIPAA)
Incident response and digital forensics
Security awareness training

Specific service terms, scope, and deliverables are defined in individual Statements of Work or Service Agreements executed between NextLevelSec and each client.

Authorized Use

All penetration testing, vulnerability scanning, and offensive security activities performed by NextLevelSec are carried out exclusively under written authorization from the asset owner. NextLevelSec conducts no unauthorized testing under any circumstances.

You represent that you have the legal authority to authorize security assessments of the systems and data you submit to us. Misrepresentation of authorization is grounds for immediate termination and may result in legal liability.

Confidentiality

NextLevelSec treats all client data, findings, and engagement details as strictly confidential. We will not disclose your security posture, vulnerabilities, or assessment results to any third party without your written consent, except as required by law.

Clients are expected to handle NextLevelSec deliverables (reports, findings, credentials) with equivalent care. Disclosure of security findings to unauthorized parties may increase your risk exposure.

Payment & Billing

Subscription services are billed monthly or annually as agreed
Project-based engagements require 50% upfront, remainder on delivery
All fees are in USD unless otherwise stated
Overdue payments (30+ days) may result in service suspension
Refunds are available within 7 days of onboarding for subscription plans, subject to review

Limitation of Liability

NextLevelSec's total liability for any claim arising from services shall not exceed the fees paid in the 12 months preceding the claim. We are not liable for indirect, incidental, consequential, or punitive damages.

Security is a shared responsibility. NextLevelSec provides assessments and monitoring; we cannot guarantee that all vulnerabilities will be discovered or that no breach will occur.

Intellectual Property

Custom tools, methodologies, and proprietary processes developed by NextLevelSec remain our intellectual property. Client deliverables (reports, policies, documentation) created specifically for your engagement are licensed to you for internal business use.

Termination

Either party may terminate subscription services with 30 days written notice. NextLevelSec may terminate services immediately for material breach, non-payment, or misuse. Upon termination, your data will be purged within 90 days per our data retention policy.

Governing Law

These Terms are governed by the laws of Malaysia. NextLevelSec is headquartered in Penang, Malaysia. Disputes shall be resolved in the courts of Malaysia unless otherwise agreed in writing by both parties.

Contact

Legal inquiries: legal@nextlevelsec.io
General: hello@nextlevelsec.io