Legal
Table of Contents
These Terms of Service govern the relationship between INVERSSYS SRL, incorporated under the laws of the Dominican Republic, with registered address at Av. Maximo Gomez No. 29, Santo Domingo, Dominican Republic ("INVERSSYS", "we", "us"), and the individual or legal entity using our services ("Client", "you").
These Terms apply to all managed security services, penetration testing, incident response, consulting, and any other services delivered by INVERSSYS, whether governed by a Master Service Agreement, Statement of Work, service proposal, or direct agreement.
Where a signed agreement conflicts with these Terms, the signed agreement prevails to the extent of the inconsistency.
INVERSSYS provides managed cybersecurity services including, but not limited to:
Services are offered under three tiers: Essential Security, MDR, and Enterprise SOC. INVERSSYS reserves the right to modify plan features with 30 days' written notice.
Penetration testing, incident response, and forensic services require a signed Statement of Work prior to commencement. No engagement begins without written client authorization and, where legally required, a signed Rules of Engagement document.
To enable effective service delivery, the Client agrees to:
Essential Security clients receive business-hours monitoring (Monday through Friday, 08:00 to 18:00 AST) with email notification for all alerts.
INVERSSYS targets 99.5% platform availability per calendar month. Scheduled maintenance windows are communicated at least 48 hours in advance and are excluded from availability calculations.
INVERSSYS shall not be liable for disruptions caused by circumstances beyond its reasonable control, including natural disasters, telecommunications failures, power outages, cyberattacks on INVERSSYS infrastructure, or government actions.
Service fees are denominated in United States Dollars (USD) based on the number of managed devices and services included in the selected plan. INVERSSYS reserves the right to adjust pricing on 60 days' written notice.
Managed service fees are invoiced monthly in advance. Penetration testing and incident response engagements are typically invoiced 50% at engagement start and 50% upon delivery of the final report.
Payment is due within 15 calendar days of invoice date. Overdue balances accrue interest at 1.5% per month or the maximum permitted by applicable law, whichever is lower.
Clients must notify INVERSSYS of any disputed invoice within 7 calendar days of receipt. Disputes do not relieve the obligation to pay undisputed amounts by the due date.
All fees are exclusive of applicable taxes. Clients are responsible for all taxes and duties imposed by applicable tax authorities on services received.
INVERSSYS may suspend service with 5 business days' notice if any undisputed invoice remains unpaid for more than 30 days beyond the due date.
In the course of providing services, INVERSSYS may process Client data including log data, network traffic metadata, endpoint telemetry, and event records. This data is used solely for delivering contracted services and is not sold to or shared with third parties except as required by law or with the Client's written consent.
Security event data is retained for a minimum of 90 days and up to 12 months depending on the service tier. Upon termination, INVERSSYS will securely delete or return Client data within 30 days, subject to any legal hold requirements.
Both parties agree to maintain confidentiality of the other party's Confidential Information and to use it only for performing obligations under these Terms. Confidentiality obligations survive termination for three (3) years.
INVERSSYS processes data in accordance with applicable data protection laws, including the Dominican Republic's Law No. 172-13 on Personal Data Protection. Where Client data includes personal data of EU residents, the parties may execute a Data Processing Agreement in accordance with GDPR requirements.
All methodologies, tools, playbooks, detection rules, and software developed by INVERSSYS remain INVERSSYS's exclusive property. Delivery of services does not transfer any INVERSSYS intellectual property beyond what is necessary to benefit from contracted services.
Reports and documentation created specifically for a Client engagement are the property of the Client upon full payment. INVERSSYS retains the right to use anonymized, aggregated insights for internal research and threat intelligence.
The Client grants INVERSSYS a limited, non-exclusive license to access, monitor, and analyze Client systems solely for delivering contracted services during the engagement term.
Incident Response services are provided as a separate, time-and-materials engagement unless a retainer has been pre-purchased. The following apply to all IR engagements:
INVERSSYS's total cumulative liability for any claims arising from these Terms shall not exceed the total fees paid by the Client in the three (3) months immediately preceding the event giving rise to the claim.
In no event shall INVERSSYS be liable for:
INVERSSYS warrants that: (a) it has legal authority to enter into these Terms; (b) services will be performed in a professional manner consistent with industry standards; and (c) personnel assigned to Client engagements possess appropriate qualifications.
Except as expressly stated, INVERSSYS provides services on an "as-is" and "as-available" basis and disclaims all implied warranties including merchantability, fitness for a particular purpose, and non-infringement.
INVERSSYS does not warrant that services will be uninterrupted or error-free, that all threats will be detected, or that any specific incident will be prevented.
Managed service agreements commence on the date specified in the applicable SOW and continue for the initial term therein (typically twelve months). Agreements automatically renew for successive twelve-month periods unless either party provides written notice of non-renewal at least 60 days before the renewal date.
Either party may terminate with 60 days' written notice. The Client remains obligated to pay for all services rendered up to the effective termination date. Pre-paid fees for periods after termination are refunded on a pro-rata basis.
Either party may terminate immediately if the other party: (a) materially breaches these Terms and fails to cure within 15 days of written notice; (b) becomes insolvent or files for bankruptcy; or (c) engages in fraudulent or illegal conduct.
Upon termination, all system access licenses terminate, INVERSSYS ceases monitoring, and Client data is handled per Section 6. Sections 6, 7, 9, 10, and 12 survive termination.
These Terms are governed by the laws of the Dominican Republic, without regard to conflict of law provisions.
Disputes shall first be addressed through good-faith negotiation for 30 days following written notice. If unresolved, disputes shall be submitted to binding arbitration in Santo Domingo, Dominican Republic, before a single arbitrator appointed by mutual agreement or by the Chamber of Commerce and Production of Santo Domingo.
Either party may seek injunctive or equitable relief from a court of competent jurisdiction in Santo Domingo to prevent irreparable harm without first exhausting arbitration.
INVERSSYS may amend these Terms at any time. Material changes are communicated to active Clients with at least 30 days' notice. Continued use of services after the effective date constitutes acceptance.
These Terms, together with any applicable SOW, MSA, or service proposal, constitute the entire agreement between the parties and supersede all prior agreements relating to the subject matter hereof.
For questions about these Terms or to exercise any rights described herein:
Legal notices must be sent in writing via certified mail or email with read receipt and are effective upon confirmed receipt.