Terms of Service

These Terms of Service explain the basis on which SafeSide Cyber provides its services. They apply when you engage us for a Healthcheck, a Cyber Risk Improvement engagement, an Awareness Workshop, or any related consultancy work.

For specific engagements we'll also issue a short proposal or statement of work that confirms scope, deliverables, and fees. Where anything in the proposal differs from these terms, the proposal prevails for that engagement.

About these terms

"We", "us" and "our" refer to Magna Genus IT Ltd trading as SafeSide Cyber, a company registered in England and Wales (Company Registration No. 10500664).

"You" and "your" refer to the business or individual who engages us for services.

Our services

SafeSide Cyber offers three core services:

• Cyber Security Healthcheck — a guided online assessment, a written report, and a one-hour consultation.
• Cyber Risk Improvement — a phased programme of work to address findings from the Healthcheck, scoped per engagement.
• Cyber Awareness Workshop — a half-day in-person workshop for up to 15 staff.

Full details of each service, and current pricing, are set out on our Services page. We may update the scope or pricing of services from time to time; the terms in effect at the time of your engagement will apply to that engagement.

Engaging us

An engagement begins when:

1. You request a service via our contact form, email, or phone, or accept a proposal we have sent you; and
2. We confirm we are able to take on the work and (where applicable) have issued you with an access link, proposal, or statement of work.

We reserve the right to decline an engagement at our discretion — for example, where we believe there is a conflict of interest or where the work falls outside our expertise. If we decline, you will not be charged.

Fees and payment

Fees for our services are as set out on our website or in your proposal. All fees are quoted in pounds sterling and exclude VAT.

Healthcheck and Workshop

Fees for the Healthcheck and Awareness Workshop are invoiced on confirmation of the engagement. Payment terms are 30 days from the date of invoice.

Cyber Risk Improvement engagements

Fees for Cyber Risk Improvement work are scoped per engagement and set out in a proposal. Depending on scope, we may invoice on completion, in instalments tied to milestones, or monthly in arrears. Standard payment terms are 30 days from invoice unless agreed otherwise.

Late payment

If an invoice is not paid within 30 days, we reserve the right to suspend further work and charge interest on overdue amounts at the statutory rate under the Late Payment of Commercial Debts (Interest) Act 1998.

Refunds and cancellation

Healthcheck

• If you have requested a Healthcheck but have not yet used your access link, you may cancel at any time and receive a full refund.
• Once you have started the assessment, the Healthcheck is non-refundable, as the service includes consultant time spent reviewing your submission.

Awareness Workshop

• You may reschedule a booked workshop free of charge if you give us at least 7 days' notice.
• Cancellations made with less than 7 days' notice are subject to a 50% cancellation fee to cover preparation and reserved consultant time.
• We reserve the right to reschedule a workshop in the event of illness or other circumstances beyond our control. We'll always offer the earliest practical alternative date.

Cyber Risk Improvement engagements

Cancellation terms for longer engagements are set out in the relevant proposal or statement of work. Generally, either party may terminate on 14 days' written notice, with fees due for any work completed up to the date of termination.

Your responsibilities

To get the most from our services, you agree to:

• Provide accurate and complete information about your business and its systems.
• Give us reasonable access to the people, information, and (where applicable) systems we need to deliver the agreed work.
• Respond to requests for information or sign-off in a timely manner.
• Ensure you have authority to engage us and to share the information you provide.
• Tell us promptly if you become aware of any actual or suspected security incident relevant to our work.

Our responsibilities

We commit to:

• Provide our services with reasonable skill and care, in line with current good practice in cyber security consultancy.
• Be honest about what we can and cannot do, and recommend other specialists where appropriate.
• Protect the confidentiality of your information (see below).
• Keep you informed of progress on any engagement, and flag risks or scope changes early.

Cyber security is inherently uncertain. We don't guarantee that following our recommendations will prevent every possible incident — no consultant honestly can. We aim to materially reduce your likelihood and impact, and to help you make informed decisions about risk.

Confidentiality

Information you share with us during an engagement is treated as confidential. We will not disclose it to any third party except:

• To our sub-processors, in line with our Privacy Policy;
• Where required by law (e.g. a court order or regulatory request);
• With your prior written permission (e.g. for a case study or testimonial).

We may use anonymised, aggregated insights from our engagements (for example, "30% of SMEs we assess have weak backup arrangements") for general industry commentary or improving our services. This will never identify you or your business.

Intellectual property

• Your information remains your property. Sharing it with us does not transfer ownership.
• Deliverables we produce for you (e.g. your Healthcheck report, your improvement roadmap) belong to you once paid for, and you may use them freely within your organisation.
• Our underlying methodologies, templates, and frameworks (including the SafeSide Cyber Healthcheck assessment, our scoring model, and our roadmap templates) remain our intellectual property. You may use them as part of the deliverables we provide, but you may not resell, re-license, or publish them.
• Third-party content we reference (e.g. published standards, vendor documentation) remains the property of its original owners.

Liability

Nothing in these terms limits our liability for death or personal injury caused by negligence, for fraud or fraudulent misrepresentation, or for anything else that cannot be limited or excluded under English law.

Subject to that, and to the maximum extent permitted by law:

• Our total liability to you for any claim arising out of or in connection with an engagement is limited to the fees you have paid us for that engagement.
• We are not liable for indirect or consequential losses, loss of profits, loss of revenue, loss of business, loss of goodwill, or loss or corruption of data (except where directly caused by our breach of these terms).
• We are not liable for any failure or delay in performing our obligations where this is caused by circumstances beyond our reasonable control (including illness, network outages, or acts of third parties).

You are responsible for taking reasonable steps to mitigate any loss you suffer, including maintaining your own backups of any information you share with us.

Termination

Either party may terminate an engagement at any time by giving the other 14 days' written notice. On termination:

• You remain liable for fees for any work completed up to the date of termination.
• We will return or delete your confidential information, as you direct.
• Any rights and obligations that by their nature continue (e.g. confidentiality, liability) survive termination.

We may also suspend or terminate an engagement immediately if you materially breach these terms (for example, by failing to pay an invoice 30 days after a reminder).

Changes to these terms

We may update these terms from time to time — for example, to reflect changes in our services or in UK law. The terms in effect when you engage us will apply to that engagement; we'll update the "Last updated" date at the top of this page when we make changes.

Governing law and jurisdiction

These terms and any engagement under them are governed by the laws of England and Wales. Any dispute arising in connection with them is subject to the exclusive jurisdiction of the courts of England and Wales.

Contact