Last Updated: June 2026
By applying for and participating in the Free Web Application Vulnerability Assessment and Penetration Testing (VAPT) Program ("Program"), you agree to the following Terms and Conditions.

1. Program Overview
The Free Web Application VAPT Program provides a complimentary security assessment for one (1) eligible web application domain for a limited period. The assessment includes a combination of automated and manual security testing techniques designed to identify potential vulnerabilities and security weaknesses.
Participation in this Program is subject to eligibility verification, scope approval, and resource availability.

2. Scope of Service
The free assessment includes:

• Security testing for one (1) web application domain.
• Automated vulnerability scanning.
• Manual penetration testing.
• OWASP Top 10 security assessment.
• Authentication and authorization testing.
• Session management review.
• Input validation testing.
• Security misconfiguration assessment.
• Basic business logic review.
• Identification of common web application vulnerabilities.

The scope of testing may be adjusted at our sole discretion based on application complexity, accessibility, and technical limitations.

3. Report Delivery Timeline
Upon successful completion of the assessment, the final VAPT report will typically be delivered within 7 to 10 working days.
Delivery timelines may vary due to:

• Scope changes.
• Application complexity.
• Accessibility issues.
• Delays in required information from the customer.
• Unforeseen technical circumstances.

Report delivery dates are estimates only and are not guaranteed.

4. Authorization Requirement
The customer must be the legal owner of the domain or possess explicit written authorization from the owner permitting security testing activities.
By submitting an application, the customer confirms that:

• They he fulavl authority to authorize testing.
• Testing activities will not violate any contractual or legal obligations.
• All provided information is accurate and complete.

We reserve the right to reject any application that does not meet authorization requirements.

5. Customer Responsibilities
The customer is solely responsible for:

• Maintaining backups of all systems, databases, applications, and data.
• Monitoring application availability during testing.
• Ensuring business continuity during the assessment period.
• Protecting sensitive, confidential, or regulated information.
• Obtaining internal approvals before testing begins.

The customer acknowledges that security testing may generate application logs, alerts, or temporary performance impacts.

6. Data Protection and Liability
All responsibility for data protection, backup management, disaster recovery, and information security remains solely with the customer.
The customer agrees that:

• They are responsible for securing all data before, during, and after testing.
• They have adequate backups in place.
• They accept all risks associated with testing activities.

We shall not be liable for:

• Data loss.
• Data corruption.
• System downtime.
• Service interruptions.
• Business losses.
• Revenue losses.
• Third-party claims.
• Consequential or incidental damages arising from participation in the Program.

7. No Warranty and No Guarantee
The Free Web Application VAPT Program is provided on an "AS IS" and "AS AVAILABLE" basis.
While reasonable efforts are made to identify vulnerabilities, the customer acknowledges that:

• No security assessment can identify all vulnerabilities.
• New vulnerabilities may emerge after testing.
• Certain vulnerabilities may remain undiscovered.
• Security testing represents a point-in-time assessment only.

We do not guarantee:

• Complete vulnerability detection.
• Complete application security.
• Protection against future attacks.
• Detection of all security weaknesses.
• Continuous security monitoring.

Participation in this Program does not constitute a certification that the application is secure.

8. Limitation of Liability
To the maximum extent permitted by law, our total liability arising from or related to the Program shall be limited to zero monetary compensation, as the services are provided free of charge.
Under no circumstances shall we be liable for:

• Direct damages.
• Indirect damages.
• Special damages.
• Punitive damages.
• Loss of business opportunities.
• Loss of profits.
• Loss of data.
• Reputation damage.
• Security incidents occurring before or after testing.

9. Findings and Recommendations
The report delivered under this Program is intended for informational purposes only.
Recommendations provided:

• Are based on observations during the assessment period.
• May require independent validation.
• Do not constitute legal, regulatory, or compliance advice.
• Should be reviewed and implemented by qualified personnel.

Implementation of remediation recommendations remains the sole responsibility of the customer.

10. Confidentiality
Information obtained during the assessment will be treated as confidential and used solely for the purpose of delivering the security assessment.
However, the customer agrees that anonymized statistical information may be used for internal research, service improvement, and marketing purposes without revealing identifiable information.

11. Program Availability
This Program is offered on a limited-availability basis.
We reserve the right to:

• Accept or reject applications.
• Modify assessment scope.
• Suspend or discontinue the Program.
• Change eligibility criteria without prior notice.

Submission of an application does not guarantee acceptance into the Program.

10. Confidentiality
By submitting a request for the Free Web Application VAPT Program, the customer confirms that they have read, understood, and agreed to these Terms and Conditions in their entirety.