Terms and Conditions

This website is operated for Draig Stack Cyber Security, a product/service brand of Draig Stack Limited. By using this website, contacting us, or requesting information about our services, you agree to use the website lawfully and responsibly.

For questions about these terms, contact cyber@draigstack.com.

The content on this website is provided for general business information. It describes the types of cyber security services we may offer, including cyber security surveys, email protection, website security checks, app and API checks, device and network reviews, backup reviews, cyber risk reports and monthly protection services.

Website content is not a guarantee that a particular service is suitable for every business, and it should not be treated as legal, regulatory, insurance, financial or formal compliance advice.

Any cyber security service will be based on the scope agreed with you. This may be set out in an email, quote, proposal, statement of work, service agreement, invoice or other written confirmation.

The exact scope, price, timescale, deliverables and limitations of a service will depend on the business, systems, access provided, risk level and agreed work.

To help us deliver services properly, customers are responsible for:

• ●Providing accurate, complete and up-to-date information.
• ●Confirming that they have authority to request reviews, surveys or checks on the relevant systems.
• ●Providing safe and lawful access where access is required.
• ●Not asking us to access systems, accounts, devices, networks or data without proper permission.
• ●Making decisions about whether to accept, delay or reject recommendations.
• ●Maintaining appropriate insurance, compliance processes, backups, access controls and business continuity arrangements.

Draig Stack Cyber Security only performs checks, reviews, investigations or testing where permission has been provided by an authorised person. We do not carry out unauthorised access, hacking, disruption, exploitation or illegal activity.

If a service includes technical testing, the permitted scope, systems, timing and limits must be agreed before work begins.

Cyber security reduces risk but cannot remove all risk. No website, network, device, email system, application, backup process or business system can be guaranteed to be completely secure.

Our services are designed to help identify weaknesses, recommend practical improvements, support safer working practices and reduce cyber risk. They do not guarantee that a business will never experience a cyber incident, data breach, scam, outage, malware infection, ransomware event or other security problem.

Reports, survey results and recommendations are based on the information available at the time of review. Cyber risk changes over time as systems, staff, software, attackers, suppliers and business processes change.

Recommendations may include quick wins, priority fixes, longer-term improvements and optional services. Customers remain responsible for deciding whether and when to implement recommendations unless we are specifically contracted to do so.

Prices may be provided by quote, proposal or written confirmation. Unless otherwise stated, quotes are valid only for the period shown on the quote or for a reasonable period if no expiry date is stated.

Work may require a deposit, staged payment, monthly subscription, fixed fee, day rate, hourly rate or other agreed payment structure. Late or missed payments may result in delayed work, paused services or cancellation of ongoing support.

Monthly services may include recurring reviews, reporting, checks, support, monitoring or advisory work depending on the package agreed. A monthly service does not mean that all systems are continuously monitored unless continuous monitoring is specifically included in the agreed scope.

Monthly packages may be changed, paused or cancelled in line with the agreed service terms.

Incident response support may be provided where available and agreed. We may help investigate, contain, advise, document and recover from incidents such as hacked email accounts, suspicious logins, website issues, scams, malware or data exposure concerns.

Response times are not guaranteed unless a specific service level agreement has been agreed in writing.

Cyber security work may involve third-party platforms such as hosting providers, email providers, domain registrars, DNS providers, payment providers, software vendors, analytics tools, cloud services, backup providers and security tools.

We are not responsible for failures, outages, data loss, pricing changes, terms, security issues or decisions made by third-party providers.

We aim to treat customer business information, technical details, survey responses, risks, system details and security concerns as confidential. Customers should also keep reports, findings and recommendations secure, especially where they describe vulnerabilities, weaknesses or internal business systems.

You must not use this website to:

• ●Attempt unauthorised access to systems, accounts, servers, data or services.
• ●Send malicious code, spam, abusive content, fake enquiries or unlawful material.
• ●Copy, scrape, attack, overload, scan or disrupt the website without permission.
• ●Misrepresent your identity, authority, business or intentions.
• ●Use the website in a way that breaches applicable law or damages Draig Stack Limited, customers, suppliers or users.

Website text, branding, graphics, layouts, service descriptions, designs, logos and other content are owned by or licensed to Draig Stack Limited unless otherwise stated. You may view the website for normal business enquiry purposes, but you must not copy, reproduce, sell, redistribute or misuse content without permission.

Nothing in these terms excludes or limits liability where it would be unlawful to do so. To the fullest extent permitted by law, Draig Stack Limited is not liable for indirect, consequential or business losses arising from use of this website or reliance on general website content.

Any liability relating to paid services will be subject to the specific agreement, scope, quote or contract that applies to those services.

We may update these Terms and Conditions from time to time. The latest version will be published on this page with the updated date shown above.

These terms are governed by the laws of England and Wales. Any disputes will be dealt with by the courts of England and Wales, unless another arrangement is required by law or agreed in writing.