Last updated: February 25, 2026
Please read these Terms of Service ("Terms") carefully before using the website, reporting platform, and services provided by Yappo Security LLC ("Yappo", "we", "us", or "our"). By accessing or using our website, platform, or services, you agree to be bound by these Terms. If you do not agree, please do not use our website, platform, or services.
These Terms constitute a legally binding agreement between you (or the company or organization you represent, the "Client") and Yappo Security LLC. These Terms apply to the use of our website, reporting platform, and related offerings. Professional services provided by Yappo, including penetration testing and related security assessments, are further governed by the applicable Statement of Work ("SOW"), proposal, or service agreement executed between Yappo and the Client. In the event of any conflict between these Terms and an executed SOW, the SOW will control for the applicable engagement. Your use of our website, platform, or services also signifies your acceptance of our Privacy Policy, which is incorporated herein by reference.
Yappo provides cybersecurity services including, but not limited to, penetration testing, recurring security assessments, attack surface visibility services, compliance-oriented assessments, remediation verification, and access to a reporting platform for viewing findings, evidence, and status updates. The specific scope, methodology, deliverables, assumptions, and timeline for each engagement are defined in a separate SOW or service agreement executed between Yappo and the Client. Unless expressly stated otherwise in writing, Yappo's services are point-in-time or periodic professional security assessment services and do not constitute continuous monitoring, managed detection and response, incident response, or security operations center services.
The Client represents and warrants that it has full legal authority to authorize Yappo to perform security testing on all systems, networks, applications, and assets identified in the agreed scope. Yappo will only conduct testing activities that are explicitly authorized in writing by the Client. Testing performed outside the agreed scope is strictly prohibited unless the scope is updated and approved in writing by both parties.
The Client is responsible for ensuring that all necessary permissions and approvals have been obtained from any relevant third parties, including hosting providers, cloud platforms, SaaS vendors, payment processors, upstream providers, or internal stakeholders, before testing begins.
The Client agrees to:
Delays caused by missing access, incomplete information, unavailable personnel, or environment instability may affect the agreed schedule or delivery dates.
You agree not to use our services or platform to:
Both parties agree to treat all non-public information exchanged in connection with an engagement as confidential. Yappo will not disclose findings, reports, evidence, or Client data to any third party without the Client's prior written consent, except to personnel, contractors, or advisors with a need to know and who are bound by confidentiality obligations, or as required by applicable law. Confidentiality obligations survive the termination of any engagement or these Terms.
All methodologies, tools, techniques, templates, and proprietary processes used by Yappo to perform services remain the exclusive intellectual property of Yappo Security LLC. Upon full payment of the applicable fees, deliverables such as final reports and remediation recommendations are licensed to the Client for its internal business, security, audit, compliance, and risk management purposes. The Client may also share such deliverables with its employees, contractors, advisors, auditors, insurers, regulators, investors, or customers with a legitimate business need to review them, provided such disclosure is reasonably related to the Client's business or compliance activities. The Client may not resell, materially alter, or misrepresent Yappo's deliverables without Yappo's prior written consent.
To the fullest extent permitted by applicable law, Yappo's total cumulative liability arising out of or related to these Terms or any engagement shall not exceed the total fees paid or payable by the Client for the specific service or engagement giving rise to the claim.
In no event shall Yappo be liable for any indirect, incidental, special, punitive, or consequential damages, including loss of profits, data, revenue, or business opportunities, even if advised of the possibility of such damages.
The Client agrees to indemnify, defend, and hold harmless Yappo Security LLC and its officers, directors, employees, contractors, and agents from and against any claims, liabilities, damages, losses, and expenses (including reasonable legal fees) arising out of or in any way connected with: (a) the Client's breach of these Terms or the applicable SOW; (b) the Client's failure to obtain proper authorization for testing; or (c) the Client's violation of any applicable law or regulation.
Our website, platform, and services are provided "as is" and "as available." Yappo does not warrant that our services will identify all vulnerabilities present in a given system, or that any findings will be complete, exhaustive, or error-free. Security assessments represent a point-in-time evaluation only and do not guarantee that the assessed systems are free from vulnerabilities at any future time. The Client acknowledges that changes to code, infrastructure, configurations, dependencies, or user behavior may affect security posture at any time.
Fees, billing terms, payment timing, and any applicable taxes for professional services will be set forth in the applicable SOW, proposal, or invoice. Testing windows and delivery timelines are based on reasonable assumptions regarding access, scope stability, environment readiness, and Client cooperation. If the Client materially changes the scope, delays access, or significantly modifies the environment during the engagement, Yappo may revise the schedule, update pricing, or require an amended SOW.
Either party may terminate an engagement or these Terms upon written notice if the other party materially breaches these Terms and fails to cure such breach within fifteen (15) days of receiving notice. Yappo reserves the right to suspend or terminate services immediately if the Client's use of our services is determined to be unlawful, unauthorized, or poses a risk to third parties or to the integrity of our platform.
Unless otherwise agreed in writing, fees are generally non-refundable once services have been scheduled or started, as Yappo allocates time and resources to the engagement. If you believe an exception should apply, please contact us and we’ll review your request in good faith on a case-by-case basis, including where required by applicable law.
These Terms shall be governed by and construed in accordance with the laws of the State of New Mexico, United States, without regard to its conflict of law provisions. Any disputes arising under these Terms shall be subject to the exclusive jurisdiction of the courts located in Bernalillo County, New Mexico.
We reserve the right to update these Terms at any time. Any material changes will be reflected on this page with an updated "Last updated" date and may also be communicated via email or notice on our website or platform where appropriate. Continued use of our services after any changes constitutes acceptance of the revised Terms.
