Terms of service

NetTech Cyber is an AI-assisted security audit service. An automated agent analyses the client's exposure surface (OSINT reconnaissance, ports, HTTP headers, SSL/TLS configuration, reputation, leaked credentials and, depending on the plan, API and source code) and generates a risk-prioritised report, which is reviewed by a CEH-certified analyst before delivery.

The service is provided remotely and the report is delivered in PDF format through the portal.

• Vulnerability Assessment — €500: automated analysis of the external surface (OSINT, ports, OWASP, SSL/TLS, leaked credentials). No exploitation. Report reviewed by a CEH analyst.
• Web/App/Platform Pentesting — €1,800: pentest with controlled exploitation and manual validation by a CEH analyst. Requires signed authorisation (Rules of Engagement).
• Infrastructure/Product/Office Pentesting — custom: fully manual professional service (corporate networks, product/IoT, offices). Custom quote and scope; contracted outside the portal.

Prices are in euros and exclude VAT. Level 3 is quoted on a custom basis. Delivery times are counted from payment confirmation and signing of the contractual documents. See details in the pricing section.

Contracting is carried out from the portal, after registration. Before executing any audit technique it is mandatory to:

• Sign the non-disclosure agreement (NDA) and the service contract.
• For plans that include testing of applications or APIs, also sign the pentest contract with express authorisation of the techniques to be used.
• Pay the amount of the contracted plan (advance payment).

NetTech Cyber does not run any test on assets that have not been previously authorised by the client. The system applies an authorisation gate: without the signing of the scope and the corresponding contracts, the audit does not begin.

The client declares and warrants that it owns or has the power of disposal over the assets included in the scope, and that it is entitled to authorise their audit.

• The service does not include deep exploitation or post-exploitation: vulnerabilities are identified and validated in a controlled manner, without compromising the availability or integrity of the systems.
• It does not replace an exhaustive manual audit or a regulatory certification process. For critical internal systems or extensive compliance requirements, a complementary manual audit may be necessary.
• The report reflects the state of the exposure observed at the time of the audit and does not guarantee the complete absence of vulnerabilities.

NetTech Solutions treats the client's information with strict confidentiality in accordance with the signed NDA. The processing of personal data is governed by the privacy policy.

NetTech Solutions' liability is limited, where applicable, to the amount of the contracted plan, except in cases where the regulations require otherwise. These terms are governed by Spanish law and by the conditions set out in the legal notice.