Terms of Service

Last updated: June 24, 2026

1. Introduction

These Terms of Service (“Terms”) govern your use of the security audit services provided by Eter Group LLC(“Company,” “we,” “us,” or “our”), a limited liability company organized under the laws of the State of New Mexico and headquartered at:

Eter Group LLC

1209 Mountain Road Pl NE Ste N

Albuquerque, New Mexico 87110

United States

By purchasing or using any service from jssecurityaudit.com (“Website”), you (“Client”) agree to be bound by these Terms. If you do not agree, do not purchase or use our services.

2. Services

We offer the following security audit and protection services:

One-Time Audits

  • Quick Scan — $1,500. Automated SAST scan, dependency audit, basic OWASP check, PDF report. Estimated turnaround: 48 hours after receiving repository access.
  • Full Audit — $5,000 – $8,000. Manual code review, OWASP Top 10, CSP & XSS analysis, remediation plan. Estimated turnaround: 1 week.
  • Custom / Bundle — $8,000 – $15,000. Architecture review, threat modeling, penetration testing, ongoing support. Turnaround scoped per engagement.

Ongoing Retainers

  • Shield Lite — $799/month. Automated npm audit + Snyk, monthly report, critical CVE alerts, email support (48h SLA).
  • Shield Pro — $1,999/month. Everything in Lite, plus manual SAST review, active CVE monitoring, critical patch support (4h/month), Slack support (24h SLA), executive report.
  • Shield Enterprise — $4,500/month. Everything in Pro, plus 10h/month dedicated dev, quarterly full OWASP audit, 4h SLA, monthly onboarding call, 20% off additional audits.

Retainer plans require a prior Full Audit or Custom engagement to establish a baseline.

3. Payment Terms

We accept credit/debit card (processed securely through Stripe) and wire transfer. By providing payment information, you represent that you are authorized to use the selected payment method and authorize us to charge the applicable fees.

  • Card payments (Stripe): Processed at checkout. Full payment is due at the time of purchase for one-time audits.
  • Wire transfer: Available for Full Audit, Custom engagements, and Retainers upon request. Invoiced with payment terms agreed in the Statement of Work.
  • Retainers: Billed monthly in advance. Auto-renewal applies unless canceled as outlined in Section 5.
  • Prices: All prices are in United States Dollars (USD). Prices do not include applicable taxes, which will be added where required by law.

4. Refund and Cancellation Policy

Quick Scan

  • Full refund if the scan has not yet commenced.
  • No refund after the report has been delivered.
  • Cancellation requests must be sent to hello@jssecurityaudit.com.

Full Audit & Custom Engagement

  • Cancellation terms are defined in the individual Statement of Work (SOW) for each engagement.
  • Deposits (if applicable) are non-refundable after work has commenced.

Retainer Plans

  • You may cancel your retainer at any time with 30 days' written notice to hello@jssecurityaudit.com.
  • Cancellation takes effect at the end of the current billing cycle. No prorated refunds for partial months.

5. Client Responsibilities

To enable us to perform the services, you agree to:

  • Grant us read-only access to the repository specified at checkout by inviting audit@jssecurityaudit.com.
  • Provide accurate and complete information about your application, infrastructure, and security requirements.
  • Not submit passwords, API keys, secrets, or other sensitive credentials through web forms or unencrypted channels.
  • Add our SSH public key (provided in your confirmation email) to your repository for read-only access.
  • Respond promptly to requests for additional information or clarification to avoid delays.

6. Confidentiality

We treat all code, data, and information you share with us as strictly confidential (“Confidential Information”). We agree to:

  • Not disclose, reproduce, or distribute your Confidential Information to any third party without your prior written consent.
  • Use your Confidential Information solely for the purpose of performing the agreed-upon security audit services.
  • Limit access to your Confidential Information to personnel who have a need to know and are bound by equivalent confidentiality obligations.
  • Delete or return all Confidential Information within 90 days of engagement completion, unless otherwise required by law.

This confidentiality obligation does not apply to information that: (a) is or becomes publicly available through no fault of ours; (b) was already known to us without restriction; or (c) is required to be disclosed by law, subpoena, or court order.

7. Intellectual Property

  • Your code remains yours. We do not acquire any ownership rights in your codebase or Confidential Information.
  • Deliverables. Upon full payment, you receive a non-exclusive, perpetual license to use the audit reports, findings, and remediation recommendations we deliver. You may use them internally and share them with your team and auditors.
  • Our methodology. Our scanning tools, scripts, methodologies, and internal processes remain our intellectual property. We do not grant any license to our tools or methodologies.

8. Limitation of Liability

To the maximum extent permitted by law:

  • Our services are provided “as is.” We do not guarantee that our scan will identify all vulnerabilities in your application. Security assessments are point-in-time evaluations and cannot account for future threats or changes to your code.
  • In no event shall the Company be liable for any indirect, incidental, special, consequential, or punitive damages, including but not limited to loss of profits, data, or business opportunity, arising out of or related to these Terms or the services.
  • Our total liability for any claim arising from these Terms or the services is limited to the amount paid by you for the specific service giving rise to the claim.
  • This limitation of liability applies regardless of the legal theory (contract, tort, negligence, strict liability, or otherwise).

9. Service Level and Timelines

  • Estimated turnaround times (e.g., 48 hours for Quick Scan) are good-faith estimates, not guaranteed completion dates.
  • Delays caused by incomplete information, delayed repository access, or Client non-responsiveness may extend timelines.
  • We will communicate any significant delays promptly.

10. Termination

We reserve the right to refuse or terminate service to any Client at our sole discretion, including if you violate these Terms or engage in conduct that we reasonably determine is harmful to our business or other clients. In the event of termination by us for cause, fees paid are non-refundable.

11. Governing Law and Dispute Resolution

These Terms are governed by the laws of the State of New Mexico, United States of America, without regard to its conflict-of-laws principles.

Any dispute arising from these Terms shall first be attempted to be resolved through good-faith negotiation. If the dispute cannot be resolved within 30 days, the parties agree to submit to the exclusive jurisdiction of the state and federal courts located in Bernalillo County, New Mexico.

12. Changes to These Terms

We may update these Terms from time to time. Material changes will be communicated via email to the address you provided at checkout, or by posting a prominent notice on our Website. Continued use of our services after the effective date of any changes constitutes acceptance of the updated Terms.

13. Contact

Eter Group LLC

1209 Mountain Road Pl NE Ste N

Albuquerque, New Mexico 87110

United States

Email: hello@jssecurityaudit.com

Website: jssecurityaudit.com