Terms of Service

These Terms of Service ("Terms") govern your use of the OpasSecure website (opassecure.com) and any services offered through it. By accessing the website or engaging OpasSecure services, you agree to these Terms.

Professional services engagements are governed by the master services agreement ("MSA") and statement of work ("SOW") executed between your organisation and OpasSecure Infotech Solutions Ltd. In the event of conflict, the signed MSA prevails.

You may use this website for lawful purposes only. You agree not to attempt unauthorised access to any system associated with this website; probe or scan OpasSecure systems without a signed written authorisation; transmit malware or disruptive content; use automated tools to scrape content beyond what is permitted for search engines; impersonate OpasSecure, its employees, or its clients; or use the website in violation of applicable law.

All content on this website - including text, graphics, logos, research, and software - is the property of OpasSecure Infotech Solutions Ltd or its licensors, protected by Kenyan and international intellectual property law.

You may share links to our content and quote brief excerpts with attribution. You may not reproduce, republish, or commercially exploit our content without prior written permission. Research published under the OpasLabs name may have separate licensing terms stated at point of publication.

This website and its content are provided "as is" without warranty of any kind. To the maximum extent permitted by Kenyan law, OpasSecure shall not be liable for any indirect, incidental, special, or consequential damages arising from your use of this website or reliance on its content.

Nothing in these Terms limits liability for death or personal injury caused by negligence, or for fraud.

OpasSecure operates an active bug bounty program for our public-facing infrastructure and products. If you identify a security vulnerability: do not exploit it beyond what is necessary to demonstrate its existence; do not access or modify data you are not authorised to access; report findings to security@opassecure.com with a clear description and reproduction steps; allow us reasonable time to remediate before public disclosure.

Good-faith security research reported through proper channels will not result in legal action. This program does not authorise testing against client systems, partner systems, or infrastructure not explicitly listed in our bug bounty scope.

This website may link to external websites or reference third-party products. OpasSecure does not control or endorse third-party sites. Your use of third-party services is governed by their own terms.

Our collection and use of personal data is governed by our Privacy Policy, which forms part of these Terms.

These Terms are governed by the laws of Kenya. Any dispute arising from these Terms shall be subject to the exclusive jurisdiction of the courts of Kenya.

We may update these Terms from time to time. The version date is shown below. Continued use of the website after changes are posted constitutes acceptance of the revised Terms.

For questions about these Terms: legal@opassecure.com

OpasSecure Infotech Solutions Ltd, Westlands, Nairobi, Kenya.