HomeCyber EssentialsCE PlusArticlesFAQPricingAboutContact
Free Consultation

Terms of Service

Terms and conditions for our Cyber Essentials certification services

Last updated: January 2025

Introduction

These Terms of Service ("Terms") govern your use of our Cyber Essentials certification services provided by Net Sec Group Ltd ("we", "us", or "our") through the cyberessentialsplus.com website. By purchasing or using our services, you agree to these Terms.

Definitions

  • "Client" or "you" refers to the organisation purchasing certification services
  • "Services" refers to Cyber Essentials and Cyber Essentials Plus certification services
  • "Assessment" refers to the certification evaluation process
  • "Certificate" refers to the official Cyber Essentials certification document
  • "Scope" refers to the systems and processes covered by the certification

Service Description

Cyber Essentials (CE)

Our CE service includes:

  • Self-assessment questionnaire completion guidance
  • Expert assessor review of responses
  • Feedback and remediation guidance
  • Certificate issuance upon successful completion
  • Unlimited reassessment attempts within the service period

Cyber Essentials Plus (CE+)

Our CE+ service includes all CE benefits plus:

  • External vulnerability scanning
  • Internal network assessment
  • Device sampling and configuration testing
  • Independent technical verification
  • Detailed technical reporting

Service Terms

Eligibility

Our services are available to:

  • Organisations of any size seeking Cyber Essentials certification
  • UK and international organisations (subject to IASME approval)
  • Entities with legitimate business purposes for certification

Service Period

  • Assessment Period: 6 months from purchase to complete initial assessment
  • Certificate Validity: 12 months from issue date
  • Support Period: Ongoing support during assessment period and after certification

Scope Definition

You must clearly define the scope of certification, which:

  • Must accurately represent the systems and processes to be certified
  • Cannot be changed after assessment begins without additional fees
  • Must align with IASME scope requirements
  • Will be validated by our assessors before proceeding

Client Responsibilities

Information Provision

You must provide:

  • Accurate and complete information in all assessments
  • Timely responses to assessor queries
  • Evidence to support assessment responses
  • Access to systems and personnel for CE+ testing
  • Notification of any material changes to scope

Compliance Maintenance

You are responsible for:

  • Implementing and maintaining required security controls
  • Addressing any issues identified during assessment
  • Ensuring ongoing compliance throughout certificate validity
  • Notifying us of significant security incidents or changes

Our Responsibilities

Service Delivery

We will:

  • Provide expert guidance throughout the certification process
  • Conduct thorough and fair assessments
  • Deliver services within stated timeframes
  • Issue certificates upon successful completion
  • Maintain confidentiality of your information

Quality Standards

Our services meet:

  • IASME certification body requirements
  • NCSC guidelines and standards
  • Professional assessment practices
  • Data protection and security standards

Payment Terms

Pricing and Fees

  • All prices are stated plus VAT at current rates
  • Pricing is based on organisation size and certification type
  • Additional fees may apply for scope changes or complex environments
  • Custom quotes provided for large organisations (250+ employees)

Payment

  • Full payment required before assessment begins
  • Payment accepted via secure online payment systems
  • No refunds after assessment process has commenced
  • Additional services charged separately

Reassessment and Support

Unlimited Reassessment

If you do not pass on the first attempt:

  • We provide detailed feedback on issues identified
  • You have 2 working days to address issues and resubmit
  • Unlimited reassessment attempts within the service period
  • No additional fees for reassessment

Support Services

  • Email and phone support during business hours
  • Guidance on remediation actions
  • Assistance with scope definition and questionnaire completion
  • Post-certification compliance guidance

Intellectual Property

Our IP Rights

  • We retain rights to our methodologies, templates, and tools
  • Our assessment reports and documentation remain our property
  • You may not reproduce our materials without permission

Your IP Rights

  • You retain ownership of your business information and data
  • We may use anonymised data for service improvement
  • Your certificate remains your property upon issuance

Confidentiality

We will:

  • Maintain strict confidentiality of your information
  • Use information only for certification purposes
  • Implement appropriate security measures
  • Not disclose information to unauthorised parties (except as required by IASME or law)

Liability and Limitations

Service Limitations

  • Our assessment is based on information provided by you
  • Certification does not guarantee absolute security
  • We cannot control external factors affecting your systems
  • Compliance maintenance is your ongoing responsibility

Liability Limits

Our liability is limited to:

  • The fees paid for the specific service
  • Direct damages only (no consequential or indirect damages)
  • Limitations permitted under applicable law

Termination

Termination by You

  • You may terminate before assessment begins for a full refund
  • No refunds after assessment process has commenced
  • You must notify us in writing

Termination by Us

We may terminate if:

  • You provide false or misleading information
  • You fail to cooperate with the assessment process
  • You breach these Terms
  • Legal or regulatory requirements prevent service delivery

Force Majeure

We are not liable for delays or failures due to circumstances beyond our reasonable control, including but not limited to natural disasters, government actions, internet outages, or other force majeure events.

Governing Law

These Terms are governed by the laws of England and Wales. Any disputes will be subject to the exclusive jurisdiction of the English courts.

Changes to Terms

We may update these Terms periodically. Significant changes will be communicated via email or website notice. Continued use of our services after changes constitutes acceptance.

Severability

If any provision of these Terms is found invalid or unenforceable, the remaining provisions will continue in full force and effect.

Contact Information

For questions about these Terms, please contact us:

Net Sec Group Ltd

For any questions regarding these Terms of Service, please use our contact form to get in touch with our legal department.

Contact Us

Net Sec Group Ltd
Legal Department
United Kingdom

Agreement

By purchasing or using our services, you acknowledge that you have read, understood, and agree to be bound by these Terms of Service.

Privacy PolicyContact Us

Ready to get certified?

Get CECall Us