Terms of service.
This page is a launch skeleton and must be reviewed by founder and counsel before production reliance. It names the required terms so procurement can see the intended contract shape.
Scope of services
BleedWatch Labs provides external breach exposure assurance services described in the signed statement of work. Unless a written agreement says otherwise, services are OSINT-only and limited to the public surface named in the engagement scope.
Authorization
The client represents that it is authorized to request review of the scoped assets. Labs may pause or refuse work if scope ownership, authorization, or legal basis is unclear.
Deliverables and IP
Final deliverables are transferred to the client for internal business, legal, board, insurance, and remediation use. AI-Alliance challenge logs may be co-owned for auditability, with confidentiality obligations preserved.
Confidentiality
Both parties must protect confidential information received during qualification, discovery, reporting, and retest. Labs does not publish client-linked findings, logos, or case studies without explicit written permission.
Liability cap
Final counsel review required. Placeholder policy: aggregate liability is capped at two times the engagement fee, excluding fraud, willful misconduct, and breaches that cannot legally be capped.
Governing law
Final counsel review required. Placeholder policy: French law governs, with competent courts in Paris unless mandatory law requires otherwise.