General Disclaimer
Varangian Cyber provides information about cybersecurity capabilities, methodologies, and threat landscapes for educational and informational purposes only. This website describes our autonomous cybersecurity services and general approaches.
Authorization Requirement
- All cybersecurity testing, assessment, and penetration testing services described on this website are performed only with explicit written authorization from the system owner
- Unauthorized access to computer systems is a criminal offence under the Computer Misuse Act 1990 (UK) and equivalent legislation in other jurisdictions
- Nothing on this website encourages, endorses, or facilitates unauthorized access to any computer system or network
- Service engagement requires a signed Statement of Work (SOW) with explicit scope, limitations, and authorization
No Guarantee of Discovery
- Cybersecurity assessments identify vulnerabilities based on the methodologies, tools, and time constraints agreed upon in the engagement scope
- No assessment can guarantee discovery of all vulnerabilities
- The absence of reported findings does not mean a system is free from vulnerabilities
- Security is a continuous process, not a one-time certification
Point-in-Time Assessments
- All security assessments are point-in-time evaluations
- System changes, new vulnerabilities, and evolving threat landscapes may alter findings after the assessment date
- Findings and recommendations are valid as of the assessment date only
- Regular reassessment is recommended
Regulatory and Compliance References
- References to regulatory frameworks (NCSC CAF, Cyber Essentials, ISO 27001, NIS2, UK GDPR, etc.) are descriptive and contextual
- Such references do not constitute certifications, attestations, or guarantees of compliance
- Varangian Group Ltd is not an accredited certification body, licensed auditor, or authorized assessor for any of these frameworks
- Compliance determinations require engagement with qualified, authorized assessors
AI-Augmented Security Analysis
- Our cybersecurity tools and analyses are augmented by artificial intelligence
- AI-assisted findings are validated by human security professionals
- Despite validation, AI-augmented analysis may contain false positives, false negatives, or inaccuracies
- AI capabilities described on this website represent current operational capacity and may be updated
No Professional Relationship
- Accessing this website does not create an auditor-client, consultant-client, or any other professional relationship
- Website content is general in nature and not tailored to any specific organisation's security posture
- Engagement of Varangian Cyber services requires a formal agreement
Limitation of Liability
- Varangian Group Ltd shall not be liable for any damages arising from reliance on information provided on this website
- Cybersecurity services are provided under separate contractual terms that govern liability
In no event shall Varangian Group Ltd be liable for indirect, incidental, special, consequential, or punitive damages arising from use of this website.
Responsible Disclosure
If you discover a security vulnerability in Varangian's own systems, please report it in accordance with our Vulnerability Disclosure Policy.
We appreciate responsible disclosure and will not pursue legal action against good-faith security researchers.
Computer Misuse Act and Legal Compliance
- Varangian Group Ltd operates in full compliance with the Computer Misuse Act 1990 (UK) and applicable international cybersecurity legislation
- All offensive security techniques described on this website are employed only under authorized engagements
- We support and comply with all applicable UK, EU, and international cybersecurity laws
Intellectual Property
All content, methodologies, and proprietary tools described on this website are the intellectual property of Varangian Group Ltd. Unauthorised reproduction or reverse engineering is prohibited.
Governing Law
This disclaimer is governed by the laws of England and Wales.