Will this affect how my platform works?

No, our security audit is non-invasive and does not affect your platform's functionality.

Will this affect my database(s) and existing data?

No, we only review your codebase and do not access or modify your databases or data.

Do I have to do the job?

No, you can choose to implement the recommendations yourself or hire us to do it for you.

Will you use AI or will it be real experienced professionals doing the job?

Real person with 15+ years of experience in web and internet security conducts the audit.

Can you copy my code or logic?

No, all code reviews are conducted under NDA with strict intellectual property protection protocols.

Terms of Service

Version 1.0.0 · Effective date: 10 March 2026 · AuditCode

1. About AuditCode and Who We Are

AuditCode (“we”, “us”, “our”, “the Service”) is operated by:

AuditCode is a professional IT security consultancy providing code security reviews, compliance audits (GDPR, SOC 2, ISO 27001), vulnerability assessments, and related security advisory services to businesses and development teams.

2. Acceptance of These Terms

By accessing auditcode.co.uk, requesting a quote, or engaging our services, you confirm that you:

Are authorised to act on behalf of your organisation;
Have read and understood these Terms of Service;
Accept and agree to be bound by these Terms;
Have read and accepted our Privacy Policy, Cookie Policy, Disclaimer, Acceptable Use Policy, and Security & Confidentiality Statement.

If you do not agree to these Terms, you must not use our website or engage our services.

3. Services Provided

AuditCode provides professional security services including but not limited to:

Security code reviews and vulnerability assessments for web applications
GDPR compliance audits and data protection reviews
SOC 2 Type I & II readiness assessments
ISO 27001 compliance reviews
XSS, CSRF, injection, and authentication vulnerability analysis
AI-assisted code security analysis
Man-in-the-Middle (MitM) prevention assessments
Security advisory and remediation guidance

The specific scope, deliverables, timeline, and price for each engagement are agreed in writing before work commences.

4. Engagement Process

4.1 Service Request

Services begin upon mutual written agreement (email or formal contract). An initial enquiry or consultation at contact@auditcode.co.uk does not constitute a binding agreement.

4.2 Scope Definition

Each engagement will have a clearly defined scope document covering:

Code repositories and systems to be reviewed
Type of audit and applicable standards
Timeline and milestone dates
Deliverables (e.g. written audit report, remediation roadmap)
Pricing and payment schedule

4.3 Confidentiality

All engagements include mutual confidentiality obligations as standard. We are also happy to sign your organisation's NDA if preferred. See our full Security & Confidentiality Statement.

5. Client Obligations

You agree to:

Provide timely access to source code, systems, and documentation within the agreed scope
Designate a technical point of contact for the duration of the engagement
Provide accurate and complete information
Respond to questions and queries within reasonable timeframes
Secure all necessary internal authorisations before granting code access
Pay invoices according to agreed payment terms
Only share code and materials you are authorised to share

6. Payment Terms

6.1 Pricing

All pricing is agreed in writing before work commences. Prices are quoted in GBP and are exclusive of VAT unless stated otherwise.

6.2 Invoicing Schedule

Unless otherwise agreed in writing, the standard payment schedule is:

50% upfront prior to commencement of work
50% upon delivery of the final audit report

6.3 Late Payment

Late payments may incur statutory interest under the Late Payment of Commercial Debts (Interest) Act 1998. We reserve the right to suspend or withhold deliverables for accounts 30 or more days overdue.

7. Intellectual Property

7.1 Client Code & Data

You retain all rights to your source code, systems, and intellectual property. We claim no ownership over client code or materials reviewed during an engagement.

7.2 Audit Reports

Upon receipt of full payment, you receive full rights to the audit report and findings specific to your engagement. We retain the right to use anonymised, aggregate findings for internal improvement and general security commentary.

7.3 Methodologies & Tools

Our audit methodologies, proprietary tools, frameworks, and processes remain our intellectual property. Nothing in these Terms transfers any rights in our methodologies to you.

7.4 Website Content

All content, design, and software on auditcode.co.uk is the property of MARVIN LUMIC LIMITEDor our licensors. You may not reproduce, copy, or distribute it without our prior written consent.

8. Limitation of Liability

To the fullest extent permitted by applicable law, MARVIN LUMIC LIMITED shall not be liable for any loss or damage — including data loss, business interruption, security breaches occurring after the audit, or any consequential or indirect loss — arising from your use of, or reliance on, any information, findings, or recommendations provided through AuditCode services.

Without limiting the above:

A security audit is a point-in-time assessment and does not guarantee the absence of all vulnerabilities.
We are not liable for security incidents arising from vulnerabilities outside the agreed audit scope.
We are not liable for vulnerabilities discovered after the audit date.
We are not liable for losses arising from failure to implement our recommendations.
Our total aggregate liability for any claim shall not exceed the total fees paid by you to us in connection with that specific engagement.

Nothing in these Terms excludes liability for death or personal injury caused by our negligence, fraud, or any other liability that cannot be excluded under UK law.

9. Disclaimer of Warranties

Our services are provided on a professional best-efforts basis. We do not warrant that our audit will identify every vulnerability in the reviewed code or systems. See our full Disclaimer.

10. Acceptable Use

Your use of our website and services is subject to our Acceptable Use Policy, which is incorporated into these Terms by reference.

11. Data Protection and Privacy

Our collection, use, and processing of your personal data is governed by our Privacy Policy, which complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

12. Termination

Either party may terminate an engagement by written notice. In the event of termination:

You will be invoiced for work completed up to the termination date at the agreed rate.
We will return or securely delete any code or materials provided by you.
Confidentiality obligations survive termination.

13. Changes to These Terms

We may update these Terms from time to time. The most current version will always be available at auditcode.co.uk/terms. Changes do not apply retroactively to engagements already in progress.

14. Governing Law and Jurisdiction

These Terms are governed by the laws of England and Wales. Any dispute arising out of or in connection with these Terms shall be subject to the exclusive jurisdiction of the courts of England and Wales.

15. Contact

Email: contact@auditcode.co.uk