General Terms and Conditions
Sale of Services
Datum: 18th June.2025
Version: 1.0
ALSEC Cyber Security Consulting AG © 1

ALSEC Cyber Security Consulting AG
Ob der Steig 18, 5082 Kaisten, Switzerland
[email protected] | +41 62 874 30 00

These General Terms and Conditions (GTC) apply to all contracts, services, and deliverables provided by ALSEC Cyber Security Consulting AG (hereinafter "ALSEC") to its clients, unless expressly agreed otherwise in writing.

(1) ALSEC offers professional services in the field of information security, including but not limited to security assessments, consulting, awareness trainings, audits, and technical testing (e.g., penetration tests).

(2) A contract is concluded upon written acceptance of an offer, an order confirmation, or written (including electronic) confirmation by the client.

(3) The specific scope of services is defined in the respective offer, service description, or project agreement.

(1) All prices are quoted in Swiss Francs (CHF), excluding VAT, travel expenses, and other costs unless stated otherwise.

(2) Invoices are payable within 30 days from the invoice date without deductions, unless justified
written objections are submitted within that period.

(3) In the event of late payment, ALSEC reserves the right to charge default interest of 5% p.a. and dunning fees. The right to claim further damages remains unaffected.

(1) ALSEC performs its services in accordance with current professional standards and with due care.

(2) Deadlines and dates are non-binding unless expressly confirmed as binding in writing.
(3) The client agrees to provide all necessary and accurate information in a timely manner to enable the delivery of services.

(1) In case of written cancellation by the client less than five (5) business days before the scheduled date, ALSEC may charge up to 50% of the agreed service fee.

(2) Cancellations within 48 hours or no-shows may result in the full service fee being charged.

(3) Costs already incurred (e.g., travel bookings, preparation) will be invoiced regardless of the cancellation time.

(1) ALSEC shall only be liable for damages resulting from intentional or grossly negligent conduct.

(2) Liability for indirect or consequential damages, including loss of profit, is excluded to the extent permitted by law.

(3) Any liability is limited to the value of the specific contractual service.

(4) No guarantee of success is provided, particularly with respect to security testing or consulting outcomes.

(1) Both parties agree to maintain strict confidentiality regarding any non-public information exchanged during the collaboration.

(2) ALSEC complies with applicable Swiss data protection laws (especially the revised Swiss Data Protection Act – revFADP). Where EU or EEA personal data is processed, the EU General Data Protection Regulation (GDPR) shall also apply.

(3) Client data will only be used for the fulfilment of contractual obligations. A separate Non-Disclosure Agreement (NDA) may be concluded upon request.

(1) All deliverables created by ALSEC, including reports, concepts, training materials, and other work products, remain the intellectual property of ALSEC unless expressly agreed otherwise in writing.

(2) The client is granted a non-exclusive, non-transferable right to use such materials internally. Any extended use requires ALSEC’s written consent.

(1) These GTC shall be governed exclusively by substantive Swiss law. The United Nations Convention on Contracts for the International Sale of Goods (CISG) is excluded.

(2) The place of jurisdiction shall be the registered office of ALSEC Cyber Security Consulting AG, unless mandatory legal provisions stipulate otherwise.

(1) Amendments and additions to these GTC must be made in writing. This also applies to any amendment to this written form clause.

(2) Should any provision of these GTC be or become invalid, this shall not affect the validity of the remaining provisions.

Last Update: Kaisten, 18th of June 2025