What cybersecurity and compliance services does Ownux Global provide?

Ownux Global delivers penetration testing (web, mobile, network, API), compliance services (SOC 2, ISO 27001, HIPAA, GDPR, ST4S, DPDP, CERT-In), security operations (source code review, firewall and OS configuration review, network architecture review), and cybersecurity training. We serve clients in the United States, Australia, and India.

Which regions does Ownux Global serve?

Ownux Global serves the United States (compliance focus including SOC 2 and HIPAA), Australia (compliance, penetration testing, and ST4S assessment for EdTech vendors), the United Kingdom, and India. Our operations headquarters is in Ahmedabad, Gujarat, India.

Does Ownux Global help with SOC 2 and ISO 27001 audits?

Yes. Ownux Global provides end-to-end SOC 2 Type I and Type II audit support across the AICPA Trust Service Criteria, and ISO 27001:2022 ISMS implementation and certification readiness. Both services include readiness assessment, policy development, control implementation, evidence collection, and auditor coordination.

What is ST4S and does Ownux Global support it?

ST4S (Safer Technologies for Schools) is an Australian framework for evaluating EdTech products against security, privacy, and child-safety criteria. Ownux Global helps EdTech vendors prepare their ST4S product profile, conduct security testing aligned with ST4S requirements, and coordinate submission to Australian state education departments.

Terms of Service | Ownux Global

1. Use of Services

You shall not use our website and/or Services for any purpose that is unlawful, illegal or prohibited under Indian laws, or any other local laws that might apply to you.

It is your responsibility to ensure that any goods, services, or information available through our website meet your specific requirements.

2. Engagement of Services

Ownux Global provides cybersecurity and compliance services across three primary lines: penetration testing and vulnerability assessment, governance-risk-compliance (GRC) consulting, and endpoint monitoring and managed security operations.

All services are engaged through a separate signed engagement letter, Statement of Work (SOW), or Master Services Agreement (MSA) that defines scope, deliverables, in-scope systems, target environments, authorized contact persons, timelines, and commercial terms. Use of this website, submission of an inquiry, or initial communication does not by itself constitute a binding engagement.

You agree to provide accurate and complete information required for service scoping, delivery, and reporting. Ownux Global shall not be liable for issues, delays, or incorrect findings resulting from incorrect, incomplete, or out-of-date information provided by you, including access credentials, asset inventories, or scope definitions.

Ownux Global reserves the right to decline or terminate any engagement at its discretion, including but not limited to cases where the proposed scope exceeds our capabilities, the engagement raises legal or ethical concerns, the engagement is suspected of fraud, or the client fails to meet agreed obligations.

3. Payments

Unless otherwise specified in the engagement letter, fees for Ownux Global services are invoiced as defined in the SOW or MSA. Payment terms, currency, and milestone structure are agreed in writing before the engagement starts. You are responsible for ensuring invoices are paid in full by the stated due date.

For online or website-initiated payments where applicable, you must ensure the payment details provided are valid and belong to you. Ownux Global shall not be liable for loss or damage arising directly or indirectly from a declined transaction authorization, including cases where the cardholder exceeds the preset limit agreed with the acquiring bank.

4. Intellectual Property

Ownux Global retains all rights, title, and interest in its proprietary methodologies, tools, scripts, templates, control matrices, policy frameworks, gap-analysis frameworks, detection rules, threat intelligence, dashboards, reporting formats, and reusable components used across penetration testing, compliance, and endpoint monitoring services.

Reports, findings, audit deliverables, custom detection logic developed specifically for a Client engagement, and other engagement-specific outputs become the Client's property upon full payment, subject to Ownux Global's retained right to use anonymized data, anonymized findings, and engagement learnings for service improvement, internal training, research, and aggregate benchmarking.

No license is granted to either party in any underlying methodologies, third-party software, or open-source tools beyond what is explicitly stated in the engagement letter.

5. Service Limitations and Disclaimers

All Ownux Global services are subject to inherent limitations specific to each service line:

Penetration testing and vulnerability assessments are point-in-time exercises that reflect the state of the assessed systems during the testing window. Ownux Global does not warrant that every vulnerability will be identified, that exploitable conditions discovered after the testing window will be retroactively flagged, or that systems will remain secure following the assessment.
Compliance consulting and audit services reflect the state of controls, policies, and evidence as observed during the engagement. Ownux Global does not guarantee passage of any subsequent external audit, certification, regulatory inspection, or attestation by a third party, including but not limited to SOC 2, ISO 27001, HIPAA, GDPR, or DPDP Act assessments.
Endpoint monitoring and managed security operations depend on the continued deployment and operation of monitoring agents, the coverage and accuracy of detection rules at the time of an incident, network and log access provided by the Client, and the Client's timely response to alerts. Ownux Global does not warrant that all threats, attacks, or compromises will be detected, alerted on, or prevented.

Continued security and compliance posture depends on Client operational practices, patching, configuration changes, employee actions, threat evolution, and responses outside Ownux Global's reasonable control.

6. Warranty Disclaimer

Services are provided on an "as is" and "as available" basis. To the maximum extent permitted by applicable law, Ownux Global disclaims all implied warranties, including but not limited to merchantability, fitness for a particular purpose, and non-infringement.

7. Liability

We shall not be liable for any loss or damage arising from the use of our Services, whether direct, indirect, or consequential.

We shall not be liable for any loss or damage arising directly or indirectly from the decline of authorization for any transaction due to the Cardholder exceeding the preset limit mutually agreed upon with our acquiring bank.

8. Governing Law and Disputes

Any dispute arising out of the use of our website, purchase from us, or any engagement with us shall be subject to the laws of India.

9. Contact Information

If you have any questions regarding these Terms, please contact us at:

Ownux Global

Email:[email protected]

Prefer a form? Use our contact page.