Last updated: 11 April 2026
Welcome to SecureAZ. Please read these Terms of Service ("Terms") carefully before using any website, platform, or service operated by SecureAZ Limited. By accessing or using our platforms or any SecureAZ service, you agree to be legally bound by these Terms.
By accessing or using our platforms or any SecureAZ service, you ("User", "you", or "your") agree to be legally bound by these Terms in their entirety. These Terms apply to all services provided by SecureAZ, including cyber awareness training, phishing simulation campaigns, penetration testing, and related services. Where you accept on behalf of an organisation, you represent that you have authority to bind that entity to these Terms.
SecureAZ provides cyber security awareness and training services to NZ businesses. Services available to you depend on your subscription plan and may include:
SecureAZ reserves the right to modify, suspend, or discontinue any part of the Services at any time with reasonable notice.
Subject to your compliance with these Terms, SecureAZ grants you a limited, non-exclusive, non-transferable, revocable licence to access and use the platforms solely for your internal business purposes.
You must not:
Access to the platform requires registration. You agree to provide accurate, current, and complete information during registration and keep it updated. You are responsible for maintaining the confidentiality of your login credentials and must notify SecureAZ immediately of any unauthorised access.
Where you are given administrator access, you are responsible for managing user permissions and ensuring only authorised individuals are granted access to the platform.
If you are deploying training on behalf of an organisation, you warrant that you have obtained all necessary consents required under applicable NZ employment agreements, privacy laws, and workplace policies before deploying training to employees or third parties. You will not use training results or completion data to unlawfully disadvantage or dismiss employees without proper process.
SecureAZ provides phishing simulation services involving simulated (non-malicious) phishing emails sent to employees designated by you, for the purpose of improving awareness of phishing threats.
By engaging phishing simulation services, you represent and warrant that you are authorised to deploy simulations targeting the individuals you have designated, and that you have obtained all necessary consents required by NZ law.
You acknowledge that phishing simulations can cause stress or embarrassment. SecureAZ bears no liability for any distress experienced by employees. Any employee complaints arising from simulations are your sole responsibility. SecureAZ recommends informing employees in general terms that security testing may occur, without disclosing specific timing.
All fees are stated in New Zealand Dollars (NZD) and are exclusive of GST. Unless otherwise agreed, invoices are due within 14 days of the invoice date. SecureAZ may charge interest on overdue amounts at 1.5% per month. Access may be suspended after 7 days' written notice of overdue amounts.
Subscriptions automatically renew at the end of each billing period unless cancelled in writing at least 30 days before the renewal date. Cancellation takes effect at the end of the current billing period — no refunds are provided for partial periods. You may upgrade or downgrade your plan at any time.
SecureAZ collects and processes personal information in accordance with our Privacy Policy, which is incorporated into these Terms by reference. Where you provide SecureAZ with personal information about your employees, you warrant that you have all necessary rights and consents to do so under the NZ Privacy Act 2020.
Each party agrees to keep confidential all non-public information received from the other party in connection with the Services. Confidential Information does not include information that becomes publicly available, was already known to the receiving party, is independently developed, or is required to be disclosed by law.
You are solely responsible for all content and data you upload to the platforms. You warrant that Uploaded Content does not infringe any third-party rights. You grant SecureAZ a non-exclusive, royalty-free licence to use Uploaded Content solely for the purpose of providing the Services. SecureAZ may remove any content it reasonably considers unlawful or inappropriate without prior notice.
By using the platform or submitting your contact details, you consent to receiving marketing communications from SecureAZ. You may opt out at any time by clicking the unsubscribe link in any marketing email or by emailing [email protected]. Opting out does not affect transactional or service-related communications.
All content on the platforms, including text, graphics, training content, simulation templates, software, and data, is the property of SecureAZ Limited or its licensors and is protected by applicable NZ intellectual property laws. Nothing in these Terms transfers any intellectual property rights to you.
The platforms and Services are provided on an "as is" and "as available" basis without warranties of any kind. SecureAZ does not warrant that the platforms will be uninterrupted or error-free, that results will be accurate or reliable, or that the Services will meet any specific compliance or regulatory requirements. You are responsible for verifying with your insurer or compliance team whether our Services meet your specific requirements.
To the fullest extent permitted by NZ law, SecureAZ's total liability for any claims shall not exceed the total fees paid by you to SecureAZ in the three months immediately preceding the event giving rise to the claim. In no event shall SecureAZ be liable for any loss of profits, data, goodwill, indirect, consequential, special, or punitive damages, even if advised of the possibility of such damages.
You agree to indemnify and hold harmless SecureAZ and its directors, officers, employees, and agents from and against any claims, liabilities, damages, costs, and expenses (including reasonable legal fees) arising from: your use of the platforms or Services; your breach of these Terms; your violation of any applicable NZ law; any claim by an employee arising from a phishing simulation conducted under your authorisation; or your failure to obtain necessary consents.
These Terms continue until terminated. Either party may terminate with 30 days' written notice. SecureAZ may terminate immediately for material breach, insolvency, or non-payment. On termination, your access to the platforms will cease, outstanding fees remain due, and SecureAZ will provide a reasonable opportunity to export your data within 30 days of termination.
These Terms are governed by the laws of New Zealand. The parties submit to the non-exclusive jurisdiction of the New Zealand courts.
SecureAZ may update these Terms from time to time. We will provide at least 14 days' notice of material changes via email or a prominent notice on the platform. Your continued use after the effective date constitutes acceptance of the updated Terms.
You acknowledge that no cybersecurity product or training programme can guarantee complete protection against all threats. SecureAZ's training content is designed for general awareness and may not be tailored to your specific industry or risk profile. Completion of training does not guarantee that employees will not fall victim to a cyber attack. SecureAZ provides its Services as an educational tool and makes no guarantee of specific security outcomes.
SecureAZ may, at its discretion, grant certain customers ("Managed Service Providers" or "MSPs") written authorisation to provision and manage SecureAZ services on behalf of their clients ("Client Organisations"). This section applies where such authorisation has been granted and supersedes the restriction in Section 3 regarding resale or sublicensing.
By participating in the MSP Programme, the MSP agrees that:
The MSP warrants that it has obtained all necessary rights, consents, and authorisations to upload or process personal information relating to Client Organisation employees and users. The MSP accepts data controller responsibilities for its Client Organisations and acknowledges that SecureAZ processes such data solely on the MSP's instructions in accordance with the Privacy Policy.
The MSP is the contracting party for all fees associated with its account, including seat pools and any charges relating to Client Organisations provisioned under its account. SecureAZ has no billing relationship with Client Organisations directly. Non-payment by the MSP may result in suspension of access for all Client Organisations under that MSP's account.
If the MSP's account is suspended or terminated for any reason, access to the platform will be suspended for all Client Organisations under that account. SecureAZ accepts no liability to Client Organisations for any loss or disruption arising from the suspension or termination of an MSP's account.
The MSP agrees to indemnify and hold harmless SecureAZ from any claims, losses, or liabilities arising from the MSP's provisioning of the platform to Client Organisations, including any failure to obtain required consents, any breach of these Terms by a Client Organisation, or any dispute between the MSP and a Client Organisation.