CravenIT Solutions
Schedule Discovery

Legal foundation

Rules & Regulations

Welcome to CravenIT Solutions. These General Rules establish the operational baseline for client relationships, service expectations, and legal alignment across all engagements.

Contact Legal TeamSchedule Discovery

General Legal Terms

We are committed to transparent, practical legal standards that support long-term partnerships. These rules are intended to clarify how we operate and what clients can expect when working with us.

Relationship-Focused Approach

CravenIT prioritizes trust-based relationships and strategic fit. We work with organizations that are genuinely aligned with our services and engagement model.

Commitment to Privacy and Legal Compliance

Privacy and legal rights remain central to our delivery model. Our dedicated privacy and terms documents will continue to be maintained as standalone legal references.

Privacy PolicyTerms & ConditionsCookie Preferences

Operational Guidelines

  • Policy Updates: In response to the evolving digital landscape, we reserve the right to modify our General Rules and Regulations, Privacy Policy, and Terms & Conditions. Changes posted on this website are effective upon publication.
  • Communication and Dispute Resolution: We value open communication and work toward fair and prompt issue resolution. Please contact us directly with any concern related to services or delivery.
  • Service Availability: We aim for reliable continuity, but cannot guarantee uninterrupted uptime in all circumstances. Scheduled maintenance and unforeseen technical events may affect availability.
  • Intellectual Property: Unless explicitly stated otherwise in writing, content, designs, code, and related documentation created by CravenIT remain our intellectual property.
  • Payment Terms: Payment terms are defined in individual service agreements, proposals, and invoices. Failure to follow payment terms may result in service suspension or termination.
  • Client Responsibilities: Clients are responsible for providing accurate information needed for delivery and for maintaining access control and account security in their own environments.
  • Third-Party Services: When integrations with third-party services are required, usage is also governed by the terms and policies of those third-party providers.

Security and Technical Safeguards

  • Access Control and Identity: Administrative access is limited by role-based permissions, least-privilege principles, and strong authentication practices such as multi-factor authentication where supported.
  • Encryption Standards: Data in transit is protected using modern TLS protocols, and data at rest is protected using platform-level encryption controls where available.
  • Patch and Vulnerability Management: Systems are maintained with security updates and dependency patching routines. Critical vulnerabilities are prioritized for expedited remediation.
  • Monitoring and Incident Response: We maintain operational monitoring and incident triage procedures designed to identify, contain, and remediate service-impacting or security-impacting events.
  • Backup and Recovery: Where included in service scope, backup and recovery workflows are maintained to support restoration objectives and continuity requirements.
  • Third-Party Risk and Integrations: Integrations are selected and configured with security review in mind. Third-party services remain subject to their own terms, controls, and compliance posture.

Compliance Scope and Governance

  • Compliance obligations are determined by service scope, jurisdiction, and contracted requirements.
  • Where needed, additional legal instruments (such as DPA, NDA, or project-specific terms) are executed through formal agreements.
  • Data minimization, retention windows, and access boundaries are applied according to business and contractual necessity.
  • Clients retain responsibility for credentials, internal user governance, and endpoint security in their own environments.
  • Any regulatory or audit-specific commitments must be explicitly documented in the applicable statement of work or master agreement.
  • Website-level legal documents govern general site use, while signed client agreements govern paid service delivery and precedence where terms conflict.

Partnership Commitment

We are dedicated to building collaborative, transparent partnerships that protect both sides of the engagement while enabling long-term digital growth.

Last updated: May 26, 2026