Code of Ethics

CERTAINTY pledges to adhere to the following code of ethics for all components of an engagement including, but not limited to, social engineering and phishing.

  • CERTAINITY accepts the responsibility and ownership over all performed social engineering actions, and their effects on the welfare of those in, around, and involved with the engagement.
  • CERTAINITY will not engage in, or being a party to, unethical, unlawful, or illegal activities.
  • CERTAINITY will reject any engagement, or aspect of an engagement, that may make a target feel discriminated against. This includes, but is not limited to, sexual harassment, offensive comments (verbal, written, or otherwise) related to gender, sexual orientation, race, religion, or disability, stalking or following, deliberate intimidation, or harassing materials. Additionally, lewd or offensive behavior or language, which may be sexually explicit or offensive in nature, materials or conduct, language, behavior, or content that contains profanity, obscene gestures, or gendered, religious, ethnic, or racial, slurs will be avoided as best as possible.
  • CERTAINITY acknowledges that social engineering includes actions that may lead to people feeling negatively manipulated, threatened or uncomfortable. CERTAINITY always aims to limit this impact and strives for people feeling better for having participated in the assessment through a strict “no blaming” policy and education.
  • CERTAINITY always minimizes risks to the confidentiality, integrity, or availability of information of clients and individuals involved in engagements. Information is never disclosed to outside parties.



This code of ethics is based on the Social Engineer Framework