VHL Terms, Conditions & EULA

Terms and Conditions VHL IT SECURITY TRAINING B.V.

Last updated: 07 October 2025 (7 October, 2025)

These Website Terms of Use (“Terms”) govern the access and use of the public website located at www.virtualhackinglabs.com (the “Website”).

The Website is operated by VHL IT Security Training B.V., a company registered in the Netherlands under Chamber of Commerce number 68525036, with its registered office at Poortland 66, 1046BD Amsterdam, Netherlands (“VHL”, “we”, or “us”).

By visiting or using this Website, you (“User”) agree to these Terms.

If you do not agree, please discontinue use of the Website.

1. Scope

These Terms apply only to general access and use of the Website.

Access to and use of Virtual Hacking Labs Courses, Lab Environments, or other paid services is governed separately by the VHL Course Terms, Conditions & EULA, available at www.virtualhackinglabs.com/legal.

2. Website Use

Users may browse the Website and view publicly available information for personal and non-commercial purposes only.

When using the Website, Users must comply with all applicable Dutch and international laws and may not:

  • Post or distribute unlawful, defamatory, discriminatory, or obscene material;
  • Upload malware, viruses, or harmful code;
  • Attempt to gain unauthorized access to the Website or underlying systems;
  • Misrepresent identity or create an account under false information;
  • Use the Website for unsolicited advertising or commercial solicitation;
  • Interfere with the Website’s functionality or security.

VHL may remove or block content or restrict access where it reasonably believes that a User has violated these Terms or applicable law.

3. Accounts

Certain Website areas may require creating a user account.

Users must:

  • Be at least 18 years old or have verifiable parental consent;
  • Keep login credentials confidential; and
  • Notify VHL immediately of any unauthorized account access or suspected compromise.

VHL may suspend or terminate accounts in cases of misuse or security concerns.

4. Intellectual Property

All Website content, including text, images, logos, and layouts, is protected by copyright and other intellectual property rights owned or licensed by VHL.

Users may not copy, reproduce, or redistribute Website content without prior written consent.

5. Links to Third Parties

The Website may include links to external sites or content.

VHL is not responsible for and does not endorse the content or privacy practices of third-party websites.

6. Privacy

Personal data collected through the Website (e.g., via forms or analytics) is processed in accordance with our Privacy Policy.

7. Liability

The Website is provided on an “as is” and “as available” basis.

VHL makes reasonable efforts to maintain accurate and up-to-date information but does not guarantee error-free or uninterrupted operation.

To the maximum extent permitted by Dutch law, VHL is not liable for indirect or consequential damages, data loss, or downtime resulting from the use or inability to use the Website.

8. Complaints and Support

Questions or complaints regarding the Website can be sent by email or the contact form. VHL aims to respond within five (5) business days of receipt on complaints and three (3) business days of receipt on other requests.

9. Changes to These Terms

VHL may modify these Terms at any time by publishing an updated version on the Website.

Your continued use of the Website after changes are posted constitutes acceptance of the revised Terms.

10. Governing Law and Jurisdiction

These Terms are governed by Dutch law.

Any disputes arising from or related to these Terms shall be submitted to the competent court in Amsterdam, the Netherlands, unless otherwise required by mandatory consumer protection law.

VHL Course Terms, Conditions & EULA

Virtual Hacking Labs Courses

Last updated: 07-10-2025 (7 October, 2025)                                                          

1. Parties and Scope                  

These Terms, Conditions, and End User License Agreement (collectively, the “Agreement”) are entered into between VHL IT Security Training BV (“Provider”) and the individual or legal entity accessing or using the Virtual Hacking Labs platform (the “User”).

This Agreement governs access to and use of all Virtual Hacking Labs services, including but not limited to online courses, lab environments, software, exercises, documentation, and any other associated materials (collectively, the “Courses”). This Agreement applies to both individual Users and, where applicable, Customers purchasing access on behalf of one or more Users.

By creating an Account, accessing, or using the Courses, the User acknowledges having read, understood, and agreed to be legally bound by this Agreement.

2. Definitions

Courses: All online learning content, documentation, exercises, and lab systems offered by the Virtual Hacking Labs.

Lab Environment: The isolated and controlled technical environment in which penetration testing and hacking techniques may be legally practiced for educational purposes of the Virtual Hacking Labs courses.

Account: The registered account used by the User to access the Courses.

Content: All text, images, videos, exercises, scripts, lab machines, exams and configurations made available through the platform.

Voucher: A prepaid electronic coupon issued or authorized by the Provider that can be purchased by a Customer and redeemed by a User for time-limited or credit-based access to specific Courses or Lab Environments.

Provider: Refers to VHL IT Security Training BV, the company operating the Virtual Hacking Labs platform, including its affiliates, officers, employees, and authorized representatives. The Provider is responsible for delivering the Courses, Lab Environments, and related services described in this Agreement.

Customer: Refers to the individual or legal entity that purchases Courses or Vouchers from the Provider, either for its own use or on behalf of one or more (End-)Users.

User (or End-User): Refers to the natural person or legal entity that registers an Account and enters into this Agreement with the Provider to access and use the Courses or Lab Environments, whether directly or through a Voucher provided by a customer.

2.1 Interpretation

In this Agreement, words such as “including”, “for example”, or similar expressions are illustrative and do not limit the scope of any provision. References to singular terms include the plural and vice versa where the context so requires.

3. Eligibility and Accounts

The User must be at least 18 years old or have verifiable consent from a parent or legal guardian to access the Courses.

The User is responsible for keeping their account credentials confidential and secure.

The User may not share their Account with third parties or allow others to access their login details.

The Provider reserves the right to suspend or terminate any Account suspected of misuse or unauthorized access. The Provider may implement technical measures to enforce access limitations, including automatic deactivation upon expiration.

The User shall implement reasonable technical and organizational measures to prevent unauthorized access to the Courses or Lab Environments and shall promptly notify the Provider of any suspected compromise or misuse of their Account.

4. License Grant

Provider grants a limited, personal, non-exclusive, non-transferable, and revocable license to the User to access and use the Courses and Lab Environments solely for individual educational purposes.

All rights, title, and interest in the Courses remain the property of Provider or its licensors.

This license does not transfer any intellectual property rights to the User or any Customer.

Access is limited to the duration of the applicable subscription or voucher validity period. Upon expiry, all rights immediately terminate without further notice.

5. Permitted and Prohibited Use

The user agrees to use the Courses and Lab Environments only for lawful and authorized purposes.

The user may not:

  • Copy, distribute, modify, or make derivative works of any Course materials.
  • Use Course materials for commercial training, resale, or competitive analysis.
  • Conduct penetration testing or hacking activities outside the provided Lab Environments.
  • Attempt to interfere with or gain unauthorized access to any system, network, or service belonging to Provider or third parties that are not part of the lab environment.
  • Deploy malware, viruses, or other harmful code in any environment.
  • Users may not export, copy, or share lab machine images.
  • Users may not export, copy, or share credentials, configuration files, or other system files outside the Lab Environment, or otherwise make them accessible to third parties, except where explicitly required for inclusion in the User’s final certification documentation provided to the Provider.
  • Reverse engineering or attempting to extract source code or content from the Lab Environment infrastructure is strictly prohibited.

These restrictions apply regardless of intent and include attempted, indirect, or facilitated actions. Violation of these provisions may result in immediate account termination and potential legal action.

6. Legal Use of Hacking Techniques

Users acknowledge that Provider has no control over how knowledge is used outside the Lab Environment and disclaims all liability for misuse. Any such misuse constitutes a material breach resulting in immediate termination.

Users are solely responsible for ensuring that any testing or research conducted outside the Lab Environment complies with applicable laws and third-party authorization requirements.

Using these techniques against real-world systems without explicit written authorization is strictly prohibited under Dutch law (Wet Computercriminaliteit, Articles 138a–139e of the Dutch Penal Code).

7. Intellectual Property Rights

All materials, software, configurations, lab environments, and trademarks are protected under copyright and intellectual property laws.

The user receives only a limited license to access and use the Courses for personal educational purposes.

Neither the User nor the Customer may copy, redistribute, or reverse-engineer any part of the platform or materials.

Any feedback, suggestions, or feature ideas provided by Users may be freely used by Provider without obligation or compensation.

7.1 Confidential Information

All non-public information related to the Courses, Lab Environments, Certification materials, configurations, and assessment criteria shall be considered confidential (“Confidential Information”).

Users and Customers shall not disclose, reproduce, or distribute such Confidential Information without the Provider’s prior written consent, except where disclosure is required by law.

If disclosure is legally compelled, the disclosing party shall, where legally permissible, provide prior notice to the Provider to allow it to seek protective measures.

Obligations of confidentiality shall survive the termination of this Agreement.

8. Privacy and GDPR Compliance

Provider processes personal data in compliance with the EU General Data Protection Regulation (GDPR) and the Dutch Data Protection Act (Uitvoeringswet AVG).

Personal data collected may include account details, contact information, payment records, and usage logs within the Lab Environments. Such monitoring is based on the Provider’s legitimate interest in maintaining security, preventing abuse, and ensuring compliance with this Agreement.

Data is processed solely for the purposes of:

  • Account management,
  • Service delivery and maintenance,
  • Security monitoring and abuse prevention, and
  • Legal compliance.

The user has the right to access, rectify, or request deletion of personal data in accordance with the Privacy Policy available at https://www.virtualhackinglabs.com/privacy-policy/.

9. Monitoring, Logs, and Security

Provider may monitor user activity within the Lab Environments for security, integrity, and compliance purposes.

Logs may include executed commands, timestamps, IP addresses, and system events.

Such data is retained only as long as necessary to maintain system security and to comply with Dutch legal requirements for audit and law enforcement cooperation.

10. Payments and Refunds

Access to certain Courses or features may require payment.

All fees are displayed excluding VAT (where applicable) and must be paid in advance by the customer.

Unless otherwise required by consumer protection law, fees are non-refundable.

Automatic renewals are not used; each access period or subscription must be manually renewed by the User if continued access is desired.

11. Vouchers

Vouchers provide prepaid access to Virtual Hacking Labs Courses and Lab Environments. They serve as a convenient way for companies, organizations and educational institutions to purchase training access in advance or on behalf of participants. Customers are responsible for ensuring that their designated Users comply with this Agreement.

All Vouchers are subject to this Agreement and constitute a form of limited, non-transferable digital access authorization rather than a financial instrument or gift card. By redeeming or using a Voucher, the User agrees to comply with all applicable terms set out in this section.

11.1 Issuance and Redemption

Vouchers can be purchased directly from the Provider. Each Voucher includes a unique code that grants access to a specific Course or Lab Environment for a predefined period of use.

To redeem a Voucher, the User must have or create a valid Account on the Virtual Hacking Labs platform. Vouchers can be redeemed only once and are automatically linked to the User’s Account upon activation.

11.2 Validity Period

The validity period of each Voucher is communicated prior to purchase and is also specified in the Voucher documentation provided to the Customer.

Expired Vouchers cannot be registered, activated, exchanged, or refunded.

11.3 Non-Transferability

Vouchers are non-transferable once redeemed and may not be sold, exchanged, or assigned to another user without prior written consent from Provider.

Provider reserves the right to deactivate any Voucher suspected of unauthorized resale or fraud.

Vouchers have no cash value, are not redeemable for cash, and do not constitute electronic money or a financial instrument under EU law.

11.4 Refunds and Withdrawal

Vouchers are non-refundable under all circumstances, including after purchase, redemption, or the start of the associated access period.

11.5 Lost or Stolen Vouchers

Provider is not responsible for lost, stolen, or damaged Vouchers, nor for unauthorized use of Voucher codes.

Once a Voucher code is redeemed, access is bound to the registered User’s Account and cannot be transferred without prior written consent from Provider.

11.6 Reseller Purchases

If a Customer or User obtained a Voucher through an authorized reseller or third party, the contractual relationship regarding the Voucher purchase exists between the User and/or customer and that reseller.

Provider is only responsible for access to the Courses once the Voucher is redeemed on its platform.

11.7 Misuse and Fraud

Provider reserves the right to refuse redemption or deactivate any Voucher obtained or used fraudulently. Misuse may lead to account suspension or termination under Section 14 (Termination).

12. Certification

Certification may be offered as part of certain Virtual Hacking Labs Courses. It serves to assess and formally recognize a User’s practical skills, lab performance, or completion of specific exercises or projects within the platform. Participation in any Certification process is optional unless otherwise specified by the Provider and is governed by the same rules, responsibilities, and conditions set forth in this Agreement.

12.1 Purpose and Scope

The Provider may offer optional or mandatory certification programs (“Certification”) as part of the Courses. Certification demonstrates the User’s completion, competence, or performance in specific lab exercises or challenges within the Virtual Hacking Labs platform. Participation in Certification is subject to the terms of this Agreement and any additional instructions or policies issued by the Provider.

12.2 Eligibility and Requirements

Only Users with an active and valid Account are eligible to request a VHL Certificate of Completion.

Such a certificate may be granted upon submission of documentation that meets the requirements and quality standards specified in the corresponding Course materials.

Users may submit their Certification documentation up to three (3) months after the expiration of their Course access or membership period, provided that their Account remains identifiable and in good standing.

After the expiration of their membership, Users are solely responsible for ensuring that their submitted documentation continues to meet all applicable requirements and that no further access to lab systems or materials is necessary for verification.

The Provider may specify additional eligibility requirements, such as full course completion, payment of applicable fees, or adherence to specific technical and ethical standards.

All submitted documentation must be created independently by the User and in accordance with the Provider’s guidelines.

12.3 Integrity and Prohibited Conduct

Users must conduct all Certification-related work with honesty and integrity.

Collaboration or discussion with colleagues or other individuals for learning purposes is permitted, provided that all submitted documentation and results reflect the User’s own understanding and work.

The following activities remain prohibited:

  • Sharing, publishing, or distributing official Certification materials, lab solutions, or answers in full or in part;
  • Submitting documentation or work primarily created by others;
  • Using automated tools, scripts, or AI systems to generate or complete Certification submissions;
  • Misrepresenting identity, progress, or results;
  • Accessing, altering, or attempting to obtain another User’s Certification data or results.

Violations may result in rejection of the submission, withdrawal of issued certificates, temporary or permanent suspension of the Account, or other appropriate action as determined by the Provider.

12.4 Documentation Submission

As part of Certification, Users may be required to submit documentation demonstrating their completed work.

Users may not export, copy, or share credentials, configuration files, or other system files outside the Lab Environment, or otherwise make them accessible to third parties, except where explicitly required for inclusion in the User’s final Certification documentation provided to the Provider.

Any Certification documentation created by the User may contain elements derived from the Provider’s proprietary lab content and therefore may only be used, shared, or published for personal educational purposes or as evidence of completion, and not for commercial or competitive use.

The User retains copyright over the original written content they have created, while the Provider retains ownership of all underlying lab data, configurations, systems, and intellectual property included or referenced in such documentation.

The Provider is granted a perpetual, royalty-free license to store, review, and verify submitted documentation for Certification, compliance, archival, and audit purposes.

12.5 Review and Issuance

The Provider reserves the right to review, validate, or audit any Certification submission before issuing a certificate.

Certificates may be issued electronically and may include verification identifiers, such as serial numbers or cryptographic signatures.

Issuance of a certificate does not guarantee professional competence, employment, or endorsement by the Provider beyond confirming that the User met the requirements set by the Certification process.

12.6 Revocation and Misuse

The Provider reserves the right to revoke or invalidate any certificate if it was obtained fraudulently, if the User’s access was terminated for breach of this Agreement, or if Certification materials were misused or disclosed without authorization.

Revoked certificates may be removed from the Provider’s systems and any associated verification databases. The Provider may publicly mark revoked certificates as invalid in its verification database.

12.7 Confidentiality

All Certification materials, lab data, and evaluation criteria are considered confidential and proprietary to the Provider.

Users may not disclose, copy, reproduce, or distribute such materials without prior written consent from the Provider.

13. Availability and Maintenance

Provider shall use reasonable efforts to ensure the availability and performance of the Courses. Temporary interruptions may occur due to maintenance, updates, or technical issues. The Courses are provided on a best-effort basis, and Provider makes no warranty or guarantee of uninterrupted or error-free operation. Provider may, at its discretion, temporarily suspend access for emergency maintenance or to address security vulnerabilities without prior notice.

14. Updates and Modifications

Provider reserves the right to modify or discontinue any part of the Courses or this Agreement at any time.

Any material changes will be communicated via email or published on the platform.

Your continued use after such notice constitutes acceptance of the updated Agreement.

15. Termination

The Provider may suspend or terminate a user’s access immediately, without prior notice, if the User breaches any term of this Agreement, misuses the Lab Environments, or violates applicable laws. Provider may terminate access where required by law, regulation, or competent authority, or to prevent ongoing harm or liability. Termination does not affect any accrued rights or obligations existing prior to termination.

Upon termination:

  • The license and access rights will end immediately.
  • Provider may retain certain data for legal compliance or security purposes.
  • The user will not be entitled to refunds unless mandated by Dutch consumer law.
  • Provider may permanently delete all data and lab progress associated with the User’s Account after 30 days.

Sections relating to intellectual property, confidentiality, limitation of liability, indemnification, governing law, and any other provisions intended by their nature to survive termination shall remain in full force and effect after termination of this Agreement.

16. Disclaimer of Warranties

The Courses and Lab Environments are provided “as is” and “as available”, without warranty of any kind.

To the fullest extent permitted by law, Provider disclaims all warranties, whether express or implied, including but not limited to warranties of merchantability, fitness for a particular purpose, and non-infringement.

Provider does not guarantee that the Courses or Lab Environments will be free from errors, vulnerabilities, or interruptions.

17. Limitation of Liability

To the extent permitted by Dutch law, Provider shall not be liable for any indirect, consequential, or special damages, including data loss, business interruption, or loss of profits, arising from or relating to the use of the Courses.

In any case, Provider’s total cumulative liability shall be limited to the total amount paid by the User or Customer for access to the Courses during the twelve (12) months preceding the event giving rise to the claim.

For Customers entering into enterprise or institutional agreements, Provider’s total aggregate liability shall not exceed the fees paid under the specific order giving rise to the claim.

Nothing in this Agreement limits liability for intent, wilful misconduct or gross negligence, or violations of mandatory Dutch consumer protection law.

18. Indemnification

The user agrees to indemnify and hold harmless Provider and its affiliates from any claims, damages, or expenses arising from:

  • Violation of this Agreement,
  • Misuse of the Lab Environments, or
  • Any unlawful conduct performed using knowledge gained from the Courses.

This indemnification extends to reasonable legal fees, costs, and expenses incurred by Provider.

19. Force Majeure

Provider shall not be liable for any failure to perform its obligations due to causes beyond its reasonable control, including but not limited to network failures, cyberattacks, power outages, natural disasters, pandemics, or governmental restrictions.

20. Governing Law and Jurisdiction

This Agreement shall be governed by and construed in accordance with the laws of the Netherlands.

Unless otherwise required by mandatory EU consumer law, any disputes arising from or related to this Agreement shall be submitted to the exclusive jurisdiction of the competent court in Amsterdam, the Netherlands.

Nothing in this Agreement deprives Users of mandatory consumer protection rights in their country of residence.

The United Nations Convention on Contracts for the International Sale of Goods (CISG) does not apply to this Agreement.

21. Severability and Entire Agreement

If any provision of this Agreement is held to be invalid or unenforceable, the remaining provisions shall remain in full force and effect. Any pre-contractual representations not expressly included herein shall have no binding effect.

This Agreement constitutes the entire agreement between the Customer and/or User and the Provider regarding the Courses and supersedes any prior agreements or understandings.

No waiver or failure by Provider to enforce any provision shall constitute a waiver of any future right.

22. Contact Information

For legal or data protection inquiries, please contact:

VHL IT Security Training BV

Customer service and complaints are handled by email. The Provider aims to respond within five (5) business days on complaints and three (3) business days on other requests.