Last updated: May 14, 2026

Terms of Service.

The agreement between you and Rivetz when you use this site or buy a service. Plain English. Real terms, no filler.

Short version: Rivetz is a one-person service operated by Jace Alfeche-Dungca, based in Virginia. By using this site or buying a service through Stripe, you accept these terms. Services are delivered 100% async (no scheduled calls). My maximum liability is capped at what you paid for the engagement.

1. Acceptance

By visiting rivetzco.com, contacting me, or purchasing a service through Stripe, you ("you," "Client") agree to these Terms. If you do not agree, do not use the site or purchase services.

Paid engagements may also include a separate written services agreement. If anything in that signed agreement conflicts with these Terms, the signed agreement controls for that engagement.

2. Who you're dealing with

This site and the services described are operated by Jace Alfeche-Dungca ("I," "me," "Rivetz"), based in Virginia, United States. Contact: hello@rivetzco.com.

Rivetz is a sole operation. There is no team, no subcontractors, and no third-party developers performing the work unless explicitly disclosed and approved by the Client.

3. Eligibility

You must be at least 18 years old and authorized to enter into a binding contract on your own behalf or on behalf of the entity you represent. Rivetz services are intended for business customers building software products.

4. Use of the site

You may freely read, share, and link to rivetzco.com. You may not:

Copy the site's design, brand, or written content to launch a competing service
Use the site to send spam, malware, or any automated attack
Reverse engineer or extract proprietary methodology from the site for the purpose of building a substitute service
Misrepresent your identity when contacting me or purchasing

5. Services

Rivetz offers three productized engineering services:

Audit ($1,000)

A written report and Loom recording covering security, code quality, data layer, error handling, deploy practices, and performance of a single Client-owned application. Delivered within 3 business days of receiving full access and intake answers. Includes follow-up Q&A via async message: written answers within 2 business days of each question.

Cleanup ($3,500)

Implementation of all CRITICAL and HIGH severity findings from a prior Rivetz audit. Delivered as pull requests to the Client's repository within 14 business days of kickoff. Includes a recorded handoff Loom and a written runbook.

Guardian Retainer ($1,200/month)

Up to 8 hours per calendar month of development work on the Client's primary application. Includes small features, bug fixes, dependency updates, a monthly security check-in, and a quarterly architecture review. Communication via async messaging on Slack or Discord (text only). Replies within US business hours (Monday to Friday, 9am to 6pm ET). Unused hours do not roll over. Month-to-month, cancellable with 7 days written notice.

Async-only rule. Delivery for every tier is 100% async. I do not schedule live calls, Zoom meetings, or video conferences. All communication happens via written message or recorded Loom. This is a feature, not a limitation: every deliverable is re-readable and re-watchable.

6. What you need to provide

Access: read access to the relevant code repository, share links, or zip of the codebase. For Cleanup and Guardian, write access to the repository or the ability for me to submit pull requests for your review.
Information: honest answers to my intake questions, including known issues and current state.
Responsiveness: reply to my questions within 2 business days. Slower responses extend the delivery timeline.
Decisions: when I flag something that needs your input (scope question, risk tradeoff), I need an answer to proceed.

7. What I will NOT do

I will not access systems, accounts, or services outside the scope of the agreed work.
I will not share your code, business details, or any confidential information with anyone.
I will not act in your name (signing contracts, communicating with your customers, etc.) unless explicitly asked in writing.
I will not perform formal compliance audits (HIPAA, SOC 2, PCI, GDPR). I can flag obvious red flags but not certify compliance.
I will not perform load testing or formal penetration testing.
I will not schedule live calls, Zoom meetings, or video conferences. All communication is async.

8. Payment

Audit: $1,000 paid in full before work begins. Invoice via Stripe, payable on receipt.
Cleanup: $3,500 paid in full before work begins, OR 50% before and 50% on delivery (Client's choice).
Guardian: $1,200 billed on the 1st of each calendar month. First month prorated if starting mid-month.

All amounts in USD. Payment is processed by Stripe. Late payment fee: $50 per week after 14 days past due. I reserve the right to pause work on any engagement with overdue payment until the balance is brought current.

9. Cancellation and refunds

Audit: If I have not started the audit, full refund. If I have started but not delivered, partial refund proportional to work remaining. If delivered, no refund.
Cleanup: Cancellable before kickoff, full refund minus a $250 admin fee. After kickoff, no refund. I will deliver whatever work was completed and document what was not.
Guardian: Cancellable any time with 7 days written notice to hello@rivetzco.com. The current month's fee is non-refundable.

10. Intellectual property

All code I write for you is yours. You own it from the moment it is written.
I retain the right to describe the work in general terms (for example, "I helped a SaaS founder fix their Lovable auth flow") but will not name you, your company, or share specific identifying details without written permission.
If we agree to a public case study, the scope and language will be approved by you before publishing.
Generic patterns, snippets, and methodology I develop while doing the work remain mine to use with future clients.
The website rivetzco.com, its design, copy, and brand assets are mine. You may not copy them to launch a competing service.

11. Confidentiality

Both parties agree to keep confidential any non-public information shared during this engagement. This includes (for me) your code, business strategy, financials, and customer data; and (for you) the contents of my audits, pricing, and methodology beyond what is publicly described on rivetzco.com.

A mutual NDA can be signed separately if either party prefers a formal document. I sign mutual NDAs as standard before any code changes hands.

12. Warranties and disclaimers

I provide engineering services to the best of my professional ability. I do not provide legal, financial, accounting, tax, or insurance advice.

The site and the services are provided "as is" and "as available." I make no warranty that any application will be free of bugs, security issues, or downtime after my work. I do guarantee that the specific issues I document as "fixed" in my deliverables are fixed at the time of delivery.

13. Limitation of liability

To the maximum extent permitted by law, my total liability for any claim arising out of or relating to my services is capped at the amount you paid me for the specific engagement giving rise to the claim.

I am not responsible for losses caused by your business decisions, your other vendors, third-party services I depend on (Stripe, Vercel, GitHub, etc.), or events outside my reasonable control.

In no event will I be liable for indirect, incidental, consequential, special, or punitive damages, including but not limited to lost profits, lost data, or business interruption, even if I have been advised of the possibility of such damages.

14. Indemnification

You agree to indemnify and hold me harmless from any claims, damages, or expenses (including reasonable attorney's fees) arising out of:

Your use of the deliverables in a manner outside the agreed scope
Your breach of these Terms
Your violation of any third-party rights through the application I worked on, where the violation was not introduced by my work

15. Term and termination

These Terms apply for as long as you use this site or have an active engagement with Rivetz. Sections that by their nature should survive termination (IP, confidentiality, liability, indemnification, governing law) will continue to apply.

I may suspend or terminate access to the site or an engagement if you breach these Terms, fail to pay, or behave abusively. Refunds in case of termination by me for cause follow the cancellation policy in Section 9.

16. Governing law and disputes

These Terms are governed by the laws of the Commonwealth of Virginia, United States, without regard to conflict of law principles. The exclusive venue for any disputes is the state or federal courts located in Virginia.

If we have a dispute, both parties agree to attempt resolution through good-faith conversation first. If that fails, both parties will attempt non-binding mediation before initiating any legal action. Each party bears its own costs.

17. Changes to these Terms

I may update these Terms from time to time. If I do, I will update the "Last updated" date at the top of this page. Material changes affecting existing Clients will be communicated by email before they take effect. Continued use of the site or services after changes constitutes acceptance of the updated Terms.

18. Contact

Questions, requests, or complaints: hello@rivetzco.com.

Operator: Jace Alfeche-Dungca, Rivetz. Based in Virginia, United States.