Haven Logo
  • Services

    Explore our Services

    • Exploitative External Penetration Test

      Simulate a cyberattack to evaluate the organization’s external networks, web applications, and systems.


      Fixed Price: $3,995

    • Essential External Threat Evaluation

      Comprehend the risks posed by cyber threats to your operations, assets, and individuals.


      Fixed Price: $1,395

    • External Vulnerability Assessment

      Scan perimeter defenses such as websites, web applications, and network firewalls for weaknesses.


      Fixed Price: $995

    • Public Cloud Best Practices Review

      Explore best practices related to public cloud environments. Assess operations, security, reliability, performance, and costs.


      Fixed Price: $2,995

    • Phishing Assessment

      Measure end-users’ vulnerability to perform actions requested by attackers.


      Fixed Price: $495

    • Enterprise Security Assessment

      Conduct a comprehensive security analysis of an entire infrastructure, hosts, networks, applications, etc.


      Fixed Price: $7,995

    • Internal Vulnerability Assessment

      Identify vulnerabilities within networks, internal servers, workstations, and applications.


      Fixed Price: $1,795

    • Automated Dynamic Application Security Test

      Black-box testing methodology used to uncover potential security flaws by performing automated security scanning againsts an application


      Fixed Price: $1,995

    • FTC Safeguards Rule Compliance Assessment

      Refers to a process undertaken by the United States Federal Trade Commission to assess and enforce privacy safeguards and regulations


      Fixed Price: $7,995

  • Solutions

    Organization Size

    • Customer Experience list icon Small Business
    • Customer Experience list icon Medium-sized Companies
    • Customer Experience list icon Enterprises

    Industry Solutions

    • Car Light Icon Automotive
      Car Light Icon Construction
      Car Light Icon Retail
      Car Light Icon Manufacturing
    • Car Light Icon Shopping
      Car Light Icon Healthcare
      Car Light Icon Travel
      Car Light Icon Technology
    • Car Light Icon Hospitality
      Car Light Icon Insurance
      Car Light Icon Transportation
      Car Light Icon Legal
    • Car Light Icon Apps
      Car Light Icon Realty
      Car Light Icon HR
      Car Light Icon Civic

    Financial Institutions & FTC Safeguards Rule

    • Financial Advisors
      Investment Advisors
      Tax Preparers
    • Accountants
      Payday Lenders
      Appraisers
    • Mortgage Brokers
      Wire Transferors
      Check Cashers
    • Collection Agencies
      Fintech
      Auto Dealers
  • Learn

    Learning Center

    • Customer Experience list icon Everything
    • Customer Experience list icon News
    • Customer Experience list icon Statistics
    • Customer Experience list icon Insights
    News image
    Insights

    Cybersecurity Essentials: Building Digital Fortresses

    Learn more
    Case Study image
    Insights

    Navigating the Regulatory Maze: Guide to FTC Privacy Safeguard Compliance

    Learn more
  • About

    Company Profile

    • Customer Experience list icon About Us
    • Customer Experience list icon Customer Experience
    • Partnerships list icon Partnerships
    • Customer Experience list icon Contact Us

    Message from our Team

    Icon for citate

    Here at Haven, we're dedicated to fortifying your digital defenses. Through innovative technology and a growing team of experts, we're staying ahead of emerging threats to safeguard your valuable assets. We continually strive to enhance our services and adapt to the evolving landscape of cybersecurity, ensuring that you remain protected against new challenges and vulnerabilities. Thank you for entrusting us with your cybersecurity needs and trusting us to keep your digital world secure. Your confidence in us drives our commitment to excellence.

    CEO profile photo
    • USA
    • European Union
  • Contact Us
  • My Account
  • Start
  • Services

    Explore our services

    • Exploitative External Penetration Test

      Simulate a cyberattack to evaluate the organization’s external networks, web applications, and systems.


      Fixed Price: $3,995


      Fixed Price: $3,995

    • Essential External Threat Evaluation

      Comprehend the risks posed by cyber threats to your operations, assets, and individuals.


      Fixed Price: $1,395

    • External Vulnerability Assessment

      Scan perimeter defenses such as websites, web applications, and network firewalls for weaknesses.


      Fixed Price: $995

    • Public Cloud Best Practices Review

      Explore best practices related to public cloud environments. Assess operations, security, reliability, performance, and costs.


      Fixed Price: $2,995

    • Phishing Assessment

      Measure end-users’ vulnerability to perform actions requested by attackers.


      Fixed Price: $495

    • Enterprise Security Assessment

      Conduct a comprehensive security analysis of an entire infrastructure, hosts, networks, applications, etc.


      Fixed Price: $7,995

    • Internal Vulnerability Assessment

      Identify vulnerabilities within networks, internal servers, workstations, and applications.


      Fixed Price: $1,795

    • Automated Dynamic Application Security Test

      Black-box testing methodology used to uncover potential security flaws by performing automated security scanning againsts an application


      Fixed Price: $1,995

    • FTC Safeguards Rule Compliance Assessment

      Refers to a process undertaken by the United States Federal Trade Commission to assess and enforce privacy safeguards and regulations


      Fixed Price: $7,995

  • Solutions

    Organization Size

    • Customer Experience list icon Small Business
    • Customer Experience list icon Medium-sized Companies
    • Customer Experience list icon Enterprises

    Industry Solutions

    • Car Light Icon Automotive
      Car Light Icon Contruction
      Car Light Icon Retail
      Car Light Icon Manufacturing
    • Car Light Icon Shopping
      Car Light Icon Healthcare
      Car Light Icon Travel
      Car Light Icon Technology
    • Car Light Icon Hospitality
      Car Light Icon Insurance
      Car Light Icon Transportation
      Car Light Icon Legal
    • Car Light Icon Apps & Software
      Car Light Icon Real Estate
      Car Light Icon HR
      Car Light Icon Public Services

    FTC Safeguard Rule & Financial Institutions

    • Financial Advisors
      Investment Advisors
      Tax Preparers
    • Accountants
      Payday Lenders
      Appraisers
    • Mortgage Brokers
      Wire Transferors
      Check Cashers
    • Collection Agencies
      Fintech
      Auto Dealers
  • Learn

    Learning Center

    • Customer Experience list icon Everything
    • Customer Experience list icon News
    • Customer Experience list icon Statistics
    • Customer Experience list icon Insights
  • About

    Company Profile

    • Customer Experience list icon About Us
    • Customer Experience list icon Customer Experience
    • Partnerships list icon Partnerships
    • Customer Experience list icon Contact Us

Phishing Assessment

Cybersecurity Starts with Awareness

Make Sure that your Information Stays Safe.

Simulated phishing tests play a crucial role in an organization’s information security program. Your employees serve as the primary and final defense against data breaches and ransomware attacks. These tests involve simulating attacks to identify vulnerabilities, assess the effectiveness of security controls, and ensure that the response procedures are robust.

  • $395 Test Fee + $10 per e-mail address targeted
  • Test up to 25 Individual IP Addresses
  • Extensive Formal Threat Report
  • #NoGimmicks Guarantee
  • Get Started
  • Let's Talk

What is a Phishing Attack?

Phishing attacks involve social engineering tactics where criminals aim to deceive users into divulging sensitive information or performing harmful actions. These attackers may manipulate users into clicking on malicious links leading to harmful websites or downloading attachments that can infect their networks with ransomware or malware. Cybercriminals predominantly execute phishing attacks via emails, but they also exploit malicious websites and telephone scams to target vulnerable organizations. The consequences of phishing attacks include sensitive data loss, compromised accounts, and ransomware infections. As businesses increasingly digitize and transition to the cloud, global communication networks face a surge in attacks across various forms.

Phishing Attack Statistics

  • 100 million

    Every day, Google thwarts approximately 100 million phishing emails.

  • 46%

    In 2021, approximately 46% of email traffic worldwide was classified as spam.

  • 17.8%

    In 2021, the average click rate for a phishing campaign was 17.8%.

  • 700 million

    In 2023, the average click rate for a phishing campaign skyrocketed by over 40%, resulting in almost 700 million attempts to access phishing links.

What are the benefits of phishing assessment?

Simulated phishing attacks serve as a direct and practical gauge of the effectiveness of the social engineering components in your cybersecurity training. Whether it’s due to generic content or infrequent training, uncovering these issues contributes to enhancing phishing awareness over time through improved training. Simulated phishing exercises present real-world scenarios for employees to apply their knowledge. While answering questions correctly on a multiple-choice test about phishing is one thing, identifying a phishing email in the midst of daily work is an entirely different challenge.

  • File Certificate Icon
    Enhanced Security Visibility

    Phishing assessments reveal an organization’s vulnerability to phishing attacks. By simulating real-world scenarios, businesses can pinpoint weaknesses and gaps in their security defenses.

  • Basic External Penetration Test Icon
    Employee Training and Vigilance

    These assessments serve as valuable training tools. Through simulated phishing campaigns, employees learn to recognize suspicious emails, reinforcing security awareness and keeping them informed about evolving threats.

  • Basic External Penetration Test Icon
    Proactive Protection of Sensitive Data

    Identifying vulnerabilities via phishing assessments enables organizations to address security gaps. Strengthening defenses helps safeguard sensitive information, prevent breaches, and protect critical systems.

  • Basic External Penetration Test Icon
    Risk Reduction

    Assessments provide insights into an organization’s susceptibility to phishing attacks. By addressing weaknesses, the risk of falling victim to malicious emails, fraudulent links, and social engineering tactics is minimized.

  • ../Basic External Penetration Test Icon
    Cultivating a Security-First Mindset

    Assessment results contribute to creating a security-first culture. Implementing robust security policies, promoting two-factor authentication, and fostering vigilance enhance overall resilience against phishing threats.

  • Basic External Penetration Test Icon
    Incident Response Evaluation

    Phishing assessments demonstrate the efficacy of incident response plans. Organizations can identify gaps and improve their ability to handle security incidents promptly.

Why you should consider our services

Background image for first slide

Discover Weaknesses in Cybersecurity

We have the capability to thoroughly assess the robustness of your networks, thanks to our extensive portfolio of both internal and external IT security audit and consulting services. Our expert team is equipped to conduct in-depth evaluations of your network infrastructure, both from within and outside your organization's perimeter. With our internal audits, we delve into the heart of your network, identifying vulnerabilities, misconfigurations, and potential weaknesses that could be exploited. Our external assessments provide a broader perspective by simulating the viewpoint of an external attacker, scrutinizing your network's defenses from the outside in.

Background image for second slide

Ensure Legal & Regulatory Compliance

In an ever-evolving landscape of legal and regulatory requirements, we are your trusted partner in staying on the right side of the law. We offer comprehensive solutions tailored to meet your obligations under critical statutes such as GLBA, HIPAA, FTC Safeguards Rule and a host of consumer protection laws and regulations. Our expertise and in-depth knowledge of these regulations enable us to develop customized compliance strategies that align seamlessly with your business operations. We work closely with your team to ensure that all aspects of your organization, from data handling to security practices, are in full compliance.

Background image for second slide

Safeguard Corporate Reputation & Data

Allow us to assist you in safeguarding your reputation, as cybersecurity, legal, and regulatory incidents carry substantial reputational risks, alongside their other associated penalties. According to a report by Forbes Insight, 46% of organizations have experienced harm to their reputation following a data breach, while 19% have encountered damage to their reputation and brand due to third-party security breaches. These statistics underscore the significant impact such incidents can have. We are here to ensure your organization does not fall into these alarming statistics.

Background image for second slide

Enhance your Oversight

Leveraging the expertise of external consultants, such as Haven Risk, can empower your organization to establish heightened levels of accountability across the board. This includes not only your internal staff but also your external outsourcing partners. By tapping into our services, you can reinforce your oversight capabilities, ensuring that every aspect of your operations adheres to the highest standards of excellence and best practices. Our collaborative approach fosters a culture of continuous improvement, where transparency and trust drive success. As we work together, we’ll tailor solutions that align with your unique needs and provide strategic guidance.

Background image for first slide

Business Continuity Planning

By addressing security, network, personnel, and processes, we elevate your organization’s resilience. Together, we build a robust foundation that ensures uninterrupted operations, even in challenging circumstances. This comprehensive framework allows your organization to adapt swiftly, respond effectively, and thrive in the face of adversity. Furthermore, our team of experts collaborates closely with your stakeholders to tailor solutions that align with your unique business needs. We continuously monitor and refine our strategies, ensuring that your organization remains agile and prepared for any unexpected events.

Background image for second slide

Peace of Mind

When your company invests in IT security and risk management services, it gains more than just protection, it cultivates peace of mind. Our comprehensive strategies ensure uninterrupted operations, stability, and reduced legal liability. Our experts tailor risk assessments to your specific industry and business model. This personalized approach ensures targeted risk management. We safeguard staff well-being, align with your business objectives, and empower your organization to thrive even in challenging circumstances.

Security Vulnerabilities
Compliance
Corporate Reputation
Improve Oversight
Business Continuity
Peace of Mind

Stay Compliant and avoid Fines

Ensure that your organization adheres to relevant laws, regulations, and industry standards. By staying compliant, you minimize risks associated with legal penalties, fines, and lawsuits. Non-compliance can lead to financial losses and damage to your organization’s reputation.

Phishing Assessments Steps and Duration

Federal Tade Commission (FTC) Safeguards Rule primary objective is to ensure the privacy.Federal Trade Commission (FTC) Safeguards Rule primary objective is to ensure the privacy

Duration: 3-5 days
Deliverables: Formal Threat Report
Preparation and Planning
1-2 hours

Define the scope of the test, including the accounts to be assessed in accordance with the Statement of Work of the engagement. Obtain necessary permissions and authorizations from relevant stakeholders, as applicable. Determine an acceptable testing date and window of time for performance of the assessment.

Phishing Attempt
2-4 hours

Using an agreed-upon simulated phishing message, generate an e-mail to targeted users using an assumed name and e-mail address.

Phishing Analysis
48-72 hours

Monitor for and collect responses from users to the phishing exercises.

Reporting & Remediation
4-8 hours

Document all findings, including identified vulnerabilities, successful exploits, and recommendations for remediation. Present a comprehensive report to the organization's stakeholders, detailing the results of the test and providing guidance on prioritizing and addressing security weaknesses.

Frequently Asked Questions

In order to clarify any questions you may have regarding this service, we have provided a series of common questions below. Also, Please be sure to read the Terms & Conditions of this advertisement for further information.

What does the phishing assessment cover and how will it be performed?
This service is a simulated phishing attack targeting e-mail addresses you designate within your organization. This attack is designed to mimic or emulate a real phishing attack targeting your users. It will be performed via e-mail by our personnel.
What information is needed to perform the service?
We will require appropriate authorization from your company, including a list of designated targets and an approved ‘from’ address in the event you desire that we posture the sender as being a member of your company (additional authorizations are required from the individual being impersonated). We will then – in consultation with you – design a phishing campaign and approved e-mail message to be distributed to your staff and conduct the campaign at a time of your choosing.

This assessment may also require you to whitelist our e-mail address utilized for the testing or release it to your personnel if it is caught by junk or quarantine services. In the course of this testing, we offer you the option to release or whitelist our assessment e-mails or we can report on the efficacy of your phishing protection systems and report on the interception of our attempt.
What tools do you utilize in the phishing assessment?
We primarily utilize Kali Linux in conjunction with e-mail servers and e-mail addresses that we control and utilize to conduct the phishing assessment (we may still emulate sending the addresses from what appears to be a different address utilizing e-mail spoofing techniques).
Who will be assigned to our review? Do you utilize 3rd party contractors or outsourcing for this service?
For our review services, you will work with one of our experienced technical IT auditors, which provides our firm with the ability to discuss – in detail – the findings of our review with your internal IT personnel or your 3rd party network services providers or vendors. Your test will be performed by direct employees of HavenRisk. At present, all of our employees are based in the United States, subject to extensive criminal and civil background checks, and have confidentiality agreements with our firm. We do not utilize 3rd party contractors to perform any of our testing without providing prior notice to you and, unless otherwise stated, all testing will be performed by our direct employees. We do not outsource any testing or assurance activities outside of the United States.
We utilize a cloud hosting provider (AWS, Azure, Google Cloud, etc.). Can you still perform testing services?
Absolutely. We frequently performing testing services on systems hosted by Amazon Web Services, Microsoft Azure, and other cloud providers. Please note: these providers commonly require YOU to request and obtain permission from them prior to the start of any testing. It is your responsibility to obtain this permission and provide documentation to this effect to our personnel prior to the commencement of any testing.
When can the review be performed?
Performance of testing requires an executed engagement letter, which includes a comprehensive statement of work, between HavenRisk and your company. Once we have the appropriate contracts in place, testing can ordinarily be scheduled to commence within the next 72 to 96 hours; however, expedited testing may be available upon request.
How frequently will the review be performed?
Our fixed price review services provide for the performance of a single assessment at a time of your choosing. We also offer more frequent testing intervals, which may or may not be further discounted depending on scope size and frequency.
How are review results reported?
We issue a formal report for all of our review services. This report will include an overview of the findings from our test (management report), a summary of the scope, as well as any recommendations regarding remediation. A copy of the full testing results will be included as an appendix to our report where applicable. To reiterate the above, the management report is written directly by our personnel and the results of any automated testing or other technical activities are added as an addendum, with our goal being that the final deliverable from our engagement will be polished and understandable.
How will we receive the findings from our review?
We issue all of our reports in electronic format (PDF) via our proprietary secure website or via secure e-mail. Report turnaround time may require one to two weeks in order to process the report through our internal quality control function; however, expedited issuance of reports is available upon advance request.
Can you issue multiple reports for your test? I have several wholly-owned subsidiaries in other countries that require separate formal reports, even though all IPs are owned by our parent company.
Yes, we are able to issue additional formal reports that separate the results of our testing, but an additional cost may be incurred. As stated above, our fixed price is for delivery of a very inclusive yet specific service offering. We don’t pad our pricing to cover deviations from the norm, so changes of this nature may result in an additional charge. We always commit to keep any additional costs fair and commensurate to the cost of the underlying engagement.
Can I receive a sample report?
Absolutely, please  contact us  if you would like to obtain a sample review report.
We have more IPs or accounts than what is specified in the scope of your fixed price services. Can you provide testing for more than the advertised scopes?
Certainly! We commonly perform services that exceed our baseline scope sizes and we will work with you to adjust our advertised fixed pricing to accommodate your scoping needs.
Is re-testing included in the fixed price and, if not, do you offer this service?
Re-testing is not included in the fixed price. By utilizing fixed, value-based pricing, our goal is to deliver a fair value to all our clients regardless of whether or not a given client requires re-testing services. In consequence, our service offering is not padded with additional time or margins that may or may not be justified depending on your decision to request re-testing. If re-testing is required, we do offer this service at a reasonable additional fixed fee of 60% of the original project cost for a single re-test, including the issuance of another formal report. Re-testing must be performed within 180 calendar days of the initial test.
Does your test satisfy compliance with PCI DSS or another compliance requirement or our contractual obligations?
We encourage every client to review services offered by HavenRisk or any other service provider independently to form a judgment as to whether or not a given offer will satisfy a legal, regulatory, or industry audit or monitoring requirement as we make no representations as to the sufficiency of our procedures for satisfying any contractual or regulatory requirements.

Terms & Conditions

This advertisement represents an ‘invitation to treat’ and any acceptance of the advertised terms will not be considered a binding contract, which requires the written execution of an engagement letter with Haven Risk & Advisory Services, LLC. This engagement letter includes additional restrictions and limitations regarding the advertised service and must be executed before the commencement of these services. The terms stated above, as well as through any mailings, brochures, or electronic advertisements, may be amended, or this advertisement may be revoked or cancelled, at any time by Haven Risk & Advisory Services, LLC, with or without notice. As advertised above, the stated service fee will cover the performance of off-site review services based on the scoping limits described on this site. This testing will be conducted using automated tools of our choice and we will rely upon information provided to us by the client in the performance of this test. At the conclusion of our testing, we will issue a report to the client in electronic format via secure e-mail or our secure website. The terms advertised above are only available to formally organized business or non-profit entities located in the United States of America. Entities located outside the United States should contact us for further information regarding these services.

Haven Insights

News image
Insights

Navigating the Regulatory Maze: Guide to FTC Privacy Safeguard Compliance

In the digital age, complying with the Federal Trade Commission (FTC) regulations is crucial for businesses. The FTC oversees advertising, marketing, data privacy, and consumer protection, with non-compliance risking penalties and trust erosion.

Learn more
News image
Statistics

Cybersecurity Statistics: Understanding the Landscape of Digital Threats

Explore the following statistics to gain insight into the scale of cyber threats, the industries most affected, evolving technologies, and the importance of user awareness and preparedness in safeguarding against cyberattacks.

Learn more
News image
INSIGHTS

Cybersecurity in 2024: Navigating the Ever-Evolving Digital Landscape

In an era defined by rapid technological advancement, the importance of cybersecurity has never been more critical. As we forge ahead into 2024, the digital landscape continues to evolve, presenting both opportunities and challenges for individuals, businesses, and governments alike.

Learn more
News image
NEWS

The Intersection of AI and Cybersecurity

In the rapidly evolving landscape of cybersecurity, the role of artificial intelligence (AI) has emerged as both a formidable defender and a potential threat. As technology advances, so do the tactics of cybercriminals, necessitating innovative approaches to protect digital assets.

Learn more
News image
INSIGHTS

A Comprehensive Review of Public Cloud Best Practices

In today's digital landscape, harnessing the power of the public cloud is no longer a mere option but a strategic imperative for businesses worldwide. Public cloud services offer unparalleled scalability, flexibility, and cost-efficiency, enabling organizations to innovate rapidly and stay competitive in an ever-evolving market.

Learn more
News image
INSIGHTS

Cybersecurity Essentials: Building Digital Fortresses

In an age where our lives are intricately intertwined with digital technology, ensuring the security of our digital assets has become paramount. Cybersecurity, once relegated to the realm of IT departments, has now become a concern for individuals, businesses, and governments alike.

Learn more
News image
NEWS

Sophisticated Landscape of Phishing Trends in 2024

In the ever-evolving landscape of cybersecurity threats, phishing continues to stand out as a formidable adversary. As we traverse further into the digital age, the tactics employed by cybercriminals become increasingly sophisticated, exploiting vulnerabilities in technology and human behavior alike.

Learn more
News image
Insights

Exploring Prominent Phishing Incidents: Lessons Learned

In our interconnected world, phishing is a major threat to individuals and organizations. These deceptive tactics aim to extract sensitive information like passwords and credit card numbers.

Learn more
News image
Insights

The Intersection of Cybersecurity and the FTC Safeguards Rule

In an era where data breaches and cyber threats are rampant, safeguarding financial data has become paramount for both businesses and consumers alike. The convergence of cybersecurity practices with regulatory frameworks, such as the Federal Trade Commission (FTC) Safeguards Rule, plays a pivotal role in ensuring the protection of sensitive financial information.

Learn more

Proactively take Control of your Organization's
IT Security and Risk Management

Establish a strategic plan to shield against potential risks

Get Started
Let's Talk
  • 1 (888) 484-7945 (US & Canada)
  • 1 (415) 418-2185 (International)
  • Get in Touch
  1. Services
  2. Exploitative External Penetration Test
  3. Essential External Threat Evaluation
  4. External Vulnerability Assessment
  5. Public Cloud Best Practices Review
  6. Phishing Assessment
  7. Enterprise Security Assessment
  8. Internal Vulnerability Assessment
  9. Automated Dynamic Application Security
  10. FTC Safeguards Rule Compliance
  1. Solutions
  2. Automotive
  3. Construction
  4. Retail
  5. Manufacturing
  6. Online Shopping
  7. Healthcare
  8. Travel
  9. Technology
  1. More Solutions
  2. Hospitality
  3. Insurance
  4. Transportation
  5. Legal
  6. Apps & Software
  7. Real Estate
  8. Human Resources
  9. Public Services
  1. About
  2. About Us
  3. Customer Experience
  4. Partnerships
  5. Contact Us
Services
  1. Exploitative External Penetration Test
  2. Essential External Threat Evaluation
  3. External Vulnerability Assessment
  4. Public Cloud Best Practices Review
  5. Phishing Assessment
  6. Enterprise Security Assessment
  7. Internal Vulnerability Assessment
  8. Automated Dynamic Application Security
  9. FTC Safeguards Rule Compliance
Solutions
  1. Automotive
  2. Construction
  3. Retail
  4. Manufacturing
  5. Online Shopping
  6. Healthcare
  7. Travel
  8. Technology
  9. Hospitality
  10. Insurance
  11. Transportation
  12. Legal
  13. Apps & Software
  14. Real Estate
  15. Human Resources
  16. Public Services
About
  1. About Us
  2. Customer Experience
  3. Partnerships
  4. Contact Us

© Haven Risk & Advisory Services, LLC  |  Privacy Policy  |  Terms of Service  |

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.