Documents & agreements.
Our legal documents, policies, and terms of service — for complete transparency in our IT services and support agreements.
Everything in one place.
Every agreement, schedule, and policy that governs a Methodology IT engagement.
Core Agreement
Master Services Agreement
The master services agreement that governs every Methodology IT engagement. Covers service delivery, fees, term and termination, confidentiality, IP, warranties, liability, and the relationship between the MSA and each service attachment.
May 22, 2026 · v2026-05
Data Processing Agreement
Methodology IT's data processing addendum covering HIPAA Business Associate terms, CCPA/CPRA, GLBA, NY SHIELD, and GDPR. Defines roles, lawful bases, subprocessor obligations, breach notification, and data subject rights handling.
May 22, 2026 · v2026-05
Services Framework
Schedule of Services
The catalog of services Methodology IT offers, with tier descriptions, included scope, and the current rate card. Anchors every statement of work back to a defined service.
May 22, 2026 · v2026-05
Schedule of Third-Party Services
A current list of the third-party platforms, vendors, and subprocessors Methodology IT uses to deliver services — including links to each vendor's terms and privacy policies.
May 22, 2026 · v2026-05
Service Level Objectives
Methodology IT's response targets by priority, escalation path, and standard maintenance windows. Defines what 'on time' looks like and how we measure it.
May 22, 2026 · v2026-05
Service Attachment for Managed Services
The detail behind a Methodology IT managed services engagement — what's covered, what isn't, monitoring scope, change management, and the operational rhythm a managed services client should expect.
May 22, 2026 · v2026-05
Service Attachment for Managed Compliance Services
The detail behind Methodology IT's managed compliance offering across HIPAA, CIS Controls, PCI DSS, and SOC 2 — control mapping, evidence collection, attestation support, and audit prep.
May 22, 2026 · v2026-05
Service Attachment for Co-managed Services
How Methodology IT co-manages IT alongside an internal team — RACI, escalation between teams, tooling boundaries, and the difference between co-managed and fully managed engagements.
May 22, 2026 · v2026-05
Service Attachment for Artificial Intelligence Services
Terms specific to Methodology IT's AI services — data handling, model usage, prompt and output ownership, retention, training-data opt-outs, and the responsibilities each side carries.
May 22, 2026 · v2026-05
Service Attachment for Cloud and Hosting Services
Terms specific to cloud infrastructure, hosting, and VoIP delivery — including responsibilities under the shared-responsibility model, availability targets, and migration scope.
May 22, 2026 · v2026-05
Policies
Acceptable Use Policy
The acceptable-use rules that govern client use of Methodology IT services and managed environments. Covers prohibited activities, security expectations, and what triggers suspension.
May 22, 2026 · v2026-05
Patching Policy
The cadence and rings used to deploy patches across Methodology IT managed environments — including emergency patch handling, deferral rules, and exception requests.
May 22, 2026 · v2026-05
Security Practices
A customer-facing summary of the security controls Methodology IT operates internally and applies to managed environments — covering identity, endpoint, network, data, and incident response.
May 22, 2026 · v2026-05
Provider Holidays 2026
Methodology IT's 2026 holiday calendar — the days standard support coverage shifts to on-call and emergency-only response.
January 1, 2026 · v2026
Have questions?
Our team is available to answer questions about our policies, terms, or agreements.