The selling point: Security on a budget. I'm very familiar with small company/startup life and the restrictions that come with it. If you can't afford/don't want a massive corporate security program - that doesn't mean you can't have decent security. I'm an information security executive familiar with ISO27001, PCI, privacy issues, linux administration, networking, penetration test, etc. I am not a lawyer, but have participated in many contract reviews and negotiations, and have a flair for digesting large legal documents into consumable format, highlighting key items. I can't give legal advice, but I can help determine when it is/isn't necessary. I have written hundreds of pages of security policy. I have written and edited a variety of terms and conditions. I'm comfortable participating in the latest trend of providing plain language comments/versions of Ts&Cs to post along side the legalese version.