Vulnerability Disclosure Program (VDP)

Alientec, LLC

Effective Date: 3/1/2026

1. Purpose and Scope

This Security Disclosure Policy (“Policy”) establishes the terms and conditions under which Alientec, LLC (“Alientec,” “Company,” “we,” “our,” or “us”) accepts and responds to reports of potential security vulnerabilities affecting its systems, products, services, and infrastructure.

Alientec is committed to maintaining the security, integrity, and availability of its technology platforms, including but not limited to ALIEN8 technology, AlienGuard VPN, and ALIEN8 Key. This Policy defines the procedures for responsible vulnerability disclosure and outlines the legal framework governing such disclosures.

2. Systems Covered by This Policy

This Policy applies solely to digital assets owned, operated, and controlled by Alientec, including:

• Alientec-owned domains and publicly accessible websites, including alientec.space
• ALIEN8 technology platforms and associated services
• AlienGuard VPN applications and infrastructure
• ALIEN8 Key systems and related APIs
• Cloud infrastructure managed directly by Alientec

This Policy does not apply to third-party services, integrations, vendors, or systems not owned or controlled by Alientec. Vulnerabilities in third-party systems must be reported directly to the applicable provider.

3. Submission of Vulnerability Reports

Individuals or entities who identify a potential security vulnerability (“Researcher”) may submit a report to:

security@alientec.space

To facilitate proper review, vulnerability reports must include, at minimum:

• A detailed description of the suspected vulnerability
• Identification of affected systems, products, domains, or APIs
• Reproduction steps sufficient to validate the issue
• Supporting documentation, such as logs, screenshots, or proof-of-concept code (if applicable)
• An assessment of potential impact
• Contact information for follow-up communication

Alientec requests that Researchers refrain from publicly disclosing any identified vulnerability until the Company has had a reasonable opportunity to investigate and remediate the issue.

4. Responsible Disclosure Requirements

All security research conducted under this Policy must adhere to the following conditions:

• Research must be conducted in good faith and solely for the purpose of identifying legitimate security vulnerabilities.
• Researchers must not access, modify, exfiltrate, destroy, or disclose data that does not belong to them.
• Researchers must not engage in denial-of-service attacks, automated scanning that materially impacts system performance, brute force attacks, or service disruption.
• Social engineering, phishing, physical intrusion, and unauthorized access to employee or customer accounts are strictly prohibited.
• Testing must be limited to systems explicitly covered under Section 2 of this Policy.

Failure to comply with these requirements may result in termination of safe harbor protections and potential legal action.

5. Safe Harbor Statement

Alientec will not initiate civil legal action against a Researcher for activities that:

• Are conducted in good faith;
• Comply fully with this Policy;
• Do not result in data destruction, service disruption, or unauthorized data access; and
• Are promptly reported in accordance with Section 3.

This Safe Harbor provision applies only to conduct that strictly adheres to the terms of this Policy. Activities outside the scope of this Policy may be subject to investigation and enforcement under applicable law.

Nothing in this Policy shall be construed as granting authorization for unlawful activity.

6. Vulnerability Evaluation and Response Process

Upon receipt of a valid vulnerability report, Alientec will:

1. Acknowledge receipt within a reasonable timeframe;
2. Evaluate and validate the reported vulnerability;
3. Assess risk severity and potential impact;
4. Prioritize remediation efforts;
5. Implement corrective measures as appropriate; and
6. Communicate status updates to the Researcher when feasible.

Alientec reserves sole discretion in determining the severity, prioritization, and remediation timeline for any reported vulnerability.

7. No Compensation or Bug Bounty

Unless expressly stated in a separate written agreement, Alientec does not operate a public bug bounty program. Submission of a vulnerability report does not entitle the Researcher to financial compensation.

8. Confidentiality

All vulnerability reports and related communications shall be treated as confidential. Researchers agree not to disclose any information regarding reported vulnerabilities without prior written authorization from Alientec.

Alientec may publicly acknowledge Researchers at its discretion, subject to mutual agreement.

9. Post-Quantum and Emerging Threat Commitment

Alientec is committed to advancing cybersecurity technologies in response to evolving computational capabilities, including advancements in artificial intelligence and quantum computing. Through continued development of ALIEN8 technology, Alientec seeks to address emerging security challenges with adaptive encryption and intelligent protection systems.

10. Policy Modifications

Alientec reserves the right to modify or update this Policy at any time without prior notice. Updates shall become effective upon publication on alientec.space.

Refund Policy

AlienGuard™ subscriptions are billed in advance. For purchases made directly through the AlienGuard™ website, refund requests must be submitted within fourteen days of the original purchase date. Refunds are granted at the discretion of Alientec, LLC and may be denied in cases of abuse, repeated refund requests, or violation of the Terms of Service.

Subscriptions purchased through the Apple App Store or Google Play Store are governed by the refund policies of those platforms. Alientec, LLC does not control or override the billing decisions of third-party app stores.

You may cancel your subscription at any time to prevent future charges. Cancellation does not retroactively refund payments already processed. Refund inquiries may be directed to support@alienguard.com.

Terms of Service

Effective Date: January 1, 2026

These Terms of Service govern your use of AlienGuard™ VPN, a product of Alientec, LLC. By accessing or using AlienGuard, you agree to be bound by these Terms. If you do not agree, you may not use the service.

AlienGuard™ grants you a limited, non-exclusive, non-transferable, and revocable license to use the software for lawful purposes. You agree not to reverse engineer, decompile, distribute, resell, sublicense, or exploit the software in any unauthorized manner. You further agree not to use the service for unlawful activities, including but not limited to fraud, harassment, intellectual property infringement, distribution of malicious software, or any conduct that violates applicable law.

Subscriptions are billed in advance according to the pricing displayed at the time of purchase. We reserve the right to modify pricing, features, or service offerings with reasonable notice. Subscriptions purchased through the Apple App Store or Google Play Store are subject to their respective billing terms and conditions.

While we strive to maintain reliable and uninterrupted service, AlienGuard™ is provided on an “as is” and “as available” basis without warranties of any kind, whether express or implied. We do not guarantee uninterrupted availability, absolute security, or error-free performance.

To the maximum extent permitted by law, Alientec, LLC shall not be liable for indirect, incidental, consequential, special, or punitive damages, including loss of data, revenue, profits, or business opportunities arising from the use or inability to use the service.

We reserve the right to suspend or terminate accounts that violate these Terms. These Terms are governed by the laws of the State of Colorado, United States, without regard to conflict of law principles.

We may update these Terms periodically. Continued use of AlienGuard™ after changes constitutes acceptance of the revised Terms. For inquiries regarding these Terms, contact support@alienguard.com.

Privacy Policy

Effective Date: January 1, 2026

AlienGuard™ is a software product of Alientec, LLC, a Limited Liability Company (“Company,” “we,” “us,” or “our”). This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use the AlienGuard™ VPN application, our website, or any related services provided by Alientec, LLC. By accessing or using AlienGuard™, you agree to the practices described in this Privacy Policy.

AlienGuard™ is engineered with privacy by design. We are committed to minimizing data collection and avoiding unnecessary retention of user information. We collect only the information reasonably required to provide and maintain the service. This may include an email address (if voluntarily provided), an account identifier, subscription status, and limited technical data such as application version, device type, anonymous crash reports, and subscription validation information. We do not require real names to use the service.

Payments are processed by third-party providers such as Stripe, Apple App Store, or Google Play. We do not store full credit card numbers, bank account details, or payment credentials. Any billing information collected by payment processors is subject to their respective privacy policies.

AlienGuard™ does not log browsing history, DNS queries, traffic destinations, session content, or persistent IP address logs tied to user activity. We do not inspect, monitor, or analyze the contents of encrypted user traffic. Technical data collected is used solely for service functionality, stability, fraud prevention, and subscription verification.

We may disclose limited account information if required to comply with applicable laws, legal processes, or enforceable governmental requests. We do not sell, rent, or trade personal information. Account information is retained only as long as necessary to provide active service, meet legal obligations, resolve disputes, or enforce agreements.

We implement reasonable administrative, technical, and organizational safeguards designed to protect user information. While no system can guarantee absolute security, we continuously maintain infrastructure and security practices appropriate to the nature of our services.

Users may request access to, correction of, or deletion of their account information by contacting support@alienguard.com. AlienGuard™ is not intended for individuals under the age of eighteen. We do not knowingly collect personal information from minors.

We may update this Privacy Policy periodically. Continued use of the service after updates constitutes acceptance of any revisions.

For questions regarding this Privacy Policy, please contact Alientec, LLC at support@alienguard.com. The Company is based in the United States.

ALIEN8 Business Security — In Active Development

ALIEN8 Key — In Active Development

ALIEN8 Neural Cryptographic Core

Phase 3 forms the core cryptographic engine of the ALIEN8 system, transforming the high-entropy feature outputs from Phase 2 into deterministic, reproducible, and security-hardened cryptographic material. Built on a Keccak-inspired sponge construction, the phase absorbs prepared input into a fixed-width internal state and applies a deterministic neural permutation engine that delivers strong nonlinear mixing, diffusion, and avalanche behavior across the entire state. Explicit domain separation ensures that all supported cryptographic functions—hashing, XOF, KDF, MAC, and AEAD—remain securely isolated and non-interchangeable while sharing the same unified structure. Through structured input framing, iterative absorption, AI-guided permutation, and controlled output squeezing, Phase 3 produces purpose-bound, platform-independent keys and cryptographic outputs with no retained internal state, aligning with established evaluation methodologies while introducing adaptive neural mixing to strengthen resistance against modern and future attack models.

Feature Extraction & AI Transformation

Phase 2 uses advanced AI and machine learning to transform the validated data from Phase 1 into a stable, high-entropy digital fingerprint optimized for cryptographic security. Through AI-driven feature identification, error reduction, and contrastive self-supervised learning, the system extracts the most meaningful patterns and converts them into compact, reproducible embeddings that preserve uniqueness and consistency even from imperfect inputs. The AI produces precise and structured fingerprint vectors with supporting integrity metadata, while continuous validation and entropy safeguards ensure each output is reliable, tamper-resistant, and ready to power secure key generation in Phase 3.

AI-Driven Data Selection & Sequencing

Phase 1 builds the secure foundation of ALIEN8 by using an AI Watchdog to gather, standardize, and rigorously validate diverse real-world data before transforming it into a fully randomized, high-entropy stream suitable for cryptography. Through controlled acquisition, structured normalization, multi-stage sequencing, and continuous entropy monitoring, the system removes bias, increases unpredictability, and ensures transparency and reproducibility. Only data that meets strict validation criteria advances to Phase 2, creating a trusted starting point for advanced AI processing and next-generation encryption.

Quantum Computing

Quantum computing is a form of computing built by engineering physical quantum systems, such as specially controlled particles or superconducting circuits, so they can store and manipulate information according to the laws of quantum mechanics rather than classical electronics. These systems use quantum bits that can exist in multiple states at the same time and become linked together, allowing many computational possibilities to be explored simultaneously.

Quantum computing influences cryptography analysis because certain quantum algorithms can solve the mathematical problems that protect modern encryption far more efficiently than classical computers. These algorithms can factor extremely large numbers and compute discrete logarithms, which would undermine many commonly used public key encryption methods, and they can also accelerate brute force searches in a way that effectively reduces the strength of symmetric encryption. Although practical large scale quantum attacks are not yet possible, the potential risk is significant enough that researchers and governments are developing quantum resistant cryptographic methods to protect future data and communications.