TelhawkTELHAWK
Legal

Telhawk Systems, Inc. Terms of Service

Effective Date: June 1, 2026 · Last Updated: June 1, 2026

These Terms of Service (“Terms”) govern access to and use of the websites, portals, products, services, reports, audit workflows, software review services, AI security validation services, AI-agent review services, code audit services, remediation validation services, and related offerings provided by Telhawk Systems, Inc. (“Telhawk,” “we,” “our,” or “us”).

By accessing our website, submitting information to Telhawk, requesting services, using a Telhawk portal or workflow, receiving audit results, or otherwise using our services, you agree to these Terms. If you are using the services on behalf of a company or other organization, you represent that you have authority to bind that organization to these Terms.

These Terms may be supplemented by order forms, statements of work, master services agreements, data processing agreements, nondisclosure agreements, partner agreements, service-specific terms, or other written agreements between you and Telhawk. If there is a conflict between these Terms and a signed written agreement, the signed written agreement controls for that specific engagement.

1. Telhawk Services

Telhawk provides software security and cybersecurity services that may include:

  • Code and application security review
  • API security review
  • AI-agent security review
  • AI-generated code review
  • AI-assisted security validation
  • Proof-backed vulnerability findings
  • Remediation guidance
  • Remediation validation
  • Audit-ready reporting
  • Partner-delivered audit workflows
  • Portal, API, repository, or workflow-based review access
  • Related cybersecurity advisory, support, and reporting services

The specific services, scope, deliverables, timelines, pricing, and support obligations for any engagement may be described in an order form, statement of work, service agreement, or other written document.

2. No Guarantee of Complete Security

Telhawk services are designed to help identify, explain, prioritize, remediate, and validate certain security risks. However, no security review, code audit, AI-assisted analysis, automated tool, human review, penetration test, vulnerability assessment, or validation process can guarantee that all vulnerabilities, weaknesses, defects, misconfigurations, or security issues will be found.

Unless expressly stated in a signed written agreement, Telhawk does not guarantee:

  • Complete security
  • Discovery of every vulnerability
  • Elimination of all risk
  • Absence of future incidents
  • Compliance certification
  • Regulatory approval
  • Successful completion of SOC 2, ISO 27001, PCI, HIPAA, FedRAMP, or any other compliance program
  • That any customer system is safe, secure, or non-exploitable
  • That all findings generated by third-party tools, LLMs, scanners, or customers are accurate
  • That all remediation efforts will be successful without further review

Telhawk provides security review and validation support. Final responsibility for security decisions, deployment decisions, remediation decisions, compliance obligations, risk acceptance, and production use remains with the customer.

3. Customer Authorization and Responsibilities

You represent and warrant that you have all rights, permissions, and authorizations necessary to submit, connect, scan, test, review, analyze, or authorize Telhawk to access any code, repository, system, API, application, AI agent, cloud environment, dataset, log file, workflow, or technical material provided to Telhawk.

You are responsible for:

  • Providing accurate information
  • Defining the authorized review scope
  • Ensuring Telhawk is authorized to review submitted materials
  • Ensuring submitted materials do not violate third-party rights
  • Obtaining required permissions from customers, vendors, licensors, employees, contractors, or business partners
  • Avoiding submission of unnecessary secrets, credentials, regulated data, or production personal information
  • Maintaining backups of your systems, repositories, and data
  • Reviewing and testing any remediation before deployment
  • Determining whether and how to implement Telhawk recommendations
  • Managing production deployment and operational risk
  • Complying with applicable laws, contracts, and security obligations

You must not submit or authorize access to any third-party code, system, account, application, API, repository, network, or data unless you have legal authority to do so.

4. Authorized Security Testing Only

Telhawk services may involve security review, code analysis, vulnerability validation, or other cybersecurity activities. These activities must be conducted only within the authorized scope.

You agree not to use Telhawk services to:

  • Access systems without authorization
  • Test, scan, probe, exploit, or attack systems you do not own or control
  • Violate laws or third-party rights
  • Conduct malicious hacking, unauthorized reconnaissance, credential theft, phishing, malware activity, denial-of-service activity, or exploitation
  • Generate, facilitate, or deploy malware or harmful code
  • Exfiltrate data without authorization
  • Circumvent security controls outside an authorized review
  • Misrepresent Telhawk findings or reports
  • Use Telhawk services to harm others

Telhawk may refuse, suspend, or terminate services if we believe a request is unauthorized, unlawful, unsafe, outside scope, or inconsistent with responsible security practices.

5. Service Scope and Deliverables

Telhawk’s obligations are limited to the scope expressly agreed in writing.

Deliverables may include, depending on the engagement:

  • Security findings
  • Proof-backed findings
  • Technical reports
  • Executive summaries
  • Evidence packages
  • Affected code paths
  • API or route analysis
  • AI-agent risk analysis
  • Remediation guidance
  • Suggested correction approaches
  • Validation results
  • Audit-ready reports
  • Finding history
  • Portal or workflow outputs

Unless expressly agreed in writing, Telhawk is not responsible for:

  • Implementing fixes
  • Deploying code
  • Operating customer systems
  • Providing legal or compliance certification
  • Conducting continuous monitoring
  • Performing incident response
  • Maintaining customer infrastructure
  • Reviewing systems outside the approved scope
  • Validating changes not submitted to Telhawk
  • Confirming every potential issue raised by third-party tools or customer systems

6. AI-Assisted Review

Telhawk may use artificial intelligence, machine learning, large language models, automated analysis tools, proprietary systems, and human expert review to support security analysis and validation.

AI-assisted review may help organize evidence, identify potentially risky paths, support remediation guidance, summarize findings, or assist validation. However, AI-assisted output may be incomplete, incorrect, unsupported, duplicative, or require human review.

Telhawk may use AI-assisted workflows as part of its services, but Telhawk does not represent that AI-assisted review will identify every issue, eliminate all false positives, or produce perfect remediation guidance.

Where appropriate, customers should independently review, test, and validate security findings and remediation before relying on them in production.

7. Customer Materials

“Customer Materials” means code, repositories, files, documentation, API details, system information, AI-agent workflows, prompts, policies, configurations, credentials, logs, test data, remediation submissions, or other materials provided by or on behalf of a customer.

As between you and Telhawk, you retain ownership of your Customer Materials.

You grant Telhawk a limited right to access, use, process, analyze, host, transmit, reproduce, and create outputs from Customer Materials solely as reasonably necessary to provide, secure, support, validate, improve, and document the services, subject to applicable agreements.

You are responsible for ensuring that Customer Materials do not contain unnecessary personal information, regulated data, secrets, credentials, private keys, or third-party confidential information unless the applicable engagement requires such information and appropriate handling terms are in place.

8. Customer Code and Security Findings

Telhawk understands that customer code, repository information, security findings, remediation details, and audit reports may be highly sensitive.

Unless otherwise agreed in writing:

  • Telhawk will treat Customer Materials and customer-specific security findings as confidential.
  • Telhawk will not sell customer source code.
  • Telhawk will not sell customer security findings.
  • Telhawk will not publicly disclose customer vulnerabilities, customer code, or customer audit reports without authorization, except where required by law.
  • Telhawk may use de-identified, aggregated, or non-customer-identifying information to improve services, workflows, reporting formats, methodologies, and security processes.

9. Telhawk Technology and Intellectual Property

Telhawk retains all rights, title, and interest in and to its technology, software, engines, systems, methods, workflows, models, interfaces, templates, analysis techniques, documentation, trademarks, service marks, trade secrets, know-how, and other intellectual property.

This includes, without limitation:

  • Galen
  • Telhawk workflows
  • Proof models
  • Evidence models
  • Audit methodology
  • Validation workflows
  • Reporting templates
  • Portal and API infrastructure
  • User interfaces
  • Proprietary security analysis methods
  • AI-assisted review workflows

No rights are granted to Telhawk technology except as expressly stated in these Terms or a written agreement.

You may not reverse engineer, decompile, disassemble, copy, reproduce, modify, create derivative works from, scrape, benchmark for competitive purposes, or attempt to discover the source code, underlying structure, algorithms, methods, models, or proprietary logic of any Telhawk technology except to the extent such restriction is prohibited by law.

10. Deliverables and License to Use Reports

Subject to payment of applicable fees and compliance with these Terms, Telhawk grants you a limited, non-exclusive, non-transferable license to use final deliverables provided to you for your internal business, security, remediation, reporting, diligence, procurement, or compliance-readiness purposes.

Unless otherwise agreed in writing, you may share Telhawk reports with your employees, contractors, advisors, auditors, investors, customers, or prospective customers only as reasonably necessary for legitimate business purposes and subject to appropriate confidentiality protections.

You may not publicly publish, resell, sublicense, alter, misrepresent, or use Telhawk deliverables in a misleading way.

11. Feedback

If you provide suggestions, comments, ideas, feature requests, improvements, or other feedback about Telhawk services, you grant Telhawk a perpetual, irrevocable, worldwide, royalty-free right to use that feedback without restriction or compensation, provided Telhawk does not disclose your confidential information in doing so.

12. Accounts and Access

If Telhawk provides access to an account, portal, API, workspace, or other service environment, you are responsible for:

  • Maintaining account security
  • Protecting passwords, tokens, credentials, and API keys
  • Ensuring only authorized users access the service
  • Promptly notifying Telhawk of suspected unauthorized access
  • Ensuring users comply with these Terms
  • Removing access for users who no longer need it

Telhawk may suspend or restrict access if we believe an account has been compromised, used improperly, used outside scope, or used in a manner that creates risk to Telhawk, customers, or third parties.

13. Acceptable Use

You may not:

  • Interfere with or disrupt Telhawk systems
  • Attempt unauthorized access to Telhawk systems
  • Circumvent security controls
  • Use automated scraping or abuse APIs
  • Upload malware except where expressly authorized for a controlled security engagement
  • Submit illegal, harmful, infringing, or unauthorized materials
  • Use Telhawk services to build or improve a competing product using Telhawk confidential information
  • Misrepresent Telhawk findings, endorsements, certifications, or relationship status
  • Use Telhawk services in a way that violates law or third-party rights

14. Third-Party Services and Integrations

Telhawk services may integrate with or rely on third-party services, including cloud providers, repository platforms, authentication providers, AI providers, communications tools, payment processors, analytics providers, and security tools.

Third-party services are governed by their own terms and privacy policies. Telhawk is not responsible for third-party services, outages, data practices, security practices, or changes.

You are responsible for maintaining your third-party accounts and permissions.

15. Fees, Payment, and Taxes

Fees, payment terms, invoicing terms, subscription terms, usage limits, renewal terms, and cancellation rights may be described in an order form, statement of work, online checkout flow, invoice, subscription plan, or other written agreement.

Unless otherwise stated in writing:

  • Fees are due according to the applicable invoice or order.
  • Fees are non-refundable except as required by law or expressly agreed in writing.
  • Late payments may result in suspension of services.
  • You are responsible for applicable taxes, duties, levies, or governmental assessments, excluding taxes based on Telhawk’s income.
  • Telhawk may change pricing for future orders, renewals, or service terms.

16. Subscriptions and Renewals

If you purchase a subscription, the subscription term, renewal process, cancellation rights, and usage limits will be described in the applicable order or plan.

Unless otherwise stated in writing, continued use after a renewal date may constitute acceptance of the renewal.

Telhawk may suspend or terminate access for nonpayment, misuse, security risk, or violation of these Terms.

17. Confidentiality

Each party may receive confidential information from the other. Confidential information includes nonpublic business, technical, security, financial, product, customer, code, vulnerability, audit, or operational information that should reasonably be understood to be confidential.

Each party agrees to:

  • Use confidential information only for the purpose of the relationship
  • Protect confidential information with reasonable care
  • Disclose confidential information only to authorized personnel, contractors, advisors, or service providers who need to know and are subject to confidentiality obligations
  • Not disclose confidential information to third parties except as permitted by agreement or required by law

Confidentiality obligations do not apply to information that is publicly available through no fault of the receiving party, independently developed without use of confidential information, rightfully received from a third party without duty of confidentiality, or approved for release in writing.

18. Privacy and Data Protection

Telhawk’s collection and use of personal information is described in the Telhawk Privacy Policy.

Customer-specific processing terms may be governed by a data processing agreement, customer agreement, or statement of work.

Customers are responsible for determining whether personal information, regulated information, or sensitive information should be submitted to Telhawk and for ensuring they have the required legal basis and authorization to do so.

19. Security

Telhawk uses reasonable administrative, technical, and organizational safeguards designed to protect information. However, no system, transmission, review process, or security control is completely secure.

Telhawk does not guarantee that unauthorized access, incidents, vulnerabilities, or security failures will never occur.

You are responsible for maintaining the security of your systems, accounts, credentials, repositories, networks, applications, AI agents, and data.

20. Beta, Pilot, Limited Availability, and Experimental Services

Some Telhawk services, features, integrations, delivery models, or workflows may be offered in beta, pilot, private preview, limited availability, or experimental form.

Such services may be incomplete, changed, suspended, or discontinued at any time. They may contain errors or limitations.

Unless otherwise agreed in writing, beta, pilot, limited availability, and experimental services are provided “as is” and without service-level commitments.

21. Disclaimers

TO THE MAXIMUM EXTENT PERMITTED BY LAW, TELHAWK SERVICES, WEBSITES, PORTALS, REPORTS, FINDINGS, VALIDATION RESULTS, RECOMMENDATIONS, AND DELIVERABLES ARE PROVIDED “AS IS” AND “AS AVAILABLE,” EXCEPT AS EXPRESSLY STATED IN A SIGNED WRITTEN AGREEMENT.

TELHAWK DISCLAIMS ALL WARRANTIES, EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE, INCLUDING WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, NON-INFRINGEMENT, ACCURACY, COMPLETENESS, RELIABILITY, SECURITY, AVAILABILITY, AND ERROR-FREE OPERATION.

TELHAWK DOES NOT WARRANT THAT:

  • SERVICES WILL BE UNINTERRUPTED, ERROR-FREE, OR SECURE
  • ALL VULNERABILITIES WILL BE FOUND
  • ALL FINDINGS WILL BE COMPLETE OR ERROR-FREE
  • ALL REMEDIATION GUIDANCE WILL BE SUFFICIENT FOR EVERY CUSTOMER ENVIRONMENT
  • VALIDATION WILL ELIMINATE ALL RISK
  • CUSTOMER SYSTEMS WILL BE SECURE
  • SERVICES WILL MEET EVERY COMPLIANCE, CUSTOMER, AUDITOR, INVESTOR, OR REGULATORY REQUIREMENT

Some jurisdictions do not allow certain warranty disclaimers, so some disclaimers may not apply to you.

22. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, TELHAWK WILL NOT BE LIABLE FOR INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, EXEMPLARY, ENHANCED, OR PUNITIVE DAMAGES, INCLUDING LOST PROFITS, LOST REVENUE, LOST BUSINESS, LOST GOODWILL, LOSS OF DATA, SECURITY INCIDENTS, SYSTEM OUTAGES, BUSINESS INTERRUPTION, OR COST OF SUBSTITUTE SERVICES, EVEN IF TELHAWK HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

TO THE MAXIMUM EXTENT PERMITTED BY LAW, TELHAWK’S TOTAL LIABILITY ARISING OUT OF OR RELATED TO THESE TERMS OR THE SERVICES WILL NOT EXCEED THE AMOUNTS PAID BY YOU TO TELHAWK FOR THE SPECIFIC SERVICE GIVING RISE TO THE CLAIM DURING THE SIX MONTHS BEFORE THE EVENT GIVING RISE TO LIABILITY, OR ONE HUNDRED DOLLARS ($100), WHICHEVER IS GREATER, UNLESS A DIFFERENT LIMITATION IS EXPRESSLY STATED IN A SIGNED WRITTEN AGREEMENT.

The limitations in this section apply regardless of the legal theory, including contract, tort, negligence, strict liability, warranty, statute, or otherwise.

Some jurisdictions do not allow certain liability limitations, so some limitations may not apply to you.

23. Indemnification

You agree to defend, indemnify, and hold harmless Telhawk, its officers, directors, employees, contractors, agents, affiliates, and service providers from and against claims, damages, liabilities, losses, costs, and expenses, including reasonable attorneys’ fees, arising out of or related to:

  • Your use of the services
  • Your Customer Materials
  • Your violation of these Terms
  • Your violation of law
  • Your infringement or misappropriation of third-party rights
  • Your unauthorized testing, scanning, access, or security activity
  • Your implementation, deployment, or use of remediation
  • Your misuse or misrepresentation of Telhawk reports or findings
  • Any claim that you lacked authorization to submit materials or request review

Telhawk may assume control of the defense of any claim subject to indemnification, and you agree to cooperate with Telhawk’s defense.

24. Export Controls and Sanctions

You agree to comply with applicable export control, sanctions, and trade laws. You may not use Telhawk services if you are located in, organized under the laws of, or ordinarily resident in a country or region subject to comprehensive sanctions, or if you are listed on a restricted party list.

You may not use Telhawk services for prohibited end uses, including activities involving weapons development, unlawful surveillance, unauthorized cyber operations, or other prohibited activities under applicable law.

25. Suspension and Termination

Telhawk may suspend or terminate access to services if:

  • You violate these Terms
  • You fail to pay fees when due
  • Your use creates security, legal, operational, or reputational risk
  • You exceed authorized scope
  • You misuse the services
  • You submit unauthorized materials
  • We are required to do so by law
  • A third-party service provider suspends necessary services

Upon termination, your right to access the services will cease. Certain provisions will survive termination, including confidentiality, intellectual property, payment obligations, disclaimers, liability limits, indemnity, governing law, and any provisions that by their nature should survive.

26. Changes to Services

Telhawk may modify, update, improve, suspend, or discontinue services, features, interfaces, integrations, workflows, or documentation from time to time.

Telhawk will use reasonable efforts to avoid materially reducing contracted services during an active paid term, except where required for security, legal, technical, operational, or third-party provider reasons.

27. Changes to These Terms

Telhawk may update these Terms from time to time. Updated Terms will be posted on the website with a revised “Last Updated” date.

If changes are material, Telhawk may provide additional notice where appropriate. Continued use of the services after updated Terms become effective constitutes acceptance of the updated Terms.

28. Governing Law and Dispute Resolution

These Terms are governed by the laws of the State of Delaware, without regard to conflict-of-law principles, unless a signed written agreement states otherwise.

Any dispute arising out of or relating to these Terms or the services will be brought in the state or federal courts located in Delaware, unless a signed written agreement states otherwise. Each party consents to the personal jurisdiction and venue of those courts.

Nothing in this section prevents either party from seeking injunctive or equitable relief for misuse of confidential information, intellectual property, unauthorized access, security risk, or other urgent harm.

29. Notices

Telhawk may provide notices by posting on the website, sending email to the address associated with your account or inquiry, or using other reasonable means.

You may contact Telhawk using the contact information below.

30. Assignment

You may not assign or transfer these Terms without Telhawk’s prior written consent. Telhawk may assign these Terms in connection with a merger, acquisition, financing, reorganization, sale of assets, or by operation of law.

31. Severability

If any provision of these Terms is found invalid or unenforceable, the remaining provisions will remain in full force and effect.

32. No Waiver

Failure to enforce any provision of these Terms does not constitute a waiver of that provision or any other provision.

33. Entire Agreement

These Terms, together with any applicable order form, statement of work, signed agreement, service-specific terms, or incorporated policy, constitute the entire agreement between you and Telhawk regarding the services and supersede prior or contemporaneous understandings on the same subject matter.

34. Contact Us

For customer inquiries, business inquiries, service questions, or legal notices, contact:

Telhawk Systems, Inc.

General inquiries: support@telhawk.com

Partnership inquiries: Partnerships@telhawk.com

35. Security Contact

For responsible disclosure, vulnerability reports, or security-related concerns involving Telhawk systems, contact:

support@telhawk.com

Please do not submit sensitive customer code, credentials, secrets, or vulnerability details through unsecured channels.