Terms of Service

Last updated: May 25, 2026

These Terms of Service ("Terms") govern your use of the services provided by HyprVuln Labs ("we", "us", "our"), including the website hyprvuln.xyz and all associated security audit, bug hunting, monitoring, and reporting services. By using our services, you agree to these Terms in their entirety.

1. Services

HyprVuln Labs provides security audit and bug hunting services for software teams. Our services include:

• One-time security audits - Manual review of a repository with findings, reproduction steps, and fix guidance
• Commit monitoring - Optional monthly monitoring of new commits after the initial audit
• Monitoring+ - Enhanced monitoring with direct engineer access and priority help

Services are initiated and managed through the HyprVuln client console and approved communication channels.

2. Eligibility

To use our services, you must:

• Be at least 18 years old or have reached the age of legal majority in your jurisdiction
• Have the legal authority to submit the scoped assets for security testing
• Have a valid client account or approved communication channel

3. Client Obligations

By ordering an audit or submitting assets for testing, you represent and warrant that:

• You have the legal right to authorize security testing and grant any required access
• The code does not contain intentionally malicious software designed to harm our infrastructure
• You will not use report findings to exploit vulnerabilities in systems you do not own or have authorization to test
• You provide accurate repository access, test account details, and any relevant project constraints

4. Audit Delivery

We deliver audits and monitoring according to the service level shown in the client console. Audit delivery starts once valid source access is available. Timelines may be extended in the following cases:

• Incomplete repository access, credentials, or project material
• Client delay in approving access or answering required project questions
• Force majeure events

If we cannot meet the agreed timeline, we will notify you promptly through the client console or approved communication channel.

5. Pricing and Payment

• All prices are listed on our website and are in US Dollars (USD)
• Audit fees are due before the audit begins; monitoring fees are billed monthly when selected
• No bounty wallet or external researcher reward is part of the service
• Payments are processed securely via Stripe, bank transfer, or cryptocurrency invoice where available
• All fees are exclusive of applicable taxes, which are your responsibility

6. Subscription and Cancellation

Monthly monitoring subscriptions follow these rules:

• Subscriptions renew automatically each month
• You may cancel at any time through the client console or approved support channel - no lock-in, no cancellation fee
• Cancellation takes effect at the end of the current billing period
• No pro-rata refunds are provided for partial months

7. Refund Policy

Due to the nature of our services (manual human labor), refunds are handled as follows:

• Before the audit starts: Full refund available
• After audit work has started: Refunds are handled case by case because manual work has begun
• If we fail to deliver the agreed service without prior notice: Refund available upon request

8. Confidentiality

We treat all client code, audit scope, source material, and findings as strictly confidential:

• Source code is accessed solely for the purpose of authorized audit and monitoring work
• Temporary code copies are deleted when no longer required for the audit or report workflow
• Findings are shared only with the client and authorized HyprVuln operators unless disclosure is explicitly approved
• We will never publish, share, or reference your code or findings without written consent
• A mutual NDA is available upon request for additional legal protection

9. Scope and Limitations

Our audits and monitoring services are best-effort security operations based on the expertise of our operators and researchers. You acknowledge that:

• No security audit can guarantee the discovery of all vulnerabilities
• Reports reflect the state of the submitted project at the relevant time
• We are not responsible for vulnerabilities introduced outside the submitted project scope or after a report is closed
• Our recommendations are advisory — implementation is your responsibility

10. Limitation of Liability

To the maximum extent permitted by applicable law:

• HyprVuln Labs' total liability shall not exceed the amount paid by you for the specific service giving rise to the claim
• We shall not be liable for any indirect, incidental, special, consequential, or punitive damages
• We shall not be liable for damages arising from vulnerabilities that were not identified during the audit
• We shall not be liable for damages resulting from your failure to implement recommended fixes

11. Intellectual Property

• You retain all ownership and intellectual property rights to your source code
• Reports, triage notes, and audit templates are the intellectual property of HyprVuln Labs, licensed to you for internal use
• You may not publicly reproduce or redistribute reports without written consent

12. Prohibited Use

You may not use our services to:

• Submit assets you do not own or have authorization to test
• Develop exploits against systems you do not have authorization to test
• Engage in any activity that violates applicable laws or regulations
• Attempt to disrupt, compromise, or gain unauthorized access to our infrastructure

13. Termination

We reserve the right to refuse service or terminate your access if:

• You breach any of these Terms
• You engage in prohibited use as described above
• Payment is not received for services rendered

In the event of termination, any remaining subscription period will be refunded on a pro-rata basis, unless termination is due to a breach of these Terms.

14. Modifications

We may update these Terms from time to time. Changes will be posted on this page with an updated revision date. Continued use of our services after changes constitutes acceptance of the revised Terms.

15. Applicable Law and Jurisdiction

These Terms are governed by and construed in accordance with the laws of France. Any disputes arising from or related to these Terms shall be subject to the exclusive jurisdiction of the competent French courts.

For consumers within the European Union: nothing in these Terms affects your statutory rights under applicable consumer protection laws. You may also use the European Commission's Online Dispute Resolution platform.

16. Contact

For any questions about these Terms, reach out at contact@hyprvuln.xyz.