HUXmesh

TERMS OF SERVICE

Effective Date: March 1, 2026 | Version 1.1

The Hat Protocol Inc. | Chattanooga, Tennessee | SDVOSB

IMPORTANT LEGAL NOTICE

BY ACTIVATING, INSTALLING, DOWNLOADING, OR OTHERWISE USING ANY HUXMESH PRODUCT — INCLUDING THE HUXMESH KEYCARD, HUXMESH SOFTWARE DOWNLOAD, KIDSAFE ZTPS, ELDERSAFE, OR ANY ASSOCIATED SERVICE — YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO BE BOUND BY THESE TERMS OF SERVICE IN THEIR ENTIRETY. IF YOU DO NOT AGREE, DO NOT USE THIS PRODUCT.

1. Definitions

“The Hat Protocol Inc.” (“THP,” “we,” “us,” “our”) refers to The Hat Protocol Inc., a C-Corporation and certified Service-Disabled Veteran-Owned Small Business (SDVOSB) registered in the State of Tennessee.

“HUXmesh” refers to the AI governance engine and all associated products, including the Six Laws enforcement framework, ThreatRAG system, QuintLoop Council decision architecture, receipt chain logging, ZTPS (Zero Tolerance Predator Shield), ZTTP (Zero Tolerance Threat Protocol), and all associated governance logic.

“KeyCard” refers to the physical USB storage device containing the HUXmesh governance runtime, including all software, firmware, configurations, governance profiles, and associated digital assets.

“Software” refers to the HUXmesh governance engine delivered as a downloadable software installation, including all associated governance profiles and digital assets.

“KidSafe ZTPS” refers to the Zero Tolerance Predator Shield product, a child safety governance module designed for users ages 5–17, configured for parental oversight and emergency alerting.

“ElderSafe” refers to the elder protection governance module designed to detect financial exploitation, loneliness manipulation, and scam patterns targeting elderly users.

“ZTTP” refers to the Zero Tolerance Threat Protocol, the annual subscription service providing updated threat signatures, new detection patterns, and emerging platform support.

“Licensee,” “you,” “your” refers to the individual or entity that purchased, received, or is authorized to use any HUXmesh product.

“AI Platform” refers to any third-party artificial intelligence system, chatbot, language model interface, or autonomous agent that HUXmesh is used to monitor, intercept, or govern.

“Receipt Chain” refers to the SHA-256 cryptographically-linked audit log generated by HUXmesh documenting every governance decision made during a session.

2. License Grant

2.1 Personal, Non-Transferable License

Subject to full compliance with these Terms, THP grants you a limited, non-exclusive, non-sublicensable, non-transferable license to use the HUXmesh software contained on the KeyCard or delivered via software download for your personal or internal organizational purposes.

2.2 Permitted Uses

• Inserting the KeyCard into computing devices you own or are authorized to use

• Installing the HUXmesh software download on computing devices you own or are authorized to use

• Running HUXmesh governance sessions against AI Platforms and HTTPS traffic for legitimate personal, academic, or business purposes

• Generating, storing, and reviewing receipt chains produced by your authorized sessions

• Configuring governance profiles included with your licensed tier

2.3 Restrictions

You may NOT, without prior written authorization from THP:

• Copy, duplicate, clone, or replicate the HUXmesh software or its governance profiles onto any other storage medium

• Reverse engineer, decompile, disassemble, or attempt to extract the source code or governance logic

• Transfer, sell, lease, loan, sublicense, or otherwise convey your rights under this license to any third party

• Modify, alter, or create derivative works based on the HUXmesh governance engine or its components

• Remove, obscure, or alter any copyright notices, trademarks, or proprietary legends

• Use any HUXmesh product for any unlawful purpose or in violation of any applicable law, regulation, or third-party terms of service

• Circumvent, disable, or interfere with any security or governance mechanism built into HUXmesh

• Use any HUXmesh product to facilitate harm to any person, organization, or system

3. Intellectual Property

3.1 Ownership

All intellectual property rights in and to HUXmesh, including but not limited to: the Six Laws of AI Governance, QuintLoop Council architecture, ThreatRAG system, ZTPS, ZTTP, receipt chain technology, governance profiles, and all related documentation are and shall remain the exclusive property of The Hat Protocol Inc. These Terms do not convey to you any ownership interest; only the limited use license described herein.

3.2 Patent Rights

THP has filed patent applications covering the HUXmesh governance architecture with the United States Patent and Trademark Office. Unauthorized commercial use, reproduction, or distribution of any patented or patent-pending technology may constitute patent infringement and will be prosecuted to the fullest extent of applicable law.

3.3 Trademarks

The Hat Protocol, HUXmesh, HUX, KidSafe, ElderSafe, ZTPS, ZTTP, QuintLoop, ThreatRAG, “Human In Power. No Matter What.” “We don’t make AI. We make AI behave.” and associated logos are trademarks or service marks of The Hat Protocol Inc. You are not granted any license to use these marks.

3.4 Receipt Chain Ownership

Receipt chain logs generated during your sessions are your data. THP claims no ownership over session-specific log contents. However, the receipt chain format, cryptographic linking methodology, and audit architecture remain the intellectual property of THP.

4. KidSafe ZTPS — Terms for Minor Users

4.1 Parental Consent Required

KidSafe ZTPS is designed exclusively for use by children ages 5–17 under the direct supervision and authorization of a parent or legal guardian. The parent or legal guardian must be the Licensee. By activating a KidSafe profile, you represent and warrant that you are the parent or legal guardian of the minor for whom the profile is configured.

4.2 Parental Responsibility

The parent or legal guardian is solely responsible for:

• Configuring the KidSafe profile on the child’s device

• Maintaining access to parent alert notifications

• Reviewing blocked event digests and evidence logs

• Securing evidence logs involving the minor’s activity

• Determining whether to escalate evidence to law enforcement

4.3 Emergency Parent Alerts

KidSafe ZTPS generates emergency parent alerts when governance interceptions occur. Alerts are delivered via the method configured by the parent (email, SMS, or in-app notification). THP does not guarantee delivery timing of alerts, as delivery depends on third-party notification infrastructure. Parents should not rely solely on KidSafe alerts as their only means of monitoring their child’s online activity.

4.4 Evidence Logs Involving Minors

Evidence logs generated by KidSafe ZTPS may contain references to intercepted content involving a minor. These logs are stored locally on the device and are the sole responsibility of the parent or legal guardian. THP does not access, store, or transmit evidence logs involving minors. The parent is responsible for securing these logs and for any decision to share them with law enforcement or other parties.

4.5 No Guarantee of Complete Protection

KidSafe ZTPS is a prevention tool designed to intercept known threat patterns at the keyboard. It is not a substitute for parental involvement, open communication with your child, or supervision of online activity. No technology can guarantee 100% protection from every possible online threat.

5. ZTTP Subscription Terms

5.1 What ZTTP Provides

The Zero Tolerance Threat Protocol (ZTTP) is an annual subscription service that delivers updated threat detection signatures, new grooming and exploitation patterns, emerging platform parser support, and governance engine updates to your HUXmesh product.

5.2 Subscription Period and Renewal

ZTTP subscriptions are annual, beginning on the date of activation. Subscriptions renew automatically unless cancelled at least 30 days before the renewal date. First-year ZTTP is included with Kickstarter-backed products at no additional cost.

5.3 Pricing

ZTTP is priced at $49 per device per year. Family licenses (3+ devices) are available at discounted rates. Pricing is subject to change with 60 days’ notice before any renewal period.

5.4 Lapse and Re-onboarding

If your ZTTP subscription lapses, your HUXmesh product continues to function with the threat signatures that were current at the time of lapse. Base governance protection never stops. However, new threat signatures, updated detection patterns, and new platform support will not be delivered until the subscription is renewed. Re-onboarding after a lapse of more than 30 days may require a re-onboarding fee of $99 to cover the full pattern update.

6. Acceptable Use Policy

6.1 Lawful Use Only

All HUXmesh products are designed and licensed solely for lawful governance purposes. Any use to facilitate illegal activity, including unauthorized interception of third-party communications, circumvention of platform security measures not directed at your own authorized sessions, or any use prohibited by the Computer Fraud and Abuse Act (CFAA) or equivalent laws, is strictly prohibited and constitutes grounds for immediate license termination.

6.2 Third-Party Platform Compliance

When using HUXmesh with any AI Platform or web service, you are solely responsible for ensuring your use complies with that platform’s Terms of Service. THP makes no warranty that use of HUXmesh constitutes compliance with any third-party terms. You assume all risk associated with using a proxy-based governance layer against third-party services.

6.3 Authorized Systems Only

You may only deploy HUXmesh on computing devices and networks that you own or have explicit authorization to administer. Deploying HUXmesh on systems belonging to employers, institutions, or other parties without explicit written authorization is prohibited.

6.4 No Weaponization

You may not use HUXmesh or any receipt chain data it generates as a tool to harass, defame, blackmail, or otherwise harm any individual, organization, or AI provider. Receipt chain data is an accountability and governance tool; any other use violates these Terms.

7. Data, Privacy, and Logging

7.1 Local Processing

HUXmesh is designed as a locally-executed governance layer. All content processed by HUXmesh is analyzed on your local device and is not transmitted to THP servers during normal operation unless you explicitly enable telemetry features.

7.2 Receipt Chain

HUXmesh generates a local receipt chain documenting every governance decision. This file is stored on the KeyCard, local device, or a designated local path. You are responsible for the security and confidentiality of this file. THP recommends encrypting receipt chain storage in enterprise deployments.

7.3 No Cloud Storage

HUXmesh does not store, transmit, or process user data in the cloud. No images, messages, prompts, or personal information are sent to THP servers. All governance occurs on-device.

7.4 Sensitive Information

Do not use HUXmesh to process classified government information, protected health information (PHI) under HIPAA, or any information subject to regulatory restrictions without first confirming that your deployment configuration satisfies applicable compliance requirements. THP provides no certifications of regulatory compliance without a separate written compliance agreement.

8. Disclaimers and Limitations

8.1 No Guarantee of Safety

HUXmesh is a governance and oversight tool designed to reduce risk. It is not infallible. THP makes no warranty that HUXmesh will detect or block all harmful, misleading, exploitative, or non-compliant content. Threat detection is based on known patterns at the time of each release. Users should maintain independent judgment and not rely solely on HUXmesh as the basis for safety decisions.

8.2 Detection Limitations

HUXmesh detection capabilities are developed using publicly available research, behavioral taxonomies, and guidance from recognized safety organizations including NCMEC, Thorn, the NSPCC, WeProtect Global Alliance, UNICEF, the OECD AI Principles, the NIST AI Risk Management Framework, and law enforcement advisories from the FBI and DOJ. The Hat Protocol Inc. is not a law enforcement agency, a child advocacy organization, or a research institution. We are a technology company that builds enforcement tools based on the work of those who are. Our detection engine represents a snapshot of known threat behaviors at the time of each release. Online threats evolve. Bad actors adapt. No technology can guarantee 100% detection of every possible threat.

8.3 “As-Is” Disclaimer

ALL HUXMESH PRODUCTS ARE PROVIDED “AS IS” AND “AS AVAILABLE” WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, THP EXPRESSLY DISCLAIMS ALL WARRANTIES, INCLUDING BUT NOT LIMITED TO IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, AND NON-INFRINGEMENT.

8.4 Limitation of Liability

TO THE FULLEST EXTENT PERMITTED BY LAW, THP SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, PUNITIVE, OR EXEMPLARY DAMAGES ARISING OUT OF OR RELATED TO YOUR USE OF ANY HUXMESH PRODUCT, INCLUDING BUT NOT LIMITED TO LOSS OF DATA, LOSS OF PROFITS, BUSINESS INTERRUPTION, OR REPUTATIONAL HARM, EVEN IF THP HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

IN NO EVENT SHALL THP’S TOTAL CUMULATIVE LIABILITY TO YOU EXCEED THE GREATER OF: (A) THE AMOUNT YOU PAID FOR YOUR HUXMESH PRODUCT IN THE TWELVE (12) MONTHS PRECEDING THE CLAIM, OR (B) FIFTY DOLLARS ($50.00 USD).

8.5 Third-Party AI Platform Disclaimer

THP is not affiliated with, endorsed by, or responsible for any AI Platform that HUXmesh may be used to govern, including but not limited to OpenAI, Anthropic, Google, Meta, xAI, or any other AI provider. HUXmesh governs the human-AI interaction layer; it does not modify, access, or alter any AI Platform’s underlying model or infrastructure.

8.6 Reporting Suspected Exploitation

If you suspect a child is being exploited, contact NCMEC’s CyberTipline at CyberTipline.org or call 1-800-843-5678. If you suspect elder fraud, contact the Elder Fraud Hotline at 1-833-372-8311. HUXmesh products are prevention tools, not a substitute for reporting to law enforcement.

9. Physical Device Terms (KeyCard)

9.1 Device Warranty

The physical KeyCard is warranted against manufacturing defects for ninety (90) days from the original purchase date. This warranty is void if the device is physically damaged, tampered with, submerged in liquid, or modified.

9.2 Loss or Theft

In the event of loss or theft of the KeyCard, you must notify THP immediately at support@thehatprotocol.com. THP will provide guidance on license deactivation procedures. You remain responsible for any use of the KeyCard until official deactivation is confirmed in writing by THP.

9.3 No Disassembly

You may not physically open, disassemble, modify, or attempt to repair the KeyCard hardware. Any attempt to do so voids the warranty and may violate intellectual property protections.

9.4 Return Policy

Defective KeyCards may be returned within 90 days of purchase for replacement, subject to verification of the defect. The KeyCard must be returned with proof of purchase. Return shipping costs are the responsibility of the Licensee unless the defect is confirmed to be a manufacturing error.

10. Term and Termination

10.1 Term

This license is effective upon first activation of any HUXmesh product and continues in effect until terminated.

10.2 Termination by You

You may terminate this license at any time by ceasing all use and destroying any copies of HUXmesh software in your possession.

10.3 Termination by THP

THP reserves the right to terminate this license immediately and without notice if you breach any provision of these Terms, attempt to reverse engineer or circumvent HUXmesh protections, use any product for any unlawful purpose, transfer or sublicense your rights without authorization, or fail to pay any applicable subscription or renewal fees.

10.4 Effect of Termination

Upon termination, your license to use HUXmesh is immediately revoked. You must cease all use and, if requested by THP, return any KeyCard devices. Sections 3 (Intellectual Property), 8 (Disclaimers and Limitations), 11 (Indemnification), 13 (Governing Law), and 14 (Dispute Resolution) survive termination.

11. Indemnification

You agree to indemnify, defend, and hold harmless The Hat Protocol Inc., its officers, directors, employees, contractors, agents, successors, and assigns from and against any and all claims, losses, damages, liabilities, costs, and expenses (including reasonable attorneys’ fees) arising out of or related to: your use or misuse of any HUXmesh product; your violation of these Terms; your violation of any applicable law, regulation, or third-party rights; any claim that your use of HUXmesh harmed a third party or violated a third-party platform’s terms of service.

12. Export Controls

HUXmesh products and their software may be subject to U.S. export control laws and regulations, including the Export Administration Regulations (EAR). You agree not to export, re-export, or transfer any HUXmesh product or technology to any country, individual, or entity prohibited by U.S. law without obtaining all required government authorizations. You represent and warrant that you are not located in, or a national of, any country subject to a U.S. government embargo.

13. Governing Law

These Terms shall be governed by and construed in accordance with the laws of the State of Tennessee, without regard to its conflict of law provisions. The United Nations Convention on Contracts for the International Sale of Goods does not apply.

14. Dispute Resolution

14.1 Informal Resolution

Before initiating any formal dispute, the parties agree to attempt good-faith informal resolution for a period of thirty (30) days following written notice of the dispute sent to legal@thehatprotocol.com.

14.2 Binding Arbitration

If informal resolution fails, all disputes arising out of or relating to these Terms shall be resolved by binding arbitration administered by the American Arbitration Association (AAA) under its Commercial Arbitration Rules. Arbitration shall be conducted in Hamilton County, Tennessee. The arbitrator’s decision shall be final and may be entered as a judgment in any court of competent jurisdiction.

14.3 Class Action Waiver

YOU AGREE THAT ANY DISPUTE RESOLUTION PROCEEDINGS SHALL BE CONDUCTED ONLY ON AN INDIVIDUAL BASIS AND NOT AS A CLASS OR REPRESENTATIVE ACTION. YOU WAIVE YOUR RIGHT TO PARTICIPATE IN A CLASS ACTION LAWSUIT OR CLASS-WIDE ARBITRATION.

14.4 Exception for Injunctive Relief

Notwithstanding the arbitration clause, either party may seek immediate injunctive or other equitable relief in any court of competent jurisdiction to prevent irreparable harm, including but not limited to unauthorized use or disclosure of proprietary technology.

15. SDVOSB Acknowledgment

The Hat Protocol Inc. is a certified Service-Disabled Veteran-Owned Small Business (SDVOSB). Government purchasers and contractors should note that this product may qualify under applicable set-aside programs. Contact contracts@thehatprotocol.com for government procurement documentation.

16. Miscellaneous

16.1 Entire Agreement

These Terms constitute the entire agreement between you and THP with respect to all HUXmesh products and supersede all prior or contemporaneous communications, representations, or agreements, whether oral or written.

16.2 Severability

If any provision of these Terms is found to be invalid, illegal, or unenforceable, the remaining provisions shall continue in full force and effect.

16.3 Waiver

THP’s failure to enforce any right or provision of these Terms shall not constitute a waiver of such right or provision.

16.4 Amendments

THP reserves the right to amend these Terms at any time. Continued use of any HUXmesh product following notice of material changes constitutes acceptance of the revised Terms. Notice will be provided via the THP website or registered email address.

16.5 Assignment

You may not assign or transfer these Terms or any rights hereunder without THP’s prior written consent. THP may freely assign its rights and obligations.

16.6 Force Majeure

THP shall not be liable for any failure or delay in performance resulting from causes beyond its reasonable control, including but not limited to acts of God, war, terrorism, government action, natural disasters, or internet infrastructure failures.

16.7 Contact

Questions regarding these Terms should be directed to:

The Hat Protocol Inc.

Chattanooga, Tennessee

legal@thehatprotocol.com

thehatprotocol.com

ACKNOWLEDGMENT OF TERMS

By using any HUXmesh product, you acknowledge that you are at least 18 years of age (or the age of majority in your jurisdiction), have legal authority to enter into this agreement, and have read and agree to these Terms of Service. For KidSafe ZTPS products, you additionally represent that you are the parent or legal guardian of the minor for whom the product is configured.

Human In Power. No Matter What.

We don’t make AI. We make AI behave.

The Hat Protocol Inc. | SDVOSB | Chattanooga, Tennessee | Version 1.1 | March 14, 2026