Acceptable Use Policy

1. Introduction and Scope

1.1 This AUP applies to every User who accesses or uses any of the Services, whether directly or through an automated system, agent, integration, or third party acting on the User's behalf. By accessing or using the Services, each User agrees to comply with this AUP in all respects.

1.2 This AUP is not an exhaustive catalog of prohibited conduct. Zoryxon reserves the right to determine, in its reasonable discretion, whether any particular activity or content violates this AUP, the Terms, applicable law, or the rights of any person, and to take such action as Zoryxon deems necessary or appropriate to address the violation.

1.3 This AUP works together with other Zoryxon policies, including the Privacy Policy, DMCA Policy, Cookies Policy, Asset Shield Terms, Disclaimers, and the Data Processing Addendum. In the event of a conflict between this AUP and the Terms with respect to permitted use of the Services, the more restrictive provision will control.

2. Definitions

2.1 The following definitions apply to this AUP. Definitions not set out below are as defined in the Terms.

• User means any natural person or legal entity that accesses or uses the Services, including any Account holder, visitor, or automated system acting on behalf of such person or entity.
• Services has the meaning given in Section 1 and includes all Zoryxon websites, applications, APIs, smart contracts, SDKs, and associated infrastructure.
• Content means any data, file, hash, metadata, text, image, audio, video, code, model output, or other material submitted to, registered through, displayed on, or transmitted via the Services.
• Account means a User's authenticated identity on the Services, including any associated wallet address authenticated via Sign-In with Ethereum.
• Marketplace means the Zoryxon marketplace features through which Users may list, offer, purchase, or license intellectual property assets.
• Agent means an AI agent registered, authenticated, or operated through the Zoryxon AI Agent Trust System.
• Vault means a User's encrypted repository of registered intellectual property assets and associated proofs.

3. Prohibited Activities

3.1 Users may not engage in, attempt to engage in, or facilitate any of the following activities in connection with the Services.

3.1 Illegal Activity

Engaging in any activity that violates applicable federal, state, local, or foreign law, regulation, or order, including without limitation unlawful gambling, unlicensed securities offerings, unauthorized practice of regulated professions, or violations of export control, tax, or anti-corruption laws.

3.2 Intellectual Property Infringement

Registering, uploading, transmitting, distributing, licensing, or otherwise exploiting Content that infringes, misappropriates, or violates any patent, copyright, trademark, trade secret, moral right, right of publicity, or other intellectual property or proprietary right of any third party. Repeat infringers will be terminated in accordance with the DMCA Policy.

3.3 Harassment, Threats, Hate Speech, and Doxxing

Engaging in harassment, bullying, stalking, true threats of violence, incitement to imminent lawless action, hate speech targeting a person or group based on protected characteristics, or doxxing (the non-consensual publication of a person's private identifying information).

3.4 Spam and Unsolicited Commercial Communications

Sending spam, unsolicited bulk communications, chain messages, or any communication that violates the CAN-SPAM Act, the Telephone Consumer Protection Act, or analogous foreign laws, including bulk registration of trivial, duplicative, or low-value Content intended to manipulate Platform metrics or rankings.

3.5 Malware, Ransomware, and Malicious Code

Uploading, registering, distributing, or executing malware, ransomware, viruses, worms, Trojan horses, spyware, cryptominers, logic bombs, or any other code or mechanism designed or likely to damage, disable, disrupt, impair, or surreptitiously intercept any system, data, or communication.

3.6 Unauthorized Access and Account Takeover

Attempting to gain unauthorized access to any Account, system, network, or data, including through credential stuffing, brute-force attacks, password spraying, session hijacking, phishing, social engineering, or exploitation of vulnerabilities.

3.7 Sanctions Evasion, Money Laundering, and Terrorism Financing

Using the Services to evade or assist any person in evading sanctions administered by the U.S. Office of Foreign Assets Control (OFAC), the United Nations, the European Union, the United Kingdom, or any other applicable authority; to launder proceeds of criminal activity; or to finance terrorism or proliferation. Users may not attempt to disable, mislead, or circumvent Zoryxon's sanctions screening.

3.8 Fraud and Deceptive Practices

Engaging in fraud, misrepresentation, or deceptive practices, including false claims of authorship or ownership; forged credentials; fabricated provenance, lineage, or context attestations; and any conduct intended to induce reliance on materially false or misleading information.

3.9 Market Manipulation

Engaging in wash trading, self-dealing, shill bidding, spoofing, layering, front-running, price collusion, coordinated pump-and- dump schemes, or any other conduct intended to artificially affect the price, volume, or trust signals of any Marketplace listing or asset.

3.10 Automated Abuse and Scraping

Using robots, spiders, scrapers, or other automated means to access the Services outside the officially supported APIs and SDKs; launching denial-of-service or distributed denial-of- service attacks; or imposing load on the Services beyond documented rate limits.

3.11 Impersonation

Impersonating any person, organization, or entity, including Zoryxon personnel or affiliates, or misrepresenting a User's affiliation with any person or entity.

3.12 Circumvention of Platform Controls

Circumventing or attempting to circumvent any technical, contractual, or operational control of the Services, including rate limits, geographic restrictions, Account-level restrictions, sanctions screening, compliance mechanisms, meta-transaction relayer limits, or dispute resolution workflows. Creating secondary Accounts or wallets to evade enforcement is prohibited.

4. Prohibited Content Types

4.1 Users may not submit, register, store, reference, transmit, or distribute any of the following categories of Content through the Services.

4.1 Illegal Material

Content that is unlawful under the laws of any jurisdiction in which the User is located, in which Content is stored, or in which Content is made accessible, including any Content that violates criminal statutes of the United States or the State of Ohio.

4.2 Child Sexual Abuse Material (CSAM)

Zoryxon maintains a zero-tolerance policy toward child sexual abuse material and any sexualization of minors in any form. Any such Content will be removed immediately, the associated Account will be terminated, and Zoryxon will report the incident to the National Center for Missing & Exploited Children (NCMEC) through the CyberTipline (available at report.cybertip.org) and to appropriate law enforcement authorities, as required by 18 U.S.C. § 2258A and analogous laws. Zoryxon will preserve relevant evidence and cooperate with law enforcement investigations.

4.3 Content Promoting or Facilitating Violence, Terrorism, or Genocide

Content that promotes, glorifies, recruits for, provides material support to, or incites terrorism, violent extremism, mass violence, or genocide, including content produced by or affiliated with designated foreign terrorist organizations.

4.4 Regulated Goods and Services

Content offering, advertising, or facilitating the sale or transfer of firearms, ammunition, explosives, controlled substances, prescription pharmaceuticals, securities, derivatives, or other regulated goods or services, except where the User demonstrates full compliance with all applicable licensing, registration, and disclosure requirements.

4.5 Deepfakes and Deceptive Synthetic Media

Synthetic or manipulated media intended to deceive, including without limitation: (a) impersonation of identifiable persons; (b) non-consensual intimate imagery, including synthetic depictions of real persons in sexual contexts without their consent; (c) fabricated statements or conduct attributed to public figures for purposes of fraud or election manipulation; and (d) synthetic media used to facilitate financial fraud, social engineering, or evidence tampering. AI-generated or AI-assisted Content that could reasonably be mistaken for real persons, events, or works must be clearly disclosed and labeled during registration.

4.6 Sexually Explicit Content Involving Non-Consenting Parties

Sexually explicit Content depicting or derived from any person who has not given informed, verifiable, and revocable consent to the creation, distribution, or registration of such Content.

5. AI Agent Trust System Specific Prohibitions

5.1 The AI Agent Trust System imposes additional requirements on Users who register or operate Agents. All actions taken by an Agent are attributed to, and are the sole responsibility of, the User who registered or authorized that Agent.

• 5.1 Unauthorized Agent Registration. Registering an Agent without authority to do so, or registering an Agent to act on behalf of a person or entity without such person's or entity's express authorization.
• 5.2 Agent Impersonation. Registering or operating an Agent in a manner designed to imitate, spoof, or assume the identity of another Agent, including by reusing identifiers, metadata, or attestations associated with another Agent.
• 5.3 Circumvention of Authorization and Spending Controls. Bypassing, disabling, or manipulating Agent authorization policies, trust scoring, spending limits, or kill-switch mechanisms.
• 5.4 Audit Log Tampering. Manipulating, falsifying, deleting, or attempting to alter entries in the compliance audit log, or interfering with the integrity of the hash-chained audit record.
• 5.5 Agent-Facilitated Violations. Using Agents, directly or indirectly, to take any action that would violate the Terms or this AUP if taken by the User personally.

6. Asset Shield and Trust-Bound Asset Specific Prohibitions

6.1 Users who participate in the Asset Shield program or interact with Trust-Bound Assets must comply with the following additional prohibitions, in addition to the Asset Shield Terms.

• 6.1 Falsification of Attestations. Submitting, causing the submission of, or relying upon identity attestations known to be false, forged, expired, or materially misleading.
• 6.2 Oracle Collusion. Coordinating with attestation providers, oracles, or guardians to issue, validate, or ratify fraudulent attestations, or offering or accepting any consideration in exchange for such conduct.
• 6.3 Abuse of Contested State Mechanisms. Initiating contests, appeals, or recovery proceedings in bad faith, including to grief legitimate asset holders, to delay or obstruct lawful transactions, or to extract unjustified value.

7. Enforcement Actions

7.1 Zoryxon may, in its reasonable discretion and where appropriate in a graduated manner, take any one or more of the following actions in response to actual or suspected violations of this AUP:

• issuing a warning or request for corrective action;
• removing, disabling, delisting, or restricting access to Content;
• suspending or restricting the features available to an Account;
• terminating an Account;
• blocking one or more wallet addresses, IP addresses, or devices at the platform or smart contract level;
• forfeiting staked assets as permitted by the Terms; and
• referring the matter to law enforcement or regulatory authorities.

7.2 Immediate Termination for Severe Violations. Without limiting the foregoing, Zoryxon may suspend or terminate an Account immediately, without prior notice and without opportunity for appeal, in response to violations involving CSAM, sanctions evasion, credible threats to the security or integrity of the Services, or any other conduct that Zoryxon determines presents an imminent risk of serious harm.

7.3 Limitations. Enforcement is performed at the platform and smart contract level. Because blockchain records are immutable, removal of Content from Zoryxon-operated systems does not remove such Content from underlying public ledgers or from third-party mirrors or pinning services. Determined actors may attempt to evade enforcement; Zoryxon employs additional detection and escalation mechanisms and cooperates with law enforcement as appropriate.

8. Reporting Violations

8.1 Zoryxon encourages Users and members of the public to report suspected violations of this AUP. Reports may be submitted through:

• the Report an Issue page;
• the "Report" control on asset, listing, and profile pages within the Services;
• email to abuse@zoryxon.com or legal@zoryxon.com; and
• for suspected security vulnerabilities only, security@zoryxon.com.

8.2 Required Information. To facilitate review, reports should identify: (a) the reporter and (if applicable) the reporter's relationship to the Content or conduct; (b) the Account, wallet address, asset identifier, listing, or URL at issue; (c) a specific description of the suspected violation and the provision of this AUP implicated; (d) the date and time of the conduct; and (e) any supporting evidence.

8.3 Response. Zoryxon will review reports in the ordinary course and typically within twenty-four (24) hours of receipt. Zoryxon does not commit to a specific outcome and may decline to act where a report is unsubstantiated, duplicative, or outside the scope of this AUP.

8.4 No Retaliation. Zoryxon will not take adverse action against any User for submitting a report in good faith. Submission of knowingly false, harassing, or strategically abusive reports is itself a violation of this AUP.

9. Cooperation with Law Enforcement

9.1 Zoryxon will respond to valid legal process, including subpoenas, court orders, search warrants, mutual legal assistance requests, and national security process, in accordance with applicable law.

9.2 Upon receipt of a valid preservation request under 18 U.S.C. § 2703(f) or similar authority, Zoryxon will take commercially reasonable steps to preserve Account and transaction records within its custody or control for the period required by law.

9.3 Zoryxon may disclose Account information, including subscriber records and transactional metadata, in response to valid legal process or where Zoryxon believes, in good faith, that disclosure is necessary to prevent imminent harm, protect the safety of any person, or comply with applicable law. Where permitted, Zoryxon will provide notice to affected Users prior to disclosure.

10. No Waiver

10.1 No failure or delay by Zoryxon in exercising any right, power, or remedy under this AUP or at law will operate as a waiver, nor will any single or partial exercise preclude any other or further exercise of such right, power, or remedy. Selective enforcement does not constitute a waiver of Zoryxon's right to enforce this AUP against any other User or in any other circumstance.

11. Modification of AUP

11.1 Zoryxon may modify this AUP from time to time. Zoryxon will provide notice of material changes at least thirty (30) days prior to their effective date by posting the updated AUP to the Services, updating the "Last Updated" date, and (where reasonable) providing in-product or email notice. Changes required by law, or necessary to address imminent security or abuse risks, may take effect immediately.

11.2 A User's continued access to or use of the Services after the effective date of any modification constitutes acceptance of the updated AUP. Users who do not agree to the updated AUP must cease all use of the Services.

12. Severability

12.1 If any provision of this AUP is held by a court or other tribunal of competent jurisdiction to be invalid, illegal, or unenforceable, such provision will be modified to the minimum extent necessary to make it enforceable, or, if modification is not possible, will be severed from this AUP, and the remaining provisions will continue in full force and effect.

13. Governing Law

13.1 This AUP is governed by and construed in accordance with the laws of the State of Ohio and the federal laws of the United States applicable therein, without regard to any conflict of laws principles that would require the application of the laws of any other jurisdiction. Venue, forum, and dispute resolution are governed by the Terms of Service.

14. Contact

14.1 Questions, notices, and correspondence concerning this AUP should be directed to: