Open Source Usage Policy

Effective: May 25, 2026

OPEN SOURCE USAGE POLICY

FOR BITRO LAB’S

Effective Date: 25 May 2026

This Open Source Usage Policy (“Policy”) outlines how BitRo Lab’s (“Company”, “we”, “our”, or “us”) uses, manages, distributes, and contributes to open-source software (“OSS”).

This Policy applies to employees, contractors, contributors, developers, vendors, and authorized personnel involved in software development or infrastructure management related to BitRo Lab’s products and services.

1. PURPOSE

The purpose of this Policy is to:

  • encourage responsible use of open-source software
  • maintain legal and license compliance
  • reduce security and operational risks
  • establish governance for OSS usage
  • support secure software development practices

2. OPEN SOURCE SOFTWARE DEFINITION

Open-source software refers to software distributed under licenses permitting use, modification, and redistribution, including but not limited to:

  • MIT License
  • Apache License
  • GPL
  • LGPL
  • BSD Licenses
  • MPL
  • other recognized OSS licenses

3. ACCEPTABLE USE OF OPEN SOURCE SOFTWARE

BitRo Lab’s may use OSS for:

  • application development
  • infrastructure management
  • testing and automation
  • cloud services
  • development frameworks
  • internal tools
  • security tooling

provided such usage complies with applicable license terms and internal review processes.

4. LICENSE COMPLIANCE

Personnel using OSS must:

  • review applicable licenses
  • comply with attribution requirements
  • follow redistribution obligations
  • avoid unauthorized license violations
  • maintain required notices where applicable

BitRo Lab’s reserves the right to restrict use of software with incompatible or high-risk licensing terms.

5. SECURITY & VULNERABILITY MANAGEMENT

OSS components may introduce security risks.

BitRo Lab’s may implement practices including:

  • dependency monitoring
  • vulnerability scanning
  • patch management
  • version review
  • risk assessment
  • software inventory tracking

Personnel should avoid using outdated or unsupported dependencies where possible.

6. PROHIBITED ACTIVITIES

Users and developers shall NOT:

  • intentionally violate OSS licenses
  • remove required copyright notices
  • distribute unauthorized modified software
  • include malicious code in OSS contributions
  • use unverified packages from untrusted sources
  • bypass security review procedures

7. OPEN SOURCE CONTRIBUTIONS

Personnel contributing to external OSS projects should:

  • avoid sharing confidential information
  • avoid disclosing proprietary code unintentionally
  • comply with applicable agreements
  • obtain required approvals where necessary

BitRo Lab’s may review contributions involving company-owned intellectual property.

8. THIRD-PARTY DEPENDENCIES

BitRo Lab’s products or services may rely on third-party libraries and frameworks.

BitRo Lab’s does not guarantee:

  • uninterrupted maintenance by OSS maintainers
  • vulnerability-free software
  • long-term availability of external projects

Third-party OSS remains subject to independent community governance.

9. INTELLECTUAL PROPERTY

Company-owned proprietary software remains the intellectual property of BitRo Lab’s unless explicitly released under an open-source license.

Use of OSS does not transfer ownership rights to proprietary company assets.

10. SOFTWARE DISTRIBUTION

Where products include OSS components, BitRo Lab’s may provide:

  • attribution notices
  • applicable licenses
  • required acknowledgments

as required under applicable OSS licenses.

11. LIMITATION OF LIABILITY

Open-source components may be provided by their maintainers “AS IS” without warranties.

BitRo Lab’s shall not be liable for:

  • OSS vulnerabilities
  • third-party dependency failures
  • community project discontinuation
  • indirect damages arising from OSS usage

12. POLICY VIOLATIONS

Violations of this Policy may result in:

  • restriction of development access
  • disciplinary action
  • legal consequences
  • removal of unauthorized software

where applicable.

13. POLICY UPDATES

BitRo Lab’s reserves the right to modify this Policy periodically.

Updated versions become effective upon publication.

14. GOVERNING LAW

This Policy shall be governed by the laws of India.

15. CONTACT INFORMATION

BitRo Lab’s Website: _____________________ General Contact: _____________________ Open Source Compliance Contact: _____________________

ACCEPTANCE

By contributing to or using software systems associated with BitRo Lab’s, personnel acknowledge that they have read and agreed to this Open Source Usage Policy.

Discuss
India --:-- --
@ in