00 About

Team

Engineers, cryptographers, and operators building sovereign digital infrastructure.

UltimaOS is built by a small, independent team of engineers with backgrounds in distributed systems, applied cryptography, and consumer software. We are based in the European Union and operate as an independent European company, without venture capital or strategic investors whose business model conflicts with our privacy commitments.

01 Overview

Section overview

Who we are.

01

Distributed systems engineers

The core team has shipped large-scale consumer software at companies you have heard of. We know what it takes to keep a service up when millions of users depend on it — and we know what compromises get made under pressure to ship faster.

02

Applied cryptographers

Our cryptography lead has published on lattice-based signatures, formally verified implementations of TLS 1.3, and side-channel analysis of consumer crypto libraries. We do not invent new cryptography — we deploy what the cryptographic community has standardized and audited.

03

European operators

Operations, customer support, and compliance are run by people based in the European Union. Our company is incorporated in an EU member state, our infrastructure is in EU data centers, our primary team is EU-based.

02 Details

Section details

What we believe.

UltimaOS exists because we believe privacy is non-negotiable, that infrastructure should not profile its users, and that European alternatives to American tech should exist on technical merit — not just on jurisdiction.

01

Privacy is a default, not a feature

End-to-end encryption is on for every UltimaOS account. There is no premium tier, no setting to disable it. The default is the secure one, not the surveillance one.

02

Independence over growth

We are independently funded. No venture capital, no strategic investment from companies whose business model relies on advertising or data brokerage. We grow sustainably on customer revenue, not by extracting more value from users.

03

Open standards, audited algorithms

We use NIST-standardized post-quantum cryptography, IETF-standardized protocols, and open-source implementations reviewed by independent auditors. No proprietary crypto, no backdoors, no obscurity-as-security.

04

European infrastructure, on its merits

We choose EU infrastructure not out of nationalism but because the legal framework (GDPR, EU AI Act, sovereign cloud) genuinely protects users. Where the EU gets it wrong — like the eIDAS 2.0 traceability push — we say so publicly.

03 Key points

Key takeaways

How we work.

  1. 01

    Open source by default

    Every UltimaOS client is open source under AGPL-3.0. The server components are open source where their dependencies allow. Security researchers and curious users can audit the implementation end-to-end.

  2. 02

    Public security disclosures

    We publish a quarterly transparency report listing government requests received, vulnerabilities patched, and incidents. Our security page links to the latest audit reports.

  3. 03

    Continuous deployment with reproducibility

    Every release is reproducible from source. Updates are signed with ML-DSA-65 and SLH-DSA in parallel. Clients verify signatures before applying updates.

  4. 04

    Annual external audits

    Independent security firms audit the cryptographic implementation, the server codebase, and the operational security annually. Audit reports are published on the security disclosure page.

04b References

Authoritative sources

Standards and references.

05 Frequently asked

Common questions

Questions about the UltimaOS team.

Who is on the UltimaOS team?
Short answer

The core team is composed of engineers with backgrounds in distributed systems, applied cryptography, and consumer software. We are based in the European Union and operate as an independent European company.

How is UltimaOS funded?
Short answer

Independently, without venture capital. This means we are not under pressure to monetize user data, hit quarterly growth targets, or compromise the cryptography for short-term business goals.

How can I join the team?
Short answer

We hire selectively. Open roles are listed on the careers page when available. We also accept unsolicited applications from senior engineers and cryptographers; write to careers@ultimaos.com with a short note and your CV.

Are advisors or investors disclosed?
Short answer

Yes. Our advisors and any equity investment are listed on the about page. We do not accept strategic investment from companies whose business model conflicts with our privacy commitments.

Where is the company based?
Short answer

The company is incorporated in a European Union member state. Our operations, infrastructure and primary team are EU-based.

How do you handle conflicts of interest?
Short answer

Team members disclose any external commitments that could affect their work at UltimaOS. We do not engage in consulting or advisory work that would conflict with the privacy or security posture of the product.

Do you have a code of conduct?
Short answer

Yes. The UltimaOS team operates under an internal code of conduct covering professional behavior, conflict of interest disclosure, and security hygiene. External contributors agree to a contributor covenant.

How do I report a security issue to the team?
Short answer

Email security@ultimaos.com with details, or use the responsible-disclosure form on the security disclosure page. We acknowledge within 24 hours and triage within 72 hours.