What you use
Neuroscale’s anonymous reporting channel is GlobaLeaks — an open-source whistleblower platform engineered specifically for anonymity and source protection. It is self-hosted on a Vultr account owned by Neuroscale’s Chief Executive Officer personally, intentionally outside Neuroscale’s production infrastructure. The CTO and CISO are explicitly excluded from root, sudo, or administrative access on the host; the host is not part of the Neuroscale production Vultr organization, has no Neuroscale-IdP entitlement, and is not reachable through the Neuroscale corporate network. This architecture is the CC1.5 / CC1.2 compensating control for independence from management, and is documented in the Audit Committee Deferral Memo 2026 and the Whistleblower Policy.Use the channel
- Web (clearnet): https://report.neuroscale.ai (pending DNS cutover; until cutover, submit via bmori@vgcllp.com addressed to “Brandt Mori — Anonymous Report”, and VGC will hold under counsel privilege.)
- Web (Tor hidden service): (pending standup — same temporary path as above.)
- Languages: Multilingual intake supported by GlobaLeaks at the platform level.
- Hours: 24 / 7.
- Follow-up: When you submit a report, you receive a case ID. You can return at any time, with no identifying information, and use the case ID to read responses, answer follow-up questions, and provide additional information. The case ID is your only way back into the report — store it somewhere safe.
Where reports route
- Default routing: to the Chief Executive Officer (Ishan Jadhwani). The CEO reviews and decides on investigation path, recusing where personally implicated.
- Conflicted routing: reports concerning the CEO, CTO, or CISO route automatically to outside counsel (VGC LLP, Brandt Mori) without internal notification. VGC investigates under counsel privilege, retains work-product protection, and (a) reports findings to the appropriate external authority where wrongdoing is substantiated (Neuroscale is member-managed with no board, so reports cannot be routed to other directors); (b) reports anonymized aggregate detail to the next quarterly ISMS Management Review.
- Aggregate reporting: the CEO (or VGC for conflicted matters) reports volume, nature, and disposition of reports at each quarterly ISMS Management Review.
What’s anonymous, what isn’t
GlobaLeaks is engineered for anonymity. It accepts reports without collecting identifying information about the reporter. Neuroscale does not receive your name, email, IP address, or device identifiers from the platform when you report anonymously. Anonymous reports are handled with the same diligence as identified reports, recognizing the practical limits anonymity places on follow-up. If you choose to identify yourself in the body of the report (for example, by naming yourself or describing your role in detail), the recipient can read what you wrote. The intake form does not require you to do so. For maximum anonymity, use the Tor hidden service version of the URL (once live). Tor obscures network-level identifiers (IP, geolocation) on top of the platform’s application-level anonymity.What you can report
Any concern under any of the following policies — and any other concern you don’t feel comfortable raising through normal channels:- Whistleblower Policy — fraud, securities, accounting, retaliation, any law/regulation/policy violation.
- Code of Conduct — discrimination, harassment, hostile-workplace conduct.
- Anti-Bribery & Corruption Policy — bribery, kickbacks, improper payments, FCPA / UK Bribery Act / Brazilian Clean Companies Act / Indian Prevention of Corruption Act.
- Insider Trading Policy — trading on MNPI, tipping.
- Workplace Violence Prevention Policy — threats, violence, intimidation.
- Information Security Policy — security violations, unaddressed breaches.
- Trade Compliance Policy — sanctions, export controls, anti-boycott.
- AI Acceptable Use Policy — AI misuse.
- Employee Privacy Policy — workforce-data mishandling.
Anti-retaliation
Neuroscale strictly prohibits retaliation against any person who, in good faith, files a report through this channel or any other channel listed in the Whistleblower Policy. See the Anti-retaliation and Right to report directly to the government sections of that policy.When to use a different channel
This page is the right starting point when you want to remain anonymous. If you are willing to identify yourself, faster channels are usually available:- Imminent threat or violence in progress: Call 911 first, then notify security@neuroscale.ai.
- Active security incident: Email security@neuroscale.ai. See Report a security issue.
- HR / harassment / discrimination: people@neuroscale.ai or your manager.
- Ethics / compliance / fraud (identified): ethics@neuroscale.ai.
- Legal / contracts / regulator inquiry: legal@neuroscale.ai.
- Conflicted matter (involving the CEO, CTO, or CISO directly): contact VGC LLP (Brandt Mori) at bmori@vgcllp.com directly, or use the anonymous channel above which auto-routes there.
Version history
| Version | Date | Description | Author | Approved by |
|---|---|---|---|---|
| 1.0 | 2026-05-16 | Initial version — GlobaLeaks platform selected; self-hosted on CEO-personal Vultr; conflict-routing to VGC LLP documented. Replaces prior interim Google Form. | Cameron Wolfe | Ishan Jadhwani |