Built to pass a defense due-diligence review.

Program offices, prime contractors, and national-security investors do due diligence before they engage. This page states plainly how Vadym Melnyk and his US venture Oswin AI approach US federal and defense compliance — corporate structure and ownership, export control, supply-chain integrity, and cybersecurity. We would rather answer the hard questions up front than have them surface as red flags.

This page describes our approach and intent. Specific registrations and certifications are established as the scope of an engagement requires; for current status and documentation, reach .

Oswin AI is incorporated in the United States and is the contracting vehicle for US and federal work. It is kept structurally separate from the European ventures so that US engagements sit cleanly inside a US entity.

Dronehub (founded 2015 as Cervi Robotics) is a European company and represents a decade of autonomous-systems R&D — including programs backed by the European Space Agency, the European Defence Agency, and Horizon Europe. It is referenced here as engineering pedigree, not as a US contracting party.

We are direct about Foreign Ownership, Control, or Influence. Vadym Melnyk is a Ukrainian national and a US lawful permanent resident, admitted in 2024 on an EB-1A“extraordinary ability” basis — a rigorous determination by US Citizenship and Immigration Services. The European ventures are separately held.

This is a managed disclosure, not a disqualifier. Foreign-born and foreign-founded companies routinely structure FOCI compliance and perform sensitive US work. We are prepared to enter standard mitigation as an engagement requires — including a Standard Form 328 submission, one or more independent US-citizen directors, and documented control and communication measures governing the handling of controlled information.

We treat export-control obligations as in-scope from day one. As program scope is defined, Oswin AI screens for International Traffic in Arms Regulations (ITAR) and Export Administration Regulations (EAR) applicability, registers where required, and implements technology-control and access measures for controlled technical data — including with respect to non-US persons.

We commit to sourcing that complies with the National Defense Authorization Act — including Section 889 (prohibited telecommunications and video-surveillance equipment) and supply-chain provenance expectations for components used in any US federal work. Hardware bills of materials are reviewed for covered and country-of-origin concerns before deployment.

Oswin AI is building its cybersecurity program aligned to NIST SP 800-171, the basis for the Cybersecurity Maturity Model Certification (CMMC) framework, so it can handle Controlled Unclassified Information appropriately as engagements require. We are happy to discuss current maturity and a path to the level a given program calls for.

For compliance documentation, security questionnaires, or due-diligence requests, contact . We respond to legitimate program-office, prime-contractor, and investor inquiries directly.