diff --git a/.gitea/workflows/release.yaml b/.gitea/workflows/release.yaml
index 80c7348..58a629a 100644
--- a/.gitea/workflows/release.yaml
+++ b/.gitea/workflows/release.yaml
@@ -11,7 +11,7 @@ jobs:
     runs-on: docker
     environment:
       name: production           # Gitea Environments — requires sign-off per branch protection
-      url: https://yourplatform.com
+      url: https://breakpilot.com
     steps:
       - uses: actions/checkout@v4
         with: { fetch-depth: 0 }
@@ -22,7 +22,7 @@ jobs:
 
       - name: verify stage soak (>= 24h on this image)
         run: |
-          IMG=registry.yourplatform.com/${{ github.event.repository.name }}:env-stage
+          IMG=registry.breakpilot.com/${{ github.event.repository.name }}:env-stage
           SOAK_SECONDS=$(orca image-age --env=stage --image $IMG)
           if [ "$SOAK_SECONDS" -lt 86400 ]; then
             echo "Stage soak only $SOAK_SECONDS s, < 24h. Aborting."
@@ -34,12 +34,12 @@ jobs:
       - name: re-tag image as semver + env-prod
         uses: docker/login-action@v3
         with:
-          registry: registry.yourplatform.com
+          registry: registry.breakpilot.com
           username: ${{ secrets.REGISTRY_USER }}
           password: ${{ secrets.REGISTRY_PASS }}
 
       - run: |
-          IMG=registry.yourplatform.com/${{ github.event.repository.name }}
+          IMG=registry.breakpilot.com/${{ github.event.repository.name }}
           docker pull $IMG:env-stage
           docker tag  $IMG:env-stage $IMG:v${{ steps.v.outputs.version }}
           docker tag  $IMG:env-stage $IMG:env-prod
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
index d54d1a5..3ad8852 100644
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -86,4 +86,4 @@ When reviewing, check in this order:
 
 ## Questions
 
-`#engineering` channel · `oncall@yourplatform.com` · or open a PR with a `[WIP]` prefix and ask in the description.
+`#engineering` channel · `oncall@breakpilot.com` · or open a PR with a `[WIP]` prefix and ask in the description.
diff --git a/README.md b/README.md
index 2bc5768..5a8f380 100644
--- a/README.md
+++ b/README.md
@@ -35,7 +35,7 @@ The single source of truth for which container runs on which VM in which environ
 │   ├── vm-data.toml            m2.medium, private, data plane (scale driver)
 │   └── stage.toml              m2.small, public IP, ephemeral
 ├── dns/
-│   └── yourplatform.com.zone.template   PowerDNS zone — body lands in M0.3
+│   └── breakpilot.com.zone.template   PowerDNS zone — body lands in M0.3
 ├── cluster.toml.tmpl           # Cluster-level config (acme_email, backup, ai); rendered per env
 ├── scripts/
 │   ├── validate.sh             # `make validate`
@@ -100,7 +100,7 @@ Until the milestone PR lands, the stub still parses and `make validate` stays gr
 ## Observability
 
 - Traces, logs, metrics: [SigNoz](https://signoz.meghsakha.com) — service name per individual container
-- On-call: `oncall@yourplatform.com` · runbooks at `platform/docs/runbooks/`
+- On-call: `oncall@breakpilot.com` · runbooks at `platform/docs/runbooks/`
 
 ## Contributing
 
diff --git a/cluster.toml.tmpl b/cluster.toml.tmpl
index 334b99d..420f73a 100644
--- a/cluster.toml.tmpl
+++ b/cluster.toml.tmpl
@@ -7,11 +7,11 @@
 [cluster]
 name = "breakpilot-${ENV}"
 domain = "${DOMAIN}"
-acme_email = "oncall@yourplatform.com"
+acme_email = "oncall@breakpilot.com"
 
 [ai]
 provider = "litellm"
-endpoint = "https://llm.yourplatform.com"
+endpoint = "https://llm.breakpilot.com"
 model = "gpt-oss-120b"
 api_key = "${secrets.LITELLM_API_KEY}"
 
diff --git a/dns/yourplatform.com.zone.template b/dns/yourplatform.com.zone.template
index 61e53fc..f67b1bd 100644
--- a/dns/yourplatform.com.zone.template
+++ b/dns/yourplatform.com.zone.template
@@ -1,11 +1,11 @@
-; PowerDNS authoritative zone for yourplatform.com.
+; PowerDNS authoritative zone for breakpilot.com.
 ; Source-of-truth: this file. Synced into PowerDNS by M0.3 deploy step.
 ; Real records (apex, wildcards, A, MX, SPF/DKIM/DMARC) land with M0.3.
 
-$ORIGIN yourplatform.com.
+$ORIGIN breakpilot.com.
 $TTL 60
 
-@   IN  SOA  ns1.yourplatform.com. oncall.yourplatform.com. (
+@   IN  SOA  ns1.breakpilot.com. oncall.breakpilot.com. (
         ; serial — bumped by CI on every commit
         2026051800
         3600        ; refresh
@@ -14,7 +14,7 @@ $TTL 60
         60          ; minimum TTL
 )
 
-@   IN  NS   ns1.yourplatform.com.
-@   IN  NS   ns2.yourplatform.com.
+@   IN  NS   ns1.breakpilot.com.
+@   IN  NS   ns2.breakpilot.com.
 
 ; A records, wildcards, mail/spf/dkim/dmarc land in M0.3
diff --git a/manifests/stage/admin-compliance.toml b/manifests/stage/admin-compliance.toml
index 2a43b57..d7c2ea8 100644
--- a/manifests/stage/admin-compliance.toml
+++ b/manifests/stage/admin-compliance.toml
@@ -3,7 +3,7 @@
 
 [[service]]
 name = "admin-compliance"
-image = "registry.yourplatform.com/admin-compliance:env-stage"
+image = "registry.breakpilot.com/admin-compliance:env-stage"
 port = 3002
 
 [service.placement]
diff --git a/manifests/stage/ai-compliance-sdk.toml b/manifests/stage/ai-compliance-sdk.toml
index ffb1828..4a9b721 100644
--- a/manifests/stage/ai-compliance-sdk.toml
+++ b/manifests/stage/ai-compliance-sdk.toml
@@ -3,7 +3,7 @@
 
 [[service]]
 name = "ai-compliance-sdk"
-image = "registry.yourplatform.com/ai-compliance-sdk:env-stage"
+image = "registry.breakpilot.com/ai-compliance-sdk:env-stage"
 port = 3001
 
 [service.placement]
diff --git a/manifests/stage/backend-compliance.toml b/manifests/stage/backend-compliance.toml
index b562c35..011a3dc 100644
--- a/manifests/stage/backend-compliance.toml
+++ b/manifests/stage/backend-compliance.toml
@@ -3,7 +3,7 @@
 
 [[service]]
 name = "backend-compliance"
-image = "registry.yourplatform.com/backend-compliance:env-stage"
+image = "registry.breakpilot.com/backend-compliance:env-stage"
 port = 3000
 
 [service.placement]
diff --git a/manifests/stage/certifai-dashboard.toml b/manifests/stage/certifai-dashboard.toml
index 29128f7..087fc64 100644
--- a/manifests/stage/certifai-dashboard.toml
+++ b/manifests/stage/certifai-dashboard.toml
@@ -3,7 +3,7 @@
 
 [[service]]
 name = "certifai-dashboard"
-image = "registry.yourplatform.com/certifai:env-stage"
+image = "registry.breakpilot.com/certifai:env-stage"
 port = 3000
 
 [service.placement]
diff --git a/manifests/stage/customer-portal.toml b/manifests/stage/customer-portal.toml
index 87ecd18..7a50c31 100644
--- a/manifests/stage/customer-portal.toml
+++ b/manifests/stage/customer-portal.toml
@@ -3,9 +3,9 @@
 
 [[service]]
 name = "customer-portal"
-image = "registry.yourplatform.com/portal:env-stage"
+image = "registry.breakpilot.com/portal:env-stage"
 port = 3000
-domain = "*.stage.yourplatform.com"
+domain = "*.stage.breakpilot.com"
 
 [service.placement]
 node = "stage"
diff --git a/manifests/stage/tenant-registry.toml b/manifests/stage/tenant-registry.toml
index 3b86809..a521b3d 100644
--- a/manifests/stage/tenant-registry.toml
+++ b/manifests/stage/tenant-registry.toml
@@ -4,7 +4,7 @@
 
 [[service]]
 name = "tenant-registry"
-image = "registry.yourplatform.com/tenant-registry:env-stage"
+image = "registry.breakpilot.com/tenant-registry:env-stage"
 port = 8080
 depends_on = ["pg-app-stage"]
 
@@ -16,4 +16,4 @@ memory = "512Mi"
 cpu = 0.25
 
 [service.env]
-KEYCLOAK_ISSUER = "https://auth.yourplatform.com/realms/breakpilot-prod"
+KEYCLOAK_ISSUER = "https://auth.breakpilot.com/realms/breakpilot-prod"
diff --git a/manifests/vm-control/customer-portal.toml b/manifests/vm-control/customer-portal.toml
index cc95fea..cd86700 100644
--- a/manifests/vm-control/customer-portal.toml
+++ b/manifests/vm-control/customer-portal.toml
@@ -3,9 +3,9 @@
 
 [[service]]
 name = "customer-portal"
-image = "registry.yourplatform.com/portal:placeholder"
+image = "registry.breakpilot.com/portal:placeholder"
 port = 3000
-domain = "*.yourplatform.com"
+domain = "*.breakpilot.com"
 depends_on = ["tenant-registry"]
 
 [service.placement]
@@ -16,5 +16,5 @@ memory = "1Gi"
 cpu = 1.0
 
 [service.env]
-KEYCLOAK_ISSUER = "https://auth.yourplatform.com/realms/breakpilot-prod"
+KEYCLOAK_ISSUER = "https://auth.breakpilot.com/realms/breakpilot-prod"
 TENANT_REGISTRY_URL = "http://tenant-registry:8080"
diff --git a/manifests/vm-control/erpnext.toml b/manifests/vm-control/erpnext.toml
index 292f839..505151e 100644
--- a/manifests/vm-control/erpnext.toml
+++ b/manifests/vm-control/erpnext.toml
@@ -5,7 +5,7 @@
 name = "erpnext"
 image = "frappe/erpnext:v15"
 port = 8000
-domain = "erp.yourplatform.com"
+domain = "erp.breakpilot.com"
 depends_on = ["mariadb", "redis-erpnext"]
 
 [service.placement]
diff --git a/manifests/vm-control/stalwart.toml b/manifests/vm-control/stalwart.toml
index b92b7e2..fdd060d 100644
--- a/manifests/vm-control/stalwart.toml
+++ b/manifests/vm-control/stalwart.toml
@@ -5,7 +5,7 @@
 name = "stalwart"
 image = "stalwartlabs/mail-server:latest"
 port = 587
-domain = "mail.yourplatform.com"
+domain = "mail.breakpilot.com"
 extra_ports = ["25:25", "465:465", "587:587", "993:993"]
 
 [service.placement]
@@ -19,4 +19,4 @@ cpu = 0.5
 path = "/opt/stalwart-mail"
 
 [service.env]
-STALWART__SERVER__HOSTNAME = "mail.yourplatform.com"
+STALWART__SERVER__HOSTNAME = "mail.breakpilot.com"
diff --git a/manifests/vm-control/tenant-registry.toml b/manifests/vm-control/tenant-registry.toml
index e2ede1f..edb55f2 100644
--- a/manifests/vm-control/tenant-registry.toml
+++ b/manifests/vm-control/tenant-registry.toml
@@ -3,7 +3,7 @@
 
 [[service]]
 name = "tenant-registry"
-image = "registry.yourplatform.com/tenant-registry:placeholder"
+image = "registry.breakpilot.com/tenant-registry:placeholder"
 port = 8080
 
 [service.placement]
@@ -15,6 +15,6 @@ cpu = 0.5
 
 [service.env]
 DATABASE_URL = "${secrets.TENANT_REGISTRY_DB_URL}"
-KEYCLOAK_ISSUER = "https://auth.yourplatform.com/realms/breakpilot-prod"
+KEYCLOAK_ISSUER = "https://auth.breakpilot.com/realms/breakpilot-prod"
 KEYCLOAK_ADMIN_USER = "${secrets.KEYCLOAK_ADMIN_USER}"
 KEYCLOAK_ADMIN_PASS = "${secrets.KEYCLOAK_ADMIN_PASS}"
diff --git a/manifests/vm-data/admin-compliance.toml b/manifests/vm-data/admin-compliance.toml
index ed8b9e4..1306f60 100644
--- a/manifests/vm-data/admin-compliance.toml
+++ b/manifests/vm-data/admin-compliance.toml
@@ -3,7 +3,7 @@
 
 [[service]]
 name = "admin-compliance"
-image = "registry.yourplatform.com/admin-compliance:placeholder"
+image = "registry.breakpilot.com/admin-compliance:placeholder"
 port = 3002
 depends_on = ["backend-compliance", "ai-compliance-sdk"]
 
diff --git a/manifests/vm-data/ai-compliance-sdk.toml b/manifests/vm-data/ai-compliance-sdk.toml
index eeb9f94..fd4047c 100644
--- a/manifests/vm-data/ai-compliance-sdk.toml
+++ b/manifests/vm-data/ai-compliance-sdk.toml
@@ -3,7 +3,7 @@
 
 [[service]]
 name = "ai-compliance-sdk"
-image = "registry.yourplatform.com/ai-compliance-sdk:placeholder"
+image = "registry.breakpilot.com/ai-compliance-sdk:placeholder"
 port = 3001
 depends_on = ["pg-app", "qdrant", "litellm"]
 
diff --git a/manifests/vm-data/backend-compliance.toml b/manifests/vm-data/backend-compliance.toml
index a2281b7..b332e38 100644
--- a/manifests/vm-data/backend-compliance.toml
+++ b/manifests/vm-data/backend-compliance.toml
@@ -3,7 +3,7 @@
 
 [[service]]
 name = "backend-compliance"
-image = "registry.yourplatform.com/backend-compliance:placeholder"
+image = "registry.breakpilot.com/backend-compliance:placeholder"
 port = 3000
 depends_on = ["pg-app", "minio"]
 
diff --git a/manifests/vm-data/certifai-dashboard.toml b/manifests/vm-data/certifai-dashboard.toml
index 95c30b6..635c2a4 100644
--- a/manifests/vm-data/certifai-dashboard.toml
+++ b/manifests/vm-data/certifai-dashboard.toml
@@ -3,7 +3,7 @@
 
 [[service]]
 name = "certifai-dashboard"
-image = "registry.yourplatform.com/certifai:placeholder"
+image = "registry.breakpilot.com/certifai:placeholder"
 port = 3000
 depends_on = ["mongodb", "litellm"]
 
diff --git a/manifests/vm-edge/gitea.toml b/manifests/vm-edge/gitea.toml
index a959aca..a0a3106 100644
--- a/manifests/vm-edge/gitea.toml
+++ b/manifests/vm-edge/gitea.toml
@@ -5,7 +5,7 @@
 name = "gitea"
 image = "gitea/gitea:1.22"
 port = 3000
-domain = "git.yourplatform.com"
+domain = "git.breakpilot.com"
 
 [service.placement]
 node = "vm-edge"
@@ -22,4 +22,4 @@ USER_UID = "1000"
 USER_GID = "1000"
 GITEA__database__DB_TYPE = "sqlite3"
 GITEA__database__PATH = "/data/gitea/gitea.db"
-GITEA__server__ROOT_URL = "https://git.yourplatform.com"
+GITEA__server__ROOT_URL = "https://git.breakpilot.com"
diff --git a/manifests/vm-edge/infisical.toml b/manifests/vm-edge/infisical.toml
index 60d5173..d5d5db6 100644
--- a/manifests/vm-edge/infisical.toml
+++ b/manifests/vm-edge/infisical.toml
@@ -19,4 +19,4 @@ DB_CONNECTION_URI = "${secrets.INFISICAL_DB_URI}"
 REDIS_URL = "redis://redis-infisical:6379"
 ENCRYPTION_KEY = "${secrets.INFISICAL_ENCRYPTION_KEY}"
 AUTH_SECRET = "${secrets.INFISICAL_AUTH_SECRET}"
-SITE_URL = "https://infisical.yourplatform.com"
+SITE_URL = "https://infisical.breakpilot.com"
diff --git a/manifests/vm-edge/keycloak.toml b/manifests/vm-edge/keycloak.toml
index 4b31b0a..04816c3 100644
--- a/manifests/vm-edge/keycloak.toml
+++ b/manifests/vm-edge/keycloak.toml
@@ -6,7 +6,7 @@
 name = "keycloak"
 image = "quay.io/keycloak/keycloak:26.0"
 port = 8443
-domain = "auth.yourplatform.com"
+domain = "auth.breakpilot.com"
 depends_on = ["pg-keycloak"]
 
 [service.placement]
@@ -19,7 +19,7 @@ cpu = 1.0
 [service.env]
 KC_DB = "postgres"
 KC_DB_URL = "${secrets.KC_DB_URL}"
-KC_HOSTNAME = "auth.yourplatform.com"
+KC_HOSTNAME = "auth.breakpilot.com"
 KC_PROXY_HEADERS = "xforwarded"
 KC_HEALTH_ENABLED = "true"
 JAVA_OPTS_APPEND = "-Xms1g -Xmx1500m"