Acceptable Use Policy
This policy describes what is and is not permitted when using Custodia. Violation may result in suspension or termination of your account.
1. Lawful Use
You may only use Custodia for lawful purposes and in compliance with all applicable laws and regulations. This includes U.S. export control laws, anti-fraud laws, and the False Claims Act. You may not use the Service to prepare false or misleading compliance documentation or to misrepresent your organization's security posture to government agencies or prime contractors.
2. Accurate Information
You must provide accurate, truthful information when using the Service. This includes: (a) account registration information; (b) organization profile details; (c) responses to compliance questionnaires; (d) evidence and documentation uploads. Knowingly providing false information violates this policy and may violate federal law.
3. Account Security
You are responsible for maintaining the security of your account. You must: (a) use a strong, unique password; (b) not share login credentials with unauthorized persons; (c) notify us immediately of any suspected unauthorized access; (d) log out of shared or public devices. You are responsible for all activities under your account.
4. Prohibited Activities
You may not: (a) attempt to gain unauthorized access to the Service, other accounts, or systems; (b) probe, scan, or test vulnerabilities without authorization; (c) interfere with or disrupt the Service or servers; (d) circumvent security features or access controls; (e) use automated tools to scrape, crawl, or extract data; (f) reverse engineer, decompile, or disassemble the Service; (g) resell, sublicense, or distribute the Service without authorization.
5. Content Restrictions
You may not upload or generate content that: (a) infringes intellectual property rights; (b) contains malware, viruses, or malicious code; (c) is defamatory, harassing, or threatening; (d) violates any person's privacy; (e) is obscene or illegal. You retain responsibility for all content in your account.
6. Resource Limits
You may not use the Service in ways that consume unreasonable resources or degrade performance for other users. This includes: (a) excessive API calls beyond normal use; (b) uploading extremely large files that disrupt the system; (c) running automated processes that strain infrastructure. We may implement rate limits or usage caps.
7. Compliance with AI Policies
When using AI features, you must: (a) review AI-generated content before use; (b) not use AI to generate misleading compliance documentation; (c) not attempt to manipulate AI systems to produce harmful outputs; (d) comply with our AI content disclaimer in the Terms of Service.
8. Reporting Violations
If you become aware of any violation of this policy, please report it to security@custodiallc.com. Include details and any supporting evidence. We will investigate reports promptly and may take action as warranted.
9. Enforcement
We may investigate suspected violations of this policy. Violations may result in: (a) warning notices; (b) temporary suspension of access; (c) permanent termination of your account; (d) reporting to law enforcement if criminal activity is suspected. We reserve sole discretion to determine whether a violation has occurred and what action is appropriate.
Questions about this policy?
Contact us and we'll help clarify.