Bonterms-derivative AUP. This Acceptable Use Policy substantially follows the Bonterms Acceptable Use Policy framework. It is incorporated by reference into the Terms of Service and applies to all use of the Aegis AI™ platform.
1. Purpose
This Acceptable Use Policy ("AUP") describes the conduct expected from Customer and Customer's authorized users when using the Aegis AI™ Services. The AUP is designed to protect Customer, ElasticD3M, LLC, other customers, and the wider internet community.
2. Customer Representations
By using the Services, Customer represents and certifies that, as of the date of purchase and throughout the term of the subscription, Customer's organization:
- Is a bona fide business entity using the Services for lawful business purposes, not for the personal use of any individual consumer.
- Has the authority to bind the organization to the Terms of Service, this AUP, and the Data Processing Addendum.
- Is not an entity identified on the U.S. Treasury OFAC SDN list, the BIS Entity List, the NDAA §1260H list of Chinese military-affiliated companies, or any other U.S. government denied-party list. Customer will not violate U.S. export-control laws (Export Administration Regulations, International Traffic in Arms Regulations) or sanctions regulations (administered by the U.S. Treasury Office of Foreign Assets Control) in its use of the Services.
- Is not located in or organized under the laws of a country or region subject to a comprehensive U.S. embargo (currently Cuba, Iran, North Korea, Syria, Crimea, Donetsk, and Luhansk).
- Is not debarred, suspended, or otherwise excluded from participation in U.S. federal procurement programs (FAR 52.209-5; SAM.gov Exclusions List), to the extent the Services are used to support federal-contract performance.
- Will not procure or use covered telecommunications equipment or services from Huawei, ZTE, Hytera, Hikvision, Dahua, or any other entity prohibited under FAR 52.204-25 / NDAA §889 Part A or Part B in connection with Services it submits for evaluation.
Customer agrees to notify Provider at [email protected] promptly if Customer's eligibility status changes during the term. A change in eligibility status may be grounds for termination of the subscription for cause without refund of fees previously paid.
3. Prohibited Uses
Customer agrees not to use the Services to:
- Violate any applicable law or regulation, including U.S. export-control laws (EAR, ITAR), sanctions regulations (OFAC), or sector-specific data-protection laws (HIPAA, PCI-DSS, GDPR).
- Submit regulated payload contents (PHI under HIPAA, cardholder data under PCI-DSS, GDPR Article 9 special categories, or other regulated data) to the Services. The Services are designed to read configuration metadata (IAM roles, security-control settings, audit-log metadata) — not regulated data contents. Customer is responsible for ensuring the data it submits at intake or otherwise conveys to the Services does not include regulated payloads.
- Infringe any third party's intellectual property, privacy, publicity, or other rights.
- Reverse engineer, decompile, disassemble, or attempt to derive the source code, algorithms, or underlying ideas of the Services.
- Probe, scan, or test the vulnerability of any ElasticD3M, LLC system or network without prior written authorization through a coordinated vulnerability disclosure process.
- Interfere with or disrupt the integrity or performance of the Services or any third-party systems linked to or used by the Services.
- Attempt to gain unauthorized access to the Services, other accounts, or ElasticD3M, LLC's computer systems.
- Use the Services to develop or train a competing product.
- Send through, or facilitate sending through, the Services any unsolicited bulk email, malware, ransomware, or other malicious code.
- Conduct unauthorized third-party scanning, penetration testing, or security assessment against systems Customer does not own or has not been expressly authorized to test.
- Impersonate any person or misrepresent affiliation with any organization.
- Resell, sublicense, or distribute the Services or deliverables to third parties for compensation without ElasticD3M, LLC's prior written consent.
4. System Integrity and Fair Use
Customer will not knowingly take any action that imposes an unreasonable or disproportionately large load on the Services' infrastructure, or attempt to circumvent any rate limits, access controls, or technical safeguards. The Services are subject to fair-use thresholds documented in the Terms of Service; abusive volume patterns inconsistent with the tier purchased may trigger throttling, tier upgrade requirements, or suspension.
5. Reporting Violations
Suspected AUP violations may be reported to [email protected] or [email protected]. ElasticD3M, LLC will investigate reasonable reports in good faith and may share information with affected customers and law enforcement when appropriate.
6. Consequences
ElasticD3M, LLC may suspend or terminate Customer's access to the Services for a violation of this AUP, with notice if reasonably practicable and consistent with the Terms of Service. For severe or repeated violations — including any violation of the trade-compliance representations in Section 2 — suspension may be immediate and without refund of fees previously paid. Customer remains responsible for fees due for periods prior to suspension or termination.
Effective Date: May 12, 2026 · Version: 1.0 (Bonterms-derivative)