Acceptable Use Policy

Effective Date: 2026-06-01 Last Updated: 2026-06-01

1. Scope

This Acceptable Use Policy ("AUP") applies to all use of TappHQ (the "Platform"), including but not limited to: the creation and execution of AI agents, the use of integrations and connected services, data processing and storage, code execution, and any other interaction with the Platform. This AUP is incorporated into and forms part of the Terms of Service. Capitalized terms not defined herein have the meanings ascribed to them in the Terms of Service.

2. Prohibited Conduct — General

You may not use the Platform to:

Violate any applicable local, state, national, or international law, regulation, or court order, or to facilitate any violation thereof.
Infringe upon or misappropriate the intellectual property rights, privacy rights, or other proprietary rights of any third party.
Upload, transmit, or distribute any content that is illegal, defamatory, libelous, obscene, pornographic, threatening, abusive, or hateful.
Impersonate any person or entity, or falsely state or otherwise misrepresent your affiliation with any person or entity.
Interfere with or disrupt the Platform, its servers, networks, or infrastructure, or disobey any requirements, procedures, or policies of networks connected to the Platform.
Attempt to gain unauthorized access to any other user's account, organization, or data, or to any systems or networks connected to the Platform.
Share your account credentials, API keys, or access tokens with unauthorized individuals.
Engage in competitive intelligence activities against the Company, including reverse engineering, benchmarking, or feature comparison for the purpose of developing a competing product.

3. Prohibited Conduct — AI Agents

You may not use AI agents on the Platform to:

Generate, send, or facilitate spam, phishing attempts, unsolicited communications, or bulk messaging.
Impersonate real individuals or organizations, or create agents that purport to represent persons or entities without their authorization.
Circumvent, evade, or manipulate the Platform's rate limits, usage quotas, tier restrictions, or any other usage controls.
Execute or facilitate prompt injection attacks, jailbreaking, or attempts to override AI model safety mechanisms.
Perform unauthorized web scraping, crawling, or data collection beyond the scope of properly configured and authorized integrations.
Generate illegal, harmful, deceptive, fraudulent, or misleading content.
Exploit vulnerabilities in third-party services, AI providers, or any systems accessible through the Platform.

4. Prohibited Conduct — Code Execution and Infrastructure

You may not use the Platform's code execution capabilities or infrastructure to:

Mine cryptocurrency or perform any resource-intensive computation unrelated to legitimate Platform use.
Launch, facilitate, or participate in distributed denial-of-service (DDoS) attacks or any form of network flooding or disruption.
Upload, deploy, or execute malicious payloads, malware, viruses, worms, Trojan horses, or any other harmful code.
Attempt to gain unauthorized access to the Platform's underlying infrastructure, including Railway execution environments, Supabase databases, or any other infrastructure component.
Circumvent, disable, or interfere with security features, authentication mechanisms, tenant isolation controls, or any other access restrictions of the Platform.

5. Prohibited Conduct — Integrations

You may not use integrations connected through the Platform to:

Use connected services (including HubSpot, Google Workspace, ClickUp, and others) in any manner that violates their respective terms of service.
Intentionally or negligently exceed third-party API rate limits in a manner that disrupts service for others.
Access, collect, or use data from connected services in an unauthorized manner or for purposes not consented to by the data owner.
Export or transfer data obtained through integrations in violation of applicable data protection, export control, or privacy laws.

6. Prohibited Conduct — Data

You may not use the Platform to process:

Data for which you do not have all necessary rights, permissions, licenses, and consents.
Protected Health Information ("PHI") as defined by HIPAA, unless you have separately executed a Business Associate Agreement with the Company and the Company has explicitly confirmed HIPAA compliance support. As of the effective date of this AUP, the Company does not provide HIPAA compliance and does not offer Business Associate Agreements.
Information classified by any government as secret, top secret, or otherwise restricted.
Data subject to export control regulations (including ITAR and EAR) where processing on the Platform would violate such regulations.
Data involving individuals or entities subject to economic sanctions administered by OFAC or equivalent regulatory bodies.

7. Enforcement

The Company reserves the right to enforce this AUP through any or all of the following actions, as determined in the Company's sole discretion:

Warning: The Company may issue a written warning identifying the violation and requiring corrective action.
Suspension: The Company may temporarily suspend your account or specific Platform features pending investigation or resolution of a violation.
Immediate termination: The Company may immediately and permanently terminate your account without refund for any violation of this AUP, particularly for violations that pose a threat to other users, the Platform's infrastructure, or third parties.
Legal action: The Company may pursue any available legal remedies, including seeking injunctive relief and monetary damages.

The severity of enforcement action will generally be proportional to the severity, intent, and impact of the violation. However, the Company reserves the right to immediately terminate any account for any violation of this AUP at its sole discretion, without prior warning or opportunity to cure.

8. Reporting Violations

If you become aware of any violation of this AUP, please report it to abuse@tapphq.com. All reports will be reviewed and investigated. The Company will maintain the confidentiality of the reporter to the extent permitted by law.

9. Artificial Intelligence

TappHQ incorporates artificial intelligence capabilities across the platform, including conversational assistants, autonomous agents, content generation, compliance analysis, grant drafting, document generation, image generation, voice narration, and workflow automation. This section governs your use of these AI-powered features.

9.1 Permitted Use

You may use AI features for legitimate organizational purposes consistent with your subscription tier and the general terms of this Acceptable Use Policy. AI-generated output is subject to the same content standards as any other content you create or distribute through TappHQ.

9.2 Prohibited Conduct

You may not use AI features on TappHQ to:

Generate content that is harmful, illegal, fraudulent, defamatory, or deceptive
Attempt to circumvent AI safety filters, content moderation systems, or usage limits
Rely on AI output as a substitute for professional judgment in legal, medical, financial, or regulatory decisions without independent human review and verification
Reverse engineer model behavior, extract training data, or probe for model vulnerabilities
Resell raw AI-generated output as a standalone product or service without substantial transformation, value addition, or human editorial oversight
Engage in automated high-volume usage that exceeds your tier limits or is designed to circumvent rate limiting
Conduct cryptocurrency mining, distributed denial-of-service attacks, spam generation, or similar abusive computational activities through agent execution
Harvest competitive intelligence about other organizations through systematic use of platform AI tools
Impersonate individuals, organizations, or government entities through AI-generated content
Generate content that infringes the intellectual property rights of third parties

9.3 AI Output Accuracy

AI-generated content is provided for informational and productivity purposes only. Output may contain inaccuracies, omissions, or hallucinated information. You are responsible for reviewing, verifying, and validating all AI-generated content before relying on it or distributing it to third parties. TappHQ does not guarantee the accuracy, completeness, or fitness for purpose of any AI-generated output. For additional detail, refer to our AI Disclaimer document.

9.4 Credit Consumption and Rate Limiting

AI operations consume credits from your monthly allocation. Credit costs vary by operation type, complexity, and the underlying AI model used. We reserve the right to modify credit costs as upstream model pricing and capabilities change, with advance notice as described in our Terms of Service. Rate limiting may be applied to individual operations or accounts to maintain platform stability and fair access for all users.

9.5 Content Generated by AI

All content you generate using AI features is subject to this Acceptable Use Policy. You are responsible for the content you create, distribute, or publish through the platform, regardless of whether it was AI-generated, AI-assisted, or manually authored.

9.6 Community Learning Program

TappHQ offers a voluntary Community Learning Program that allows participating organizations to contribute anonymized AI usage patterns to improve platform capabilities for all users. Participation is opt-in and governed by jurisdiction-aware consent defaults. You may opt in or out at any time through your account settings. Details about data handling, anonymization, and your rights are available at tapphq.com/legal/community-learning and in our Privacy Policy.

9.7 Monitoring and Enforcement

We reserve the right to monitor AI usage patterns for abuse, policy violations, and platform stability. If we determine that your use of AI features violates this policy, we may suspend or restrict your access to AI features, reduce your credit allocation, or terminate your account in accordance with the general enforcement provisions of this Acceptable Use Policy.

Tapp Networks LLC