Acceptable Use Policy

This Acceptable Use Policy (“AUP”) describes prohibited conduct and content when using the Onnie Services. This AUP is incorporated into and forms part of the Terms of Service.

If you have questions, contact legal@heizen.io.

1) The short version

Use Onnie responsibly. Don't break the law, harm others, abuse the platform, or attempt to compromise security. If you do, we may limit, suspend, or terminate your access.

2) Prohibited activities

You may not (and may not allow others to):

2.1 Illegal, harmful, or abusive behavior

• use the Services to violate laws or regulations;
• harass, threaten, defame, or abuse others;
• promote violence, hate, or discrimination;
• exploit, harm, or endanger minors;
• facilitate wrongdoing (e.g., fraud, phishing, scams).

2.2 Privacy and personal data misuse

• collect, store, or share personal data without lawful basis, notice, and consent where required;
• attempt to deanonymize, re-identify, or infer sensitive attributes without permission;
• access or disclose information you do not have permission to access.

2.3 Security, malware, and unauthorized access

• probe, scan, or test the vulnerability of any system or network without authorization;
• bypass, disable, or interfere with security controls, authentication, or access controls;
• introduce malware, ransomware, spyware, or other harmful code;
• attempt to gain unauthorized access to accounts, workspaces, data, or systems.

2.4 Platform abuse and service disruption

• overload, disrupt, or degrade the Services (including through automated means);
• conduct scraping or harvesting that violates rate limits or disrupts the Services;
• use the Services in a manner that materially interferes with other customers' use.

2.5 Misuse of public links, public pages, and external access

Where the Services provide public or semi-public access (e.g., public activities/forms/pages):

• do not share access links or tokens where doing so would violate confidentiality or privacy obligations;
• do not attempt to bypass verification, access gates, or intended restrictions;
• do not use public entry points to spam, abuse, or submit malicious content/files.

2.6 Intellectual property and infringement

• upload, share, or distribute content that infringes third-party rights (copyright, trademarks, trade secrets);
• use the Services to distribute pirated software or copyrighted materials without authorization.

2.7 Reverse engineering and misuse of the product

• reverse engineer, decompile, or attempt to extract source code from the Services except to the extent expressly permitted by law;
• access the Services to build a competing product or to benchmark publicly without written permission.

3) Prohibited content

You may not upload, submit, or generate content that:

• is illegal, hateful, or violent in a way that targets protected groups;
• includes child sexual abuse material or exploitation;
• contains malware or instructions intended to harm systems or people;
• is fraudulent, deceptive, or intended for phishing/social engineering.

4) AI features (Agents, automations, Outputs)

When using AI agents, automations, templates, and generated Outputs:

• do not use AI features to produce or distribute prohibited content;
• review Outputs before acting on them, especially for regulated, financial, medical, legal, or high-impact decisions;
• do not misrepresent AI-generated content as verified facts when it is not.

5) Enforcement

We may investigate suspected violations and take action we deem appropriate, including:

• removing or restricting access to content;
• rate limiting or disabling abusive automation;
• suspending or terminating accounts/workspaces;
• reporting to law enforcement where required.

We may also cooperate with lawful requests and preserve evidence as required by law.

6) Reporting concerns

To report abuse, security issues, or policy violations, contact legal@heizen.io and include relevant details (workspace, timestamps, screenshots/logs if available).