Acceptable Use Policy

1. Overview

This Acceptable Use Policy (“AUP”) governs your use of the Reglint compliance scanning service (the “Service”). It is incorporated by reference into the Terms of Service and has the same binding effect. Capitalized terms not defined here have the meanings given in the Terms of Service.

Violation of this AUP may result in suspension or immediate termination of your account, with or without prior notice, and without refund. Reglint reserves the right to investigate any suspected violation and to cooperate with law enforcement where required.

2. Prohibited Uses

You shall not use the Service in any of the following ways. Each item below is a binding restriction, not a general principle.

Category A — Scanned Content

• You shall not scan content you do not own or are not authorized by the content owner to submit for analysis.
• You shall not submit content that infringes third-party intellectual property rights, violates third-party privacy rights, or discloses third-party confidential information without authorization.
• You shall not submit content that constitutes child sexual abuse material (CSAM), terrorist content, or content that is illegal under applicable law. Accounts found to have submitted such content will be terminated immediately and reported to the relevant authorities without further notice.
• You shall not use the Service to scan content relating to EU data subjects without a lawful basis for that processing under GDPR Article 6 (and Article 9 where special categories of data are involved).

Category B — Service Integrity

• You shall not reverse engineer, decompile, disassemble, or attempt to extract Reglint's detection rules, regex patterns, regulatory knowledge base, or AI scoring logic.
• You shall not scrape, harvest, or systematically extract Reglint's pattern library, regulatory citations, RAG corpus, or any other proprietary content from the Service.
• You shall not probe, scan, fuzz, or test the security or vulnerability of the Service, its infrastructure, or its APIs without prior written authorization from Reglint LLC.
• You shall not bypass, circumvent, or attempt to circumvent authentication controls, rate limits, quota enforcement, API key restrictions, or subscription tier restrictions.
• You shall not create or use multiple accounts to circumvent free-tier limits, trial restrictions, or any usage quota that applies to a single account.
• You shall not submit automated traffic to the Service in excess of the documented API rate limits for your subscription tier.

Category C — Output Misuse

• You shall not represent Reglint scan results to customers, regulators, auditors, or any third party as a formal compliance certification, regulatory approval, or legal determination that a system is “compliant” with any law or standard.
• You shall not use Reglint output as the sole basis for claiming that a system, product, or process satisfies any regulatory requirement. The Service provides a detection signal; compliance determination requires qualified legal and technical review.
• You shall not strip, alter, redact, or obscure Reglint's accuracy disclaimers, confidence scores, or any other caveats from scan output before presenting that output to end users, customers, or regulators.
• You shall not use Reglint output to facilitate, plan, conceal, or execute illegal activity of any kind.

Category D — Resale & Redistribution

• You shall not resell, sublicense, or redistribute access to the Reglint API or Service to third parties without a written commercial agreement with Reglint LLC.
• You shall not wrap or integrate the Service into a competing compliance product, SaaS offering, or consulting service without prior written authorization from Reglint LLC.
• You shall not white-label the Service or present it to customers under a brand other than Reglint without an Enterprise agreement that expressly permits white-labeling.

Category E — Infrastructure Abuse

• You shall not use the Service for cryptocurrency mining, speculative compute workloads, or any purpose other than compliance scanning as described in the product documentation.
• You shall not initiate or assist in a denial-of-service (DoS) or distributed denial-of-service (DDoS) attack against Reglint or any third party.
• You shall not introduce, distribute, or transmit malware, viruses, ransomware, trojans, or any other malicious code through the Service or its APIs.
• You shall not use the Service, or outputs derived from it, to harass, threaten, defame, impersonate, or stalk any individual or entity.

3. Enforcement

3.1 Investigation Rights

Reglint reserves the right to investigate any suspected violation of this AUP. In connection with an investigation, Reglint may:

• Access, review, and retain account data, scan submissions, API logs, and usage metadata, consistent with the retention periods described in our Privacy Policy.
• Suspend access to the Service pending the outcome of an investigation, with or without prior notice.
• Share information with law enforcement, regulatory authorities, or third parties where required by valid legal process (including subpoenas, search warrants, and court orders) or where Reglint reasonably believes disclosure is necessary to prevent imminent harm.

3.2 Suspension

Reglint may suspend your access to the Service immediately upon detecting or receiving a credible report of a suspected AUP violation. Where operationally feasible and not prohibited by law or ongoing investigation, Reglint will attempt to notify you of the suspension via the email address associated with your account.

During a suspension, API keys associated with your account will be deactivated. Suspension does not constitute termination; your account may be reinstated following investigation if no violation is confirmed.

3.3 Termination

Reglint may terminate your account immediately and without a cure period for:

• Submission of CSAM, terrorist content, or other categorically illegal material (Category A, item 3);
• Any deliberate attempt to compromise the integrity, security, or infrastructure of the Service (Category B);
• Systematic misrepresentation of Reglint output as a compliance certification to regulators or the public (Category C);
• Unauthorized resale or white-labeling of the Service (Category D); or
• Any other violation that Reglint determines, in its sole reasonable discretion, constitutes a material breach of this AUP or the Terms of Service.

3.4 Effect of Termination

Upon termination for AUP violation: all API keys are revoked, access to the dashboard and all Service features ceases immediately, and any pending scan jobs are cancelled. Reglint may retain logs and relevant data for the period necessary to complete any investigation or comply with legal obligations.

4. Reporting Violations

If you observe or suspect a violation of this AUP by another user or third party, please report it to us at legal@reglint.ai.

To help us investigate efficiently, please include:

• The account email address or account ID of the suspected violator (if known);
• A description of the suspected violation and the provision(s) of this AUP you believe were violated;
• Any supporting evidence (screenshots, API response logs, URLs, timestamps); and
• Your name and contact information so we can follow up if needed.

Reglint will acknowledge abuse reports within 5 business days of receipt. We may not be able to share the outcome of an investigation due to privacy obligations to the account under review.

Reglint does not retaliate against users who make good-faith reports of suspected AUP violations. Knowingly false or malicious reports, however, may themselves constitute a violation of this AUP.

5. Contact

• AUP & Abuse Reports: legal@reglint.ai
• Legal & Terms: /legal/terms
• Privacy & Data: /legal/privacy
• Company: Reglint LLC, Commonwealth of Virginia, USA (Entity ID: 12015362)