Legal

Acceptable Use Policy

Last updated: June 19, 2026

This document is provided for transparency and operational use. It is not legal advice. Have a qualified attorney review before relying on it for regulated industries, EU/UK hospitality groups, healthcare, financial services, or international markets.

This Acceptable Use Policy (“AUP”) governs all use of Primagery AI websites, Command Center, Client Portal, APIs, MCP endpoints, PWAs, and related Services. It is incorporated into our Terms of Service. Capitalized terms match those Terms.

1. General principles

  • Use Services only for lawful business purposes authorized by your organization.
  • Respect the security, privacy, and rights of Primagery, other clients, and third parties.
  • Follow all applicable laws, including privacy, export, anti-spam, and intellectual property laws.
  • Do not attempt to probe, scan, or test vulnerabilities except authorized coordinated disclosure.

2. Prohibited activities

You may not, and may not assist others to:

2.1 Security and access

  • Gain or attempt unauthorized access to accounts, tenants, APIs, or infrastructure
  • Share passwords, API keys, or session tokens outside authorized personnel
  • Bypass authentication, rate limits, RBAC, or tenant isolation
  • Introduce malware, viruses, worms, or harmful code
  • Conduct denial-of-service attacks or resource exhaustion against Primagery or third parties
  • Scrape or harvest data from the Services via automated means without written permission
  • Reverse engineer the platform except where statutory rights apply

2.2 Content and data

  • Upload content you lack rights to use or that violates third-party IP
  • Upload unlawful, defamatory, harassing, hateful, or discriminatory content
  • Upload others' personal data without lawful basis and required notices
  • Store cardholder data on Primagery servers outside approved PCI-compliant flows
  • Upload PHI for HIPAA-regulated purposes without an executed BAA
  • Upload child sexual abuse material (CSAM) or exploitation content — zero tolerance; reported to authorities

2.3 Communications

  • Send spam, phishing, or unsolicited bulk messages through or referencing Primagery systems
  • Impersonate Primagery, clients, or individuals
  • Use Services to harass, threaten, or stalk any person
  • Violate CAN-SPAM, TCPA, GDPR marketing rules, or local telecom regulations

2.4 AI and automation misuse

  • Generate unlawful, deceptive, or harmful AI outputs
  • Attempt prompt injection to exfiltrate other tenants' data or system prompts
  • Use automation to circumvent human approval gates on sensitive workflows
  • Present AI-generated content as guaranteed professional advice without disclosure

2.5 Resource abuse

  • Mine cryptocurrency or run unrelated compute-heavy workloads
  • Resell portal access or operate a competing service on Primagery infrastructure
  • Upload excessively large files or volumes intended to degrade service for others

3. Document vault requirements

When using document upload features:

  • Upload only documents necessary for the engagement
  • Redact unrelated third-party personal data where possible
  • Classify sensitive documents appropriately in communications with Primagery staff
  • Report accidental uploads of wrong files immediately for coordinated deletion
  • Do not upload executable files disguised as documents unless explicitly requested and scanned

4. API and MCP usage

  • Use API keys only for intended integrations; rotate compromised keys promptly
  • Respect documented rate limits and scopes (readonly vs write)
  • Do not expose MCP endpoints to the public internet without authentication
  • Log and monitor your integrations for anomalous behavior

5. Security research

Good-faith security research is welcome when coordinated. Email info@primagery.com before testing. Do not access other customers' data, degrade production, or publicly disclose issues before reasonable remediation time.

6. Monitoring and enforcement

Primagery may monitor usage for security and compliance (see Privacy Policy). We may:

  • Investigate suspected violations
  • Remove or quarantine content
  • Suspend or terminate accounts without refund where permitted
  • Cooperate with law enforcement and regulators
  • Pursue legal remedies for material breaches

7. Reporting violations

Report abuse, AUP violations, or security concerns: info@primagery.com. Include relevant URLs, timestamps, and screenshots where helpful. For urgent security incidents, mark subject “URGENT Security.”

8. Changes

We may update this AUP. Continued use constitutes acceptance where permitted. Material restrictions may be communicated directly to account holders.

← Back to home