SDK Dashboard

Acceptable Use Policy

Last updated: January 11, 2026

Version: 2026.01.11

1. Introduction

This Acceptable Use Policy ("AUP") governs your use of Noxtica's services, including the API, SDK, Backoffice dashboard, and all related features (collectively, the "Services"). This AUP is incorporated into and forms part of our Terms of Service.

By using the Services, you agree to comply with this AUP. Violation may result in suspension or termination of your access.

2. Intended Use

Noxtica is designed for legitimate security purposes, including:

  • Bot Detection - Identifying automated traffic and scripts
  • Fraud Prevention - Detecting account takeover, payment fraud, and fake accounts
  • Abuse Prevention - Stopping spam, credential stuffing, and scraping
  • Security Analytics - Understanding traffic patterns and threats
  • Account Protection - Recognizing trusted devices and detecting anomalies

3. Prohibited Uses

You may NOT use the Services to:

3.1 Illegal Activities

  • Violate any applicable laws, regulations, or legal requirements
  • Facilitate, promote, or enable illegal activities
  • Process data in violation of privacy laws (GDPR, CCPA, etc.)
  • Evade law enforcement or regulatory oversight

3.2 Privacy Violations

  • Conduct surveillance without legal basis
  • Track individuals across websites you do not own or control
  • De-anonymize or identify individuals without consent or legal authority
  • Build advertising profiles without appropriate consent
  • Collect data from children without parental consent
  • Create databases for purposes other than security

3.3 Discrimination

  • Discriminate against individuals based on fingerprint or risk score
  • Deny services based solely on automated decisions without human review
  • Use fingerprint data to infer protected characteristics (race, religion, health, etc.)
  • Make employment, credit, housing, or insurance decisions based on fingerprint data

3.4 Harmful Activities

  • Harass, stalk, threaten, or harm any person
  • Defame, abuse, or invade the privacy of others
  • Impersonate any person or entity
  • Spread malware, viruses, or malicious code

3.5 Security Violations

  • Attempt to gain unauthorized access to our systems or networks
  • Probe, scan, or test vulnerabilities without authorization
  • Interfere with or disrupt the Services
  • Circumvent security measures, rate limits, or access controls
  • Use the Services to attack or compromise other systems

3.6 Abuse of Services

  • Use automated systems to overload, abuse, or scrape the Services
  • Generate excessive API requests beyond your plan limits
  • Deploy the SDK on unauthorized domains
  • Share account credentials or API keys with unauthorized parties
  • Resell or redistribute the Services without authorization

3.7 Intellectual Property

  • Infringe on copyrights, trademarks, patents, or other IP rights
  • Reverse engineer, decompile, or extract source code from the Services
  • Remove or alter proprietary notices or branding
  • Create derivative works or competing products

3.8 Misrepresentation

  • Provide false or misleading information when creating an account
  • Misrepresent your identity or affiliation
  • Falsely claim endorsement by Noxtica
  • Use our trademarks without authorization

4. Customer Responsibilities

4.1 Legal Compliance

You are solely responsible for:

  • Understanding and complying with all applicable laws
  • Determining whether the Services are appropriate for your use case
  • Implementing appropriate safeguards for automated decisions

4.2 End User Notices

When deploying the SDK on your websites, you must:

  • Provide clear notices about fingerprinting to your users
  • Obtain any legally required consent
  • Include appropriate disclosures in your privacy policy
  • Honor opt-out requests and privacy rights

4.3 Data Handling

You are responsible for:

  • Using collected data only for legitimate security purposes
  • Implementing appropriate data retention policies
  • Securing any data you export from the Services
  • Responding to data subject requests from your users

4.4 Risk Score Interpretation

You acknowledge that:

  • Risk scores are probabilistic estimates, not certainties
  • False positives and false negatives will occur
  • Scores should not be the sole basis for critical decisions
  • Human review should supplement automated decisions

5. Security Best Practices

We require customers to follow security best practices:

  • Protect credentials - Keep API keys and site keys secure; never expose secret keys in client-side code
  • Rotate keys - Periodically rotate API keys; immediately revoke compromised keys
  • Use HTTPS - Only deploy the SDK on HTTPS websites
  • Limit access - Use role-based access control in Backoffice; grant minimum necessary permissions
  • Enable MFA - Enable multi-factor authentication for admin accounts
  • Monitor usage - Review audit logs for suspicious activity
  • Report issues - Immediately report any security incidents to us

6. Reporting Violations

If you become aware of any violation of this AUP, please report it to:

Include details such as: nature of the violation, evidence or documentation, and parties involved (if known).

7. Enforcement

7.1 Monitoring

We may monitor use of the Services to detect violations of this AUP. Monitoring may include automated systems and human review.

7.2 Actions

If we determine that you have violated this AUP, we may take one or more of the following actions:

  • Issue a warning
  • Require you to cease the violating activity
  • Temporarily suspend your access
  • Permanently terminate your account
  • Report violations to law enforcement
  • Pursue legal remedies

7.3 No Liability

We are not liable for any actions we take to enforce this AUP, including suspension or termination of your access.

7.4 Appeals

If you believe we took action in error, you may appeal by contacting us at [email protected] with "AUP Appeal" in the subject line.

8. Changes to This Policy

We may update this AUP to address new threats, legal requirements, or operational changes. We will notify you of material changes through our website or by email.

Your continued use of the Services after changes constitutes acceptance of the updated AUP.

9. Contact

For questions about this Acceptable Use Policy:

This Acceptable Use Policy is effective as of the Last Updated date above.