Acceptable Use Policy

Status — DRAFT, not yet in force. Starting language for counsel review, with placeholders marked [[FILL: …]]. This is part of the Terms of Service and a load-bearing control for the active-probe tier; it must be finalized by counsel against the CFAA and Md. Crim. Law § 7-302 before that tier launches. See 00-README-launch-gate.md. Last revised: 2026-06-24.

This Acceptable Use Policy (“AUP”) is part of the Should It Launch Terms of Service and governs what you may and may not do with the service operated by A&C, LLC. Violating this AUP is a breach of the Terms and may result in immediate suspension or termination, with no refund.

1. The core rule: only audit sites you are authorized to audit

You may submit a site to Should It Launch only if you own it or are authorized by its owner to audit it. This is the single most important rule of the service, because a full audit loads the live site and an attested audit actively probes it.

You must not use the service to:

• Submit, scan, probe, or test any website, server, endpoint, or system that you do not own or are not authorized to test;
• Attempt to access, or to determine the existence of, data, files, or systems that you are not authorized to access;
• Use the attested active-probe tier against any domain you have not verified control of and are not authorized to test;
• Circumvent, disable, or interfere with the domain-verification, attestation, rate-limiting, or security controls of the service;
• Use the service in any way that violates the Computer Fraud and Abuse Act, any applicable state computer-crime or unauthorized-access statute, or any other law.

2. Protecting the service

You must not:

• Overload, disrupt, degrade, or attempt to gain unauthorized access to the service or its infrastructure;
• Resell or provide raw access to the service to third parties except as your plan expressly allows;
• Scrape, copy, or harvest the service or its outputs to build a competing product or dataset;
• Reverse engineer the service except to the extent that restriction is prohibited by law;
• Use the service to transmit malware, or for any fraudulent, harassing, or unlawful purpose.

3. The attested active-probe tier

The attested tier runs read-only active checks against a target site. Because that conduct is meaningful under computer-misuse law, it is available only after you (a) verify control of the target domain through the method we provide, and (b) agree to the Ownership Attestation, including its representations of authorization and its indemnity. Running active checks against any site outside that process is a serious violation of this AUP and may also be a violation of law.

4. Enforcement

We may investigate suspected violations and may suspend or terminate access immediately where we reasonably believe this AUP has been violated, with no refund of fees paid. We may preserve and, where we are legally required to do so, disclose information in connection with a lawful investigation or legal process. Suspension or termination under this AUP does not limit any other remedy available to us, including under the indemnification provisions of the Terms and the Ownership Attestation.

5. Reporting

To report a suspected violation or unauthorized use, contact [[FILL: legal contact email]].