Acceptable Use Policy

This Acceptable Use Policy ("AUP") governs your use of PrivateHost.AI and all actions taken by any Agent you operate through the Service. This AUP is incorporated into our Terms of Service and violation may result in suspension or termination without refund.

Because your Agent acts autonomously on your behalf, you are responsible for your Agent's conduct to the same extent as your own. Configuring your Agent to take a prohibited action is itself a violation of this AUP.

Last updated: May 16, 2026

1. Permitted uses

The Service is designed for legitimate personal and small business productivity, including: drafting and organizing email and communications; research and content creation; scheduling and calendar management; automation of routine tasks you are authorized to perform; customer communications you have authority to send; data analysis and document processing; and software development assistance for your own projects.

2. Absolutely prohibited content

You must not use the Service to generate, distribute, store, or process:

  • Child sexual abuse material (CSAM) or any content that sexualizes minors in any form. This is a zero-tolerance category. We will report such activity to NCMEC and relevant law enforcement immediately.
  • Content that facilitates, promotes, or plans violence, terrorism, or mass harm against any person or group.
  • Biological, chemical, nuclear, or radiological weapons design, synthesis instructions, or procurement assistance.
  • Malware, ransomware, spyware, exploit code, or other malicious software designed to damage or gain unauthorized access to systems.
  • Non-consensual intimate imagery or content designed to sexually harass, extort, or coerce any individual.
  • Unlawful hate speech targeting individuals or groups based on protected characteristics.

3. Prohibited automated actions

You must not configure or permit your Agent to:

  • Send spam or bulk unsolicited messages. Your Agent may not send mass commercial emails, bulk SMS, or bulk messages without recipient consent compliant with CAN-SPAM, CASL, TCPA, and similar regulations.
  • Impersonate any person or organization in a way intended to deceive recipients.
  • Automate financial fraud including fake invoices, fraudulent payment requests, phishing, investment fraud, or any scheme designed to deceive others into transferring money or assets.
  • Engage in unauthorized access — credential stuffing, brute-force attacks, or exploiting vulnerabilities in third-party systems.
  • Conduct unauthorized surveillance or collect personal data about individuals who have not consented.
  • Scrape or harvest data in violation of third-party platform terms.
  • Generate deceptive content at scale including fake reviews, synthetic social media activity, or disinformation campaigns.
  • Manipulate markets or platforms through coordinated inauthentic behavior.
  • Send communications purportedly from third parties without their explicit authorization.

4. Email access restrictions

When you grant your Agent access to email or messaging accounts: you must only connect accounts you own or are explicitly authorized to manage; your Agent may not send bulk commercial email without applicable anti-spam law compliance; your Agent may not harvest third-party contact data for commercial purposes without consent; and businesses using the Agent to manage customer communications must comply with all applicable consumer communication laws including required disclosures and opt-out mechanisms.

5. Agent self-modification limits

You may configure your Agent to update its own personality and guidelines. However, you must not direct your Agent to modify itself to circumvent safety guidelines or this AUP, instruct itself to take actions that violate these Terms or applicable law, or alter its configuration to misrepresent itself as a different entity or service.

6. Platform and resource integrity

You must not: attempt to access or interfere with other users' Agent instances or data; create excessive infrastructure load that degrades service for other users; circumvent or bypass resource limits or security controls; probe or test vulnerabilities in our infrastructure or any third-party systems without express written authorization; extract proprietary configuration or operational information; or resell or sublicense access to the Service without our written consent.

7. Legal compliance

You must use the Service in compliance with all applicable laws including: privacy and data protection law (GDPR, CCPA/CPRA, PIPEDA); anti-spam and electronic communications law (CAN-SPAM, CASL, TCPA); consumer protection and truth-in-advertising law; intellectual property law; financial services regulation where applicable; and export control law. The Service may not be used in countries subject to US sanctions.

8. AI provider upstream policies

Because the Service uses AI providers (Anthropic, OpenAI) under your own account credentials, you must also comply with those providers' usage policies and terms of service. Violations of upstream AI provider policies may result in your API key being disabled by the provider independently of any action we take.

9. Enforcement

We may monitor for abuse indicators and take the following actions at our sole discretion: warning for minor or first-time violations; throttling while an investigation is conducted; temporary suspension pending investigation or remediation; permanent termination without refund for serious, repeated, or zero-tolerance violations; and legal referral to relevant law enforcement for illegal activity. We will make reasonable efforts to notify you before enforcement action except where immediate action is necessary or where notification could compromise a legal investigation.

10. Reporting violations

Report misuse or security concerns to [email protected]. Reports are handled confidentially.

11. Changes to this AUP

We may update this AUP to address new threats, technologies, or legal developments. Material changes will be communicated by email at least 14 days before taking effect. Continued use constitutes acceptance.