Skip to content

Acceptable Use Policy

1. Purpose

This Acceptable Use Policy (“AUP”) defines permitted and prohibited use of the Services. It forms part of the Agreement.

2. Permitted Use

The Services may be used solely for the Customer’s internal business purposes in accordance with the Agreement and applicable law. The Customer is responsible for ensuring that Users are authorised, trained, and comply with this AUP.

3. Prohibited Use

The Customer and its Users shall not, and shall not permit any third party to:

  • use the Services in violation of applicable law or third-party rights;
  • attempt to gain unauthorised access to the Services, accounts, data, or underlying systems;
  • interfere with or disrupt the integrity or performance of the Services (including by excessive automated requests, scraping, or denial-of-service activity);
  • reverse engineer, decompile, or otherwise attempt to derive source code or underlying models from the Services, except to the extent permitted by mandatory law;
  • upload or submit malware, malicious code, or instructions intended to compromise security;
  • submit information that the Customer is not authorised to process or disclose, including personal data without a lawful basis or required notices/consents;
  • use the Services to generate or distribute unlawful, defamatory, discriminatory, or harmful content;
  • use the Services to build or train competing products in a manner that infringes Theca’s intellectual property or confidentiality obligations.

4. User Input and Sensitive Data

The Customer shall implement appropriate internal controls for what information Users submit to the Services, including prompts and queries. Unless explicitly supported and agreed in the Commercial Terms, Users should avoid submitting highly sensitive information (such as credentials, secrets, or special categories of personal data) in free-text prompts.

The Customer acknowledges that, unless it has opted out in the Commercial Terms, Theca may use Customer Data submitted through the Services for Service Improvement as described in the Agreement. The Customer remains responsible for ensuring that Users only submit information that the Customer is authorised to provide and that appropriate notices and consents are in place.

5. Enforcement

Violation of this AUP may result in suspension or termination of access to the Services in accordance with the Agreement. Where practicable, Theca will provide notice and an opportunity to cure before suspension, unless immediate action is required to protect the Services, Theca, or other customers.