Acceptable Use Policy

You may use Certyn only for systems, applications, accounts, and environments that you own or are explicitly authorized to test. This includes staging, production, internal tools, support instances, customer demos, and any other target configured in Certyn.

• Testing, scanning, or probing assets without permission.
• Using Certyn for pentesting, exploit development, credential stuffing, or adversarial security activity unless Certyn expressly supports the use case and the target owner has authorized it.
• Attempting to bypass rate limits, access controls, anti-bot controls, or similar safeguards on systems you are not allowed to test in that way.
• Scraping, collecting, or exporting personal, confidential, or regulated data in violation of law or contract.
• Using Certyn to distribute malware, spam, fraudulent content, or deceptive workflows.
• Interfering with Certyn infrastructure, APIs, runners, streaming systems, or other customers’ use of the service.
• Uploading or submitting material that you do not have the right to use in Certyn.

• Use appropriate test accounts and least-privilege credentials.
• Review automation prompts and target environments before launching a run.
• Do not direct Certyn to perform destructive workflows unless that behavior is intentional and authorized.
• Treat live recordings, screenshots, logs, and conversation archives as sensitive evidence.
• Promptly notify Certyn if you believe an account, credential, or run has been misused.

We may limit, suspend, or terminate access if we believe your use violates this policy, our Terms of Service, or applicable law. We may also preserve relevant logs, recordings, and account information for security review, incident response, or legal compliance.