Acceptable Use Policy

The Services are intended strictly for lawful commercial use within Canada.

Customer represents that:

• It is not established in Québec where excluded under the MSA;
• It will use the Services in compliance with all applicable Canadian federal and provincial laws;
• It will not use the Services in jurisdictions requiring additional licensing, telecom registration, or regulatory approval without Bitbrains' prior written consent.

Bitbrains reserves the right to restrict or deny use of the Services in jurisdictions presenting heightened regulatory, carrier, or compliance risk.

The Services rely on third-party telecommunications carriers and messaging aggregators. Customer acknowledges that Bitbrains is not a telecommunications carrier.

Customer must comply with:

• Canada's Anti-Spam Legislation (CASL)
• Applicable telecommunications laws
• Carrier network guidelines
• Privacy laws (including PIPEDA and applicable provincial legislation)

Customer shall not:

2.1 Self-Service Data Management & Retrieval

Customer is solely responsible for capturing and retaining auditable records of End-User consent to comply with statutory retention periods. Data retrieval is strictly self-service. Customer must utilize their access to the self-serve dashboard to view and manually retrieve these records independently while the account is active. Bitbrains is a technology platform provider and does not provide automated export tools, specific structured file formats, or human-facilitated data extracts as part of the standard Services. Standard data access is governed by the limitations set forth in Section 9.9 of the MSA.

Under no circumstances—including urgent regulatory inquiries, anti-spam legislation audits, or telecommunications Carrier investigations—will Bitbrains provide manual data extraction services, discretionary or otherwise. Upon suspension or termination of an account for violations of this AUP, Customer access to the dashboard is immediately revoked, and Bitbrains assumes absolutely no obligation to extract, recover, or supply Customer Data.

2.2 Fail to Honor Opt-Out Requests

Fail to process "STOP," "UNSUBSCRIBE," or similar requests within statutory timeframes.

2.3 Use Purchased or Harvested Lists

Transmit messages to recipients obtained through scraping, list purchases, data mining, or similar non-consensual acquisition.

2.4 Engage in Evasion Tactics

Use techniques designed to evade carrier filtering, including:

• Snowshoeing
• URL shortener cycling
• Rapid or unauthorized number rotation
• Artificial traffic shaping

2.5 Spoof or Misrepresent Identity

Transmit altered, deceptive, or misleading caller ID, sender ID, routing information, or branding.

Customer is solely responsible for demonstrating lawful consent and compliance upon request.

To preserve platform integrity, carrier relationships, and public safety, Customer may not use the Services, including any hosted booking pages or domains, to transmit, store, list, or generate content related to high-risk or restricted categories, including but not limited to:

• Sexually explicit or pornographic material
• Hate speech, harassment, threats, or discriminatory content
• Defamation or unlawful intimidation
• Alcohol marketing without written approval and compliant age-gating
• Firearms, weapons, or explosives
• Tobacco, vaping, nicotine products
• Cannabis, CBD, or controlled substances
• Payday lending or predatory lending schemes
• High-risk cryptocurrency or speculative financial promotions
• Multi-level marketing (MLM) programs
• Phishing, smishing, malware distribution
• Impersonation of businesses, government entities, or individuals
• Failure to provide proof of licensing, accurate physical business addresses, or identity verification upon onboarding for regulated industries

Bitbrains reserves the right to deny onboarding, suspend, or terminate Services for industries or use cases that present elevated regulatory, carrier, reputational, or fraud risk—even if not expressly listed above.

Customer shall not:

4.1 Bypass Security Controls

Attempt to probe, scan, test, or breach system security without prior written authorization.

4.2 Introduce Malicious Code

Deploy viruses, Trojan horses, worms, logic bombs, ransomware, or harmful payloads.

4.3 Degrade System Performance

Bypass API rate limits, conduct denial-of-service attacks, or generate artificial traffic that harms system stability.

4.4 Scrape or Extract Data

Use bots or automated tools to extract data from the platform outside documented APIs.

4.5 Reverse Engineer

Decompile, disassemble, copy, or attempt to build derivative or competing products.

Customer must use automation tools and any AI-related features responsibly and lawfully. Customer acknowledges that AI features are provided "AS IS" and Customer is solely responsible for maintaining human oversight over automated outputs. Bitbrains will not use identifiable End-User personal data or voice recordings to train third-party or internal foundational AI models without Customer's express written consent.

Customer shall not:

• Use automation to generate spam or deceptive messaging.
• Deploy automated workflows that produce legal or similarly significant adverse effects without human oversight.
• Generate synthetic voice clones without authorization.
• Create deepfakes or materially misleading synthetic media.
• Use AI features in violation of privacy, consumer protection, or telecommunications law.

To protect network integrity and comply with legal obligations, Bitbrains may review:

• Usage metrics
• Routing metadata
• Carrier response codes
• Audit logs

Message content review will occur only where reasonably necessary to investigate suspected violations, fraud, carrier complaints, legal obligations, or security incidents.

Any such review will be conducted:

• In accordance with the Privacy Policy and Data Processing Addendum;
• In a manner consistent with Bitbrains' role as processor of Customer Data;
• Limited to what is reasonably necessary for the investigation.

Bitbrains does not proactively monitor Customer content.

6.1 Law Enforcement and Legal Requests

If Bitbrains receives a subpoena, warrant, or other legal demand from law enforcement or a regulatory agency seeking access to Customer Data (including End-User records), Bitbrains may, but is not obligated to, redirect the requesting authority to the Customer. Bitbrains will notify the Customer of the request to allow the Customer to seek a protective order, unless legally prohibited from doing so. Bitbrains will not voluntarily disclose Customer Data to law enforcement without the Customer's explicit instruction, except as strictly required by applicable law or in response to an imminent threat to life or safety.

Violations of this AUP may result in the immediate suspension or termination of Services in accordance with Section 4.4 of the MSA. Bitbrains reserves the right to implement automated suspensions based on objective, quantifiable risk metrics, including but not limited to: high carrier filtering rates, excessive 'STOP' or opt-out requests, or elevated spam complaint rates crossing industry-standard thresholds (e.g., carrier spam complaint rates exceeding 0.1% or opt-out rates exceeding 1%).

Suspensions are executed to protect platform integrity, carrier relationships, and the ability of other customers to utilize the Services. In accordance with Section 9.9 of the MSA, Bitbrains has no obligation to provide manual data exports, standard exported files, or any form of data access for suspended accounts. Any data retrieval capabilities are strictly limited to the self-service dashboard while the account is active and in good standing.

All enforcement actions are subject to the finality provisions set forth in Section 10 of this AUP, and Bitbrains is not obligated to provide a manual review or cure period for suspensions triggered by AUP violations.

Customer acknowledges that telecommunications carriers may independently:

• Block traffic
• Filter messages
• Revoke sender IDs
• Require additional vetting

If a carrier blocks or restricts Customer traffic due to Customer's violation of this AUP or carrier policies:

• Bitbrains is not obligated to provide refunds, credits, or workarounds;
• Subscription fees remain payable;
• Restoration depends on carrier approval.

This limitation does not apply where the carrier action is directly caused by Bitbrains' material breach of the MSA.

Customer agrees to indemnify and hold harmless Bitbrains from fines, penalties, carrier charges, regulatory actions, or damages arising from Customer's violation of:

• This AUP
• CASL or telecommunications laws
• Privacy laws
• Carrier requirements

except to the extent caused by Bitbrains' gross negligence or willful misconduct.

Indemnification obligations are subject to the liability framework in the MSA.

As a self-service technology provider, Bitbrains is not obligated to provide a manual review, appeal process, or cure period for accounts suspended due to suspected fraud, criminal activity, AUP violations, or imminent harm to the platform. Bitbrains' decisions regarding suspension are final and are made at its sole discretion based on objective risk metrics, including but not limited to carrier filtering rates, excessive opt-out requests, or security threats.

Bitbrains reserves the right to maintain suspensions indefinitely to protect the integrity of the platform and carrier relationships. Reinstatement of any suspended account, if ever granted, is strictly at Bitbrains' sole and absolute discretion.

In accordance with Section 9.9 of the MSA, Bitbrains has no obligation to provide manual data exports or discretionary data access for suspended accounts. Any costs incurred by Bitbrains in investigating or responding to AUP violations shall be subject to the Customer Indemnification provisions of the MSA.

This AUP supplements, and does not replace, the MSA and applicable Data Processing Addendum.

In the event of conflict, the order of precedence in the MSA governs.

Liability caps, indemnities, suspension rights, and dispute resolution procedures are governed exclusively by the MSA.