Skip to content

Acceptable Use Policy

Acceptable Use Policy

Acceptable Use Policy

Effective 13 July 2026

This Acceptable Use Policy applies to every person and organisation that accesses Bily. It forms part of the Terms of Service and is designed to protect customers, individuals, connected platforms, and the availability and integrity of the Service.

1. Use the Service lawfully

You may use Bily only for legitimate business purposes and only for properties, accounts, data, and destinations you are authorised to control. You must comply with applicable law, platform terms, advertising policies, privacy obligations, and contractual restrictions.

2. Prohibited conduct

  • Access, test, probe, scan, or use another customer’s account, data, property, token, or destination without explicit authorisation.

  • Circumvent authentication, permissions, rate limits, usage limits, billing, consent controls, product restrictions, or security mechanisms.

  • Upload, transmit, or execute malware, ransomware, destructive code, credential theft, spam, phishing, denial-of-service activity, or content intended to exploit a vulnerability.

  • Interfere with the Service, connected platforms, other customers, or data integrity; create unreasonable load; or use automated traffic that degrades normal operation.

  • Use Bily to commit fraud, misrepresent event provenance, fabricate conversions, manipulate attribution, evade platform enforcement, or deceive an individual, advertiser, platform, or regulator.

  • Collect, infer, disclose, or use personal data without a lawful basis, required notice, required consent, or necessary authority.

  • Harass, threaten, discriminate against, exploit, or unlawfully monitor individuals, including children or vulnerable people.

  • Reverse engineer, copy, resell, sublicense, benchmark for a competing service, or create a derivative of the Service except where law expressly permits and cannot be waived.

3. Restricted data

Unless Bily has expressly agreed in writing, do not submit payment-card numbers, bank credentials, government identifiers, passwords, authentication secrets, protected health information, precise biometric templates, special-category data, children’s personal data, or other highly sensitive or regulated information. Integration tokens required to operate a supported connection must be provided only through the intended secure authorisation flow.

4. Customer data and consent

You must minimise data to what is necessary for your declared purpose, configure retention appropriately, keep your privacy notice accurate, respect consent and opt-out signals that apply to your use, and respond to individuals whose data you control. You may not direct Bily to enrich, route, or activate data in a way you could not lawfully do yourself.

5. Connected platforms

You must follow the rules of every connected commerce, advertising, analytics, or communication platform. Do not use Bily to evade access revocation, policy enforcement, technical restrictions, spend controls, or account suspension. A platform’s permission does not by itself establish your legal basis to process personal data.

6. APIs and automation

Use APIs, exports, automations, and AI-assisted tools only within documented limits and for authorised purposes. Do not scrape non-public interfaces, rotate credentials to evade limits, create excessive parallel requests, or allow an automated workflow to take a consequential action without appropriate review and safeguards.

7. Security research

Good-faith security research must avoid customer data, privacy violations, persistence, social engineering, production disruption, and public disclosure before Bily has had a reasonable opportunity to investigate. Testing that could affect another user or the Service requires prior written permission. This policy does not create a bug bounty or promise payment.

8. Enforcement

Bily may investigate suspected violations and may limit, suspend, or terminate the affected account, property, request, integration, or feature. Where practicable, we will provide notice and an opportunity to cure, but we may act immediately to address a serious security, legal, platform, or availability risk. We may preserve evidence and cooperate with lawful authorities or affected providers when reasonably required.

If you believe enforcement was based on an error, email [email protected] with the account, decision, and relevant evidence. An appeal does not require Bily to restore access while a material risk remains.

9. Reporting misuse

Report suspected abuse to [email protected]. Include only information you are authorised to share. Legal questions can be sent to [email protected].