Legal

Acceptable Use Policy

Effective date: June 1, 2026

This Acceptable Use Policy ("AUP") describes permitted and prohibited uses of coThink websites, applications, APIs, collaboration workspaces, guided sessions, personal advisor features, and related services (collectively, the "Services").

This AUP supplements the Terms of Service. If there is a conflict between this AUP and the Terms, the Terms control unless this AUP imposes a stricter requirement for a specific use case.

1. Scope

This AUP applies to all users who access or use the Services, including workspace owners, administrators, members, guests, and API integrators acting on behalf of an organization.

Workspace owners and administrators are responsible for configuring access controls and ensuring use within their organizations complies with this AUP and applicable law.

2. Permitted Use

You may use the Services for lawful collaboration, communication, planning, knowledge management, and workflow execution within the limits of your subscription, workspace permissions, and connected integrations.

Permitted uses include:

  • Creating and participating in project workspaces and rooms
  • Running guided sessions, capturing decisions, and assigning tasks
  • Using Personal Advisor and approved AI features on workspace context you are authorized to access
  • Connecting AI providers, calendars, identity systems, and other integrations approved by your organization
  • Exporting, retaining, or deleting Customer Content according to your organization's policies and applicable law

3. Prohibited Conduct

You may not use the Services to:

  • Violate any applicable law, regulation, court order, or third-party rights
  • Infringe intellectual property, privacy, publicity, or confidentiality rights
  • Upload, transmit, or distribute malware, harmful code, or content designed to disrupt systems
  • Conduct phishing, fraud, impersonation, or other deceptive practices
  • Send spam, bulk unsolicited messages, or abusive communications
  • Interfere with or disrupt other users, workspaces, networks, or infrastructure
  • Circumvent authentication, authorization, rate limits, or other security controls
  • Conduct unauthorized scraping, crawling, or automated attacks against the Services
  • Reverse engineer non-public components except where expressly permitted by law
  • Overload, benchmark, or stress-test production systems without written authorization
  • Build or operate a competing service through unauthorized copying of non-public features, workflows, designs, or functionality

4. AI and Automation Use

When using AI features, automations, or connected model providers, you must not:

  • Generate unlawful, harmful, harassing, discriminatory, or deceptive content
  • Use outputs for high-risk decisions without appropriate human review, including legal, medical, financial, tax, employment, regulatory, or safety-critical decisions
  • Attempt to extract training data, system prompts, or non-public model internals through abuse of the Services
  • Misrepresent AI-generated content as human-authored where doing so would be deceptive or unlawful
  • Use the Services to develop malware, exploitation tools, or other harmful capabilities

Organizations are responsible for selecting, configuring, and monitoring connected AI providers and for establishing internal policies governing acceptable AI use.

5. Customer Content Responsibilities

You are solely responsible for:

  • The legality of Customer Content you submit or generate
  • Obtaining rights and permissions needed to use and share Customer Content
  • Classifying sensitive, regulated, or confidential information appropriately
  • Configuring retention, export, and access controls for your workspace

Do not submit protected health information, export-controlled data, or other regulated information to the Services unless your organization has evaluated compliance requirements and implemented appropriate controls.

6. Security and Vulnerability Research

Good-faith security research is welcome when conducted responsibly. Do not exploit vulnerabilities beyond what is necessary to demonstrate impact.

Report security issues to [email protected] and allow reasonable time for remediation before public disclosure. See the Trust Center contact page for additional guidance.

7. Enforcement

coThink may investigate suspected violations and take action we deem appropriate, including:

  • Warning the user or workspace administrator
  • Removing or restricting access to content
  • Suspending or terminating accounts or workspaces
  • Reporting activity to law enforcement where required or appropriate

Nothing in this AUP limits other remedies available under the Terms of Service or applicable law.

8. Reporting Violations

To report suspected violations of this AUP, contact [email protected] or [email protected] with relevant workspace details, timestamps, and supporting information.

9. Changes

We may update this AUP from time to time. Material changes may be communicated through the Services, by email, or by other reasonable means. Continued use of the Services after an update constitutes acceptance of the revised AUP.

← Back to Legal