Acceptable Use Policy

1. Introduction

Welcome to FlowCMS. This Acceptable Use Policy ("AUP") outlines the standards and restrictions for using FlowCMS services, including our content management platform, APIs, hosting infrastructure, and related tools (collectively, the "Services").

By accessing, registering for, or using FlowCMS Services, you agree to comply with this AUP, our Terms of Service, and our Privacy Policy. Failure to comply may result in service interruption or termination.

2. Prohibited Uses

You may not use FlowCMS Services for any illegal, harmful, or unauthorized purpose. Prohibited activities include, but are not limited to:

• Illegal Activities: Engaging in or facilitating any activity that violates applicable local, state, national, or international laws or regulations.
• Malware & Viruses: Uploading, distributing, or propagating viruses, worms, Trojan horses, or any other malicious code or software designed to damage or disrupt systems.
• Unauthorized Access: Attempting to gain unauthorized access to FlowCMS systems, networks, or other users' accounts, including through hacking, credential stuffing, or exploiting vulnerabilities.
• Spam & Unsolicited Communications: Sending bulk unsolicited messages, spam, chain letters, or pyramid schemes via our platform or APIs.
• Harassment & Abuse: Harassing, threatening, intimidating, or abusing other users, FlowCMS staff, or third parties.
• Infringement: Violating intellectual property rights, including copyright, trademark, or patent laws, by hosting or distributing unauthorized content.
• Fraud & Deception: Engaging in fraudulent activities, including phishing, identity theft, or creating deceptive content designed to mislead users.
• Exploitation: Facilitating or promoting the exploitation of minors or any content involving child sexual abuse material (CSAM). Such content will be reported to authorities immediately.

3. Content Guidelines

While FlowCMS respects freedom of expression, we maintain standards for content hosted on our platform. You are solely responsible for all content you create, upload, or manage through FlowCMS.

Restricted Content:

• Content that incites violence or promotes hate speech based on race, religion, gender, sexual orientation, or disability.
• Content that facilitates self-harm, eating disorders, or dangerous challenges.Pornographic or explicit adult content distributed to minors or hosted on public endpoints without proper access controls.
• Content that impersonates FlowCMS or other entities in a misleading manner.

4. API & Infrastructure Usage

FlowCMS provides REST and GraphQL APIs to access and manage content. These APIs must be used responsibly and in accordance with our API documentation.

API Restrictions:

• No Scraping: Automated scraping, crawling, or data extraction from FlowCMS endpoints without explicit permission is prohibited.
• No Reselling: You may not resell, repackage, or redistribute FlowCMS API access to third parties as a standalone service.
• Proper Attribution: When using FlowCMS in public projects, include appropriate attribution as specified in our licensing terms.
• Data Integrity: Do not submit malformed or malicious payloads to APIs designed to exploit parsing vulnerabilities.

5. Account Security

You are responsible for maintaining the security of your FlowCMS account, API keys, and authentication tokens.

• Credential Protection: Do not share your password, API keys, or tokens with unauthorized individuals. Rotate keys regularly and use environment variables for secure storage.
• Multi-Factor Authentication: We strongly recommend enabling MFA for all admin accounts. Enterprise users should enforce SSO/SAML for team access.
• Compromise Reporting: If you suspect your account has been compromised, contact security@flowcms.io immediately.
• No Vulnerability Probing: Unauthorized scanning, penetration testing, or vulnerability probing of FlowCMS infrastructure is strictly prohibited unless part of our authorized bug bounty program.

6. Rate Limits & Abuse

To ensure platform stability and fair usage, FlowCMS enforces rate limits based on your subscription tier. Excessive usage may result in throttling or temporary suspension.

Abuse Prevention:

• Do not attempt to bypass rate limits through distributed requests, IP rotation, or other evasion techniques.
• Avoid high-frequency polling patterns that strain infrastructure. Implement exponential backoff for error handling.
• Do not use FlowCMS infrastructure for cryptocurrency mining, DDoS attacks, or botnet operations.

7. Enforcement Actions

FlowCMS reserves the right to take appropriate action against users who violate this AUP. Enforcement measures may include:

1. Warning: Notification of the violation with instructions to remediate.
2. Temporary Suspension: Pausing access to specific features or the entire account while an investigation is conducted.
3. Content Removal: Deleting content or data that violates this policy or applicable laws.
4. Termination: Permanently closing accounts for severe or repeated violations. In such cases, outstanding fees may be forfeited.
5. Legal Action: Reporting illegal activities to law enforcement and pursuing legal remedies for damages.

8. Policy Changes

FlowCMS may update this Acceptable Use Policy periodically to reflect changes in technology, legal requirements, or business practices. We will notify users of material changes via email or in-app notifications at least 30 days before the new policy takes effect. Your continued use of FlowCMS Services after such notice constitutes acceptance of the updated policy.

9. Contact Us

If you have questions about this Acceptable Use Policy, notice potential violations, or need assistance with compliance, please contact us:

• General Inquiries: support@flowcms.io
• Security & Abuse Reports: security@flowcms.io
• Legal Matters: legal@flowcms.io
• Address:
  FlowCMS Inc.
  123 Cloud Avenue, Suite 400
  San Francisco, CA 94107
  United States

By using FlowCMS, you acknowledge that you have read, understood, and agree to be bound by this Acceptable Use Policy.