Legal

Acceptable use policy.

RelayOne is built to help organizations use AI safely. The acceptable use policy describes what you may and may not do with the platform. Violations may result in suspension or termination.

1. Permitted use

You may use RelayOne to govern AI traffic generated by your organization, including employees, agents, and integrated systems. You may evaluate the platform on real workloads. You may build internal tooling on top of our APIs subject to the rate limits in your tier.

2. Prohibited uses

You may not use RelayOne to:

  • Process content that depicts the sexual abuse of minors (CSAM); we report to NCMEC and law enforcement on detection.
  • Operate a service that facilitates the creation or distribution of malware, ransomware, exploit kits, or DDoS infrastructure.
  • Run mass surveillance of populations without lawful authority, particularly in ways that target political dissidents or journalists.
  • Violate export controls, sanctions law, or otherwise transact with embargoed parties.
  • Process customer data of third parties without lawful basis (consent, contract, legitimate interest, or compulsion of law).
  • Reverse-engineer, decompile, or attempt to extract proprietary RelayOne code or algorithms (this excludes inspection of evidence bundle structure, which is documented).
  • Bypass, disable, or circumvent rate limits, billing meters, or telemetry signals required for service operation.
  • Use the service in ways that would cause us to violate the law of any jurisdiction we operate in.

3. Abuse handling

We investigate reports of abuse promptly. The triage path:

  • Receive report at [email protected] (subject: "Abuse")
  • Acknowledge within one business day
  • Investigate; suspend access if continued use would cause harm
  • Notify the affected customer where appropriate; preserve evidence per legal obligation
  • Resolve and report back to the reporter

4. Takedown process

If you believe content traversing a customer's RelayOne deployment is unlawful and infringes your rights, contact us with the URL or workspace ID, identification of the content, your contact information, a statement of good-faith belief, and an attestation that you are authorized to act on behalf of the rights holder. We forward to the customer's designated abuse contact and act under the law of the relevant jurisdiction.

5. Security disclosure

Security issues should be reported to {{TBD-security-contact-email}} with PGP encryption (key on request). We acknowledge within one business day, coordinate disclosure timing, and recognize researchers in the changelog. Safe-harbor terms posted at /security.

6. Enforcement

Violations may result in warning, rate limiting, suspension, or termination, depending on severity and pattern. Repeat or willful violations result in immediate termination without refund. Decisions are made by the trust and safety team and may be appealed via email.

7. Changes

This policy may be updated. Material changes are announced on the changelog with 30 days' notice. The version in force is the one posted at the time of the relevant action.

8. Contact

Abuse reports: [email protected]. Trust and safety inquiries: same address. Privacy: /privacy. Terms: /terms.