Company: MINARIK AI
Website: minarikai.com
Contact: [email protected]
Effective Date: 1 January 2025
Version: 1.0
Be lawful, respectful, and safe. Do not abuse our services, misuse data, break intellectual property laws, harass others, spam, or attempt to undermine security. Extra care is required when using AI tools/agents and when processing personal data.
This AUP applies to anyone using our website, content, downloads, APIs, AI demos, AI SDR/chat/agent tools, workspaces, and any services we host or operate (collectively, the "Services"). It forms part of our Terms of Service and is referenced by our Data Protection Policy and Disclaimer.
You agree to:
Use the Services lawfully and professionally.
Provide accurate information and keep your account and API keys secure.
Respect privacy, confidentiality, and intellectual property.
Review and verify any AI-generated outputs before use, especially for regulated or high-risk contexts.
Follow all rate limits, usage caps, and plan limits we publish or notify you about.
You must not, and must not allow others to:
Break any law or regulation (UK, EU, US export/sanctions, or your local laws).
Upload, generate, or distribute content that is illegal, defamatory, harassing, hateful, discriminatory, extremist, sexually explicit, or exploitative, including content that targets children or vulnerable persons.
Promote self-harm, violence, or criminal activity.
Process personal data without a lawful basis or in violation of UK GDPR/PECR (and applicable EU/other laws).
Do not submit special category data (e.g., health, biometric, ethnicity, sexual orientation) or criminal data unless our contract explicitly permits it and appropriate safeguards are in place.
Attempt to identify a person from anonymised data or perform re-identification.
Do not upload payment card data (beyond the permitted fields), government IDs, or other sensitive identifiers unless our contract explicitly allows it.
You may not access accounts or data without permission, or probe, scan, or test the vulnerability of any system without our written consent.
Circumvent or attempt to bypass authentication, rate limits, or usage protections.
Inject malware, ransomware, spyware, or conduct phishing or credential stuffing.
Overload, interfere with, or disrupt the Services or related networks (e.g., DDoS, excessive API calls, resource hogging, or automation that degrades service for others).
Use scrapers or bots contrary to our robots.txt or without permission, or mirror/republish substantial portions of our site.
Violate copyrights, trademarks, trade secrets, or publicity rights.
Use the Services to generate or distribute content that infringes others IP or that misrepresents source/ownership.
Remove or alter copyright notices or licensing terms.
Use AI agents or outputs for impersonation, deepfakes of real persons without consent, or misleading endorsements.
Use agents to circumvent paywalls, evade moderation, or conduct fraud (e.g., lead-gen with fabricated identities).
Build or deploy high-risk AI systems (e.g., employment screening, creditworthiness decisions, biometric categorisation) without our prior written agreement and appropriate safeguards.
Send spam or unsolicited communications in violation of PECR (UK), GDPR (EU), CAN-SPAM (US), CASL (Canada), or similar laws.
Omit legally required identity and opt-out mechanisms.
Use scraped lists harvested without consent or legitimate interest.
Use the Services in or for the benefit of sanctioned entities or restricted jurisdictions, or in violation of UK/EU/US export controls.
When using our AI demos, copilots, agents, or APIs, you must:
Minimise data: Only provide data required for the task; redact or pseudonymise wherever possible.
No training by default: Unless our contract says otherwise, you grant no right to train foundation models on your data.
Review outputs: Treat outputs as assistance, not advice; you are responsible for human review and approval before publication or action.
Explainability & provenance: Where required (e.g., regulated claims), keep citations or source notes for generated content.
No solely automated decisions with legal/similarly significant effects without (a) lawful basis, (b) transparency, (c) meaningful human oversight, and (d) impact assessment (DPIA).
EU AI Act awareness (2026): For EU-facing deployments, classify your use case and maintain documentation and controls aligned to the Act's timelines and obligations.
Model respect: Follow third-party model/API terms (e.g., do not attempt to extract weights, hidden data, or system prompts through prompt injection).
You must ensure that:
You have all the rights and lawful grounds to process and share the data with us (and our sub-processors named in our DPA).
Data is accurate and up-to-date; you will promptly correct or delete inaccurate records.
You do not submit data types we have prohibited here or in our contract.
You respect data subject rights (access, deletion, etc.) and will notify us promptly of any rights requests affecting data in our systems.
Keep API keys confidential. Do not embed keys in public code repositories or client-side code.
Rotate keys if compromised and notify us immediately of suspected misuse.
Do not exceed stated rate limits or quotas; contact us if you need higher limits.
We apply fair use protections to maintain stable service for all customers. If your usage creates unusual load or risk (e.g., sustained high request volumes, abnormal concurrency, large file spikes), we may throttle, queue, or suspend requests, and we will work with you on an appropriate plan.
We may review, block, or remove content or activity that appears to violate this AUP or the law. If we remove content, we will usually notify you with a reason unless prohibited by law or it would compromise an investigation. You may appeal by contacting [email protected].
We welcome good-faith security research. Please:
Do not exploit a vulnerability or access data you do not own.
Limit testing to your own accounts.
Report issues to [email protected] with details and steps to reproduce.
Give us a reasonable time to remediate before public disclosure.
Unauthorised testing that disrupts service or risks data is prohibited.
If we believe you violated this AUP, we may take one or more actions:
Warning and guidance to remedy.
Throttle, suspend, or terminate access (in whole or part).
Preserve and share information with authorities where legally required or to protect rights and safety.
Invoice for excessive usage or damages where permitted by contract/law.
We aim to be fair and proportionate, but safety and legal compliance come first.
If you connect third-party tools (e.g., email, CRM, messaging), you are responsible for complying with their terms and for permissions to share data with them. We are not liable for third-party availability, security, or data handling.
For copyright/trademark concerns, email [email protected] with:
Your contact details;
A description of the work/mark and location of the allegedly infringing content;
A statement of good-faith belief that the information is accurate.
We operate a notice-and-takedown process consistent with UK law.
Our Services are not intended for children under 16. Do not submit children's data unless explicitly agreed in writing with appropriate safeguards.
We may update this AUP periodically. Changes are effective upon posting with the Effective Date above. Material changes will be communicated via email or in-product notice where feasible.
This AUP is governed by the laws of England and Wales, and disputes are subject to the exclusive jurisdiction of the courts of England and Wales.
Confirm lawful basis for each contact (consent or legitimate interests).
Include sender identity, physical address (where required), and one-click opt-out.
Log consent/preferences; honour opt-outs immediately.
Validate lists; avoid purchased/scraped data without proper grounds.
For SMS/WhatsApp, use opt-in and carrier-compliant templates.
Employment screening, creditworthiness, medical/health advice, legal advice, biometric classification, emotion inference, or any use subject to the EU AI Act high-risk categories. These require prior written approval, controls, and (if applicable) a DPIA.
Send to [email protected] with:
Your name and contact details
URL, endpoint, timestamp, and description of the issue
Screenshots/log excerpts (no sensitive data)
Business impact and any steps already taken