{"id":1358,"date":"2024-08-19T09:08:39","date_gmt":"2024-08-19T09:08:39","guid":{"rendered":"https:\/\/fiskl.com\/?post_type=legal&#038;p=1358"},"modified":"2026-06-01T20:27:00","modified_gmt":"2026-06-01T20:27:00","slug":"acceptable-use-policy","status":"publish","type":"legal","link":"https:\/\/fiskl.com\/legal\/acceptable-use-policy\/","title":{"rendered":"Acceptable Use Policy"},"content":{"rendered":"<p>This Acceptable Use Policy (the \u201cAUP\u201d) sets out conduct that is required and conduct that is prohibited when using the Fiskl Platforms. It is incorporated by reference into the Customer Terms of Service, the User Terms of Service, the Atlas Terms Supplement, and any Order Form. Compliance with this AUP is a condition of access to the Fiskl Platforms.<\/p>\n<p>Defined terms in the Customer Terms of Service apply here unless otherwise stated. Where this AUP is read by a User of an Atlas Firm or a Customer\u2019s Authorized User, references to \u201cyou\u201d mean the natural person using the Fiskl Platforms and, where applicable, the Customer or Atlas Firm responsible for that person\u2019s access.<\/p>\n<p>Fiskl may update this AUP from time to time on the basis set out in section 11 of the Customer Terms of Service.<\/p>\n<h2>1. Purpose<\/h2>\n<p>The AUP exists to protect Fiskl, our customers, our partners, our Authorized Users, and the natural persons whose data flows through the Fiskl Platforms. Fiskl is a financial platform: misuse can cause direct financial harm to third parties, breach criminal and regulatory law, and damage the integrity of the Fiskl Platforms. We enforce this policy strictly.<\/p>\n<h2>2. You must<\/h2>\n<p>When using the Fiskl Platforms, you must:<\/p>\n<ul>\n<li>comply with all laws and regulations applicable to your activity, including data protection, financial reporting, tax, anti-money-laundering, sanctions, anti-bribery, consumer-protection, and intellectual property law;<\/li>\n<li>provide accurate and complete information when registering, billing, and operating your Account, and keep that information current;<\/li>\n<li>only submit Customer Data that you have the right to submit, that does not infringe third-party rights, and that you can lawfully process;<\/li>\n<li>only record genuine, verifiable financial events that have actually occurred or that are bona-fide planned (such as a draft invoice for a real proposed transaction);<\/li>\n<li>maintain reasonable security over your Account credentials, including using strong passwords, enabling multi-factor authentication where available, and notifying Fiskl promptly of any suspected unauthorised access;<\/li>\n<li>ensure that your Authorized Users comply with this AUP and the User Terms of Service, and exercise reasonable supervision over their use of the Fiskl Platforms;<\/li>\n<li>comply with the rate limits, fair-use thresholds, and technical requirements published by Fiskl from time to time;<\/li>\n<li>cooperate with Fiskl in good faith on security investigations, fraud investigations, and inquiries from banking partners, payment processors, AI Providers, regulators, and law enforcement, where Fiskl is required or reasonably entitled to investigate or respond.<\/li>\n<\/ul>\n<h2>3. You must not \u2014 financial integrity<\/h2>\n<p>You must not use the Fiskl Platforms to:<\/p>\n<ul>\n<li>issue, send, record, or generate <strong>fake, fictitious, false, sham, or fraudulent<\/strong> invoices, quotes, receipts, expenses, transactions, journal entries, payments, or other financial records;<\/li>\n<li>record financial activity that did not actually occur or that is materially mischaracterised;<\/li>\n<li>facilitate, conceal, or disguise <strong>money laundering, terrorist financing, sanctions evasion, tax evasion, VAT fraud (including missing-trader and carousel fraud), invoice fraud, identity fraud, synthetic-identity fraud, or any other financial crime<\/strong>;<\/li>\n<li>misrepresent your or any third party\u2019s financial position to lenders, investors, insurers, banks, regulators, tax authorities, professional advisers, customers, vendors, employees, or any other party \u2014 including by inflating revenue, suppressing liabilities, fabricating receivables, generating misleading reports, or backdating transactions;<\/li>\n<li>initiate <strong>Bad-Faith Chargebacks<\/strong> (as defined in section 5.9 of the Customer Terms of Service) \u2014 including disputing a charge after substantive use of the Fiskl Platforms, after a free or promotional period, or to avoid payment for benefit already received \u2014 or manipulate payment-processor disputes;<\/li>\n<li>manipulate, falsify, or interfere with banking integration data, including by tampering with imported transactions, fabricating bank feed entries, or misrepresenting the source of funds;<\/li>\n<li>use the Fiskl Platforms to launder content for fraudulent purposes, including by generating documentation to support a fraudulent narrative;<\/li>\n<li>use the Fiskl Platforms in connection with any business activity that is itself unlawful in your or your client\u2019s jurisdiction.<\/li>\n<\/ul>\n<p>The activities in this section 3 are material breaches of the Contract regardless of whether they also constitute a criminal or regulatory offence. Fiskl may suspend or terminate access immediately on detection or on reasonable suspicion, and may report to law enforcement, tax authorities, banking partners, and other appropriate parties as set out in section 12.5A of the Customer Terms of Service.<\/p>\n<h2>4. You must not \u2014 sanctions, restricted parties, and prohibited regions<\/h2>\n<p>You must not:<\/p>\n<ul>\n<li>use the Fiskl Platforms if you are, or if a controlling party of your business is, a person or entity subject to UK, EU, US, or UN sanctions, including persons listed on the UK Sanctions List, the EU Consolidated Sanctions List, the US OFAC SDN list, or equivalent;<\/li>\n<li>use the Fiskl Platforms to provide goods, services, or financial benefit to a sanctioned person or sanctioned regime;<\/li>\n<li>export or re-export the Fiskl Platforms to a destination prohibited by export-control law;<\/li>\n<li>access the Fiskl Platforms from a region in which use is prohibited by law applicable to Fiskl or by Fiskl\u2019s published terms.<\/li>\n<\/ul>\n<h2>5. You must not \u2014 security and integrity of the Fiskl Platforms<\/h2>\n<p>You must not:<\/p>\n<ul>\n<li>attempt to gain unauthorised access to the Fiskl Platforms, to other customers\u2019 Accounts, to Fiskl\u2019s infrastructure, or to any third-party system through the Fiskl Platforms;<\/li>\n<li>circumvent any access control, rate limit, throttling, audit logging, security feature, or technical protection measure;<\/li>\n<li>probe, scan, or test the vulnerability of the Fiskl Platforms except under a published responsible disclosure or bug bounty programme;<\/li>\n<li>introduce viruses, worms, malware, ransomware, logic bombs, time bombs, backdoors, or any other harmful code into the Fiskl Platforms;<\/li>\n<li>initiate or participate in denial-of-service attacks, distributed denial-of-service attacks, or excessive automated traffic against the Fiskl Platforms;<\/li>\n<li>reverse-engineer, decompile, disassemble, or otherwise attempt to derive the source code, architecture, or models underlying the Fiskl Platforms, except to the extent permitted by mandatory law;<\/li>\n<li>crawl, scrape, or harvest data from the Fiskl Platforms except through authorised APIs, within published rate limits, and in accordance with the terms governing API use;<\/li>\n<li>mass-create accounts, use disposable email addresses for account creation, or evade Fiskl\u2019s account-creation controls;<\/li>\n<li>circumvent or interfere with billing, metering, or usage tracking.<\/li>\n<\/ul>\n<h2>6. You must not \u2014 Fi and AI features<\/h2>\n<p>When using Fi (Fiskl\u2019s conversational AI and orchestration system) or any other AI feature in the Fiskl Platforms, you must not:<\/p>\n<ul>\n<li>attempt <strong>prompt injection, jailbreaking, or other techniques<\/strong> to bypass Fi\u2019s safety controls or to cause Fi to operate outside its intended scope;<\/li>\n<li>attempt to extract, reconstruct, or infer <strong>other customers\u2019 Customer Data, Personal Data of other customers\u2019 data subjects, or confidential information of Fiskl<\/strong> through Fi or other AI features;<\/li>\n<li>attempt to extract or reconstruct <strong>Fiskl\u2019s prompts, system instructions, model weights, training data, or other proprietary AI assets<\/strong> through Fi or other AI features;<\/li>\n<li><strong>rely on Fi outputs as legal, tax, audit, or professional accounting advice<\/strong>, or otherwise treat Fi outputs as authoritative without independent verification;<\/li>\n<li>use Fi to generate content that is unlawful, deceptive, defamatory, harassing, infringing, or harmful;<\/li>\n<li>automate Fi interactions in a way that exceeds published rate limits or that constitutes abusive load on the system;<\/li>\n<li>submit Customer Data to Fi that you do not have the right to submit, or that includes Special Categories of Personal Data without complying with section 5 of the DPA.<\/li>\n<\/ul>\n<p>If you discover a vulnerability, exploit, or unintended behaviour in Fi, please report it through Fiskl\u2019s responsible disclosure channel at <strong>security@fiskl.com<\/strong>.<\/p>\n<h2>7. You must not \u2014 content and conduct<\/h2>\n<p>You must not use the Fiskl Platforms to:<\/p>\n<ul>\n<li>transmit or store unlawful, infringing, defamatory, harassing, threatening, hateful, fraudulent, or otherwise harmful content;<\/li>\n<li>violate any person\u2019s privacy, including by submitting Customer Data without a lawful basis, by harvesting personal data, or by tracking individuals without consent where consent is required;<\/li>\n<li>infringe any patent, trademark, copyright, database right, trade secret, or other intellectual property right;<\/li>\n<li>impersonate any person or entity, or misrepresent your affiliation with any person or entity;<\/li>\n<li>send unsolicited bulk communications (spam) through the Fiskl Platforms or via Service-generated emails (such as invoice or quote emails);<\/li>\n<li>target minors or use the Fiskl Platforms in ways that would harm a person who is or appears to be under 16;<\/li>\n<li>engage in mass automated communications prohibited by applicable communications law (for example, the UK PECR, EU ePrivacy, US TCPA \/ CAN-SPAM, equivalents).<\/li>\n<\/ul>\n<h2>8. You must not \u2014 competitive and commercial misuse<\/h2>\n<p>You must not:<\/p>\n<ul>\n<li>access the Fiskl Platforms to <strong>build a competing product or service<\/strong>, to copy or reverse-engineer Fiskl\u2019s features, designs, models, or workflows, or for the benefit of any direct competitor of Fiskl;<\/li>\n<li>use the Fiskl Platforms for the benefit of, or to provide services to, a <strong>Patent Assertion Entity<\/strong> (defined in the Customer-Specific Supplement);<\/li>\n<li>sublicense, resell, redistribute, or otherwise commercially exploit the Fiskl Platforms to third parties except as expressly permitted (for example, an Atlas Firm providing services to its clients through Atlas);<\/li>\n<li>misuse Fiskl\u2019s trademarks, logos, brand names, or marketing assets, including by registering similar domain names, by setting up unauthorised co-branded pages, or by misrepresenting your status as a Fiskl partner;<\/li>\n<li>misuse the Partner Program, the Ambassador Program, or any referral system, including by self-referring, using fake accounts to claim commissions, or fabricating referral conversions.<\/li>\n<\/ul>\n<h2>9. Atlas Firm-specific obligations<\/h2>\n<p>If you are an Atlas Firm or an Atlas Firm User, in addition to the rest of this AUP you must:<\/p>\n<ul>\n<li>use Atlas only in compliance with the rules of your professional regulator and the laws applicable to your practice (including AML\/KYC obligations applicable to accountants where relevant in your jurisdiction);<\/li>\n<li>comply with your professional confidentiality obligations to your clients, including in your use of Customer Data of Atlas-managed Customers and in your interactions with Fi about your clients\u2019 affairs;<\/li>\n<li>not use Atlas Firm access to a client\u2019s Account for purposes outside the scope of your professional engagement with that client;<\/li>\n<li>not transfer or grant access to Atlas Firm User accounts to any person who is not authorised by your firm under section 4 of the Atlas Terms Supplement.<\/li>\n<\/ul>\n<h2>10. Fair use and rate limits<\/h2>\n<p>Fiskl applies fair-use thresholds and rate limits to protect the Fiskl Platforms for all customers. Current limits are published at <strong>[https:\/\/fiskl.com\/legal\/fair-use\/]<\/strong> <em>(to be confirmed and published by Fiskl engineering before publication of this AUP)<\/em>, and may include limits on:<\/p>\n<ul>\n<li>API calls per minute and per day;<\/li>\n<li>Fi AI queries and tokens per Subscription tier and per day;<\/li>\n<li>Bulk creation operations (invoices, quotes, contacts, products, transactions);<\/li>\n<li>Bulk import operations and file size;<\/li>\n<li>Document storage and attachment storage;<\/li>\n<li>Outbound emails generated by the Fiskl Platforms (invoice, reminder, quote, recurring);<\/li>\n<li>Authentication and login attempts.<\/li>\n<\/ul>\n<p>Fiskl may modify these limits to address abuse, capacity issues, or product changes. Where reasonably possible, customers will be notified in advance of material reductions to fair-use thresholds.<\/p>\n<h2>11. Reporting and responsible disclosure<\/h2>\n<p>If you become aware of conduct in violation of this AUP, of a security vulnerability in the Fiskl Platforms, or of suspected misuse:<\/p>\n<table width=\"0%\">\n<tbody>\n<tr>\n<td>Issue<\/td>\n<td>Email<\/td>\n<\/tr>\n<tr>\n<td>Security vulnerabilities and responsible disclosure<\/td>\n<td>security@fiskl.com<\/td>\n<\/tr>\n<tr>\n<td>Suspected fraud or AUP misuse by another customer<\/td>\n<td>abuse@fiskl.com<\/td>\n<\/tr>\n<tr>\n<td>Privacy or data protection concerns<\/td>\n<td>dpo@fiskl.com<\/td>\n<\/tr>\n<tr>\n<td>General trust and security questions<\/td>\n<td>trust@fiskl.com<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>Fiskl will treat reports confidentially to the extent permitted by law. We do not retaliate against good-faith reporters.<\/p>\n<h2>12. Enforcement<\/h2>\n<p>Fiskl may, in response to a breach or suspected breach of this AUP:<\/p>\n<ul>\n<li>issue a warning;<\/li>\n<li>require corrective action within a stated period;<\/li>\n<li>suspend access to the Fiskl Platforms in whole or in part, with or without prior notice, in accordance with section 12.5 of the Customer Terms of Service;<\/li>\n<li>terminate the Contract for cause in accordance with section 12.3 of the Customer Terms of Service;<\/li>\n<li>report to law enforcement, regulators, tax authorities, banking partners, payment processors, AI Providers, and other appropriate parties, in accordance with section 12.5A of the Customer Terms of Service;<\/li>\n<li>cooperate with civil or criminal proceedings against the offending party;<\/li>\n<li>recover from the offending party the reasonable costs of investigation and remediation, where permitted by law.<\/li>\n<\/ul>\n<p>The remedies in this section are cumulative and in addition to all other rights available to Fiskl at law or in equity.<\/p>\n<h2>13. Atlas Firm responsibility for its Users<\/h2>\n<p>Where an Atlas Firm User breaches this AUP, the relevant Atlas Firm is responsible for the breach to the same extent as if the breach had been committed by the Atlas Firm directly. The Atlas Firm must take reasonable steps to ensure its Atlas Firm Users comply with this AUP, including through training, monitoring, and prompt action on suspected misuse.<\/p>\n<h2>14. Customer responsibility for Authorized Users<\/h2>\n<p>Where an Authorized User of a Customer breaches this AUP, the Customer is responsible for the breach to the same extent as if the breach had been committed by the Customer directly.<\/p>\n<h2>15. Contact<\/h2>\n<table width=\"0%\">\n<tbody>\n<tr>\n<td>Topic<\/td>\n<td>Email<\/td>\n<\/tr>\n<tr>\n<td>AUP questions<\/td>\n<td>legal@fiskl.com<\/td>\n<\/tr>\n<tr>\n<td>Security vulnerabilities<\/td>\n<td>security@fiskl.com<\/td>\n<\/tr>\n<tr>\n<td>Suspected abuse by another customer<\/td>\n<td>abuse@fiskl.com<\/td>\n<\/tr>\n<tr>\n<td>Data protection<\/td>\n<td>dpo@fiskl.com<\/td>\n<\/tr>\n<tr>\n<td>General support<\/td>\n<td>support@fiskl.com<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>Fiskl Limited (and the wider Fiskl Group) 6A Thirlmere Road London, N10 2DN United Kingdom Company number: 09330290<\/p>\n<p><strong>Effective: 15 March 2026<\/strong><\/p>\n","protected":false},"parent":0,"template":"","format":"standard","class_list":["post-1358","legal","type-legal","status-publish","format-standard","hentry"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/fiskl.com\/x-api\/wp\/v2\/legal\/1358","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/fiskl.com\/x-api\/wp\/v2\/legal"}],"about":[{"href":"https:\/\/fiskl.com\/x-api\/wp\/v2\/types\/legal"}],"wp:attachment":[{"href":"https:\/\/fiskl.com\/x-api\/wp\/v2\/media?parent=1358"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}