Back to Legal Center

Acceptable Use Policy

Review acceptable user boundaries and system limitations across the automated workflows developed by CK Catalyst.

Last updated: June 4, 2026

1. Purpose of This Policy

This Acceptable Use Policy (AUP) outlines the mandatory rules, usage parameters, and structural restrictions governing the use of technical solutions, infrastructure, custom tools, and automated frameworks deployed by CK Catalyst.

This policy applies directly to all entities utilizing our operational Business Cells™ (including Hybrid Cells™, Ops Cells™, Automation Cells™, Data Cells™, AI Cells™, and Dev Cells™). It ensures the ongoing safety, compliance, availability, and runtime reliability of our integrated business platforms.

2. Prohibited Exploitations & Activities

Clients and their authorized users are strictly prohibited from utilizing our automation infrastructure, database systems, or engineered cell workflows to perform, assist, or enable any of the following activities:

A. Illegal or Unauthorized Activities

  • Facilitating fraudulent transactions, identity misrepresentation, or unauthorized impersonation schemes.
  • Violating regional, national, or international privacy laws, data protection standards, or compliance frameworks.
  • Forcing unauthorized data penetration attempts or illicitly hacking into third-party target software.

B. System Abuse & Communications Disruption

  • Engineering workflows designed to distribute un-throttled spam, unsolicited cold bulk messaging, or mass communications violating CAN-SPAM, CASL, or equivalent laws.
  • Introducing malicious scripts, un-optimized data structures, or security vulnerabilities into our managed cloud properties or execution sandboxes.

C. Infrastructure Overloading & API Misuse

  • Deploying recursive loops, un-throttled data synchronization runs, or un-capped processing requests that trigger intentional or reckless system resource exhaustion.
  • Constructing automations that explicitly breach the underlying Terms of Service of your connected third-party applications (e.g., prohibited CRM harvesting).
  • Utilizing automated web scrapers to forcefully siphon protected content from systems without formal authorization headers.

D. Prompt Injection & AI Asset Misuse

  • Submitting text inputs engineered to bypass security guardrails, hijack underlying system instructions, or enforce prompt injections on integrated LLM frameworks within your deployed cells.
  • Using our AI Cells™ architectures to generate deepfakes, intentionally deceptive documentation, or abusive consumer-facing communications.

3. Core Client System Responsibilities

To preserve the runtime performance and operational uptime of your production workflows and active solutions, clients must:

  • Ensure all business intelligence, data streams, and assets provided to our engineering teams are lawfully acquired and clean of illegal tracking methods.
  • Maintain independent, active, and fully cleared subscription credentials on all connected software ecosystems (such as CRM environments, messaging endpoints, and third-party API providers).
  • Notify our engineering desk instantly if any connected master token, webhook route, or administrative portal credential within your Business Cells™ is suspected of being compromised.

4. Deployment Guardrails & Modifications

Automation logic operates as an interconnected ecosystem. To prevent cascading logic failures and business-crippling database lockouts, clients agree to the following operational parameters:

  • Sign-Off Requirements: No workflow configuration or structural layout will be pushed live to a primary business production space until the client has explicitly verified and approved the staging cell outcomes.
  • Independent Alterations Disclaimer: Clients must not manually alter, change paths, delete webhooks, or rename active table variables within engines managed by CK Catalyst without prior technical coordination.
  • Remediation Billing: If an independent structural change made by your internal staff shatters a live production pipeline, the time required to repair the framework schema will be billed as an independent emergency scoping sprint.

5. Artificial Intelligence Limitations

AI architectures built into your technical solutions must be used purely for optimization, reporting, and standard B2B automation tasks. Clients are explicitly barred from utilizing our custom-engineered pipelines to train public models, reverse-engineer proprietary algorithmic configurations, or deploy automated employee surveillance networks without explicit legal authorization.

6. Rate-Limiting & Infrastructure Throttling Rights

To protect our shared cloud servers and guarantee uptime across all concurrent business spaces, CK Catalyst reserves the right to enforce programmatic rate limits or temporarily throttle automation executions that generate abnormal resource load spikes, run away in infinite error loops, or threaten core hosting stability.

7. Intellectual Property Protections

Clients are granted an exclusive license to execute their custom business scripts and workflows as detailed in our core Terms of Service. However, clients may not decouple, reverse-engineer, resell, or distribute our base modular design frameworks, boilerplate n8n configurations, or foundational template engines to create a competing automation consultancy product.

8. Enforcement Action Tiers

If an active violation of this AUP is detected on your live infrastructure lines, we will execute the following containment path:

  1. Notice: Issue a critical alert to your technical workspace admin to resolve the structural violation immediately.
  2. Throttling: Temporarily pause or restrict the specific offensive webhook route if it threatens wider server stability or drops active third-party APIs into rate penalties.
  3. Suspension: For severe, un-remedied violations or confirmed malicious activity, we reserve the right to suspend the active Business Cells™ instantly to isolate the infrastructure risk.

9. Policy Revisions

This policy adapts alongside emerging web regulations, new security threat profiles, and automation engine updates. Material modifications will alter the "Last Updated" metadata tag. All current compliance standards remain reviewable inside our unified Legal Hub.

10. Compliance Desk

For any questions regarding system limits, allowed integrations, or to report an automated system misuse alert, please contact our intake team directly:

Document FAQ

Quick, non-legalese answers to common operational questions.

You have complete access to systems run on your internal infrastructure, but modifying fields, altering active webhook URLs, or changing database variable schemas without technical coordination runs a high risk of breaking active logic loops. We highly recommend reviewing updates with our development team first to avoid out-of-scope remediation fees.

Our infrastructure monitors live execution behavior. If a running pipeline encounters an infinite error loop or causes sudden abnormal server stress, we reserve the right to temporarily throttle or pause that specific webhook route immediately to protect baseline platform stability and safeguard your connected vendor account standings.

Your specific infrastructure limits are defined in your active Statement of Work. If your business experiences sudden traffic spikes or data volume surges, we will work with you to programmatically adjust rate limits or transition your active infrastructure into an expanded capacity tier.

No. Our frameworks explicitly prohibit data extraction strategies that violate a target platform's native Terms of Service. All web ingestion must rely on authorized API endpoints, webhooks, or legally compliant data pipelines.

PreviousNext