Acceptable Use Policy

Effective Date: January 1, 2026
Last Updated: January 23, 2026

This Acceptable Use Policy ("AUP") governs your use of Honeybee CRM and is incorporated into our Terms of Service. By using Honeybee CRM, you agree to comply with this policy.

1. Intended Use

Honeybee CRM is designed for legitimate business purposes, including:

• Managing customer relationships and business contacts
• Tracking sales opportunities and pipelines
• Coordinating customer success activities
• Recording business communications and interactions
• Generating business analytics and reports

2. Prohibited Activities

You may not use Honeybee CRM for any unlawful purpose or in violation of any applicable laws or regulations. The following activities are strictly prohibited:

2.1 Illegal Activities

• Engaging in any activity that violates local, state, national, or international laws
• Using the service in connection with fraud, theft, or financial crimes
• Money laundering or terrorist financing
• Violating export control laws or economic sanctions

2.2 Harmful Content

• Uploading, transmitting, or storing malware, viruses, or malicious code
• Content that promotes violence, discrimination, or hatred
• Child sexual abuse material (CSAM) or exploitation content
• Content that infringes intellectual property rights
• Defamatory, obscene, or harassing content

2.3 System Abuse

• Attempting to gain unauthorized access to Honeybee CRM systems or other users' accounts
• Circumventing security measures, authentication, or access controls
• Reverse engineering, decompiling, or disassembling the software
• Introducing vulnerabilities or exploiting security flaws
• Overwhelming our systems with excessive requests (DoS attacks)
• Using automated tools to scrape or extract data beyond API limits

2.4 Spam and Abuse

• Sending unsolicited commercial communications (spam)
• Harvesting email addresses or personal information without consent
• Creating multiple accounts to circumvent limits or bans
• Using the service to send phishing or fraudulent communications
• Impersonating others or misrepresenting your affiliation

2.5 Data Privacy Violations

• Collecting personal data without appropriate consent or legal basis
• Storing sensitive data (SSN, financial accounts) without proper security measures
• Processing health information without HIPAA compliance (requires Enterprise BAA)
• Violating GDPR, CCPA, or other applicable privacy regulations
• Sharing or selling customer data without authorization

2.6 Commercial Violations

• Reselling, sublicensing, or redistributing the service without authorization
• Using the service to build a competing product
• Benchmarking or performance testing without written consent
• Exceeding licensed user counts or usage limits

3. Data Responsibility

3.1 Your Obligations

You are responsible for:

• Ensuring you have the right to collect and process data stored in Honeybee CRM
• Obtaining necessary consents from data subjects
• Maintaining accurate and up-to-date records
• Responding to data subject requests in a timely manner
• Implementing appropriate access controls within your organization

3.2 Prohibited Data Types

Unless you have an Enterprise agreement with specific provisions, do not store:

• Government-issued identification numbers (SSN, passport numbers)
• Complete payment card numbers (PCI DSS regulated data)
• Protected health information (PHI) under HIPAA
• Biometric data for identification purposes
• Classified or restricted government information

4. API Usage

4.1 API Guidelines

• Respect rate limits and implement appropriate retry logic
• Use efficient queries and avoid unnecessary API calls
• Secure API keys and never expose them in client-side code
• Only request the scopes and permissions you need

4.2 Prohibited API Activities

• Excessive polling that could degrade service for others
• Automated account creation or manipulation
• Using the API to circumvent product limitations
• Storing API data beyond necessary retention periods

5. Account Security

You must:

• Use strong, unique passwords for your account
• Use security features provided by your authentication provider
• Not share account credentials with unauthorized persons
• Promptly report suspected security breaches
• Revoke access for former employees immediately
• Regularly review user access and permissions

6. Reporting Violations

If you become aware of any violations of this policy, please report them immediately:

• Email: abuse@honeybeecrm.io
• Security Issues: security@honeybeecrm.io

We take all reports seriously and will investigate promptly. You may report violations anonymously if you prefer.

7. Enforcement

7.1 Investigation

We may investigate suspected violations by reviewing account activity, content, and usage patterns. We will respect your privacy and confidentiality during investigations.

7.2 Consequences

Violations of this policy may result in:

• Warning: First-time minor violations may receive a warning
• Temporary Suspension: Account access may be suspended pending investigation
• Feature Restriction: Access to specific features may be limited
• Account Termination: Serious or repeated violations may result in permanent termination
• Legal Action: We may report illegal activities to law enforcement

7.3 Appeals

If you believe your account was suspended or terminated in error, you may appeal by contacting appeals@honeybeecrm.io within 30 days. Please include:

• Your account information
• Description of the alleged violation
• Explanation of why you believe the action was incorrect
• Any supporting documentation

8. Changes to This Policy

We may update this AUP from time to time. We will notify you of material changes via email or through the Service. Continued use after changes become effective constitutes acceptance.

9. Contact Information

For questions about this policy:

Honeybee CRM
Email: legal@honeybeecrm.io
Abuse Reports: abuse@honeybeecrm.io
Security: security@honeybeecrm.io