Acceptable Use Policy

1. Introduction

This Acceptable Use Policy (“AUP”) governs your use of the ANED DB platform and all related services provided by The ANED Group, managed by ANED Development Center. This policy is incorporated into and forms part of our Terms of Service.

The purpose of this AUP is to ensure the security, availability, and integrity of the ANED DB platform for all users. Violations of this policy may result in suspension or termination of your account.

2. Prohibited Content

You may not use the Service to store, process, or distribute:

1. Content that is illegal in the jurisdiction where you operate or where our servers are located.
2. Child sexual abuse material (CSAM) or any content that exploits minors.
3. Content that promotes violence, terrorism, or extremism.
4. Content that constitutes harassment, threats, defamation, or hate speech.
5. Malware, viruses, ransomware, spyware, or any malicious software.
6. Stolen data, credentials, or personally identifiable information obtained without consent.
7. Pirated software, media, or other copyrighted material distributed without authorization.
8. Phishing pages, fraudulent schemes, or deceptive content.

3. Prohibited Activities

You may not engage in the following activities:

3.1 Platform Abuse

• Attempting to circumvent usage limits, rate limits, or resource quotas.
• Creating multiple free accounts to exceed free-tier limits.
• Using the Service as a general-purpose compute platform (e.g., running background jobs unrelated to your application).
• Mining cryptocurrency or performing proof-of-work computations.
• Generating excessive load that degrades service for other users.

3.2 Network Abuse

• Conducting denial-of-service (DoS) or distributed denial-of-service (DDoS) attacks.
• Port scanning, network probing, or vulnerability scanning of ANED DB infrastructure.
• Attempting to intercept or monitor network traffic that is not intended for you.
• IP spoofing or using the Service to mask the origin of network traffic.

3.3 Unauthorized Access

• Attempting to access databases, APIs, or accounts that do not belong to you.
• Brute-force attacks on authentication endpoints or API keys.
• Exploiting vulnerabilities in the Service (report them responsibly instead).
• Accessing, modifying, or deleting data belonging to other users.

3.4 Email and Communication Abuse

• Using edge functions or the Service to send unsolicited bulk email (spam).
• Sending phishing emails or impersonating ANED DB or other entities.
• Harvesting email addresses or personal information from the Service.

4. Security Requirements

As a user of the Service, you are expected to:

1. Secure your credentials: Use strong, unique passwords. Enable multi-factor authentication (MFA) when available. Never share API keys in public repositories or client-side code.
2. Use appropriate key types: Use the anon key for client-side applications and the service role key only for trusted server-side environments. Never expose the service role key publicly.
3. Implement RLS policies: When using the REST API from client applications, implement Row Level Security policies to restrict data access appropriately.
4. Keep software updated: Use the latest versions of our SDKs and CLI tools to benefit from security patches and improvements.
5. Report vulnerabilities: If you discover a security vulnerability in the Service, report it to security@anedcenter.com rather than exploiting it. We operate a responsible disclosure program.

5. Compliance and Regulatory Requirements

1. You are responsible for ensuring your use of the Service complies with all applicable laws and regulations in your jurisdiction.
2. If you store personal data of EU residents, you must comply with the General Data Protection Regulation (GDPR). Contact us for a Data Processing Agreement (DPA).
3. If your application is subject to HIPAA, PCI-DSS, or similar regulatory requirements, you must use an Enterprise plan with the appropriate compliance addendum.
4. You must not use the Service in any country or territory subject to comprehensive sanctions or in violation of export control laws.
5. You are responsible for implementing appropriate data retention and deletion policies for the data you store in the Service.

6. Resource Usage and Fair Use

To ensure platform stability and fair access for all users, the following resource usage guidelines apply:

• Database storage: Must remain within your plan’s storage limits. Approaching limits will trigger notifications. Exceeding limits on the Free plan may result in read-only mode.
• API requests: Subject to rate limiting as described in your plan. Burst traffic is accommodated within reasonable limits.
• Edge functions: Subject to execution time limits (30 seconds for Free, 60 seconds for Pro, configurable for Enterprise) and memory limits.
• File storage: Must remain within plan limits. Individual file size limits apply (50 MB for Free, 5 GB for Pro).
• Realtime connections: Subject to concurrent connection limits based on your plan.

7. Enforcement

We monitor the Service for violations of this AUP. When a violation is detected, we may take the following actions, depending on the severity:

1. Warning: For first-time or minor violations, we will notify you and request corrective action within a specified timeframe.
2. Throttling: We may temporarily reduce your resource allocation or rate limits to mitigate impact.
3. Suspension: For serious or repeated violations, we may suspend your account pending investigation. You will be notified and given an opportunity to respond.
4. Termination: For severe violations (illegal content, active attacks, CSAM), we may immediately terminate your account without prior notice and report the activity to appropriate authorities.

If you believe your account has been suspended or terminated in error, you may appeal by contacting abuse@anedcenter.com within 14 days.

8. Reporting Violations

If you become aware of any violation of this AUP by another user, please report it to us immediately. We take all reports seriously and will investigate promptly.

9. Changes to This Policy

We may update this Acceptable Use Policy from time to time to reflect changes in our practices, legal requirements, or platform capabilities. Material changes will be communicated at least 30 days in advance via email and a notice on our website. Continued use of the Service after changes take effect constitutes acceptance of the revised policy.

10. Contact Information

For questions about this Acceptable Use Policy, please contact us: