Acceptable Use Policy

⚠ Unofficial translation. This English version is provided for reference only. The Romanian version of this document is the legally binding original — in case of any conflict or interpretation issue, the Romanian text prevails. Read the Romanian original →

ACCEPTABLE USE POLICY (AUP)

Acceptable use of the ARTEMIS Platform

The ARTEMIS Platform — operated by CAI Technology S.R.L.

This document is an integral part of the ARTEMIS Terms and Conditions.

Version: v1.0 ARTEMIS • Published on: 2026-05-06 • Effective from: 2026-05-06

1. Scope

This Acceptable Use Policy ("AUP") applies to all persons accessing or using the ARTEMIS Platform — Clients (B2B and B2C), Representatives, Authorized Users, unauthenticated visitors, partners, API integrators, and security researchers. Capitalized terms have the meaning given in the Terms and Conditions.

2. General principles

You undertake to use the Platform:

in good faith and for its intended purposes — informational evaluation of conformity, as further qualified in the General Disclaimer;
in compliance with Romanian law, EU law, and applicable international law;
with respect for the rights and freedoms of other Users and third parties;
without prejudicing the reputation, integrity, or proper functioning of the Platform.

3. General prohibitions

You must not:

provide false, incomplete, or misleading information — intentionally or by negligence — at registration or in the Platform questionnaires;
impersonate another person or entity, declare false contractual ties or affiliations;
access accounts that do not belong to you, or share your account credentials with unauthorized third parties;
transfer, resell, sub-license, or rent access to the Services without prior written consent from CAI Technology S.R.L.;
use the Platform to commit, encourage, or facilitate any criminal offense — including IT fraud, money laundering, terrorism financing, tax evasion;
use the Platform in breach of international sanctions regimes (see Section 3.1).

3.1. International sanctions

You represent and warrant that you are not listed on the Consolidated EU Financial Sanctions List, the UN Consolidated List, the OFAC SDN List (where US nexus applies), or the OFSI Consolidated List (UK), and that your use of the Platform does not breach these sanctions regimes. CAI Technology S.R.L. may screen Users at registration and periodically during the contract.

4. Technical and security prohibitions

You must not:

reverse-engineer, decompile, or disassemble the Platform, except where strictly permitted by Romanian Law no. 8/1996 on copyright (decompilation for interoperability);
access, modify, or copy without right the source code, database, AI models, or infrastructure of the Platform;
carry out denial-of-service attacks (DoS / DDoS), brute-force, offensive fuzzing, IP or session spoofing;
bypass rate-limiting, authentication, access controls, or other security mechanisms of the Platform;
introduce, distribute, or upload viruses, ransomware, trojans, exploits, or any malicious code;
interfere with the services of other Users or with the integrity of other Clients' data;
conduct unauthorized penetration testing. Coordinated security research is governed by the Vulnerability Disclosure Policy and benefits from the safe-harbor at Section 9 of this AUP.

Criminal liability. The acts described in this Section may constitute offenses against the security and integrity of IT systems and data, as defined in articles 360–366 of the Romanian Criminal Code (illegal access to an IT system, illegal interception of data, alteration of IT data integrity, disruption of IT system operation, unauthorized data transfer, illegal operations with devices or software, IT forgery). These offenses are prosecuted ex officio.

5. Content prohibitions

You must not upload, generate, store, transmit, or distribute through the Platform any Content that is:

unlawful (defamation, hate speech, incitement to violence, child exploitation material, contempt of court);
in breach of third-party intellectual property rights (unlicensed copyrighted works, counterfeit trademarks);
privacy-invasive without legal basis (personal data of third parties without their consent or another GDPR lawful basis);
deceptive, misleading commercial communications, unsolicited spam;
pornographic, obscene, or inappropriate for the professional context.

6. AI usage limitations

The Platform integrates AI systems (see AI Notice). When interacting with these systems, you must not:

use the AI assistant for purposes excluded by AI Act Annex III (recruitment of employees, creditworthiness assessment, decisions on access to essential services, law enforcement, migration management, or any other high-risk AI use);
attempt prompt injection, jailbreaks, or other manipulations intended to bypass safety guardrails;
present AI-generated content as human-authored without proper attribution;
rely on AI outputs as the sole basis for legally binding decisions affecting third parties.

7. Consequences of breach

Breach of this AUP may result, depending on severity:

written warning and request to remedy;
temporary suspension of the Account (up to 30 days);
definitive Account termination with deletion of Content (subject to legal retention);
claim for compensation for damages caused to CAI Technology S.R.L., other Users, or third parties;
notification to competent authorities (DNSC, ANSPDCP, criminal police, prosecutor) where the law so requires.

For minor breaches, CAI Technology S.R.L. typically applies the principle of graduated escalation; for serious breaches (security attack, criminal activity), the consequence is immediate Account termination without prior notice.

8. Reporting AUP breaches

If you observe behavior in breach of this AUP, please report it to office@caitech.ro. For data protection breaches, report to dpo@caitech.ro.

9. Safe harbor for security researchers

Good-faith security researchers who comply with the Vulnerability Disclosure Policy (https://artemis.caitech.rovdp) are protected against legal action by CAI Technology S.R.L., even if their testing technically constitutes unauthorized access. See the VDP for full conditions.

10. Changes

CAI Technology S.R.L. updates this policy according to legislative evolution, market practices, and the Platform's risk profile. Changes are notified by e-mail at least 30 days before they take effect; continued use of the Platform after the effective date constitutes acceptance.

11. Contact

CAI Technology S.R.L.

Registered office: Str. Victor Brauner, bloc 1, sc. 4, ap. 5, sector 3, București, cod poștal 032621, România • VAT ID: RO50512457 • Companies Register no.: J2024020380005

General e-mail: office@caitech.ro

Support: tehnic@caitech.ro

Data protection contact: dpo@caitech.ro

Security: office@caitech.ro

Related documents. This policy must be read together with the Terms and Conditions (Section 9 — abridged version) and with the Vulnerability Disclosure Policy (for responsible reporting of vulnerabilities, distinct from abusive use).