Acceptable Use Policy

24observe gives you monitoring, log/SIEM, and AI-assisted security tooling. This policy keeps that power lawful and non-abusive. It applies to everyone using the hosted service, and breaching it can get your account suspended or terminated. It supplements our Terms of Service.

1. Authorization

You may only point 24observe at systems you own or are explicitly authorized to monitor and analyze. Specifically, do not:

• Configure probes against URLs, hosts, ports, or services you don't control or have written permission to test.
• Use the platform to scan for vulnerabilities, brute-force credentials, or otherwise probe or attack third parties.
• Ingest, search, or correlate logs and telemetry you have no lawful right to process.

2. No abuse of the platform

• Don't set check intervals, ingest volumes, or request rates designed to overwhelm a target or our infrastructure. We enforce per-plan caps; chaining accounts to evade them is a breach.
• Don't attempt to access another tenant's data, escalate privileges, or circumvent authentication, rate limits, or quotas.
• Don't resell, sublicense, or white-label the hosted service. (You're free to fork and run the open-source distribution under its own terms.)

3. Content & data restrictions

• Don't store secrets, payment-card data, government IDs, health records, or other regulated/highly-sensitive data where it isn't needed. Use the redaction features for anything that slips through.
• Don't upload malware, illegal content, or material that infringes others' rights.
• You are responsible for having a lawful basis to process any personal data you send us, and for honoring your own users' rights. See our Data Processing Addendum.

4. Agents & automation

24observe is built to be driven by AI agents and automation via scoped tokens. You're responsible for what your agents and integrations do under your credentials. Keep token scopes least-privilege, rotate leaked tokens promptly, and don't use automation to evade plan limits or abuse third parties.

5. Enforcement

We may investigate suspected violations and may suspend or terminate accounts that breach this policy — immediately and without notice where there is risk of harm, abuse, or legal exposure. Where practical we'll give notice and a chance to remediate. We will refund any unused prepaid balance on a good-faith termination that isn't for serious abuse.

6. Reporting

Report abuse or a suspected breach to [email protected]. Security vulnerabilities: [email protected] (see /.well-known/security.txt).