Acceptable Use Policy
This Acceptable Use Policy ("AUP") describes what you may and may not do with the Fibric platform and the products built on it (the "Service"). It is part of our Terms of Service. Because Fibric operators can act on real systems, these rules matter — they keep the platform safe, lawful, and trustworthy for everyone.
Purpose
Fibric gives operators the ability to sense, reason, and act across software and hardware systems. With that capability comes responsibility. This policy sets the boundaries within which you, and any operator you configure, must stay. You are responsible for ensuring your use, and your users' use, complies with this AUP.
Prohibited uses
You may not use the Service to:
- Break the law — engage in or facilitate illegal activity, or violate any applicable law, regulation, or third-party rights.
- Harm others — threaten, harass, defame, or harm people; promote violence; or process data about people in ways that are deceptive or exploitative.
- Abuse the platform — send spam, distribute malware, mine resources without authorization, or otherwise interfere with or place an undue burden on the Service or its infrastructure.
- Violate security — probe, scan, or test the vulnerability of any system without authorization; circumvent authentication, tenancy, or access controls; or attempt to access data, accounts, or tenants that are not yours.
- Infringe — upload, generate, or distribute content that infringes intellectual property, privacy, or other rights, or that you lack the right to use.
- Misrepresent — impersonate any person or entity, or falsify the origin or attribution of an action taken through the Service.
Operators & automated action
Because operators take real actions, the following rules are non-negotiable:
- Stay within guardrails. Operators must operate within the intents, scopes, and guardrails you configure. Do not attempt to defeat the fail-closed trust model, single-flight, or idempotency primitives that keep actions safe.
- Only act on systems you control. You may use Fibric to act only on systems you own or are explicitly authorized to operate. Do not point an operator at a third party's systems without their authorization.
- Keep a human in the loop where it matters. You are responsible for reviewing and approving high-impact actions and for the consequences of actions taken under your configuration.
- Respect tenancy. Do not attempt to read, write, or act across tenant boundaries, or to correlate data that the data layer keeps isolated.
High-risk uses
The Service is not designed or authorized for use where failure could lead to death, serious bodily injury, or severe environmental or property damage — for example, life-support, emergency response, the operation of nuclear or weapons systems, or autonomous control of safety-critical infrastructure without appropriate human oversight and independent safeguards. If you operate in a regulated or safety-critical domain, you are responsible for the additional controls, validation, and oversight your context requires.
Enforcement
If we believe your use violates this AUP, we may investigate and take action proportionate to the issue — including warning you, throttling or pausing specific operators, suspending or terminating access, and reporting unlawful activity to authorities. Where practical and lawful, we will give notice and an opportunity to cure; where there is an imminent risk to people, systems, or the platform, we may act first to protect them.
Reporting abuse
Seeing misuse of the Service, or a security issue? Tell us at security@fibric.io. For coordinated reporting of vulnerabilities, see our Responsible Disclosure policy. We review every credible report.
Changes to this policy
We may update this AUP as the product and the threat landscape evolve. We will post the new version here and update the date above; material changes will be communicated where appropriate. Continued use after changes take effect constitutes acceptance.