Platform Checks Reports Account Pricing Run Trust Scan →
Legal

Acceptable Use Policy

This Acceptable Use Policy forms part of the Terms of Service and applies to all visitors, members, customers, account users, subscribers, agencies, consultants, freelancers, clients, and anyone else who accesses or uses Tesoniq.

By accessing or using Tesoniq, you agree to this policy.

Core rule

Use Tesoniq responsibly, lawfully, and only for websites, domains, pages, reports, and content that you are authorised to assess, manage, submit, monitor, or report on.

Tesoniq is a non-invasive website trust intelligence service. It is not a tool for surveillance, harassment, public shaming, exploitation, disruption, reputation attacks, or unauthorised security testing.

Authorised use

You may use Tesoniq to scan or analyse:

  • Websites, domains, pages, or content you own or control.
  • Websites, domains, pages, or content you manage for a client where you have proper authorisation.
  • Websites where you have explicit permission to perform limited, non-invasive, public-facing checks.
  • Public websites only where the use is lawful, limited, non-invasive, proportionate, and not used for harassment, deception, surveillance, reputational abuse, or misleading claims.

For monitored domains, scheduled scans, private reports, report history, repeated scans, exports, client deliverables, or account-based reporting, you must have proper authorisation from the domain owner or authorised operator.

Public scans

Public or free scans may be limited, cached, rate-limited, blocked, queued, reused, hidden, removed, or marked as unverified. A public scan does not prove that the submitter owns, controls, or represents the scanned domain.

You must not use public scans to:

  • Create pressure campaigns against third parties.
  • Misrepresent a third party's security, compliance, search readiness, reputation, or trustworthiness.
  • Generate unfair, deceptive, defamatory, or misleading comparisons.
  • Publish claims without proper context, professional review, and lawful basis.
  • Repeatedly scan or monitor a third-party domain without authorisation.

Prohibited activity

You must not use Tesoniq to:

  • Conduct unauthorised monitoring, surveillance, profiling, repeated scanning, or reporting of domains you do not control.
  • Perform disruptive, invasive, exploitative, destructive, denial-of-service, load, stress, or vulnerability exploitation activity.
  • Attempt to access non-public systems, files, endpoints, accounts, credentials, secrets, infrastructure, source code, administrative interfaces, or data.
  • Conduct credential attacks, phishing, spam, social engineering, impersonation, or deception.
  • Upload malware, harmful files, exploit code, payloads, secrets, stolen data, or unlawful content.
  • Harass, intimidate, defame, shame, threaten, or target individuals or organisations.
  • Generate, publish, sell, or distribute misleading claims about a third party's security, compliance, reputation, search quality, trustworthiness, or business practices.
  • Circumvent rate limits, plan limits, billing controls, authentication, authorisation, domain verification, access controls, or security controls.
  • Use automated abuse, aggressive scraping, bot activity, excessive requests, or unsupported integrations.
  • Interfere with the availability, integrity, security, or performance of Tesoniq or third-party services.
  • Reverse engineer, copy, resell, sublicense, white-label, frame, benchmark for competitive misuse, or commercially exploit Tesoniq except as expressly allowed by your plan or written agreement.
  • Submit content that violates law, confidentiality obligations, data protection obligations, intellectual property rights, or third-party rights.
  • Use Tesoniq to train, evaluate, or build a competing product without written permission.
  • Use reports as formal certification, legal advice, compliance proof, penetration testing, vulnerability assessment, or proof of negligence.

Sensitive and regulated information

Do not intentionally submit sensitive personal data, special category data, confidential data, secrets, passwords, access tokens, private keys, payment card data, health data, government identity documents, children's data, customer records, or other high-risk information unless you have a lawful basis, proper authorisation, and appropriate safeguards.

If sensitive information is submitted by mistake, contact [email protected] promptly. We may remove, restrict, redact, quarantine, or delete sensitive information where appropriate.

Responsible report sharing

Reports must be shared responsibly and with context. You must not present a Tesoniq report as:

  • A guarantee of security, compliance, ranking, reputation, performance, or trustworthiness.
  • A formal penetration test, vulnerability assessment, legal opinion, compliance certification, audit, or attestation.
  • Proof that a third party is negligent, unsafe, unlawful, non-compliant, or untrustworthy.
  • A complete or exhaustive assessment of a website, organisation, system, or business.

Reports may be cached, limited, stale, incomplete, inaccurate, or affected by third-party services, network conditions, website blocking, product configuration, or changed website settings.

Abuse prevention and enforcement

Tesoniq may use rate limits, domain verification, account verification, caching, blocking, throttling, usage controls, report hiding, scan restrictions, manual review, automated review, account suspension, report deletion, and other controls to prevent misuse.

We may suspend, restrict, delete, investigate, preserve, hide, or report scans, reports, accounts, domains, exports, or activity that appear to violate this policy or create legal, security, privacy, reputational, operational, billing, or abuse risk.

We may cooperate with domain owners, service providers, payment providers, hosting providers, regulators, law enforcement, or courts where legally required or reasonably necessary to protect Tesoniq, users, third parties, or the Service.

Reporting abuse

If you believe Tesoniq is being used to scan, monitor, publish, or distribute reports about a domain without proper authorisation, use the Unauthorized Scan Concern category on the Contact page or email [email protected].

Please include:

  • The affected domain.
  • The report link, if available.
  • Your relationship to the domain.
  • A brief explanation of the concern.
  • Evidence of ownership or authorisation, if available.

We aim to respond to most inquiries within 3 business days. Response timing may vary based on urgency, verification needs, legal obligations, and the completeness of the information provided.