Acceptable Use Policy

1. Introduction

This Acceptable Use Policy ("AUP") describes permitted and prohibited use of the Invoice My Clients websites, applications, APIs, integrations, and related services (collectively, the "Platform") operated by Invoice My Clients, LLC ("Invoice My Clients," "we," "us," or "our").

By accessing or using the Platform, you agree to comply with this AUP together with our Terms of Service, Privacy Policy, and other policies incorporated by reference. If you do not agree, do not use the Platform.

2. Who must follow this policy

This AUP applies to all visitors, registered users, invitees, integration partners, and anyone who interacts with the Platform on their own behalf or on behalf of an organization. If you use the Platform on behalf of a company or other entity, you represent that you are authorized to bind that entity to this AUP.

3. Permitted use

You may use the Platform solely for lawful business purposes that are consistent with our agreements and documentation, including:

• Create, send, and manage legitimate invoices, estimates, and related business records in good faith.
• Configure payment integrations and tax settings consistent with your obligations and applicable law.
• Store and process customer and business information only where you have a lawful basis to do so.
• Use features such as time tracking, reminders, and integrations for their intended commercial purposes.

4. Prohibited conduct (overview)

You must not, and must not attempt to, engage in any of the following:

• Violate any applicable law, regulation, regulatory guidance, or court order.
• Infringe intellectual property, privacy, publicity, or other rights of any person.
• Generate or transmit fraudulent, misleading, or deceptive invoices, receipts, or payment requests.
• Misrepresent your identity, affiliation, or authority; operate "bust-out" schemes; or abuse chargeback processes.
• Upload malware, probe or scan our systems without authorization, or attempt to bypass authentication or rate limits.
• Harass, threaten, or stalk individuals; send unsolicited bulk communications in violation of law; or distribute obscene or violent content through the Platform.
• Use the Platform to facilitate money laundering, terrorist financing, sanctions evasion, or other financial crimes.

5. Credit card fraud, payment crimes, and financial abuse

Invoice My Clients maintains zero tolerance for credit card fraud, stolen or counterfeit payment credentials, abuse of payment systems, chargeback fraud schemes, and any attempt to obtain value through fraudulent payment activity using or connected to the Platform.

We partner with cybercrime divisions and law enforcement agencies—including, where appropriate, specialized cybercrime units at the federal, state or provincial, local, and international levels—to aggressively investigate suspected credit card fraud and closely related offenses. We may preserve relevant records, account data, communications metadata, device and session information, and payment details where permitted or required to assist investigators and support prosecutions.

Credit card fraud and analogous payment crimes may be investigated and prosecuted to the highest extent permitted by law, including criminal prosecution, civil litigation, referral to card brands and acquiring banks, seizures, restitution, and coordination with regulatory authorities. Nothing in this section limits any other remedies available to us or to victims of fraud.

• Using stolen, lost, counterfeit, or fraudulently obtained card or bank account credentials.
• Card testing, enumeration, refund fraud, or coordinated payment fraud schemes.
• Colluding with third parties to generate fake transactions, inflate revenue, or launder illicit proceeds.
• Submitting false or manipulated chargebacks or friendly-fraud patterns intended to deprive merchants, payors, or financial institutions of funds.

6. Phishing, impersonation, and deceptive communications

Phishing, business-email compromise, invoice manipulation fraud, and related social-engineering attacks undermine trust in commerce and are strictly prohibited.

We partner with cybercrime divisions and law enforcement to aggressively investigate phishing and impersonation campaigns that target our brand, our users, or our users' customers—including coordination with dedicated cybercrime units and national or regional computer crime task forces where applicable.

Phishing and impersonation offenses may be investigated and prosecuted to the fullest extent of the law, including referral for criminal charges, injunctive relief, domain seizure or suspension, and cooperation with email providers, registrars, and financial institutions to stop harmful activity.

• Deploying credential-phishing pages or messages that impersonate Invoice My Clients, Stripe, PayPal, Square, Authorize.net, Braintree, Adyen, Worldpay, your clients, or payment partners, or that misrepresent payment methods we publish (including major card brands, bank debits such as ACH, SEPA, and Bacs, and digital wallets such as Apple Pay and Google Pay).
• Sending spear-phishing or business-email-compromise messages referencing fake invoices or payment portals.
• Registering look-alike domains, typosquats, or social media handles intended to mislead payors into transferring funds or disclosing secrets.

7. Technical abuse and attacks

You must not compromise or strain the security, availability, or integrity of the Platform or third-party services connected to it.

• DDoS or volumetric attacks, credential stuffing, password spraying, or brute-force attempts against accounts or endpoints.
• Exploiting vulnerabilities, reverse engineering except to the limited extent expressly permitted by law, or tampering with client software.
• Circumventing billing, usage limits, API keys, geographic restrictions, or security controls.
• Mining cryptocurrency, operating botnets, or hosting malicious content through the Platform.

8. Communications, marketing, and content

• Transmit spam, chain letters, pyramid schemes, or unlawful telemarketing through messaging features.
• Publish unlawful, defamatory, discriminatory, hateful, or exploitative content using customer-facing communications.
• Collect or process special categories of personal data without a lawful basis and appropriate safeguards.

9. Data scraping, automation, and resale

Except as expressly permitted in writing, you must not:

• Scrape, crawl, or harvest data from the Platform except through documented APIs and within published limits.
• Use automated tools to create accounts, send invoices, or mimic user behavior in violation of this AUP or our Terms.
• Resell or sublicense access to the Platform in violation of your agreement.

10. Monitoring, investigation, and cooperation with authorities

We may use technical, administrative, and organizational measures—including logging, fraud-detection systems, account review, and manual investigation—to enforce this AUP and protect users. Subject to applicable law, we may cooperate with banks, card networks, internet service providers, and regulators.

We partner with specialized cybercrime divisions and law enforcement agencies—including, where appropriate, federal, state or provincial, local, and international cybercrime and financial crimes units—to investigate serious abuse affecting the Platform, our users, or third parties. We may preserve and disclose information when required or permitted by law or when necessary to protect rights, safety, or the integrity of the Platform.

11. Enforcement and remedies

Violations of this AUP may result in one or more of the following, in our sole discretion and subject to applicable law:

• Issue warnings or require corrective action.
• Suspend or limit features, throttle API usage, or apply additional verification.
• Terminate or disable accounts and revoke access credentials.
• Initiate legal action, recover damages, and seek injunctive relief.
• Refer matters to law enforcement, regulators, card networks, or civil authorities.

12. Changes to this Acceptable Use Policy

We may revise this AUP periodically. Material changes will be posted on our website and, where appropriate, communicated through the Platform or by email. The "Last Updated" date above will be revised when changes take effect.

13. Contact and reporting

For questions about this AUP, or to report activity that may violate it, please use the contacts below. Provide as much detail as possible, including URLs, timestamps, invoice identifiers, and relevant correspondence.