Acceptable Use Policy (AUP)
Last Updated: 2026-06-29 Service Provider: Wontopos, L.L.C.
1. Overview
This Acceptable Use Policy ("AUP") governs use of the Wontopos Memory API and all related services ("Service", product name: WOS). By using the Service, Client agrees to comply with this AUP. Violations may result in suspension or termination of Service. Immediate, no-notice termination is reserved for cases of immediate legal or security risk or illegal content, as described in Section 5. For other violations, Wontopos will provide notice and, where feasible, an opportunity to cure before terminating access.
2. Prohibited Uses
2.1 Illegal Content
Clients may not use the Service to store, process, or facilitate:
- Child sexual abuse material (CSAM) or any content that sexually exploits minors
- Content that promotes, glorifies, or facilitates terrorism, genocide, or mass violence
- Any content that violates applicable local, national, or international law
2.2 Content Responsibility
WOS is memory infrastructure: it stores and retrieves the data a Client sends and does not host, display, generate, or moderate content. Clients are solely responsible for the legality of the content they store through the Service, and for any content policy, age-verification, or moderation their own application or platform requires. The Service may not be used for the illegal content prohibited in Section 2.1.
2.3 Unauthorized Personal Data
Clients may not store:
- Personally identifiable information (PII) of third parties without their explicit, informed consent
- Sensitive personal data categories (health, biometric, financial) without appropriate legal basis
2.4 Regulated Data Without Applicable Agreements
Clients may not store:
- HIPAA-regulated health information (PHI). PHI and other HIPAA-regulated data may not be stored on the Service.
- PCI DSS-regulated payment card data (full card numbers, CVV, PINs)
2.5 Malicious Activity
Clients may not use the Service for:
- Spam, phishing, scam content, or deceptive communications
- Content designed to harass, threaten, or harm individuals
- Malware, ransomware, or any malicious code
2.6 Service Abuse
Clients may not:
- Reverse-engineer, decompile, or attempt to extract or reconstruct the underlying source code, model weights, or internal algorithms of the Service. This does not restrict ordinary observation and use of the permitted outputs returned by the API. The binding intellectual property protections also appear in the Terms of Service.
- Scrape or extract data from the Service in ways not permitted by the API documentation
- Attempt to bypass, circumvent, or disable rate limits, access controls, or security measures
- Use the Service to attack or disrupt other services or systems
3. LLM Usage Compliance
For the Tablet model, WOS performs no LLM inference in the storage or retrieval path: retrieval is embedding-based search and ranking only. For the Scroll model, WOS also uses a large language model provided by one of our LLM sub-processors (Google, Anthropic, or OpenAI) to interpret and reformulate the query within the retrieval path — only the query text is sent to that provider, never the stored memories (see DPA Section 8). The Codex model performs reasoning with a Wontopos-operated model on isolated, per-tenant storage kept separate from the shared memory; it is disclosed in the Data Processing Agreement before it processes Client Data. In all cases, Wontopos never uses Client Data to train, fine-tune, or improve any model.
Where a Client uses third-party LLM services in conjunction with WOS (such as Anthropic, OpenAI, OpenRouter, or others), the Client is solely responsible for ensuring their use complies with those providers' usage policies. Wontopos is not liable for the Client's non-compliance with third-party LLM provider policies.
4. Client Responsibilities
Clients are responsible for:
- Ensuring their end users comply with this AUP
- Obtaining all necessary consents and legal bases for processing personal data stored via the Service
- Maintaining appropriate security measures on their side (API key protection, access controls)
- Promptly notifying Wontopos of any suspected misuse or security incident through the request form on our website at wontopos.com/contact
5. Enforcement
Wontopos reserves the right to:
- Investigate suspected violations of this AUP
- Suspend or terminate access to the Service for any violation. Immediate, no-notice suspension or termination applies where there is immediate legal or security risk or illegal content. For other violations, Wontopos will provide notice and, where feasible, an opportunity to cure.
- Report illegal activity to appropriate law enforcement authorities
- Cooperate with law enforcement investigations as required by law
6. Reporting Violations
To report suspected misuse of the Service, including abuse, security incidents, or CSAM, use the request form on our website at wontopos.com/contact.
Reports of child sexual abuse material (CSAM) are handled in accordance with our legal obligations, including preservation of relevant data and reporting to the National Center for Missing & Exploited Children (NCMEC) and other authorities as required by law.
7. Changes to This Policy
We reserve the right to modify this AUP with 30 days notice. Continued use of the Service after changes constitutes acceptance.