The OPPThe OPP
Sign inStart free trial
← All legal documents

Acceptable Use Policy

What you may and may not do with The OPP — to keep everyone safe.

Effective from 2026-06-10·Contact: legal@theopp.be

This Acceptable Use Policy (the "AUP") sets out behavior we prohibit on The OPP. It applies to anyone using the Platform, whether directly or through your tenant. Violations may result in suspension, termination, forfeiture of fees, and reporting to law enforcement where warranted. The AUP is incorporated into our Terms of Service.

1. Lawful use only

You may not use the Platform to violate any law applicable to you, your end customers, or anyone whose data you process through it. This includes (but is not limited to) data-protection law, intellectual-property law, export controls, sanctions, anti-spam law, and the laws of any country where your users are located.

2. No abuse of the AI features

The Platform's generative features rely on third-party large-language models with their own usage policies. You must not use the Platform to:

  • Generate content that sexualizes minors or otherwise exploits children.
  • Plan, facilitate, or instruct violence, terrorism, or self-harm.
  • Produce malware, exploit code, ransomware, spyware, or tooling whose primary purpose is to gain unauthorized access to systems.
  • Generate disinformation, impersonate real individuals, or create content designed to deceive at scale.
  • Train, fine-tune, or evaluate other AI models on the Platform's outputs without our written permission.

3. Respect for third parties

You will not use the Platform to:

  • Send unsolicited bulk email or otherwise violate the CAN-SPAM Act, the EU ePrivacy Directive, or equivalent rules.
  • Process personal data without a valid legal basis or in violation of the rights of the data subjects.
  • Infringe copyrights, trademarks, trade secrets, patents, or any other intellectual-property rights.
  • Defame, harass, threaten, or stalk any person.
  • Reverse-engineer the Platform or attempt to extract source code, model weights, prompts, or system architecture beyond what is publicly documented.

4. Protect the integrity of the Platform

You may not:

  • Probe, scan, or test the vulnerability of any part of the Platform without our prior written authorization (see our security disclosure process below).
  • Interfere with the Platform's normal operation, including by sending unreasonable load, attempting denial-of-service, or exploiting rate-limiting or quota bugs.
  • Use crawlers, scrapers, or automated agents to gather data from the Platform other than via our published APIs and within their documented rate limits.
  • Share your account credentials with anyone outside your tenant; each user must have their own account.
  • Circumvent any token, billing, or feature limits, including by spinning up sham tenants to extend free trials.

5. No deceptive use of generated artifacts

Generated specifications, modules, and other artifacts may contain errors and should be reviewed and tested before being shipped or shared as your work product. You must not represent Output as having been produced solely by human authors when contracted obligations to your own customers require disclosure of AI assistance.

6. Connected mailboxes and repositories

When you connect a mailbox or GitHub repository, you confirm that you have the authority to do so on behalf of the relevant account holder. You must not connect mailboxes or repositories you do not own or have not been authorized to access. We may suspend or revoke an integration that we reasonably believe was connected without authority.

7. Resale and white-labeling

Default plans permit use of the Platform within your own business and to deliver services to your end customers. You may not resell raw Platform capacity, embed the Platform inside a competing offering, or operate the Platform on behalf of third parties as a managed service, without our prior written agreement. Talk to us about an Enterprise contract if that's your use case.

8. Reporting abuse

If you observe a violation of this AUP, or any apparent misuse of the Platform that affects you, please email abuse@theopp.be. Include enough detail for us to investigate (URLs, timestamps, tenant slugs if known). We treat these reports with priority.

9. Responsible disclosure of security issues

If you discover a vulnerability, please report it confidentially to security@theopp.be. Do not exploit it beyond the minimum necessary to demonstrate the issue, do not access or modify data that does not belong to you, and give us a reasonable window to remediate before any public disclosure. We will acknowledge reports within 72 hours and aim to provide a substantive update within 14 days. We don't currently run a paid bug-bounty programme but we credit responsible reporters on request.

10. Enforcement

We may investigate any suspected violation, including by accessing relevant logs and metadata. Confirmed violations may result in immediate suspension or termination of your account, removal of offending content, and notification to affected parties. Severe or repeated violations may also be reported to competent authorities.

11. Changes to this AUP

We may update this AUP from time to time. The effective date above reflects the current version. Material changes are communicated to account owners by email and posted on this page; continued use of the Platform after the effective date constitutes acceptance.

Haxoria SRL — operator of The OPP. Registered in Belgium. For legal questions, legal@theopp.be.

This page describes our standard published terms; any signed customer agreement (MSA, Order Form) takes precedence over the version published here.