Acceptable Use Policy

You can't use ClientNest365 to:

• Send spam or unsolicited marketing email.
• Host, share, or distribute illegal content, child sexual abuse material, or content that infringes a third party's rights.
• Run academic writing or essay services for students.
• Run gambling, sports-betting, or loot-box mechanics.
• Resell software licences, in-game items, or other intellectual property where resale is prohibited by the rights holder.
• Operate from or for the benefit of any party subject to international sanctions.
• Distribute malware, run phishing campaigns, or attempt to compromise other ClientNest365 users.
• Reverse-engineer the service, scrape it at scale, or attempt to overload our infrastructure.
• Impersonate another person or entity, including a member of our team.
• Use the service to make unlawful claims about regulated professional advice (legal, medical, financial) that you're not qualified to give.

What we do when we find a breach

For most breaches we email the workspace owner with a description of the issue and a request to fix it within 7 days. For serious breaches (CSAM, malware, sanctions violations, ongoing abuse), we suspend the account immediately and report to the relevant authority where required.

Reporting abuse

If a ClientNest365 account is being used in breach of this policy, email security@clientnest365.com with as much detail as you can provide. We acknowledge reports within 1 business day.

Security disclosure

If you've found a security vulnerability, please disclose it responsibly to security@clientnest365.com. We don't run a paid bug bounty programme yet but we acknowledge contributors publicly.