Arcseer
Legal

Acceptable Use Policy

Arcseer Limited

This Acceptable Use Policy ("Policy") governs access to and use of the website and services provided by Arcseer Limited ("Arcseer", "we", "us", "our").

Arcseer Limited is a company registered in England (Company Number: [INSERT], Registered Address: [INSERT]).

By accessing or using our website or services, you agree to comply with this Policy.

1. Scope

This Policy applies to:

  • users of the Arcseer website
  • customers and authorised users of Arcseer platforms and services
  • any individual accessing Arcseer systems, outputs, or related infrastructure

This Policy operates alongside, and does not replace, any contractual terms agreed between Arcseer and its customers.

2. Permitted Use

Arcseer's services may only be used for legitimate and lawful cybersecurity purposes, including:

  • authorised penetration testing
  • vulnerability identification and remediation
  • security monitoring and analysis
  • internal security assurance and risk management activities

All use must:

  • comply with applicable laws and regulations
  • be authorised by the relevant system owner
  • remain strictly within the agreed scope of engagement

3. Prohibited Use

Users must not use Arcseer's website or services:

3.1 Unauthorised Testing

  • to conduct security testing without explicit authorisation
  • to target systems outside the agreed scope
  • to access or attempt to access systems without lawful authority

3.2 Unlawful Activity

  • in connection with any unlawful or fraudulent activity
  • to facilitate unauthorised intrusion, cybercrime, or exploitation
  • to distribute malware or malicious code

3.3 Misuse of Platform Capabilities

  • to generate or simulate attacks for malicious purposes
  • to reverse engineer, decompile, or otherwise attempt to derive source code
  • to exploit vulnerabilities within Arcseer systems or infrastructure

3.4 Data Misuse

  • to process personal data unlawfully
  • to intentionally access, extract, or retain sensitive data beyond what is necessary
  • to attempt to re-identify anonymised or pseudonymised data

3.5 Interference with Services

  • to disrupt or degrade platform performance
  • to attempt denial-of-service or resource exhaustion attacks
  • to interfere with other users' access to the services

4. Authorisation Requirements

Customers must ensure that:

  • all testing activities are explicitly authorised in writing
  • they have the legal right to test all systems within scope
  • any necessary third-party consents have been obtained

Arcseer reserves the right to request evidence of such authorisation at any time.

5. AI System Usage

Arcseer's platforms may incorporate AI-enabled capabilities. Users must not:

  • attempt to manipulate or subvert AI systems through adversarial inputs
  • use AI outputs for unlawful, unethical, or harmful purposes
  • rely solely on AI-generated outputs without appropriate review

AI outputs are intended to support the work of cybersecurity specialists and must be interpreted accordingly.

6. Security Obligations

Users must:

  • maintain the confidentiality of access credentials
  • implement appropriate internal controls governing access to Arcseer systems
  • notify Arcseer promptly of any suspected misuse, compromise, or security incident

7. Data Handling

Users must:

  • ensure that any data submitted to Arcseer is lawful to share
  • minimise the inclusion of personal or sensitive data wherever possible
  • comply with applicable data protection laws and regulations

8. Monitoring and Enforcement

Arcseer reserves the right to:

  • monitor usage of its systems for security and compliance purposes
  • investigate suspected breaches of this Policy
  • suspend or terminate access where misuse is identified or reasonably suspected

9. Reporting Misuse

Any actual or suspected misuse of Arcseer systems should be reported promptly to:

security@arcseer.com

10. Consequences of Breach

Failure to comply with this Policy may result in:

  • suspension or termination of access
  • reporting to relevant regulatory or law enforcement authorities
  • civil or criminal proceedings where appropriate

11. Responsible Security Testing Principles

Arcseer supports responsible, ethical, and proportionate security testing practices. Users are expected to:

  • act in good faith at all times
  • minimise disruption to systems and services
  • avoid unnecessary access to sensitive data
  • handle any discovered vulnerabilities responsibly
  • report findings in a clear, accurate, and timely manner

These principles are fundamental to maintaining trust between Arcseer, its customers, and the broader security community.

12. Updates to this Policy

Arcseer may update this Policy from time to time. The latest version will be made available on our website and will take effect upon publication.

13. Contact

For any queries relating to this Policy: