Acceptable Use Policy

Operated by:ClawNet (trading as Vigil), England & Wales

This Acceptable Use Policy (“AUP”) sets out the rules governing your use of the Vigil vulnerability alerting service (“Service”). This AUP is incorporated by reference into Vigil's Terms of Service. By using the Service, you agree to comply with this AUP.

Prohibited Uses

You must not use the Service for any of the following:

1. Intellectual property infringement

Use the Service in a way that infringes, misappropriates, or violates any third party's intellectual property rights, including copyright, trade secret, patent, or trademark.

2. Unauthorised redistribution of alert data

Scrape, export in bulk, harvest, or otherwise extract alert content, vulnerability intelligence, or processed data from the Service for the purpose of redistribution, resale, or sublicensing to third parties. The alert content delivered by Vigil may combine publicly available data with proprietary processing and enrichment; unauthorised redistribution is prohibited regardless of the origin of the underlying data.

3. Resale or sublicensing

Resell, sublicense, or otherwise make available Vigil's alert data, platform, or API access to third parties, without our express written permission. Your subscription is a licence for your own internal business use only.

4. Offensive security use

Use vulnerability intelligence delivered by the Service to generate attack intelligence, build exploits, or support offensive security operations against systems you do not own or do not have explicit authorisation to test. Vigil is a defensive tool. Using it to facilitate unauthorised access to any computer system is strictly prohibited and may constitute a criminal offence under the Computer Misuse Act 1990 (UK) or equivalent legislation in your jurisdiction.

5. Circumvention of service controls

Attempt to bypass, disable, or circumvent rate limits, access controls, IP restrictions, authentication mechanisms, or any other technical measures we implement. Do not probe, scan, or test the vulnerability of our infrastructure without prior written authorisation.

6. Credential sharing

Share your account credentials (username and password) with any person outside your organisation. Each individual who accesses the Service on your organisation's behalf must use their own account credentials.

7. Unlawful use

Use the Service in violation of any applicable law, regulation, or third-party rights, including data protection laws, export control regulations, and laws prohibiting computer fraud and abuse.

API Access (Business Tier — Coming Soon)

When API access is made available under the Business tier:

• API access keys are licensed for internal organisational use only.
• You must not expose API keys in public repositories, client-side code, or any context where third parties could access them.
• Any exposure of API keys to third parties, or use of API access beyond the licensed organisation, constitutes a breach of this AUP and the Terms of Service.
• Automated API use must comply with published rate limits. We reserve the right to throttle or suspend API access that places unreasonable load on our infrastructure.

Consequences of Breach

Breach of this AUP may result in:

• Immediate suspension or termination of your account, without prior notice and without refund.
• Legal action to recover damages or enforce our rights.
• Referral to law enforcement where criminal conduct is involved.

We reserve the right to investigate suspected violations of this AUP and to cooperate with law enforcement authorities in connection with any investigation.

Reporting Abuse

If you become aware of any use of the Service that violates this AUP, please report it to legal@vigil.junocode.com.

Changes to This Policy

We may update this AUP from time to time. Material changes will be communicated via the Service and by email. Continued use of the Service after the effective date of a material update constitutes acceptance of the revised AUP.