Acceptable Use Policy

Last updated: January 1, 2026

1. Purpose

This Acceptable Use Policy ("AUP") establishes the standards for appropriate use of the Assetof.io enterprise asset management platform and related services (the "Platform"). This policy applies to all users, administrators, and organizations accessing the Platform. By using the Platform, you agree to comply with this AUP as a condition of your access.

2. Permitted Uses

The Platform is designed and licensed for the following purposes:

• Registering, tracking, and managing organizational assets • Scheduling and monitoring maintenance activities • Tracking asset lifecycle from procurement to disposal • Managing procurement workflows and vendor relationships • Monitoring compliance and generating audit documentation • Analyzing asset performance and generating business intelligence reports • Managing user roles and access permissions within your organization • Integrating with authorized third-party business systems via official API

Use of the Platform must comply with all applicable local, national, and international laws and regulations.

3. Prohibited Conduct

The following activities are strictly prohibited on the Platform:

**Security Violations:** • Attempting to gain unauthorized access to any Platform component, account, or data • Conducting penetration testing, vulnerability scanning, or security assessments without prior written authorization from Assetof.io • Attempting to bypass, disable, or circumvent any security mechanisms • Introducing malware, ransomware, viruses, trojans, or any other malicious code • Attempting to intercept, monitor, or tamper with other users' data or communications

**System Abuse:** • Overloading Platform infrastructure through automated queries, bots, or scripted requests beyond API rate limits • Conducting Denial of Service (DoS) or Distributed Denial of Service (DDoS) attacks • Scraping Platform data through automated means without API authorization • Reverse engineering, decompiling, or disassembling the Platform

**Data Misuse:** • Using the Platform to store, process, or transmit personally identifiable information (PII) beyond what is necessary for asset management purposes • Uploading content that is illegal, defamatory, discriminatory, or infringes third-party intellectual property rights • Using the Platform to process classified government data without appropriate authorization • Sharing access credentials or allowing unauthorized individuals to access the Platform

4. User Account Responsibilities

All users are responsible for:

• Maintaining the security and confidentiality of their login credentials • Using only the level of access granted by their assigned role • Immediately reporting suspected security incidents or unauthorized access to their organization administrator and to support@assetof.io • Ensuring that any devices used to access the Platform are adequately secured with up-to-date antivirus software and operating system patches • Logging out of the Platform when using shared or public computers • Not creating false, duplicate, or misleading asset records

Organization administrators are additionally responsible for ensuring all users within their organization comply with this AUP and for promptly revoking access when users leave the organization.

5. Data Quality and Integrity

Users are responsible for ensuring the accuracy, completeness, and legality of all data entered into the Platform. Specifically:

• Asset records must accurately reflect real organizational assets • Financial values, depreciation data, and cost information must reflect genuine business data • Maintenance records must be truthful and accurately document actual service activities • Compliance documentation must only reflect genuine certifications and regulatory compliance • User account information must be accurate and kept up to date

Deliberate falsification of asset records, maintenance logs, or compliance documentation may constitute fraud and will result in immediate account termination and potential legal action.

6. API and Integration Use

Use of the Assetof.io API and integration capabilities is subject to the following additional requirements:

• API access must be used only for authorized integration and automation purposes • API keys must be kept secure and not shared publicly or embedded in client-side code • Integrations must comply with all API rate limits and usage guidelines specified in our documentation • Automated API requests must include appropriate identification headers • Third-party integrations must be pre-authorized and comply with applicable data protection laws • Webhook endpoints receiving Assetof data must maintain appropriate security measures

Violating API usage terms may result in API access suspension and account termination.

7. Reporting Violations

We encourage all users to report suspected violations of this AUP. To report a violation:

• Email security@assetof.io for security-related violations • Email support@assetof.io for general AUP violations • Include as much detail as possible, including dates, usernames, and descriptions of the suspected violation

All reports are treated confidentially. We do not tolerate retaliation against individuals who report suspected violations in good faith.

8. Enforcement and Consequences

Violations of this AUP may result in the following actions, depending on the severity and nature of the violation:

• **Warning:** A written notice to the user and/or organization administrator • **Temporary Suspension:** Temporary restriction of Platform access pending investigation • **Feature Restriction:** Limiting access to specific Platform features • **Account Termination:** Permanent termination of access without refund • **Legal Action:** For violations involving fraud, illegal activity, or significant security breaches, we may pursue civil or criminal legal remedies

Assetof.io reserves the right to take immediate action without prior notice in cases involving imminent security threats or severe violations.

9. Changes to This Policy

Assetof.io may update this Acceptable Use Policy from time to time as the Platform evolves and new risks emerge. We will notify users of material changes via email or Platform notification at least 14 days before changes take effect. Continued use of the Platform constitutes acceptance of the updated AUP.

10. Contact

For questions about this Acceptable Use Policy or to report a potential violation:

Email: support@assetof.io Security issues: security@assetof.io

We are committed to maintaining a safe, secure, and reliable platform for all enterprise users.