VIOLATION WARNING: Violation of this Acceptable Use Policy may result in immediate suspension or termination of your account without notice, without refund, and may result in legal action. We take violations seriously to protect our platform, users, and third parties.
1. Introduction
This Acceptable Use Policy ("AUP") governs your use of UltCRM's services, platform, and communications tools. This policy is incorporated into and forms part of our Terms of Service.
By using our Services, you agree to comply with this AUP. You are responsible for ensuring that all users of your account, including employees, contractors, and agents, also comply with this policy.
This policy applies to all features of our Services, including but not limited to:
Contact and lead management;
Email communications;
SMS and MMS messaging;
Voice calls;
Advertising campaigns;
Form submissions;
Data storage and processing;
API access;
All other platform features.
2. General Prohibited Activities
2.1 Illegal Activities
You may not use the Services to engage in, facilitate, or promote:
Any activity that violates applicable local, state, national, or international laws or regulations;
Fraud, financial crimes, or money laundering;
Sale or promotion of illegal products or services;
Send messages to recipients who have opted out or unsubscribed;
Harvest email addresses or phone numbers without consent;
Use purchased, rented, or scraped contact lists;
Send messages without proper consent from recipients;
Fail to honor unsubscribe requests within required timeframes;
Send messages with false or misleading header information;
Use deceptive subject lines in emails.
3.2 Telephony and Messaging Compliance
When using our voice and messaging features, you must:
Obtain Proper Consent: Obtain prior express written consent before sending marketing messages or making marketing calls;
Honor Do-Not-Call Lists: Check and honor the National Do-Not-Call Registry and internal do-not-call lists;
Identify Yourself: Clearly identify yourself and your organization in all communications;
Provide Opt-Out: Include clear opt-out instructions in every message;
Maintain Records: Keep records of consent for at least 5 years;
Comply with Time Restrictions: Respect calling time restrictions (generally 8 AM to 9 PM local time);
No Caller ID Spoofing: Do not spoof caller ID with intent to defraud or cause harm.
3.3 10DLC and A2P Messaging
For application-to-person (A2P) messaging in the United States:
Register all messaging campaigns with The Campaign Registry (TCR);
Provide accurate business information for verification;
Use cases must match registered campaign purposes;
Message content must align with registered campaign types;
Maintain opt-in records for all recipients;
Comply with carrier-specific requirements and guidelines.
3.4 Prohibited Message Content
You may not send messages containing:
SHAFT content (Sex, Hate, Alcohol, Firearms, Tobacco) without proper compliance;
High-risk content (gambling, cryptocurrency, CBD/cannabis without proper licensing);
Phishing links or malware;
Deceptive or fraudulent offers;
Content that violates carrier or platform policies;
Threats, harassment, or illegal content.
4. Content Restrictions
4.1 Prohibited Content
You may not use the Services to create, store, transmit, or display content that:
Is illegal or promotes illegal activity;
Is obscene, pornographic, or sexually explicit;
Depicts or exploits minors;
Is defamatory, libelous, or slanderous;
Infringes intellectual property rights;
Contains viruses, malware, or harmful code;
Promotes violence or terrorism;
Is discriminatory or hateful;
Is deceptive or fraudulent;
Violates any person's privacy rights.
4.2 User-Generated Content
If your use of the Services involves collecting or processing content from third parties, you are responsible for:
Obtaining necessary rights and consents;
Ensuring content complies with this AUP;
Moderating and removing violating content;
Responding to complaints and removal requests.
5. Advertising Compliance
5.1 General Advertising Requirements
When using our advertising features or integrations with advertising platforms, you must:
Comply with all applicable advertising laws and regulations;
Follow Federal Trade Commission (FTC) guidelines;
Ensure all claims are truthful and substantiated;
Clearly disclose material connections and sponsorships;
Not make deceptive or misleading claims;
Comply with industry-specific advertising regulations.
5.2 Platform-Specific Compliance
When advertising through integrated platforms (Google, Meta, TikTok, Snapchat, YouTube), you must:
Comply with each platform's advertising policies;
Not circumvent platform restrictions or prohibitions;
Not engage in ad fraud or click fraud;
Not misrepresent your landing pages or destinations;
Obtain appropriate certifications for restricted categories;
Comply with targeting restrictions (age, location, etc.).
5.3 Prohibited Advertising Content
You may not advertise:
Illegal products or services;
Counterfeit or imitation goods;
Weapons or explosives;
Tobacco products (where prohibited);
Adult content (except on approved platforms with proper restrictions);
Hate speech or discrimination;
Multi-level marketing or pyramid schemes;
False health claims or miracle cures;
Financial scams or get-rich-quick schemes;
Political ads without proper disclosures (where required).
5.4 Data Collection for Advertising
When using pixel tracking or data collection for advertising:
Obtain proper consent for data collection;
Provide clear privacy disclosures;
Honor opt-out requests;
Comply with GDPR, CCPA, and other privacy regulations;
Not collect sensitive personal information without explicit consent;
Follow platform-specific data use policies.
6. Technical Restrictions
6.1 System Integrity
You may not:
Attempt to gain unauthorized access to the Services or related systems;
Probe, scan, or test the vulnerability of any system;
Circumvent any security or authentication measures;
Interfere with any user, host, or network;
Introduce viruses, worms, or other malicious code;
Use any device or software to interfere with the Services;
Overload or attempt to crash the Services.
6.2 API and Automation
When using our APIs or automation features:
Respect rate limits and usage restrictions;
Do not scrape or harvest data beyond authorized purposes;
Do not create accounts or send messages programmatically without authorization;
Do not use bots or automated systems to circumvent restrictions;
Implement proper error handling and backoff mechanisms;
Comply with API terms of service.
6.3 Reverse Engineering
You may not:
Reverse engineer, decompile, or disassemble the Services;
Attempt to derive source code from the Services;
Create derivative works based on the Services;
Copy or imitate the Services' design, interface, or functionality;
Remove or alter any proprietary notices or labels.
7. Data Protection Requirements
7.1 Data Handling
When processing personal data through the Services, you must:
Collect data only for legitimate business purposes;
Obtain appropriate consent where required;
Provide clear privacy notices to data subjects;
Implement appropriate security measures;
Honor data subject rights requests;
Not sell or share data in violation of privacy laws;
Comply with data breach notification requirements.
7.2 Sensitive Data
Special requirements apply to sensitive personal data, including:
Health information (HIPAA compliance may be required);
Financial information (PCI-DSS compliance may be required);
Children's information (COPPA compliance required);
Biometric data;
Precise geolocation data;
Racial or ethnic origin;
Political opinions or religious beliefs;
Sexual orientation or gender identity.
7.3 Cross-Border Data Transfers
If you transfer data internationally, you must:
Ensure adequate protection for transferred data;
Use appropriate transfer mechanisms (SCCs, BCRs, etc.);
Comply with data localization requirements where applicable;
Notify data subjects of international transfers.
8. Industry-Specific Requirements
If you operate in a regulated industry, additional requirements may apply. You are responsible for ensuring your use of the Services complies with all industry-specific regulations.
8.1 Healthcare (HIPAA)
If you handle protected health information (PHI), you must:
Execute a Business Associate Agreement (BAA) with us;
Ensure PHI is transmitted securely;
Comply with HIPAA privacy and security rules;
Train staff on HIPAA compliance;
Report breaches as required.
8.2 Financial Services
If you operate in financial services, you must comply with:
Relevant securities laws and regulations;
Anti-money laundering (AML) requirements;
Know Your Customer (KYC) requirements;
Consumer financial protection laws;
Record-keeping requirements.
8.3 Real Estate
Real estate professionals must comply with:
Fair Housing Act requirements (no discriminatory advertising);
RESPA requirements where applicable;
State licensing and advertising requirements;
Do-Not-Call and consent requirements.
8.4 Education
Educational institutions must comply with:
FERPA requirements for student records;
COPPA requirements for children under 13;
State student privacy laws.
9. Enforcement
9.1 Monitoring
We reserve the right to monitor use of the Services for compliance with this AUP. We may use automated tools, human review, and third-party services to detect violations.
9.2 Investigation
We may investigate suspected violations by:
Reviewing account activity and content;
Contacting you for information;
Cooperating with law enforcement;
Engaging third-party investigators.
9.3 Enforcement Actions
If we determine a violation has occurred, we may take any or all of the following actions:
Warning: Issue a warning and require immediate remediation;
Content Removal: Remove or disable access to violating content;
Feature Restriction: Restrict access to certain features;
Suspension: Suspend your account temporarily;
Termination: Terminate your account permanently;
Legal Action: Pursue legal remedies including damages;
Reporting: Report violations to law enforcement or regulatory authorities.
9.4 No Refund for Violations
If your account is suspended or terminated due to AUP violations, you will not receive any refund of prepaid fees. You remain liable for all outstanding amounts and any damages caused by your violations.
10. Reporting Violations
10.1 How to Report
If you become aware of any violation of this AUP, please report it to us immediately:
Email: abuse@ultcrm.com
Subject Line: "AUP Violation Report"
10.2 Information to Include
When reporting a violation, please include:
Your contact information;
Description of the violation;
Evidence of the violation (screenshots, URLs, etc.);
Identity of the violating account (if known);
Date and time of the violation;
Any other relevant information.
10.3 Response
We will review all reports and take appropriate action. Due to privacy considerations, we may not be able to share details of enforcement actions taken.
11. Changes to This Policy
We may update this Acceptable Use Policy from time to time. Material changes will be communicated through the Services or via email. Continued use of the Services after changes constitutes acceptance of the updated policy.
Contact Information
For questions about this Acceptable Use Policy or to report violations: