Version 1.0
Effective: 7 June 2026
Last Updated: 8 May 2026
1. Purpose and scope
This Acceptable Use Policy ("AUP") sets out the rules for using the Automated Commerce platform (the "Service") provided by Automated Commerce B.V. The AUP forms part of the agreement between Automated Commerce and each Customer (the "Agreement"), together with the Terms of Service, the Privacy Policy, and any applicable order form.
By using the Service, the Customer (and each user authorised by the Customer) agrees to comply with this AUP. The Customer is responsible for ensuring that all of its users comply, and for any breach by its users.
Capitalised terms not defined in this AUP have the meaning given to them in the Terms of Service.
2. General obligations
The Customer must:
- Use the Service only for lawful business purposes consistent with the Service's documented functionality.
- Comply with all applicable laws and regulations, including the laws of the Netherlands and of the markets in which the Customer operates.
- Comply with the terms and policies of the third-party platforms that the Service connects to (Shopify, Google, Meta, Pinterest, marketplaces, payment processors, and others), and accept that compliance with those terms is the Customer's sole responsibility.
- Maintain accurate and current account information.
- Take reasonable measures to secure its account, including using strong, unique passwords and enabling multi-factor authentication where offered.
- Promptly report to Automated Commerce any suspected security incident, account compromise, or AUP breach by another user.
3. Prohibited content and products
The Customer must not use the Service to manage, list, sell, promote, or distribute any of the following:
3.1 Illegal goods, services, or content
- Goods or services whose sale, distribution, or possession is illegal in the Netherlands, in the European Union, or in the markets the Customer operates in.
- Stolen goods, counterfeit currency, fraudulent identification, or items intended to facilitate identity theft or fraud.
- Controlled substances, narcotics, illegal drugs, or precursors thereof.
- Weapons, weapon parts, ammunition, or explosives in jurisdictions where their sale is restricted or requires licensing the Customer does not hold.
- Tobacco, vapour, alcoholic beverages, or pharmaceuticals where the Customer does not hold all required licences and the storefront does not implement age verification and other safeguards required by law.
- Material that depicts, sexualises, or exploits minors, or that has been generated to depict minors in a sexual or violent context.
- Content or services intended to harass, threaten, defame, or incite violence or unlawful discrimination against any person or group.
- Content or services intended to harm public health (for example, the sale of misbranded medical devices or unapproved health claims).
- Content that infringes the intellectual property, privacy, publicity, or other rights of any third party.
3.2 Restricted goods
- Goods or services subject to export controls or sanctions where the Customer does not have the authorisations required, including under EU sanctions regimes and U.S. export controls (including the U.S. Office of Foreign Assets Control (OFAC) regimes).
- Live animals, wildlife products restricted under CITES, or human remains/body parts.
- Hazardous materials whose sale, storage, or transport is regulated.
3.3 Deceptive practices
- Misrepresentation of the origin, quality, ingredients, or attributes of goods (false advertising, fake reviews, fabricated certifications).
- Use of the Service to facilitate manipulative or deceptive marketing techniques, including bait-and-switch, dark patterns prohibited by the EU Consumer Rights Directive or the Dutch Consumer Protection (Enforcement) Act.
- Use of AI Outputs to create misleading product descriptions, fabricated reviews, fake "about us" content, or undisclosed AI-generated images presented as real product photography.
4. Prohibited technical conduct
The Customer must not, and must not allow any user to:
- Reverse engineer, decompile, disassemble, or attempt to derive the source code, models, model weights, or training data of the Service, except to the extent permitted by mandatory law (including Article 6 of Directive 2009/24/EC where it applies).
- Use the Service to develop, train, benchmark, or improve a competing product, model, or service.
- Probe, scan, or test the vulnerability of the Service or attempt to penetrate any security of the Service, except with our prior written authorisation.
- Circumvent, disable, or otherwise interfere with security-related features of the Service, including authentication, rate limits, billing, or audit-logging mechanisms.
- Use automation, scrapers, bots, or unattended scripts that send requests at a rate or volume that exceeds reasonable use, or that the Service has not been documented to support.
- Send or transmit through the Service any virus, worm, malware, or other malicious code; or any code intended to disrupt, damage, or surveil any system.
- Impersonate any person, falsify or omit identifying information, or otherwise misrepresent the identity or affiliation of any user.
- Resell, sublicense, time-share, white-label, or provide the Service as a service bureau to any third party without our express written consent.
- Remove, modify, or obscure any proprietary notice or label on the Service or any output that the Service marks as AI-generated.
5. Acceptable use of AI features
The Customer must:
- Treat AI Outputs as suggestions only and review them for accuracy, completeness, and rights-clearance before publishing them on its storefront or using them in commerce.
- Comply with all applicable laws governing AI-generated content, including disclosure obligations under the EU Artificial Intelligence Act (Regulation (EU) 2024/1689) where they apply (notably from 2 August 2026 for general-purpose AI transparency obligations).
- Not use AI features to generate content that infringes third-party rights, that constitutes a deepfake of an identifiable person without that person's consent, or that violates Section 3.3 above.
- Not use AI features to generate content that exploits, sexualises, or endangers minors, or that promotes violence, terrorism, or self-harm.
- Not feed personal data of identifiable individuals into AI features without an appropriate legal basis under the GDPR. The Service is not designed to process special-category personal data; the Customer must not upload such data through any AI feature.
6. Data and content
The Customer must:
- Ensure that all Customer Content uploaded to or transmitted through the Service is accurate, complete, and up to date to the best of its knowledge.
- Ensure that it has all rights, licences, and permissions necessary to upload Customer Content to the Service and to authorise Automated Commerce to process it as set out in the Privacy Policy and Terms of Service.
- Not upload directly through the Service any personal data of end-customers (shoppers) outside of the data flows that the Service is designed for. Our Shopify application does request the read_customers, read_orders, read_all_orders, and read_customer_events scopes; these are used by Automated Commerce as a Data Processor on the Customer's behalf, solely to power order normalisation, analytics, and channel imports as described in the Privacy Policy.
- Not upload special-category personal data (Article 9 GDPR), data relating to criminal convictions and offences (Article 10 GDPR), or any data of children under 16 unless explicitly authorised by Automated Commerce in writing.
7. Reporting and complaints
If you believe that any user is using the Service in violation of this AUP, please contact us at business@automatedcommerce.ai with sufficient detail for us to investigate. We aim to acknowledge reports within five (5) business days. We do not commit to a particular outcome and we may decline to act on reports that lack sufficient detail or that appear to be made in bad faith.
If a third party believes that content delivered through a Customer's storefront infringes their intellectual property rights, those claims should be addressed to the relevant Customer and to the relevant storefront platform (e.g., Shopify) under that platform's takedown procedures. Our role is limited; we will, however, cooperate with reasonable, lawful requests in respect of content under our control.
8. Enforcement and consequences
If we determine, in our reasonable judgement, that the Customer or a user has breached this AUP, we may:
- Notify the Customer of the breach and require remediation within a reasonable period.
- Suspend access to all or part of the Service in accordance with Section 16 of the Terms of Service.
- Remove or disable access to specific Customer Content or AI Outputs that breach this AUP.
- Terminate the Agreement for material breach in accordance with Section 17 of the Terms of Service.
- Cooperate with law-enforcement authorities and supervisory authorities to the extent legally required.
In urgent cases — including where the Customer's use poses a risk to the security of the Service, to other Customers, or to third parties, or where required by an order of a competent authority — we may suspend access without prior notice. We will notify the Customer as soon as reasonably practicable and work in good faith to restore access once the underlying issue is resolved.
Suspension or termination under this AUP does not entitle the Customer to a refund of fees, except as expressly set out in the Terms of Service. The Customer remains responsible for any liability incurred up to the date of suspension or termination.
9. Changes to this AUP
We may update this AUP from time to time. The latest version is always available at automatedcommerce.ai/policies/acceptable-use. We will notify Customers of material changes through in-Service notice and email at least 30 days before they take effect, except where a shorter period is necessary to comply with law or to address an immediate risk to the Service.