Acceptable Use Policy (AUP)
Contact: policy@nvestiv.com
This Acceptable Use Policy (“Policy”) governs the use of all software, systems, platforms, applications, integrations, APIs, data ingestion tools, communication services, and artificial intelligence features provided by Nvestiv Capital Corporation (“Nvestiv,” “we,” “us,” or “our”). This Policy is incorporated by reference into all agreements between Nvestiv and its customers, including but not limited to the Terms of Service, Master Services Agreement (MSA), Subscription Agreements, and Data Processing Addenda (DPA). Capitalized terms not defined herein have the meanings assigned in the applicable agreement.
By accessing or using the Nvestiv Platform, the customer and all authorized users (“Customer,” “User,” or “you”) agree to comply with this Policy. Nvestiv may update or modify this Policy at any time. Continued use of the Platform constitutes acceptance of any such updated Policy.
1. Purpose and Scope
This Policy establishes the rules and standards governing all use of the Nvestiv Platform. Its purpose is to:
Protect the security, availability, and integrity of the Platform and its systems.
Ensure lawful and compliant use of data, communications, and AI features.
Prevent harm, misuse, or disruption to Nvestiv, its customers, partners, and infrastructure.
Define prohibited activities and responsibilities for all Users.
This Policy applies to all access to and use of:
Nvestiv’s cloud-based CRM and investment data systems.
AI-driven analysis and deal evaluation features.
Data ingestion and file-processing tools.
Email and communication integrations.
APIs, web interfaces, mobile applications, and third-party integrations.
2. Customer Responsibilities
Customers must:
Use the Platform only for lawful purposes and in accordance with all contractual agreements.
Ensure that all Users authorized under their account comply with this Policy.
Maintain the confidentiality and security of account credentials and authentication methods.
Ensure that content submitted to the Platform is accurate, lawful, and properly authorized.
Implement reasonable and appropriate security controls to protect their own systems and data.
Promptly report suspected security incidents, unauthorized access, or Policy violations to Nvestiv.
3. Prohibited Conduct
Customers shall not, and shall not permit any User to, engage in any of the prohibited conduct set forth below. The following activities are strictly forbidden.
4. Security Violations and System Interference
Users may not:
Breach, bypass, disable, or circumvent any security or authentication mechanisms.
Conduct vulnerability scanning, penetration testing, or security research without express written authorization from Nvestiv.
Probe, scan, or test the vulnerability of any Nvestiv system, environment, network, or API.
Interfere with or disrupt the availability, performance, or integrity of the Platform, including by performing denial-of-service attacks or flooding traffic.
Introduce or transmit viruses, malware, trojans, corrupted files, or any harmful code.
Access or attempt to access data, systems, or accounts not expressly authorized to the User.
Circumvent usage limits, rate limits, metering controls, or billing measurements.
Utilize automated tools such as bots, scrapers, spiders, or crawlers without Nvestiv’s written permission.
5. Misuse of Artificial Intelligence and Automated Systems
Nvestiv provides AI-enabled features for data processing, deal analysis, personalization, and automated communication. Users are prohibited from:
Attempting to reverse-engineer, extract, or derive the underlying models, training data, system prompts, or algorithms.
Manipulating or attempting to manipulate model outputs through prompt injection, adversarial prompts, or other unauthorized methods.
Generating or disseminating harmful, deceptive, fraudulent, or unlawful content.
Using AI outputs to conduct or facilitate regulated financial advisory services unless the User holds the required licenses under applicable law.
Using the Platform to create misleading investor materials, fraudulent representations of deals, or deceptive fundraising information.
Submitting unauthorized or infringing content to train, prompt, or process through the AI features.
Attempting to identify, re-identify, or extract personal data from anonymized or aggregated data.
6. Data, File, and Content Restrictions
Users may not upload, process, store, or transmit:
Content or files they do not have lawful authority to use, including materials protected by copyright, confidentiality obligations, NDAs, or privacy rights.
Sensitive personal information unless expressly permitted under the applicable agreement.
Malicious or corrupted files, including files intended to disrupt or degrade system performance.
Falsified or fraudulent documents, including falsified investor lists, financial statements, term sheets, or compliance documents.
Content that violates any applicable privacy, securities, or financial laws.
The Platform may not be used to store, process, or transmit regulated categories of information (such as PHI under HIPAA) unless expressly permitted in a written agreement.
7. Intellectual Property and Proprietary Rights
Users shall not:
Infringe upon any third-party intellectual property rights.
Upload or distribute content they do not own or have authorization to use.
Attempt to copy, modify, distribute, translate, or create derivative works of any Nvestiv property.
Remove, obscure, or alter any proprietary notices or branding on the Platform.
8. Harassment, Abuse, and Improper Conduct
Users may not:
Harass, threaten, or abuse Nvestiv personnel, support staff, partners, or other Users.
Use the Platform to engage in stalking, intimidation, or abusive communication.
Impersonate Nvestiv staff, customers, investors, or other persons.
Conduct social engineering, phishing, credential harvesting, or impersonation activities.
9. Fraudulent, Illegal, or Deceptive Activities
The following is strictly prohibited:
Money laundering, terrorist financing, sanctions evasion, or other unlawful financial activities.
Fraudulent investment solicitation or misrepresentation of investment opportunities.
Insider trading, market manipulation, or other unlawful securities-related activities.
Unauthorized financial promotions or advisory activities requiring registration or licensing.
Creating or distributing false identities, false investor profiles, or fabricated fundraising documents.
Violating applicable privacy, data protection, financial, export control, or sanctions laws.
10. Communications and Outreach Restrictions
Users may not use Nvestiv’s email or communication systems to:
Send unsolicited communications in violation of applicable anti-spam laws, including CAN-SPAM, CASL, GDPR ePrivacy, and similar legislation.
Deliver abusive, deceptive, or harmful messages.
Engage in bulk messaging or automated outreach beyond the limits of the applicable subscription plan.
Send communications that impersonate others or misrepresent identity.
Circumvent email-sending limits, authentication requirements, or third-party provider restrictions.
11. Resource Misuse and Platform Abuse
Users may not:
Generate excessive network, compute, or storage usage that may degrade service for other customers.
Attempt to avoid, obscure, or falsify usage attributable to billing or metering systems.
Use the Platform in a manner that risks disrupting or interfering with normal operations.
Automate interactions with the Platform without authorization.
12. Prohibited High-Risk Use Cases
Unless expressly permitted in a mutually executed written agreement, the Platform may not be used for:
Military or defense applications.
Nuclear operations or critical infrastructure systems.
Medical diagnosis, clinical decision-making, or any use related to health care delivery.
Real-time trading, automated trade execution, or high-frequency trading systems.
Safety-critical or life-support functions.
13. Enforcement and Remedies
Nvestiv may take any action it deems appropriate in response to a violation of this Policy, including:
Issuing a warning to the Customer or User.
Suspending or limiting access for one or more Users.
Temporarily restricting or disabling certain Platform features or integrations.
Suspending the Customer’s entire account.
Terminating the Customer’s agreement in accordance with applicable contractual terms.
Reporting conduct to law enforcement or regulatory authorities.
Pursuing legal remedies or recovery of damages.
Nvestiv shall determine, in its sole discretion, whether any conduct constitutes a violation of this Policy.
14. Reporting Violations
Suspected violations of this Policy must be promptly reported to:
Nvestiv may request additional information to investigate the matter.
