Acceptable Use Policy

Effective date: May 20, 2026

This Acceptable Use Policy (the “Policy”) applies to all users of the Certcy platform — consumer, enterprise, mobile, and web. By using the Service, you agree not to engage in any of the following:

1. Misuse of content

  • Redistribute, resell, or reproduce Certcy exam content, practice questions, flashcards, explanations, or learning materials outside the Service
  • Scrape, harvest, or systematically download Service content
  • Use Certcy content to train AI models or build competing products or exam prep offerings
  • Share your account credentials with other people; accounts are individual unless you have an Enterprise plan with seats assigned by your administrator

2. Misuse of the platform

  • Reverse engineer, decompile, disassemble, or attempt to derive the source code of the Service
  • Bypass or attempt to bypass authentication, rate limits, access controls, or usage quotas
  • Probe, scan, or test the vulnerability of the Service or penetrate any security measures without our prior written authorization (for coordinated disclosure: security@certcy.app)
  • Introduce malware, viruses, worms, or any harmful code into the Service
  • Use automated means (bots, scrapers, scripts) to interact with the Service beyond what our documented API permits

3. Misuse by interaction with other users

  • Harass, threaten, defame, stalk, or harm other users
  • Impersonate another user, Certcy employee, or any person or entity
  • Submit false, misleading, or deceptive information (including on leaderboards, quiz history, or certification records)
  • Upload content that infringes third-party intellectual property or privacy rights

4. Unlawful or prohibited activities

  • Violate applicable laws, regulations, or third-party rights
  • Use the Service from a jurisdiction subject to US export controls without appropriate authorization (including but not limited to Cuba, Iran, North Korea, Syria, and the Crimea region)
  • Use the Service to engage in cheating, academic fraud, or misrepresentation in any certification or testing program

5. Enforcement

First-party detection. We use automated and manual review to detect misuse. Detection signals include but are not limited to: unusual download patterns, concurrent-session flags, API-rate anomalies, and user reports.

Responses. Depending on severity and prior history, we may:

  1. Warn — send a written notice with a cure period (default: 10 business days)
  2. Restrict — rate-limit, reduce features, or require additional verification
  3. Suspend — block access to the Service until the issue is resolved
  4. Terminate — permanently close the account

Urgent threats to the Service or other users may result in immediate suspension without notice. We will follow up with written explanation within 5 business days.

Enterprise customers. For users in an organization’s Enterprise plan, we will coordinate enforcement with the organization’s administrator where practical. The organization is responsible for its users’ compliance with this Policy.

6. Reporting violations

Report suspected violations to: abuse@certcy.app

Include the nature of the violation, the account or content involved, and any supporting evidence. We will acknowledge receipt within 2 business days.

7. Changes

We may update this Policy with 30 days’ notice for material changes. Changes that narrow prohibitions (i.e., permit more user activity) may take effect immediately.

Contact: legal@certcy.app

Scroll to Top