Acceptable Use Policy
Last updated:
What's prohibited on the Amaesa Tax platform, why fair-use limits exist, and how we enforce this policy.
1. Purpose
This Acceptable Use Policy forms part of our Terms of Service and applies to every Customer, Client, and anyone else who accesses the Amaesa Tax platform. It exists to keep the platform lawful, secure, and reliable for every firm that depends on it.
2. Prohibited uses
You must not use the Services to:
- break the law, including tax fraud, facilitating money laundering, or submitting a filing to HMRC or Companies House that you know to be false or misleading;
- attempt to access another firm's or another Client's data, probe or bypass tenant isolation or Row-Level Security, or otherwise attempt to defeat access controls — this includes activity that would breach the Computer Misuse Act 1990;
- share your account credentials, or allow anyone outside your firm to use your account;
- upload malware, or any content designed to disrupt or damage the Services or another user's systems;
- scrape, crawl, or use automated means to extract data from the Services beyond normal use of the application and its documented APIs;
- reverse engineer, decompile, or attempt to derive the source code of the Services, except to the extent this restriction can't be excluded by law;
- send automated requests at a volume designed to circumvent, exhaust, or abuse our rate limits or capacity quotas, or otherwise interfere with the availability of the Services for other firms;
- use the Services to process personal data for any purpose outside providing accountancy services to your Clients, without a lawful basis to do so;
- impersonate any person or entity, or misrepresent your affiliation with a person or entity; or
- use the Services in a way that infringes any third party's intellectual property or other rights.
3. Fair use, rate limits, and capacity
To keep the platform stable and fairly shared across every firm, certain actions — including document AI extraction, HMRC and Companies House submissions, and AML checks — are subject to rate limits and, where relevant, monthly capacity quotas tied to your Subscription plan. These limits exist to stop a single account, whether through misuse or an unattended integration, from degrading the Services for everyone else. If you expect to exceed your plan's limits for a legitimate reason, contact us to discuss upgrading your Subscription.
4. Responsible security research
If you believe you've found a security vulnerability, please report it to us at legal@amaesa.co.uk before disclosing it publicly, and don't access, modify, or exfiltrate any data beyond what's necessary to demonstrate the issue. We won't take action against good-faith research conducted in line with this section.
5. Enforcement
A breach of this policy may result in the same lockout ladder described in our Terms of Service, temporary suspension, or termination of your account, and — where the breach involves unlawful activity — a report to the relevant authority, including under the Proceeds of Crime Act 2002 where a suspicious activity report obligation arises. We'll aim to give notice and a chance to respond first, except where immediate action is needed to protect the Services or other users.
6. Changes to this policy
We may update this policy from time to time; the "last updated" date at the top always reflects the current version.