Acceptable Use Policy

1. Introduction and Scope

This Acceptable Use Policy ("AUP") governs your use of all services, platforms, software, and systems provided by OrenGen Worldwide LLC ("OrenGen," "we," "us," or "our"), including but not limited to:

• AI-powered automation systems and Buy-Lingual™ AI-Agents
• Customer relationship management (CRM) platforms
• Email infrastructure and bulk email services
• Web hosting and development services
• Lead generation and marketing automation tools
• API access and integrations
• Any other OrenGen products, services, or technologies

This AUP is incorporated into and is part of our Terms and Conditions. Violation of this AUP constitutes a material breach of our agreement with you and may result in immediate suspension or termination of services, legal action, and reporting to law enforcement authorities.

2. General Principles of Acceptable Use

When using OrenGen services, you must:

2.1 Comply with All Laws

• Comply with all applicable local, state, national, and international laws and regulations
• Respect intellectual property rights, privacy rights, and other legal protections
• Obtain all necessary licenses, permits, and authorizations for your activities
• Follow industry-specific regulations applicable to your business (HIPAA, FINRA, etc.)

2.2 Use Services for Legitimate Purposes

• Use services only for lawful business and personal purposes
• Provide accurate and truthful information
• Maintain the security and integrity of your account
• Respect the rights and safety of others

2.3 Act in Good Faith

• Use services in a manner consistent with their intended purpose
• Do not abuse, exploit, or circumvent our systems
• Cooperate with OrenGen in addressing security or compliance issues
• Report suspected violations or security vulnerabilities

3. Prohibited Activities

The following activities are strictly prohibited when using OrenGen services:

3.1 Illegal Activities

• Criminal Conduct: Using services to facilitate, promote, or engage in any illegal activity, including fraud, theft, money laundering, drug trafficking, human trafficking, or terrorism
• Intellectual Property Infringement: Violating copyrights, trademarks, patents, trade secrets, or other proprietary rights
• Identity Theft and Fraud: Impersonating others, creating fake identities, or engaging in phishing, spoofing, or other fraudulent schemes
• Unauthorized Access: Hacking, cracking, or gaining unauthorized access to systems, networks, accounts, or data
• Sale of Illegal Goods: Selling, distributing, or promoting illegal drugs, weapons, counterfeit goods, stolen property, or other contraband

3.2 Abusive, Harmful, or Offensive Content

• Child Exploitation: Creating, distributing, or storing any content involving minors in sexually explicit or abusive situations (zero tolerance - immediate termination and law enforcement reporting)
• Hate Speech: Content that promotes violence, hatred, or discrimination based on race, ethnicity, religion, gender, sexual orientation, disability, or other protected characteristics
• Harassment and Threats: Harassing, threatening, stalking, or intimidating individuals or groups
• Violence and Gore: Excessively graphic or violent content intended to shock or disturb
• Defamation: Making false statements that harm the reputation of individuals or organizations

3.3 Spam and Unsolicited Communications

• Email Spam: Sending unsolicited bulk emails (spam) in violation of the CAN-SPAM Act or similar laws
• No Opt-In: Sending commercial emails to recipients who have not provided express consent
• No Unsubscribe: Failing to honor unsubscribe requests or not providing a clear unsubscribe mechanism
• Deceptive Headers: Using false, misleading, or forged email headers, subject lines, or sender information
• Purchased Lists: Sending to purchased, rented, or scraped email lists without proper consent
• SMS/Text Spam: Sending unsolicited text messages in violation of TCPA or other regulations
• Voice Spam: Making automated calls without proper consent or in violation of telemarketing laws

3.4 Malicious Code and Security Threats

• Malware Distribution: Distributing viruses, worms, trojans, ransomware, spyware, or other malicious software
• Denial of Service: Launching or facilitating denial-of-service (DoS) or distributed denial-of-service (DDoS) attacks
• Exploits and Vulnerabilities: Exploiting security vulnerabilities in our systems or third-party systems
• Botnets: Creating, operating, or participating in botnet networks
• Cryptojacking: Using our infrastructure to mine cryptocurrency without authorization

3.5 Network Abuse and Resource Overuse

• Excessive Usage: Consuming excessive bandwidth, storage, or computational resources that degrade service for others
• Server Overload: Activities that cause undue burden on our servers or infrastructure
• Port Scanning: Scanning ports or probing systems for vulnerabilities
• Traffic Flooding: Generating excessive traffic to overwhelm systems
• Proxy/VPN Abuse: Operating open proxies, VPN servers, or relay services without authorization

3.6 Data Harvesting and Privacy Violations

• Scraping and Harvesting: Automatically collecting email addresses, personal data, or content from websites without authorization
• Privacy Violations: Collecting, storing, or processing personal information without proper consent or legal basis
• Data Breaches: Intentionally accessing, disclosing, or misusing confidential or personal data
• Surveillance and Tracking: Using services to conduct unauthorized surveillance or track individuals
• GDPR/CCPA Violations: Processing data in violation of applicable privacy laws

3.7 System Interference and Abuse

• Reverse Engineering: Reverse engineering, decompiling, or disassembling our proprietary software or systems
• Circumvention: Bypassing security measures, access controls, rate limits, or usage restrictions
• Service Manipulation: Manipulating or interfering with the proper functioning of our services
• Unauthorized Monitoring: Monitoring or intercepting communications or data without authorization
• Benchmark Manipulation: Publishing benchmark results without prior written approval

3.8 Unauthorized Resale and Sublicensing

• Reselling Services: Reselling, sublicensing, or redistributing OrenGen services without an authorized reseller agreement
• White-Labeling: Rebranding or white-labeling services without express written permission
• Service Bureau: Operating as a service bureau or providing time-sharing access without authorization

3.9 Deceptive Practices

• False Information: Providing false, inaccurate, or misleading information during registration or use
• Fake Accounts: Creating multiple accounts to evade restrictions or abuse services
• Click Fraud: Generating fraudulent clicks, impressions, or conversions
• Review Manipulation: Creating fake reviews, testimonials, or ratings
• Misleading Marketing: Using deceptive marketing practices or false advertising

3.10 Adult and Mature Content

• Adult Content: Hosting, distributing, or promoting pornographic or sexually explicit content (contact us for adult entertainment industry use cases requiring special approval)
• Gambling: Operating unlicensed gambling services or promoting illegal gambling
• Alcohol and Tobacco: Marketing alcohol or tobacco products in violation of applicable laws or regulations

4. Email and Communication Standards

When using OrenGen's email infrastructure, AI communication systems, or messaging services, you must comply with all applicable laws and best practices:

4.1 CAN-SPAM Act Compliance (United States)

• Accurate Headers: Use accurate "From," "To," and routing information
• Clear Subject Lines: Subject lines must accurately reflect email content
• Identify as Advertisement: Clearly identify commercial messages as advertisements
• Include Physical Address: Include your valid physical postal address
• Unsubscribe Mechanism: Provide a clear and conspicuous unsubscribe method
• Honor Opt-Outs: Process unsubscribe requests within 10 business days
• Monitor Third Parties: Ensure affiliates and marketing partners comply with CAN-SPAM

4.2 GDPR Compliance (European Union)

• Obtain explicit consent before sending marketing emails to EU residents
• Provide clear information about data processing in privacy notices
• Honor data subject rights (access, deletion, portability, restriction)
• Implement appropriate technical and organizational security measures
• Report data breaches within 72 hours when required

4.3 TCPA Compliance (Telephone Communications)

• Obtain express written consent before making automated calls or sending automated texts
• Maintain Do Not Call lists and honor opt-out requests
• Identify your business clearly at the beginning of calls
• Respect calling time restrictions (8 AM - 9 PM local time)
• Keep records of consent for at least 4 years

4.4 Email Best Practices

• Use confirmed opt-in (double opt-in) for email lists
• Segment lists and send targeted, relevant content
• Maintain clean lists by removing bounces and inactive subscribers
• Monitor complaint rates and maintain rates below 0.1%
• Use SPF, DKIM, and DMARC authentication
• Avoid spam trigger words and excessive capitalization
• Include a text version alongside HTML emails

5. AI and Automation Usage Guidelines

When using OrenGen's AI-powered systems, including Buy-Lingual™ AI-Agents, you must:

5.1 Responsible AI Use

• Transparency: Disclose when communications are AI-generated or automated when required by law or industry standards
• Accuracy: Review AI outputs for accuracy before using in critical applications
• Human Oversight: Maintain appropriate human oversight of AI systems, especially for customer-facing communications
• Bias and Fairness: Monitor AI systems for bias and discriminatory outcomes
• Privacy: Ensure AI systems respect user privacy and data protection requirements

5.2 Prohibited AI Uses

• Using AI to generate illegal, harmful, or deceptive content
• Training AI models on data you do not have rights to use
• Deploying AI systems that discriminate against protected classes
• Using AI for surveillance, tracking, or monitoring without consent
• Creating deepfakes or synthetic media intended to deceive
• Automating decisions with significant legal or financial impact without human review

5.3 Voice AI Specific Requirements

• Comply with all voice communication regulations (TCPA, TSR)
• Clearly identify AI voice agents as automated at the beginning of calls
• Provide option to speak with a human representative when requested
• Respect Do Not Call registries and opt-out requests
• Record calls only with proper consent and disclosure

6. Security Obligations

You are responsible for maintaining the security of your account and systems:

6.1 Account Security

• Strong Passwords: Use strong, unique passwords (minimum 12 characters, mix of uppercase, lowercase, numbers, symbols)
• Multi-Factor Authentication: Enable MFA when available
• Credential Protection: Never share account credentials with unauthorized persons
• Monitoring: Monitor account activity for suspicious behavior
• Prompt Reporting: Report suspected security breaches immediately

6.2 Data Security

• Encrypt sensitive data in transit and at rest
• Implement access controls and principle of least privilege
• Regularly backup critical data
• Securely delete data when no longer needed
• Comply with industry security standards (PCI DSS, SOC 2, etc.) when applicable

6.3 Vulnerability Disclosure

• Report security vulnerabilities responsibly to support@orengen.io
• Do not exploit vulnerabilities for any purpose
• Allow reasonable time for remediation before public disclosure
• Do not access data that does not belong to you

7. Monitoring and Enforcement

7.1 Our Monitoring Rights

OrenGen reserves the right to:

• Monitor usage of services for compliance with this AUP
• Investigate suspected violations
• Access your account and content if reasonably necessary to enforce this AUP
• Implement automated systems to detect prohibited activities
• Cooperate with law enforcement and regulatory authorities

Note: We do not routinely monitor user content, but we may do so if abuse is reported or suspected.

7.2 Actions We May Take

If you violate this AUP, we may take one or more of the following actions:

• Warning: Issue a written warning requiring immediate compliance
• Suspension: Temporarily suspend your account or services
• Content Removal: Remove or disable access to violating content
• Rate Limiting: Restrict sending limits, API calls, or resource usage
• Termination: Immediately terminate your account and services without refund
• Legal Action: Pursue civil or criminal legal action
• Reporting: Report violations to law enforcement, regulatory authorities, or affected parties
• Blacklisting: Add your email addresses, IP addresses, or domains to blacklists

7.3 No Liability for Enforcement Actions

OrenGen is not liable for any damages, losses, or consequences resulting from enforcement actions taken in good faith to address AUP violations. You remain responsible for any damages caused by your violations.

8. Reporting Violations

If you become aware of any violation of this AUP by another OrenGen user, please report it immediately.

8.1 How to Report

Email support@orengen.io with subject line "AUP Violation Report" and include:

• Description of the violation
• Evidence (screenshots, email headers, URLs, etc.)
• Date and time of the violation
• Any other relevant information

8.2 Abuse Contact

For urgent abuse reports (spam, phishing, malware, illegal content), contact:

• Email: support@orengen.io
• Subject: "URGENT: Abuse Report"

We will investigate all reported violations and take appropriate action.

9. Consequences of Violations

9.1 Immediate Consequences

• Suspension or termination of services without notice or refund
• Loss of data or content (we may delete violating content)
• Inability to use OrenGen services in the future
• Damage to sender reputation and email deliverability

9.2 Legal Consequences

• Civil Liability: Lawsuits for damages, injunctions, and legal costs
• Statutory Damages: Under CAN-SPAM, up to $46,517 per violation; under TCPA, up to $1,500 per violation
• Criminal Penalties: Fines and imprisonment for serious violations (fraud, child exploitation, hacking)
• Regulatory Action: FTC, FCC, or other regulatory enforcement actions

9.3 Third-Party Consequences

• Blacklisting by ISPs, email providers, and anti-spam organizations
• Reputation damage to your business and brand
• Loss of customer trust and business relationships
• Difficulty obtaining services from other providers

10. Updates to This Policy

OrenGen may update this Acceptable Use Policy at any time to reflect changes in laws, regulations, technology, or our services.

10.1 Notification of Changes

• The "Effective Date" at the top of this page will be updated
• Material changes will be communicated via email or website notice
• Continued use of services after changes constitutes acceptance

10.2 Your Responsibility

You are responsible for regularly reviewing this AUP to ensure ongoing compliance. Ignorance of policy changes is not a valid defense against enforcement actions.