Acceptable Use Policy

This draft Acceptable Use Policy applies to everyone who uses Folio, the multi-tenant portfolio platform by wrxstack at portfolio.wrxstack.com and connected surfaces. It supplements the Terms of Service. By using the service, publishing a portfolio, uploading content, or connecting a custom domain, you agree to follow the final approved policy.

This draft is provided for launch review and is not the final binding policy until it is approved and published.

• Covered surfaces: accounts, admin tools, AI generation, uploads, published portfolios, PDF export, custom domains, and support.
• Portfolio owners are responsible for the content they publish and for members they invite.

You may use the service only for lawful purposes and in compliance with the laws that apply to you, the people referenced in your content, and your audience.

• Do not use the service to violate any law, regulation, sanction, or court order.
• Do not publish content you do not have the rights or permissions to publish.
• Do not use the service in a way that creates liability for wrxstack or disrupts other users.

You may not create, upload, publish, or link to content that is unlawful, harmful, deceptive, or that violates the rights of others.

• No content that is illegal, defamatory, fraudulent, or deliberately misleading.
• No child sexual abuse material, content that sexualizes minors, or non-consensual intimate imagery.
• No content that promotes violence, terrorism, self-harm, or unlawful hatred or harassment against a protected group.
• No malware, ransomware, exploit code, or instructions intended to cause harm.
• No publication of secrets, private keys, access tokens, unredacted personal data, or non-public regulated information without appropriate rights.

You may not use the service to harm, harass, deceive, or impersonate others, or to interfere with the experience of other users.

• No impersonation of a person, company, or wrxstack, and no false claim of affiliation or endorsement.
• No harassment, stalking, threats, or doxxing of any individual.
• No deceptive use of AI generation to fabricate credentials, employment, or achievements you cannot support.

You may not attempt to break, bypass, or probe the security of the service, other tenants, or the underlying infrastructure without written permission.

• No attempts to bypass authentication, authorization, quotas, rate limits, tenant isolation, Caddy ASK checks, or super-admin safeguards.
• No scraping, load testing, vulnerability scanning, or automated abuse without written permission.
• No accessing data, accounts, or tenants that are not yours.
• Responsible security disclosures are welcome at security@wrxstack.com.

You may not use the service to send spam, run abusive automation, or consume resources in a way that degrades the platform for others.

• No bulk unsolicited messaging, phishing, or credential harvesting through portfolios or contact forms.
• No artificial inflation of analytics, views, or engagement.
• No deliberate evasion of storage, upload, AI generation, PDF export, or request-rate limits.

You must hold the rights and permissions needed for everything you publish, including names, logos, testimonials, case studies, media, metrics, and work examples. We respond to valid intellectual property complaints.

For copyright complaints under the United States Digital Millennium Copyright Act, send a notice that identifies the work, the infringing material and its location, your contact details, a good-faith statement, and a statement under penalty of perjury that you are authorized to act. Counsel should confirm the designated agent details before launch.

• Send intellectual property and DMCA notices to legal@wrxstack.com.
• We may remove or disable access to material that is the subject of a valid complaint and may forward notices to the affected user.
• Repeat infringers may have their accounts suspended or terminated.

We may investigate suspected violations and take action that is proportionate to the issue, including warning, content removal, domain blocking, suspension, or termination.

• We may suspend access, remove content, block domains, revoke sessions, or preserve evidence when needed to investigate abuse, security issues, or policy violations.
• Published pages may stop serving when a tenant is suspended, deleted, or pending deletion.
• Some audit, security, backup, and legal records may remain after enforcement as described in the Privacy Policy.

If you see content or conduct that violates this policy, please report it so we can review it. Include the public URL, tenant slug or custom domain, a description of the issue, and any request identifier you have.

• Report content and conduct abuse to legal@wrxstack.com.
• Report security issues and suspected vulnerabilities to security@wrxstack.com.
• Do not include passwords, secret tokens, or other people private data in a report.

We may update this policy as the service, legal requirements, or abuse patterns change. Material changes should be reviewed before publication and reflected with a new review date.

Questions, abuse reports, and legal-signoff comments should be sent to legal@wrxstack.com, and security reports to security@wrxstack.com. Include the relevant account email, tenant slug, custom domain, request ID, or public URL when available.