Acceptable Use Policy



Welcome to Suzy®. This Acceptable Use Policy outlines the responsibilities of each user when using our Services. It is designed to ensure a safe, compliant, and effective environment for all users. Adherence to this policy is required. Suzy reserves the right to update this Policy at any time. Capitalized terms not defined herein shall have the meanings set forth in the Suzy® Terms and Conditions.

1. Compliance with Legal Standards

  • General Legal Compliance: All use of the Services must be in accordance with all applicable laws. This includes, but is not limited to, laws related to privacy, intellectual property, export control, and industry-specific regulations.
  • Consultation with Legal Experts: Suzy does not provide legal advice. Each user is solely responsible for ensuring that its use of the Services complies with applicable laws and any organizational policies the user’s company may have.

2. User Eligibility and Responsibility

  • Account Security: Each user is responsible for maintaining the security and integrity of their account by managing login credentials responsibly.
  • Eligibility Requirements: The Services are not intended for minors under the legal age of consent in their jurisdiction. Any individual creating an account or engaging in transactions through the Services must have the legal capacity to enter into binding contracts.
  • Export Control Compliance: Use of the Services is prohibited by any individual or entity located in, or a resident of, a country subject to U.S. embargo or significant trade sanctions.  

3. Prohibited Conduct & Use

Prohibited uses of the Services include, without limitation:

  • Disruption of Operations: Attempting to hack, overload, disrupt, or otherwise interfere with the proper functioning of the Services.
  • Malware and Unauthorized Automation: Introducing viruses, malware, or other harmful code, or employing bots, scrapers, or other automated methods not authorized by Suzy.
  • Unlawful Activities: Engaging in fraud, theft, harassment, or any other unlawful activity.
  • Reverse Engineering: Decompiling, disassembling, or otherwise attempting to discover the source code, algorithms, or technological makeup of the Services.
  • Circumvention of Security Measures: Bypassing or disabling any security device, protection, or technical safeguard.
  • No Competitive Products: Using the Services to create, support, or benchmark competing products or to collect competitive intelligence.
  • External AI Training: Using data or outputs derived from the Services to train, fine-tune, or improve external artificial intelligence or machine learning models without Suzy’s express written consent.
  • Derivative Works: Creating derivative tools, products, or technologies based on Suzy intellectual property.
  • Third-Party Terms Violations: Encouraging, inducing, or requiring third parties (including survey respondents) to violate contractual obligations, technical restrictions, or terms of service imposed by third-party platforms or institutions, or encouraging Respondents to enter into agreements under false pretenses and/or with the intent to breach such agreements at your direction.
  • Targeting Covered Recipients: Using the Services to target, engage, or direct incentives, benefits, or communications to any “Covered Recipient” (as defined under the Physician Payments Sunshine Act, 42 C.F.R. § 403.902, or under comparable federal, state, or foreign laws or regulations). This includes physicians and other healthcare professionals whose receipt of transfers of value would trigger reporting obligations.
  • Targeting Minors: Using the Services to target, engage, or direct incentives, benefits, or communications to any minor (as defined by the applicable local jurisdiction’s age consent laws) without appropriate parental consent (as defined by same).

4.  Responsible Use of AI Technology:

  • Human Oversight: All AI Output must be reviewed and validated by a human prior to reliance or deployment (internally or externally).
  • Appropriate Contexts: AI Output must not be used as a substitute for professional advice (including legal, medical, or financial guidance) or for decision-making in contexts where errors could cause material harm.
  • Accuracy and Integrity: Users remain responsible for the accuracy, legality, and appropriateness of any AI Output they use.
  • Prohibition on Harmful Use: AI Output must not be employed to create or disseminate unlawful, deceptive, discriminatory, or otherwise harmful content.

5. Data Protection & Personal Information (“PI”)

  • Sensitive Information Handling: Collection or solicitation of sensitive personal information through the Services is prohibited without explicit authorization from the user’s organization and the data subject, along with the implementation of sufficient safeguards. Sensitive categories generally include, but are not limited to:
    • Racial or ethnic origin
    • Political opinions or affiliations
    • Religious or philosophical beliefs
    • Trade union membership
    • Sexual orientation, sexual preferences or sexual practices
    • Criminal convictions or offenses
    • Precise geolocation information (including IP addresses, zip codes)
    • Citizenship or immigration status
    • Facial images, video, or audio recordings
    • Data relating to minors between the ages of 13 and 17
    • Data of children under the age of 13
    • Financial information
    • Health information (physical and mental). Note also, if your organization is a covered entity under HIPPA, medical information may constitute Protected Health Information (PHI) which requires heightened protections.    
  • Prohibited PI: The following categories of personal information must never be collected or solicited through the Services:  
    • Names, email addresses, or contact information of Respondents
    • Credit card or financial account numbers
    • Passport, driver’s license, Social Security, or national identification numbers
    • Medical records or genetic data
    • Biometric identifiers (fingerprints, voice prints, iris or retina scans)
    • Health plan account or beneficiary numbers
    • Account passwords or authentication credentials
    • HIPAA-applicable Protected Health Information. If you are a covered entity under HIPAA and your Action might involve Protected Health Information (PHI), contact your Suzy representative for more information.
  • Compliance with Data Protection Laws: Processing of personal information through the Services must comply with all applicable data protection and privacy laws, including but not limited to the General Data Protection Regulation (GDPR), the Health Insurance Portability and Accountability Act (HIPAA), and relevant U.S. state privacy statutes.
  • Inadvertent Disclosure: Users must remain mindful of inadvertent disclosures of personal information, including information contained within social media feeds or other third-party sources, where individuals may not have provided consent for processing.

6. Content Standards

  • Respect for Rights: Content uploaded, transmitted, or otherwise provided through the Services must not infringe intellectual property rights, moral rights, publicity rights, or privacy rights of any party.
  • Authorized Use of Third-Party Content: Third-party content may only be used in accordance with the rights and permissions granted by the content owner.
  • Compliance with Marketing and Advertising Laws: All materials provided for use through the Services must comply with applicable marketing, advertising, and consumer protection laws and regulations.
  • Prohibited Content: Content that is harassing, defamatory, obscene, unlawful, or otherwise inappropriate—including content that unlawfully targets or exploits children—is not permitted on the Services.

7. Enforcement and Reporting Violations

  • Monitoring for Compliance: Suzy reserves the right to monitor access to and use of the Services for potential violations of this policy.
  • Actions Against Violations: Violations of this AUP may result in suspension or termination of access, removal of content, reporting to authorities, or other legal remedies as determined appropriate by Suzy.
  • Reporting Mechanisms: Suspected violations should be reported promptly through the designated reporting channels.

Conclusion: Your adherence to the Suzy® Acceptable Use Policy is essential for maintaining the integrity and legality of interactions on the Suzy® Platform. We appreciate your cooperation in fostering a safe and compliant online environment.
Version 
 Date
Description of Changes
Author/Revised By
2.0
 2025-09-12 Added Responsible AI, Covered Recipients; streamlined prohibited uses; reorganized sections. Suzy Legal
1.1
 2025-08-12 Revisions to Section 3. Suzy Legal
2025-03-10
Initial document creation.
Suzy Legal