Acceptable Use Policy

1. Purpose and Scope

This Acceptable Use Policy ("Policy") governs the use of the Executive Protection Advance Survey platform ("Service") provided by ISCG Labs, Inc. ("Company," "we," "our," or "us"). This Policy applies to all users ("User," "you," or "your") of the Service, including survey creators and authorized collaborators.

The Executive Protection Advance Survey is a professional tool designed exclusively for legitimate executive protection and security advance operations. The Service enables users to document venue assessments, route information, emergency resources, and other protective intelligence in support of lawful protective security engagements.

By accessing or using the Service, you agree to comply with this Policy. Violation of this Policy may result in immediate suspension or termination of your account, forfeiture of subscription fees, and referral to law enforcement where appropriate.

2. Intended Use

The Service is intended solely for use by executive protection professionals, security consultants, and authorized personnel engaged in lawful protective operations. Intended uses include:

• Conducting advance surveys of venues, routes, and locations in preparation for protective security operations
• Documenting security assessments, emergency resources, evacuation routes, and safe havens for the protection of principals
• Collaborating with authorized team members on protective security planning
• Maintaining records of completed protective operations for professional documentation purposes
• Training and professional development activities related to executive protection advance work

3. Prohibited Uses

The following activities are strictly prohibited. Users may not use the Service to:

3.1 Surveillance Without Authorization

• Conduct surveillance on any individual, group, or organization without proper authorization or lawful basis
• Monitor, track, or document the movements, habits, or activities of any person for purposes unrelated to a legitimate, contracted executive protection engagement
• Create surveys or assessments targeting individuals who are not the subject of an active, authorized protective operation

3.2 Unauthorized Vulnerability Documentation

• Document security vulnerabilities of any location, facility, or infrastructure for purposes other than legitimate protective operations
• Catalog weaknesses in physical security, access control, surveillance systems, or emergency response capabilities for any purpose that could compromise the safety or security of persons or property
• Share or distribute vulnerability assessments outside the scope of an authorized protective engagement

3.3 Stalking and Harassment

• Use the Service in any manner that facilitates stalking, harassment, intimidation, or threats against any individual
• Create surveys that document personal information, routines, or locations of individuals for the purpose of harassment or unwanted contact
• Use information obtained through the Service to follow, approach, or contact any individual in a manner that is threatening, intimidating, or unwelcome

3.4 Surveys Without Legitimate Professional Engagement

• Create surveys on locations, individuals, or events without a legitimate professional purpose. Legitimate professional purposes include active contracted executive protection engagements, bona fide training and professional development exercises, product evaluation during a trial or subscription period, and the creation of templates for future operational use. Surveys created for training or demonstration purposes must not contain real threat assessments, actual principal identities, or genuine vulnerability data for operational locations unless used in the context of an authorized training program.
• Use the Service for personal curiosity, recreational purposes, or any activity unrelated to professional executive protection work
• Conduct assessments of locations or events where the user has no professional role, authorization, or lawful reason to do so

3.5 Unauthorized Credential and Data Sharing

• Share account credentials, login information, or authentication tokens with any person, including colleagues, clients, or family members
• Share, distribute, export, or transmit survey data to any party not authorized through the Service's built-in collaboration feature
• Provide access to the Service to any person who is not an authorized, individually subscribed user
• Use a single subscription to serve multiple users by sharing credentials or rotating access

3.6 Criminal Activity

• Use the Service to plan, prepare for, facilitate, or support any criminal activity, including but not limited to theft, burglary, kidnapping, assault, or terrorism
• Use the Service to gather intelligence in support of any activity that violates local, state, or federal law
• Use the Service in any manner that would violate any applicable law, regulation, or ordinance

3.7 Other Prohibited Activities

• Attempt to reverse engineer, decompile, or disassemble the Service or its encryption mechanisms
• Attempt to gain unauthorized access to other users' accounts, surveys, or data
• Use the Service to compete with or replicate the Company's offering
• Introduce malware, viruses, or other harmful code into the Service
• Circumvent or attempt to circumvent any security measures, access controls, or usage limitations of the Service

4. Collaboration Feature Guidelines

The Service allows survey creators to invite up to two (2) collaborators per survey. All collaborators must hold an active, individually paid subscription to the Service. The following rules govern the use of the collaboration feature:

4.1 Collaborator Requirements

Only individuals who maintain their own active subscription to the Service may be added as collaborators. The Service will not permit a survey creator to share a survey with any person who does not have an active subscriber account. Each collaborator is independently bound by these Terms of Service, the Acceptable Use Policy, and all other governing documents by virtue of their own subscription. Survey creators are responsible for verifying that each collaborator has a legitimate professional need to access the survey data in connection with an active executive protection or security engagement in which both the creator and collaborator are professionally involved.

4.2 Creator Responsibility

The survey creator retains full ownership of and responsibility for all content within their surveys, including content added or modified by collaborators. The survey creator is the only person authorized to delete a survey. When a survey is deleted, all associated sharing records and collaborator access are automatically and permanently removed. The survey creator is responsible for revoking a collaborator's access promptly when (a) the professional engagement that justified the collaboration concludes, (b) the collaborator's subscription is terminated or lapses, or (c) the creator becomes aware that the collaborator is misusing or has misused shared survey data.

4.3 Collaborator Obligations

Collaborators must use shared survey data solely for the purpose of the protective operation for which access was granted. Collaborators may not export, copy, screenshot, photograph, or otherwise reproduce shared survey data for use outside the authorized engagement. Collaborators may not share their access with any other person or grant further access to the survey. A collaborator who violates this Policy is subject to enforcement action against their own independent subscriber account, up to and including termination, regardless of whether the survey creator is also subject to enforcement action.

4.4 Revocation of Access

Survey creators may revoke collaborator access at any time. The Company reserves the right to revoke any subscriber's collaboration privileges — or to sever a specific sharing relationship between a creator and collaborator — if the Company determines, in its sole discretion, that the collaboration feature is being misused or that continued shared access poses a risk to the security, integrity, or lawful use of the Service.

5. Investigation and Enforcement

5.1 Right to Investigate

ISCG Labs, Inc. reserves the right to investigate any suspected violation of this Policy. While ISCG Labs, Inc. does not access, view, or analyze the contents of your encrypted survey data in the ordinary course of business, the Company may investigate account-level activity, usage patterns, and metadata when there is a reasonable basis to believe that this Policy has been violated.

5.2 Indicators of Misuse

The Company may initiate an investigation based on, but not limited to, the following indicators:

• Reports submitted through the reporting mechanism described in Section 6
• Abnormal usage patterns, including excessive account creation, unusual survey volumes, or suspicious access patterns
• Requests or inquiries from law enforcement agencies
• Information received from third parties indicating potential misuse
• Any activity that, in the Company's reasonable judgment, suggests a violation of this Policy or applicable law

5.3 Enforcement Actions

If the Company determines that a violation of this Policy has occurred, the Company may take one or more of the following actions, at its sole discretion and without prior notice:

• Warning: Issue a written warning to the User identifying the violation and requiring immediate corrective action.
• Suspension: Temporarily suspend the User's access to the Service pending further investigation or corrective action.
• Termination: Permanently terminate the User's account and access to the Service. Upon termination for Policy violation, no refund of subscription fees will be issued.
• Data Preservation: Preserve account data and metadata for a reasonable period to support any ongoing or anticipated investigation by law enforcement.
• Law Enforcement Referral: Report suspected criminal activity to the appropriate law enforcement agencies and cooperate with any resulting investigation, including providing account information and metadata as required by valid legal process.

Notwithstanding the foregoing graduated enforcement framework, if the Company becomes aware of information that creates a reasonable belief that the Service is being used to facilitate an imminent threat to the physical safety of any person, the Company may immediately (a) suspend the User's account, (b) preserve all account data and metadata, and (c) refer the matter to appropriate law enforcement authorities, without first issuing a warning or completing any investigation. The Company is not required to notify the User before taking action under this paragraph. The Company shall have no liability for actions taken in good faith under this paragraph, even if the reported threat is subsequently determined to be unfounded.

Upon termination of an account for violation of this Policy, the Company may, at its sole discretion, immediately delete all survey data, encryption keys, and collaboration records associated with the terminated account, without waiting for the end of the billing period and without providing the User an opportunity to export data. Collaborators who had access to surveys owned by the terminated User will lose access immediately upon termination. The Company is not obligated to notify collaborators of the reason for the access revocation.

5.4 No Obligation to Monitor

Nothing in this Policy obligates the Company to monitor the use of the Service or to actively search for violations. The Company's right to investigate is discretionary, and the absence of enforcement in any particular case does not waive the Company's right to enforce this Policy in the future.

5.5 Access to Encrypted Content

In the ordinary course of an investigation under this Section 5, the Company will rely solely on account-level metadata, usage patterns, and information provided by reporting parties. The Company will not decrypt, access, or review the contents of encrypted survey data as part of an investigation unless (a) the Company has received a report or evidence that creates a reasonable belief that the Service is being used to facilitate an imminent threat to the physical safety of any person, and (b) access is authorized in writing by the Company's designated privacy officer / owner / legal counsel. Any access to encrypted survey content under this provision will be documented, limited to the scope necessary to assess the reported threat, and disclosed to the affected user unless prohibited by law or an active law enforcement investigation. Nothing in this section limits the Company's obligations to comply with valid legal process under the Terms of Service.

6. Reporting Mechanism

6.1 How to Report

If you become aware of any use of the Service that you believe violates this Policy, you are encouraged to report it promptly. Reports can be submitted to:

Email: abuse@iscgconsulting.com
Subject Line: "Acceptable Use Policy — Report of Suspected Violation"

6.2 Information to Include

When submitting a report, please include as much of the following information as possible:

• Your name and contact information
• A description of the suspected violation, including specific details about the nature of the misuse
• The name or identifying information of the user you believe is in violation, if known
• Any supporting evidence or documentation you can provide
• The date and time you became aware of the suspected violation

6.3 Confidentiality of Reports

The Company will treat all reports as confidential to the extent permitted by law. The identity of the reporting party will not be disclosed to the subject of the report unless required by valid legal process or with the reporting party's consent.

6.4 No Retaliation

The Company prohibits retaliation against any user who submits a good-faith report of a suspected Policy violation. Any user who retaliates against a reporting party will be subject to enforcement action, up to and including account termination.

6.5 Response

The Company will acknowledge receipt of reports within 48 hours and will investigate in a timely manner. The Company is not obligated to disclose the outcome of any investigation to the reporting party, except as required by law.

7. Liability, Indemnification, and Survival

Your use of the Service is subject to the limitation of liability, warranty disclaimer, and indemnification provisions set forth in Sections 17 and 18 of the Terms of Service, which are incorporated herein by reference. For the avoidance of doubt, any violation of this Acceptable Use Policy constitutes a breach of the Terms of Service for purposes of the indemnification obligations in Section 18.1(c) and (g) of the Terms of Service. The provisions of this Section and the Terms of Service addressing liability, indemnification, and dispute resolution shall survive termination of your account.

8. Relationship to Other Agreements

This Acceptable Use Policy supplements and is incorporated into the Terms of Service governing your use of the Executive Protection Advance Survey. In the event of a conflict between this Policy and the Terms of Service with respect to permitted or prohibited uses of the Service, the provision that imposes greater restrictions on the User's conduct shall control. In the event of a conflict with respect to ISCG's obligations, rights, or remedies, the Terms of Service shall control.

This Policy should be read in conjunction with the Company's Data Privacy and Security Policy, Data Processing Agreement, and any other policies referenced in the Terms of Service.

9. Modifications to This Policy

ISCG Labs, Inc. reserves the right to modify this Policy at any time. Material changes will be communicated via email to the address associated with your account at least 30 days before taking effect. Your continued use of the Service after the effective date of any modifications constitutes acceptance of the updated Policy. If you do not agree with the modified Policy, you may cancel your subscription before the changes take effect.

For material changes that expand the scope of prohibited activities or modify the enforcement framework, the Company may require affirmative acknowledgment of the updated Policy as a condition of continued access to the Service.

10. Contact Information

For questions about this Policy, to report a suspected violation, or for any other inquiries, please contact:

ISCG Labs, Inc.
General Inquiries: contact@iscgconsulting.com
Policy Violations: abuse@iscgconsulting.com
Website: iscgconsulting.com

By subscribing to and using the Executive Protection Advance Survey, you acknowledge that you have read, understood, and agree to comply with this Acceptable Use Policy. You further acknowledge that violation of this Policy may result in account suspension or termination, forfeiture of fees, and referral to law enforcement.