← Back to Legal Documents
Acceptable Use Policy
Effective date: 23 May 2026
This Acceptable Use Policy (“AUP”) governs the manner in which you may use Trefnus Resource. It supplements and forms part of the Terms of Service. Any breach of this AUP is a material breach of the Terms of Service and may result in the immediate revocation of your licence, without refund.
1. Intended Use
Trefnus Resource is licensed for legitimate internal scheduling and booking of resources for which you, your organisation or your client has lawful authority. Any use that goes beyond that purpose, that is unlawful, or that infringes the rights of others, is strictly prohibited.
2. Prohibited Uses
You must not, and must not permit anyone else acting on your behalf to:
- use the Application for any unlawful purpose, or in furtherance of any unlawful act;
- use the Application to store, process or transmit data in violation of any applicable law (including data protection, privacy, intellectual property, consumer, anti-discrimination, financial-services, gambling, sanctions or export-control law);
- upload, enter, store or generate content that is unlawful, defamatory, harassing, threatening, abusive, hateful, fraudulent, deceptive, obscene, sexually explicit involving minors, glorifies violence, infringes intellectual property, or invades privacy;
- upload or transmit any virus, worm, trojan, ransomware, spyware, keylogger, exploit or other malicious code;
- attempt to gain unauthorised access to the Application, our systems, Supabase, any content delivery network we rely on, any other user’s account, or any underlying network or service;
- probe, scan, test or attempt to circumvent any security, authentication, licence verification, device limit, password gate or rate-limiting mechanism;
- reverse engineer, decompile, disassemble or otherwise attempt to derive source code, except to the minimum extent expressly permitted by applicable law that cannot be contractually waived;
- copy, mirror, frame, scrape, redistribute, white-label, resell, sublicense or commercially exploit the Application or its content;
- use the Application to provide a service bureau or commercial booking service to any third party;
- impersonate any person or misrepresent your affiliation with any person or organisation;
- use any automated means (bots, scrapers, headless browsers) to access the Application, or use the Application in a manner intended to disrupt, degrade or impair its operation or that of any third-party service it relies upon;
- attempt to spoof, falsify or interfere with the device hash, device label, magic-link authentication, last-seen timestamp or any other identifier used by the Application;
- generate or attempt to generate excessive load on the licence verification endpoint, the magic-link email system, or any related infrastructure;
- use the Application to enter personal data of any third party without a lawful basis, or without having provided that person with all required notices under applicable data-protection law;
- use the Application in any safety-critical or life-supporting environment, including any setting where failure of the Application could result in death, personal injury, environmental damage or significant property loss;
- remove, alter or obscure any proprietary notice, copyright marking or licence verification indicator;
- encourage, induce, assist or enable any third party to do any of the above.
3. Account Responsibilities
You are solely responsible for all activity that takes place under your account or on any Device on which the Application is activated, whether or not authorised by you. You must keep your magic-link emails, your local Application password and your Device secure. You must notify us promptly at security@trefnus.com of any actual or suspected unauthorised access or compromise.
4. Device Usage
You may activate the Application on up to five (5) Devices per licensed account. You agree that:
- each Device must be under your personal control, or under the control of an individual member of your organisation acting on your behalf;
- you must not share your magic-link email with any unauthorised person;
- you must not use scripts, virtualisation, container snapshots or other techniques designed to defeat or extend the device limit;
- when you cease using a Device (e.g. selling, replacing, returning to an employer), you must remove it from the device list via the Settings > Devices screen, and clear local Application data on that Device.
5. Data Responsibility
You are solely responsible for the data you enter, store and process in the Application, including:
- ensuring you have all rights and permissions necessary to enter and process that data;
- complying with applicable data-protection law in respect of any personal data of third parties (guests, customers, employees, contractors);
- taking regular exports/backups of your data and storing those backups securely;
- ensuring that any device on which the Application is used is itself secured against unauthorised access.
6. Reporting Violations
If you become aware of any actual or suspected breach of this AUP, please report it to abuse@trefnus.com with as much detail as you can provide. We treat such reports confidentially where reasonably possible.
7. Enforcement
We may, at our sole discretion and without liability to you or any third party, take any or all of the following actions in response to an actual or suspected breach of this AUP:
- issue a warning;
- require you to remove or stop processing specific data;
- limit, suspend or terminate your access to the Application;
- revoke your licence in whole or in part, immediately and without refund;
- remove individual Devices from your account;
- cooperate with law enforcement, regulators or other lawful authorities;
- pursue any remedy available to us at law or in equity, including injunctive relief and damages.
8. Monitoring
We do not monitor the Content you store in the Application (which is stored only on your Device and is not visible to us in normal use). We may, however, monitor server-side activity associated with licence verification, magic-link issuance and device registration to detect abuse, fraud, security incidents and breaches of this AUP. We may use the results of such monitoring for any lawful purpose, including enforcement of this AUP.
9. Changes
We may update this AUP from time to time. The updated AUP will be posted at /legal/acceptable-use-policy.html with a new effective date. Your continued use of the Application after the effective date constitutes acceptance of the updated AUP.
10. Contact
Abuse and AUP enforcement: abuse@trefnus.com.
Security issues: security@trefnus.com.
General support: support@trefnus.com.