1. What this policy is for
This Acceptable Use Policy ("AUP") sits underneath our Terms of Service and applies to every service Netpoa Limited operates. It tells you what you can and cannot do on our infrastructure and software. Violations can result in suspension, termination, or — for severe cases — referral to Tanzanian authorities.
2. What you may not do
2.1 Illegal activity
- Use any Netpoa service to commit, support, or facilitate any act illegal under Tanzanian law (or the law of any jurisdiction where the activity occurs).
- Store, process, or distribute content that infringes intellectual property rights you don't own.
- Conduct money laundering, terrorist financing, tax evasion, or sanctions-busting activity. (We comply with all applicable AML/KYC requirements and may freeze accounts on a regulator's lawful request.)
2.2 Spam & unwanted communications
- Do not use our SMS or email features to send messages to recipients who have not consented to hear from you.
- Bulk SMS sent through SanyaSMS must comply with Tanzania Communications Regulatory Authority (TCRA) rules — including respecting opt-out requests, sender-ID rules, and time-of-day restrictions where applicable.
- Do not use Netpoa email infrastructure for bulk marketing campaigns — shared-IP reputation breaks for all customers if one account sends a campaign. Use a dedicated transactional-email provider or move to a Netpoa Cloud VPS with your own IP.
- Do not use any Netpoa service to send phishing messages, scams, or misleading "you have won" promotions.
2.3 Security & integrity
- No probing, scanning, penetration testing, or vulnerability research against Netpoa infrastructure without prior written authorisation (which we grant generously to good-faith researchers — see Section 5).
- No attempts to bypass authentication, authorisation, rate limits, or plan-feature gates.
- No introducing of malware, viruses, ransomware, or any code intended to disrupt or damage our services or other users.
- No mass scraping of UI or API endpoints to circumvent plan limits.
- No sharing login credentials between people. Each user must have their own account.
- Keep your application code secure — outdated WordPress / Joomla / PHP code is the #1 cause of hosting account compromise. You're responsible for your CMS, plugins, and themes.
2.4 Resource abuse
- No using Netpoa services for cryptocurrency mining, distributed compute jobs, or any activity unrelated to running a normal business / website.
- No storing files unrelated to your stated use (movies, personal photos, software downloads stockpiles). The storage allotment is for your website's working files, invoices, receipts, product images, and similar business content.
- If your traffic or resource consumption causes us to provision dedicated infrastructure to keep up, we'll contact you to either upgrade to a higher plan, move to a Cloud VPS, or limit the activity.
2.5 Harmful content
- No hate speech, threats, harassment, or content inciting violence.
- No content sexually exploiting minors. (We report any such content to Tanzania Police and preserve evidence for prosecution.)
- No content that defames identifiable individuals.
- No content that violates the Tanzanian Electronic and Postal Communications Act (EPOCA) Online Content Regulations.
2.6 Multi-tenancy violations (SaaS products)
- Do not attempt to access, read, modify, or interfere with another tenant's workspace on Sanya Business, Kanisa MS, or any other multi-tenant service we operate.
- Do not impersonate another Netpoa customer in correspondence, support tickets, or recovery flows.
- Do not create duplicate accounts to evade a previous suspension or to abuse trial / promotional offers.
2.7 Reselling without permission
- You may use any Netpoa service to support your own business — that's the point.
- You may not resell Netpoa services as a sub-service to third parties (e.g. as a white-labelled product you charge for separately) unless we've signed a reseller agreement with you.
- If you have a partnership / reseller need, contact info@netpoa.com — we have a separate programme.
3. Responsible Security Research — welcomed
If you find a security vulnerability in any Netpoa service:
- Don't exploit it beyond what's necessary to demonstrate the issue.
- Don't access another tenant's data — even to prove the bug. Document the vulnerability conceptually.
- Email info@netpoa.com with the details. PGP key available on request.
- We commit to acknowledge within 48 hours, fix within a reasonable timeframe, and credit you publicly (if you wish) once the patch ships.
- Good-faith disclosure to us — even of a serious vulnerability — will not result in legal action against you under these Terms.
4. Consequences of violation
If you violate this policy, we may take any of the following actions, depending on severity:
- Warning — for first-time, minor, easily-corrected issues.
- Temporary feature restriction — e.g. disabling SMS sending until a specific issue is resolved.
- Suspension — service becomes inaccessible. Data preserved. You can fix the issue and request reactivation.
- Termination — for serious or repeated violations. Data deleted after the 90-day retention window in our Terms.
- Refund forfeit — pre-paid amounts are not refunded for violation-based terminations.
- Legal action — for fraud, willful damage, or illegal activity.
For serious threats (active attacks, illegal content), we may suspend without prior notice. Where possible we will explain the reason within 24 hours and give you a chance to respond.
5. Reporting violations
If you believe another Netpoa customer is violating this policy:
- For abuse / spam coming from a Netpoa account: info@netpoa.com
- For security issues: info@netpoa.com
- For child-safety concerns: info@netpoa.com with subject "URGENT — Child Safety"
We treat every report seriously. False reports made in bad faith are themselves a violation of this policy.
6. Changes
We may update this policy as new abuse patterns emerge. Material changes are emailed to active customers at least 14 days before they take effect.