Stiple Acceptable Use Policy

This Acceptable Use Policy ("AUP") sets out the rules governing your use of Stiple Labs (labs.stiple.ca), Mapdesk, SOS (Smart Optimized Storage), and all related services, applications, and tools operated by Stiple Inc. ("Stiple," "we," "us," or "our") (collectively, the "Services").

This AUP supplements and is incorporated into the Stiple Terms of Service. Capitalized terms not defined here have the meanings given in the Terms of Service. In the event of a conflict between this AUP and the Terms of Service, the Terms of Service will govern to the extent of the inconsistency.

By accessing or using the Services, you agree to comply with this AUP. We expect all users to act responsibly, honestly, and in good faith.

The Services are designed for lawful professional and commercial geospatial work. Permitted uses include:

• Storing, processing, previewing, and sharing geospatial data, including point clouds, laser scans, coordinate data, imagery, and related datasets;
• Field surveying, mapping, and data collection using Mapdesk and connected instruments;
• Collaborating with authorized team members within your Organization Account;
• Analyzing, transforming, and exporting geospatial data for professional deliverables;
• Quality assurance and quality control of captured and processed datasets;
• Any other lawful use consistent with the nature and purpose of the Services.

You must not use the Services in any way that is unlawful, harmful, or inconsistent with their intended purpose. The following activities are strictly prohibited.

3.1 Illegal Activity

• Using the Services for any purpose that violates applicable federal, provincial, municipal, or other Canadian law or regulation (or, where you operate elsewhere, any applicable law or regulation of that jurisdiction);
• Uploading, storing, or transmitting data that was obtained illegally, including data captured without required permits, authorizations, or consent;
• Using the Services to facilitate fraud, money laundering, or any other criminal activity.

3.2 Unauthorized Access

• Accessing or attempting to access another user's Account, data, or resources without their explicit authorization;
• Sharing your Account credentials with any unauthorized person or allowing anyone else to use your Account;
• Misrepresenting your identity, affiliation, or authority when using the Services.

3.3 Reverse Engineering & Competitive Use

• Reverse engineering, decompiling, disassembling, or otherwise attempting to derive the source code, algorithms, data structures, or underlying architecture of the Platform or any component of the Services;
• Using the Services to build, train, or improve a product or service that competes with any Stiple offering;
• Benchmarking or performance-testing the Services for the purpose of publishing comparisons or competitive analysis without Stiple's prior written consent.

3.4 Automated & Excessive Use

• Using automated scripts, bots, scrapers, crawlers, or similar tools to access, extract, or collect data from the Services, unless explicitly authorized by Stiple in writing;
• Using the Services in a manner that consumes disproportionate system resources, degrades performance for other users, or interferes with the normal operation of the Platform;
• Circumventing or attempting to circumvent any rate limits, usage quotas, storage limits, or other technical restrictions imposed by the Services.

3.5 Security Violations

• Uploading, transmitting, or distributing any viruses, malware, ransomware, trojan horses, worms, or other malicious code;
• Circumventing, disabling, or interfering with any security features, access controls, authentication mechanisms, or encryption used by the Services;
• Probing, scanning, or testing the vulnerability of the Services or any connected system without Stiple's prior written authorization;
• Interfering with or disrupting the integrity or availability of the Services, servers, or networks connected to the Services.

3.6 Unauthorized Distribution

• Reselling, sublicensing, leasing, or redistributing access to the Services or any output generated through the Services, without a written agreement from Stiple;
• Using Stiple's APIs (if and when available) in ways not expressly authorized by the applicable API documentation and terms.

3.7 Restricted & Classified Data

• Uploading data containing classified, secret, or restricted government information without proper authorization and a written agreement with Stiple specifically addressing the handling requirements for such data;
• Uploading data subject to legal restrictions (including court orders, regulatory holds, or litigation preservation obligations) that would conflict with Stiple's standard storage, processing, or data management practices.

When you upload, submit, or transmit data through the Services, you represent and warrant that:

• Ownership and rights. You own the data or have obtained all necessary rights, licenses, consents, and permissions to upload it to the Services and to grant Stiple the limited processing rights described in the Terms of Service;
• Third-party personal information. You will not upload data containing personally identifiable information of third parties unless you have obtained proper consent or have lawful authority to do so under applicable privacy legislation, including Canada's Personal Information Protection and Electronic Documents Act (PIPEDA) and any applicable provincial privacy statutes;
• Export controls and sanctions. You will comply with all applicable export control laws, trade sanctions, and embargo regulations. You will not upload data that originates from, or is destined for, a sanctioned jurisdiction or person in violation of applicable Canadian or other applicable international trade control laws;
• No conflicting restrictions. You will not upload data subject to legal, contractual, or regulatory restrictions that would conflict with Stiple's ability to store, process, back up, or manage the data in the ordinary course of providing the Services;
• Accuracy and integrity. You are responsible for the accuracy, quality, and integrity of data you upload. Stiple processes data as received and does not verify the accuracy or legality of User Content;
• Professional qualification. You represent that you are: (a) a licensed or certified geomatics, surveying, or engineering professional; (b) working under the direct supervision of such a professional; or (c) using the Platform for purposes that do not require professional certification (for example, construction monitoring, asset management, facility documentation, or internal record-keeping). You acknowledge that Stiple provides tools, not professional services, and that you are solely responsible for ensuring your use of the Platform is appropriate for your qualifications and compliant with the professional licensing requirements of your jurisdiction.

Maintaining the security of your Account and the broader platform is a shared responsibility. You agree to:

• Strong authentication. Use a strong, unique password for your Account. Enable multi-factor authentication (MFA) when it is available and offered by the Services;
• Credential confidentiality. Keep your login credentials, API keys, access tokens, and any other authentication credentials strictly confidential. Do not share them with anyone, including colleagues, unless through Stiple's designated team management features;
• Prompt incident reporting. Notify Stiple immediately at security@stiple.ca if you become aware of or suspect any unauthorized access to your Account, any security breach, or any compromise of your credentials;
• Shared device hygiene. Log out of the Services when using shared, public, or untrusted devices. Do not save credentials in browsers on shared computers;
• Authorized User management. If you administer an Organization Account, promptly remove access for individuals who are no longer authorized (for example, when an employee leaves your organization or a contractor's engagement ends).

Stiple takes violations of this AUP seriously. If we determine, in our reasonable judgment, that you have violated this AUP, we may take one or more of the following actions depending on the nature and severity of the violation.

6.1 Warning

For minor or first-time violations, Stiple may issue a written warning describing the violation and requesting that you cease the prohibited conduct. You will be given a reasonable opportunity to remedy the issue.

6.2 Suspension

For repeated violations, violations that persist after a warning, or moderately serious violations, Stiple may suspend your access to some or all of the Services. During a suspension, your data will be preserved but you will not be able to access the Services. Stiple will notify you of the reason for suspension and the conditions for reinstatement.

6.3 Termination

For severe violations, Stiple may terminate your Account immediately and without prior notice. Severe violations include, but are not limited to: uploading malicious code, attempting to compromise the security of the Platform, unauthorized access to other users' data, and any activity that is illegal or that exposes Stiple or other users to significant harm.

6.4 Content Removal

Stiple may remove, disable access to, or quarantine any content that violates this AUP, with or without notice to you. Where practicable, Stiple will notify you of the removal and the reason.

6.5 Law Enforcement Reporting

Stiple may report suspected illegal activity to the appropriate law enforcement authorities and will cooperate with lawful investigations. Where permitted by law, Stiple will notify you of such reporting.

6.6 No Refund

If your Account is suspended or terminated due to a violation of this AUP, you are not entitled to any refund of prepaid fees. Any outstanding fees remain due and payable.

If you become aware of any conduct that violates this AUP, or if you believe that another user is using the Services in a way that is harmful, unlawful, or inconsistent with this policy, please report it to us.

Stiple will investigate all reports in good faith and take appropriate action. We will treat reports confidentially to the extent possible, though we may need to disclose information to the extent required by law or as necessary to resolve the matter.

Stiple will not retaliate against any user who reports a violation in good faith.

Stiple may update or modify this AUP from time to time to reflect changes in our Services, legal requirements, or industry best practices. When we make material changes, we will:

• Provide at least thirty (30) days' prior notice before the changes take effect, by posting the updated AUP at stiple.ca/legal/acceptable-use and/or notifying you by email to the address associated with your Account;
• Update the "Last Updated" date at the top of this document;
• Where required by law, obtain your renewed consent to the updated terms.

Your continued use of the Services after the effective date of any modification constitutes your acceptance of the updated AUP. If you do not agree with a modification, you must stop using the Services before the changes take effect.

We encourage you to review this AUP periodically to stay informed about acceptable use of our Services.