Acceptable Use Policy

This Acceptable Use Policy (“AUP”) defines acceptable and prohibited uses of the SignalEDI platform. This policy is designed to protect the platform, our clients, and their trading partners. Violations may result in account suspension or termination as described in our Terms of Service.

The Service may be used for the following legitimate business purposes:

• Processing legitimate EDI, HL7, and FHIR transactions;
• Managing trading partner relationships and communication;
• Using the API within your plan’s rate limits;
• Using AI agents for business support, technical diagnostics, and operational assistance.

The following activities are strictly prohibited:

• Transmitting malware, viruses, or malicious code through SFTP or API;
• Attempting unauthorized access to other clients’ data or accounts;
• Using the Service to violate any applicable law or regulation;
• Exceeding plan transaction limits through automated abuse or scripting;
• Reverse engineering, decompiling, or attempting to extract source code;
• Using SignalEDI to process transactions for sanctioned entities (OFAC);
• Sharing account credentials with unauthorized persons;
• Using AI agents to generate spam, phishing, or fraudulent content;
• Attempting to manipulate AI agent behavior to extract system information;
• Using the Service to transmit content that infringes third-party rights;
• Reselling, sublicensing, or making the Service available to third parties without authorization.

Each plan has defined transaction volume and API rate limits:

• Burst allowances: up to 2x the rate limit for periods of up to 5 minutes.
• Exceeding limits may result in request throttling.
• Persistent abuse of rate limits may result in account suspension.

• Clients must use secure credentials (minimum 16-character passwords or SSH keys).
• Credentials must be rotated at least annually.
• Client is responsible for securing their SFTP endpoints and connection configurations.
• SignalEDI encrypts all stored credentials with AES-256-GCM.

SignalEDI enforces this policy through a graduated response process:

• First violation: Warning notification via email.
• Second violation: Temporary service restriction (up to 24 hours).
• Severe or repeated violations: Account suspension or termination.

SignalEDI may suspend access immediately, without prior warning, for violations that pose an imminent security risk to the platform or other clients. Clients will be notified of all enforcement actions via email.

Report suspected violations of this Acceptable Use Policy to support@signaledi.com.