Effective July 1, 2026.
This Acceptable Use Policy (“AUP”) governs the use of the products, services, platform, and API provided by ShortSave, Inc., a Colorado corporation doing business as Botdoc (“Botdoc”, “we”, “us”, or “our”). This AUP is incorporated into and made part of the Botdoc Corporate Terms of Service, Botdoc Master SaaS Agreement, User Terms of Service, API Terms and Conditions, and Mobile Terms of Service (together, the “Terms”). Capitalized terms not defined here have the meanings given in the applicable Terms.
By accessing or using the Services, you agree to this AUP. In the event of any conflict, the order of precedence is: (a) the BAA (with respect to Protected Health Information); (b) the DPA (with respect to Personal Data); (c) the applicable Order Form; (d) the Terms; and (e) this AUP and other referenced policies.
This AUP applies to: all customers, Authorized Users, API developers, resellers, and any other individual or entity that accesses or uses the Services in any capacity.
Botdoc operates as a secure digital transportation platform powered by patented end-to-end encryption technologies. Our platform enables organizations and individuals to securely send, receive, and exchange documents, signatures, payments, and other data without passwords, apps, logins, or plugins. Due to this encryption architecture, Botdoc cannot access, read, or view the contents of data transmitted through the Services.
The purpose of this AUP is to ensure that the Services are used lawfully, ethically, and in a manner that protects the security, privacy, and integrity of all users and third parties. Botdoc is committed to maintaining a trusted platform and reserves the right to take action against any use that violates this AUP.
This AUP applies to:
All customers and their Authorized Users accessing the Services under an Order Form or subscription
Developers and organizations accessing the Services through the Botdoc API
Resellers and their downstream customers using Services under a reseller agreement
Any individual or entity accessing or using any Botdoc website, application, or platform
This AUP applies to all use of the Services regardless of the device, network, or method of access, and regardless of whether the use occurs within or outside of the United States.
This AUP supplements and incorporates by reference the restrictions and negative covenants set forth in the Botdoc API Terms and Conditions §6.2 (Negative Covenants), the Botdoc Corporate Terms of Service §5.3 (Restrictions), and the Botdoc Master SaaS Agreement §2.6 (Acceptable Use). In the event of any inconsistency between this AUP and those provisions, the more restrictive obligation controls.
You may use the Services only for lawful purposes and in accordance with the Terms and this AUP. Permitted uses include:
Securely transmitting, sending, receiving, and exchanging documents, files, signatures, payments, and other data through the Services
Using the Botdoc API to integrate secure data transport capabilities into your own platforms and applications, subject to the API Terms and Conditions
Accessing the Services for business, professional, or personal purposes consistent with your subscription plan and Order Form
Using the Services to transmit data on behalf of your end users or customers, provided you have obtained all required consents and authorizations
The following uses of the Services are strictly prohibited. You may not, and may not permit any third party to:
Use the Services for any purpose that violates any applicable local, state, federal, or international law or regulation
Use the Services to transmit, distribute, or store content that is unlawful, defamatory, obscene, fraudulent, threatening, abusive, or that infringes the rights of any third party
Use the Services to engage in any activity that constitutes or facilitates identity theft, fraud, phishing, or other deceptive practices
Use the Services to transmit content that exploits minors or constitutes child sexual abuse material in any form
Use the Services to threaten, harass, intimidate, or stalk any individual
Attempt to gain unauthorized access to the Services, any Botdoc system, network, account, or data, or any third-party system or network
Introduce, upload, or transmit any virus, worm, Trojan horse, ransomware, spyware, malware, or other harmful or malicious code into the Services or through the platform
Attempt to probe, scan, or test the vulnerability of any Botdoc system or network, or to breach any security or authentication measures
Circumvent, disable, or otherwise interfere with any security features, technical restrictions, usage limits, or access controls of the Services
Conduct or facilitate any denial-of-service attack, distributed denial-of-service attack, or any other attack that interferes with or disrupts the Services
Intercept, monitor, or collect data transmitted by other users of the Services without authorization
Reverse engineer, decompile, disassemble, or otherwise attempt to derive the source code, structure, algorithms, or underlying technology of the Services
Modify, translate, adapt, or create derivative works based on the Services or any component thereof
Remove, alter, or obscure any copyright, trademark, or other proprietary notices in or on the Services
Copy, reproduce, or distribute any portion of the Services except as expressly permitted under the Terms
Use any Botdoc trademarks, logos, or brand assets without prior written consent
License, sublicense, sell, resell, transfer, assign, or distribute access to the Services to any third party except as expressly permitted under a separate reseller agreement with Botdoc
Use the Services to provide services to third parties in a manner that is not authorized under your subscription plan or Order Form
Share account credentials, API keys, or access tokens with unauthorized parties
Use the Services to send unsolicited commercial email, text messages, or other communications (spam) to any individual who has not specifically requested such communications
Use the Services in violation of the CAN-SPAM Act, the Telephone Consumer Protection Act (TCPA), or any other applicable anti-spam or electronic communications law
Transmit communications to recipients who have opted out of or unsubscribed from receiving such communications
Use false, misleading, or deceptive sender information, subject lines, or headers in any communication transmitted through the Services
Harvest, collect, or compile lists of email addresses, phone numbers, or other personal information from the Services for the purpose of sending unsolicited communications
You are solely responsible for obtaining and maintaining all consents and authorizations from recipients required by applicable law prior to using the Services to transmit communications, including without limitation consents required under the TCPA, CAN-SPAM Act, and applicable state-law equivalents. See the Botdoc API Terms and Conditions §6.2 (Negative Covenants), the Botdoc Corporate Terms of Service §5.3 (Restrictions), and the Botdoc Master SaaS Agreement §2.6 (Acceptable Use) for additional requirements.
HIPAA: You may not use the Services to transmit Protected Health Information (PHI) unless you have executed a Business Associate Agreement (BAA) with Botdoc. Botdoc cannot independently determine whether transmitted content constitutes PHI due to end-to-end encryption. You are solely responsible for ensuring your use of the Services complies with HIPAA and all applicable healthcare privacy laws.
FERPA: You may not use the Services to transmit student Education Records unless your institution has complied with FERPA’s requirements, including the school official exception or applicable parental consent requirements. See the Botdoc FERPA Privacy Policy at https://botdoc.io/ferpa-privacy-policy/ for details.
GLBA / FTC Safeguards Rule: You may not use the Services in violation of the Gramm-Leach-Bliley Act, the FTC Safeguards Rule (16 CFR Part 314), or applicable financial privacy regulations. Automotive dealerships and other financial institutions using the Services to transmit Nonpublic Personal Information (NPI) are responsible for ensuring that their use of Botdoc satisfies their vendor management obligations under the FTC Safeguards Rule. Botdoc’s SOC 2 Type II audit report is available upon written request to support dealership compliance assessments.
PCI DSS: You may not use the Services to store, process, or transmit payment card data in a manner that violates Payment Card Industry Data Security Standards (PCI DSS).
Use the Services in violation of any applicable U.S. export control laws or regulations, including those administered by the U.S. Department of Commerce, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC), or the U.S. Department of State
Use the Services if you are located in, or a national or resident of, any country subject to a U.S. trade embargo
Use the Services if you are on any U.S. government list of prohibited or restricted parties
No AI/ML Training: You may not use any data, content, or information obtained through the Services, including Customer Content, metadata, or usage data, to train, develop, fine-tune, or improve any artificial intelligence or machine learning model for any purpose, whether for your own benefit or for the benefit of any third party.
You may not use the Services to input data into any generative AI or large language model without ensuring compliance with all applicable data protection, confidentiality, and privacy obligations
You may not use automated bots, scrapers, or AI-driven tools to access the Services in a manner that circumvents usage limits or interferes with the platform
Use the Services in any manner that could damage, disable, overburden, impair, or compromise the integrity, availability, or performance of the Services or Botdoc’s infrastructure
Transmit files or data that exceed the file size limits specified in your subscription plan or Order Form
Attempt to bypass or circumvent any usage limits, rate limits, or technical restrictions of the Services or API
Build or develop a competitive product or service, or publish benchmark or comparison results referencing the Services or Botdoc Content
Scrape, crawl, or use automated means to extract data from the Services except as expressly permitted under the API Terms and Conditions
As a customer, you are responsible for:
Ensuring that all Authorized Users under your account are aware of and comply with this AUP and the Terms
Maintaining the security and confidentiality of all account credentials, API keys, and access tokens associated with your account
Promptly notifying Botdoc at support@botdoc.io if you become aware of any unauthorized access to your account or any violation of this AUP
Ensuring that all data you transmit through the Services has been collected lawfully and that you have obtained all required consents, authorizations, and permissions from data subjects and recipients
Complying with all applicable laws and regulations in connection with your use of the Services, including without limitation applicable privacy laws, data protection laws, healthcare laws, financial regulations, and communications laws
Verifying the accuracy of all recipient information, including mobile phone numbers and email addresses, before transmitting communications through the Services
The obligations set forth in this Section 5 supplement, and do not replace, the restrictions and negative covenants of the Botdoc API Terms and Conditions §6.2 (Negative Covenants), the Botdoc Corporate Terms of Service §5.3 (Restrictions), and the Botdoc Master SaaS Agreement §2.6 (Acceptable Use).
You are responsible for maintaining the security of your account and your use of the Services. Specifically you must:
Use strong, unique passwords for your Botdoc account and enable two-factor authentication where available
Keep all API keys, tokens, and credentials confidential and not share them with unauthorized parties
Promptly revoke and replace any credentials that you believe have been compromised
Use best practices for the security of your own systems, devices, and networks that connect to or interact with the Services
Not attempt to intercept, decrypt, or access any data transmitted through the Services by or to other users
Note: Botdoc will never request your password by email. If you receive such a request, please disregard it and notify Botdoc at support@botdoc.io immediately.
Botdoc encourages the responsible reporting of any potential violations of this AUP, including misuse of the platform, security vulnerabilities, or illegal activity. To report a violation or concern:
AUP violations and misuse: support@botdoc.io
Security vulnerabilities or incidents: support@botdoc.io
Privacy concerns: support@botdoc.io
Botdoc will investigate all reports promptly and take appropriate action in accordance with this AUP and the Terms.
Botdoc reserves the right to suspend, limit, or terminate your access to the Services, in whole or in part, immediately and without prior notice if Botdoc reasonably determines that you or any Authorized User has violated this AUP or the Terms. Suspension does not relieve you of your obligation to pay any outstanding Fees.
Repeated or material violations of this AUP may result in permanent termination of your account and all associated Order Forms in accordance with the termination provisions of the Corporate Terms of Service.
Botdoc reserves the right to cooperate with law enforcement authorities in investigating suspected illegal activity. Where legally permitted, Botdoc will provide notice of any legally compelled disclosure. Botdoc may disclose information without notice where required by law or where Botdoc believes disclosure is necessary to prevent imminent harm.
Botdoc will not be liable to you or any third party for any suspension, termination, or other enforcement action taken in good faith under this AUP. If you believe a suspension or enforcement action was taken in error, please contact support@botdoc.io.
This AUP is part of the Botdoc policy framework. In the event of any conflict between this AUP and other Botdoc agreements, the following order of precedence applies: (a) the BAA (with respect to Protected Health Information); (b) the DPA (with respect to Personal Data); (c) the applicable Order Form; (d) the Corporate Terms of Service, Master SaaS Agreement, API Terms and Conditions, and other applicable Terms; and (e) this AUP and other referenced policies. This AUP supplements and does not replace the Terms.
Botdoc may update this Acceptable Use Policy from time to time. For material changes, Botdoc will provide at least thirty (30) days’ advance notice to Customer’s registered contact email before the change takes effect. “Material change” means a change that materially increases Customer’s obligations or restrictions hereunder. Changes that fix typographical errors, conform to applicable law, or refine technical descriptions are not material. Customer’s continued use of the Services after the effective date of an update constitutes acceptance of the updated AUP. If Customer does not agree to a material change, Customer’s sole remedy is to terminate the affected Order Form or Subscription Plan effective on the change date in accordance with the applicable agreement.
Posting the updated AUP at https://botdoc.io/acceptable-use-policy/ constitutes valid notice to all customers regardless of email delivery status. Customer is responsible for periodically reviewing the applicable policy page.
All updates will be posted at https://botdoc.io/acceptable-use-policy/ and the effective date will be updated accordingly.
For questions about this AUP or to report a violation:
Botdoc Legal Team
ShortSave, Inc., a Colorado corporation doing business as Botdoc
1909 Woodmoor Drive
Monument, CO 80132
Email: support@botdoc.io
Security: support@botdoc.io