Skip to main content

Acceptable Use Policy

Guidelines for appropriate use of Thrust CRM

Last updated: 10 February 2026

1. Purpose

This Acceptable Use Policy ("AUP") outlines prohibited uses of Thrust CRM. By using the Service, you agree to comply with this policy. Violations may result in suspension or termination of your account.

2. General Principles

You must use Thrust CRM:

  • In compliance with all applicable laws and regulations
  • In a manner that respects the rights of others
  • Without disrupting or harming the Service or other users
  • In accordance with our Terms of Service and Privacy Policy

3. Prohibited Activities

3.1 Illegal Activities

You may not use Thrust CRM for any unlawful purpose, including but not limited to:

  • Fraud, theft, embezzlement, or money laundering
  • Distributing illegal content (child exploitation, terrorist content, etc.)
  • Violating export control or sanctions laws
  • Infringing intellectual property rights (copyright, trademark, patent)
  • Facilitating gambling or illegal drug sales
  • Stalking, harassment, or threatening others

3.2 Spam and Unsolicited Communications

You may not use Thrust CRM to send:

  • Spam: Unsolicited bulk emails or messages
  • No Consent: Marketing emails to contacts who haven't opted in
  • Deceptive Content: Misleading subject lines, fake sender addresses
  • Purchased Lists: Emails to purchased or scraped contact lists
  • Chain Letters: Pyramid schemes or chain letters

You must comply with the UK Privacy and Electronic Communications Regulations (PECR) and other anti-spam laws.

3.3 Malicious Software

You may not upload, distribute, or link to:

  • Viruses, worms, trojans, or other malware
  • Ransomware or cryptojacking scripts
  • Exploits or hacking tools
  • Phishing pages or credential harvesting tools

3.4 Abusive Content

You may not store or distribute content that is:

  • Hateful, discriminatory, or incites violence based on race, religion, gender, sexual orientation, disability, etc.
  • Pornographic, sexually explicit (except for legitimate businesses with age verification)
  • Defamatory or libelous
  • Excessively violent or graphic
  • Harassing, abusive, or threatening

3.5 Impersonation and Deception

You may not:

  • Impersonate others or misrepresent your identity
  • Create fake accounts or use stolen credentials
  • Engage in phishing or social engineering
  • Use misleading domain names or branding

3.6 Service Abuse

You may not:

  • Overload Systems: Send excessive API requests, scrape data, or DDoS attack
  • Bypass Limits: Circumvent rate limits, user limits, or feature restrictions
  • Reverse Engineer: Decompile, disassemble, or reverse engineer our software
  • Unauthorized Access: Access accounts or data you don't have permission to view
  • Exploit Vulnerabilities: Exploit security holes (report them to us instead)
  • Interfere with Service: Disrupt servers, networks, or other users

3.7 Multi-Accounting Abuse

You may not:

  • Create multiple free trial accounts to extend your trial period
  • Share accounts across multiple organizations (except Enterprise multi-tenant plans)
  • Use the Service for sub-account arbitrage without authorization

3.8 Data Scraping

You may not:

  • Scrape or crawl other users' data
  • Build competing services using our API
  • Export data for purposes beyond your legitimate business needs

4. Marketing and Email Best Practices

4.1 Consent Requirements

Before sending marketing emails, you must:

  • Obtain clear, affirmative opt-in consent
  • Provide transparent information about what they're signing up for
  • Not pre-check consent boxes
  • Keep records of how and when consent was obtained

4.2 Email Content Requirements

All marketing emails must:

  • Include a clear, working unsubscribe link
  • Display your real business name and address
  • Have accurate subject lines (no misleading subjects)
  • Honor unsubscribe requests within 10 days

4.3 Prohibited Email Practices

  • Adding contacts to your list without consent
  • Ignoring unsubscribe requests
  • Hiding or removing unsubscribe links
  • Sending emails after someone has unsubscribed
  • Misleading subject lines or sender names

5. Data Protection Requirements

As a data controller using Thrust CRM, you must:

  • Comply with UK GDPR and Data Protection Act 2018
  • Have lawful basis for processing personal data
  • Provide privacy notices to your contacts
  • Honor data subject rights requests (access, deletion, etc.)
  • Implement appropriate security measures
  • Report data breaches to the ICO (if required)
  • Conduct Data Protection Impact Assessments when needed

6. Reporting Violations

If you become aware of any violation of this AUP by another user, please report it:

  • Email: abuse@thrustcrm.com
  • Include: User's account details, nature of violation, evidence (screenshots, logs)
  • Response: We'll investigate within 48 hours

7. Enforcement

7.1 Investigation

We reserve the right to investigate suspected violations of this AUP. This may include:

  • Reviewing your account activity
  • Examining content you've stored or sent
  • Contacting you for clarification
  • Reporting illegal activity to law enforcement

7.2 Remedial Actions

Depending on the severity and frequency of violations, we may:

  • Warning: First-time or minor violations (e.g., missing unsubscribe link)
  • Temporary Suspension: Serious or repeat violations
  • Feature Restrictions: Disable email sending, API access, etc.
  • Account Termination: Severe violations (spam, illegal content, abuse)
  • Legal Action: Fraudulent activity, copyright infringement

7.3 No Refunds for Violations

If your account is suspended or terminated for violating this AUP, you are not entitled to a refund of any prepaid fees.

8. Appeals

If you believe we've made a mistake in suspending or terminating your account:

  • Email appeals@thrustcrm.com
  • Include your account details and explanation
  • We'll review within 5 business days
  • Our decision after review is final

9. Third-Party Complaints

9.1 Copyright/DMCA

If you believe someone is using Thrust CRM to infringe your copyright:

  • Email dmca@thrustcrm.com
  • Include details of the copyrighted work and location of infringement
  • We'll investigate per the Digital Millennium Copyright Act

9.2 Trademark Infringement

For trademark concerns, email legal@thrustcrm.com with:

  • Proof of trademark ownership
  • Description of alleged infringement
  • Why you believe it's infringing

10. Safe Harbor

Thrust CRM is a platform provider. We don't actively monitor user content but will investigate reports. We're not liable for user actions, but we'll take appropriate action when violations are reported.

11. Changes to This Policy

We may update this AUP from time to time. We'll notify you of significant changes. Continued use after changes constitutes acceptance.

12. Examples of Acceptable Use

✓ Good Practices

  • Sending newsletters to subscribers who opted in via your website form
  • Following up with prospects who requested information
  • Sending transactional emails (order confirmations, password resets)
  • Managing your customer relationships and sales pipeline
  • Setting up automated workflows for lead nurturing
  • Using the API within rate limits for legitimate integrations
  • Providing an easy unsubscribe process
  • Respecting unsubscribe requests immediately

13. Examples of Unacceptable Use

✗ Bad Practices

  • Buying an email list and importing it to send cold emails
  • Sending marketing emails without consent
  • Continuing to email someone after they've unsubscribed
  • Using misleading subject lines to boost open rates
  • Hiding or making it difficult to unsubscribe
  • Creating multiple trial accounts to avoid paying
  • Scraping competitor contact data and importing it
  • Sending phishing emails or malicious links

14. Contact

Questions about this Acceptable Use Policy:

Related Legal Documents

Terms of Service → Privacy Policy → GDPR Compliance →