Legal

Acceptable Use Policy

Last updated: 5 June 2026

This Acceptable Use Policy (“AUP”) describes what you may and may not do with the Perimeter platform. It forms part of our Terms of Service. Perimeter is a defensive security tool. We take misuse seriously and will act on violations.

1. Authorised use

Perimeter is designed and licensed for:

Scanning and monitoring external internet-facing assets that you own or are explicitly authorised in writing to monitor.
Identifying security misconfigurations, exposure risks, and compliance gaps in your own infrastructure.
Generating internal security reports and managing findings within your organisation.
Using scan results to prioritise and guide your own remediation work.

2. Asset ownership requirement

By adding any domain, IP address, IP range, or other asset to the platform, you represent and warrant that you are either:

The registered owner or operator of that asset, or
Explicitly authorised in writing by the asset owner to conduct automated external scanning of it.

We may ask you to verify ownership of assets at any time. Common verification methods include DNS TXT records, file uploads, or email confirmation via the asset's registered domain.

3. Prohibited conduct

You must not use the Service to:

Unauthorised scanning

Scan domains, IP addresses, or infrastructure that you do not own and are not authorised to monitor.
Conduct reconnaissance on third-party systems, competitors, or individuals.
Use the platform as a tool in the preparation of any attack, intrusion, or unauthorised access attempt.

Harmful or illegal activity

Violate any applicable law or regulation, including computer access laws, data protection laws, and privacy laws.
Attempt to exploit vulnerabilities discovered via the Service without authorisation.
Use scan results to facilitate phishing, fraud, extortion, or any other malicious activity.
Harvest, collect, or store personal data belonging to third parties discovered through the Service.

Platform abuse

Attempt to circumvent rate limits, scanning restrictions, or any technical controls.
Reverse-engineer, decompile, or attempt to extract source code from the Service.
Resell, sublicense, or provide access to the platform to third parties without our written consent.
Use automated scripts or bots to interact with the platform in ways not supported by our published API.
Interfere with the operation of the Service or degrade its performance for other users.

Misrepresentation

Create accounts using false identity information.
Claim ownership of assets you do not control in order to initiate scans.
Misrepresent scan results to deceive or damage the reputation of third parties.

4. Responsible use of findings

Scan results and findings may contain sensitive security information. You are responsible for handling this data appropriately, including:

Restricting access to findings to personnel with a legitimate need.
Not publicly disclosing specific vulnerability details in ways that could be exploited by third parties before remediation.
Using findings to improve your own security posture, not to take action against third parties.

5. Enforcement

Violations of this AUP may result in immediate suspension or termination of your account without refund. In cases involving potential illegal activity, we may also report the matter to relevant law enforcement authorities and cooperate with investigations.

Swavvy AB reserves the right to investigate any suspected violation and to take any action deemed appropriate, including removal of assets, suspension of scanning, or account termination.

6. Reporting misuse

If you believe someone is using Perimeter to scan your assets without authorisation, or if you have concerns about misuse, please contact us at legal@useperimeter.com. We take such reports seriously and will investigate promptly.

For security vulnerability reports about the Perimeter platform itself, please see our Responsible Disclosure Policy.