Last updated: 19 May 2026 · Effective: 19 May 2026 · Version 1.0
This policy applies to all users of Aitemic and CyberAssure. Violations may result in immediate account suspension and, where appropriate, referral to law enforcement.
1. Permitted use
You may use the Aitemic platform and CyberAssure for:
- Managing Cyber Essentials Plus, ISO 27001, and UK GDPR compliance programmes
- Generating and reviewing security policies for your organisation
- Uploading evidence and documentation related to your organisation's security posture
- Communicating with your Aitemic consultant through the platform
- Using AI features to assist with gap analysis and policy writing
2. Prohibited use
You must not use the platform to:
- Access, copy, or download another organisation's data without authorisation
- Attempt to circumvent authentication or security controls
- Upload or transmit malware, viruses, or malicious code
- Conduct penetration testing, vulnerability scanning, or security assessments against the platform infrastructure
- Use automated tools, bots, or scrapers to extract data
- Submit false or misleading information in compliance assessments
- Use AI features to generate content intended to deceive auditors or certification bodies
- Violate any applicable law or regulation
- Infringe the intellectual property rights of Aitemic or any third party
- Harass, abuse, or threaten any person
- Share your credentials with unauthorised individuals
- Resell, sublicense, or commercialise platform access without written consent
3. AI usage guidelines
When using AI-powered features in CyberAssure:
- Do not attempt to manipulate AI outputs to produce fraudulent compliance documentation
- Do not submit AI-generated content to certification bodies without human review and validation
- Do not attempt to extract training data or probe AI system internals
- Do not use AI features to generate content that is harmful, discriminatory, or unlawful
- Understand that AI outputs are assistance tools — you remain responsible for the accuracy and appropriateness of all compliance submissions
4. Data responsibilities
- You are responsible for ensuring any data you upload is accurate and that you have the right to upload it
- You must not upload personal data beyond what is strictly necessary for the compliance programme
- You are responsible for maintaining appropriate access controls within your organisation
- You must notify us immediately if you suspect a security breach: hello@aitemic.com
5. Enforcement
We reserve the right to:
- Suspend or terminate accounts found to be in violation of this policy
- Remove content that violates this policy without prior notice
- Report illegal activity to relevant authorities
- Pursue civil or criminal action for serious violations
6. Reporting violations
If you become aware of a violation of this policy, please report it to hello@aitemic.com. We take all reports seriously and will investigate promptly.
7. Contact
Questions about this policy: hello@aitemic.com