Acceptable Use Policy

A “Client” is any party who purchases a Service from RFA.

This RFA acceptable usage policy ("AUP") defines certain constraints relating to a client's or Third Party's access to and use of RFA Services under any RFA-related agreement ("Agreement"). The restrictions listed in this AUP are not all-inclusive. The meaning of any capitalised phrases used but not defined above is specified in the Agreement. RFA retains the right to update this AUP at any time with reasonable notice, which may be conveyed through the RFA Services supplied or by posting an updated version of this AUP on the RFA website.

The use of those Services by a Client is subject to the terms and conditions of any agreements entered into by such Clients and RFA. This AUP is incorporated into such agreements by reference. Certain products or services provided through RFA may have additional terms and conditions, which govern in the event of any inconsistency with this AUP. Please refer to the specific products and services terms and conditions and the agreements under which such products and services are being provided for further information.

Updates to the AUP become effective thirty (30) days after publication or the date specified in the updated AUP, including for current users. Any modifications to the AUP contained in an update will only affect limits on RFA Services use and access. Any violation of this AUP may result in the suspension or termination of your access to and use of the RFA Services.

Clients and Third Parties shall not (and shall not permit their Authorised Users to):

1. attempt to access, search, or create accounts for any of our services by any means other than that agreed within the valid agreements or as otherwise authorised by RFA;

2. create multiple accounts for the purpose of extending any trial where applicable;

3. interfere with or disrupt (or attempt to interfere with or disrupt) the RFA Services, or obtain (or attempt to gain) access to any Systems that link to them (unless as required to access and use the RFA Services appropriately);

4. use the RFA Services to violate the security or integrity of, or otherwise abuse, any party's System (including, without limitation, the Platform Services or Support Services), including but not limited to gaining unauthorised access to any System (including attempting to probe, scan, monitor, or test a System's vulnerability), forging any headers or other parts of any message describing its origin or routing, interfering with the proper functioning of any System (including any deliberate attempt by any means to overload a System), implementing denial-of-service attacks, operating non-permissioned network services (including open proxies, mail relays or recursive domain name servers), using any means to bypass System usage limitations, or storing, transmitting or installing malicious code;

5. use the RFA Services to distribute or facilitate the sending of unsolicited or unlawful (i) email or other messages, or (ii) promotions of any kind;

6. use the RFA Services to engage in or promote any other fraudulent, deceptive or illegal activities;

7. use the RFA Services to process, store or transmit material, including any Customer Data, in violation of any Law or any third-party rights, including without limitation privacy rights;

8. disclose any benchmarking of the RFA Services;

9. or use the RFA Services in any circumstances where failure could lead to death, personal injury or environmental damage, and you further acknowledge that the RFA Services are not designed or intended for such use.

Customer and User Responsibilities

Notice of Network Security Issues Customers and Users are entirely responsible for maintaining the confidentiality of password and account information, as well as the security of their network. Customers and Users agree to immediately notify RFA of any unauthorised use of their accounts or any other breach of security known to you. If the Client or User becomes aware of any violation of this AUP by any person, including Users that have accessed the Services through Client’s account, the Client or User is required to notify RFA.

Impending Security Event Notification All Users of RFA Services are responsible for notifying RFA immediately if they become aware of an impending event that may negatively affect RFA, its Services or any of its Networks or Systems. This includes extortion threats that involve threat of “denial of service” attacks, unauthorised access, or other security events.

Inactive accounts:

If RFA discovers an inactive account, the account may be suspended or cancelled, and any Customer Content associated with such account may be erased. RFA will give you at least 30 days' notice (as required by the Agreement) before permanently deleting your account, unless we believe it is reasonable to suspend or terminate your account without notice. To avoid ambiguity, if we conclude that the email address connected with your account is invalid (for example, because it bounces after we notify you of inactivity), we may delete your account without further notice. An account may be considered inactive if:

• No Customer Authorised User has used RFA Services for at least six months;

• No Customer Instructional Input was ever created within or input into the account and at least three months has passed since the account was established; or

• If an account is set up to be paid by direct debit, the Client  (i) did not provide a valid bank account number and at least three months has passed without a valid account number being on file, provided that for the avoidance of doubt this provision does not limit RFA’ right to terminate an account for non-payment relating to actual usage.

Refreshing Client Data

Client’s are required under agreement to ensure that they refresh all data provided by RFA every three months to ensure compliance with the Data Protection Act 2018 and GDPR. This ensures sufficient provisions to meet the requirements of those applicable Data Laws and Regulations above and all such provisions relating to agreements between a business, a service provider and customers in order to avoid unlawful processing of any personal data. 

Information Security Requirements

Under RFA’s Terms and Conditions all Clients and Third Parties are required under Agreement to ensure they have adequate and appropriate information security measures in place for the protection of their systems and data. From time-to-time RFA will audit all parties under agreement to ensure such security protection measures are in place and appropriate to safeguard it’s own processes and those of its customers.

Suspension or Termination of Services 

If Clients or Users engage in conduct or a pattern of conduct, including without limitation repeated violations by a User whereby correction of individual violations does not, in RFA’s sole discretion, correct a pattern of the same or similar violations, whilst using the Services that violates the AUP, or is otherwise illegal or improper, RFA reserves the right to suspend and/or terminate the Services or the User's access to the Services. RFA will generally attempt to notify the Client or User of any activity in violation of the AUP and request that the User cease such activity; however, in cases where the operation of RFA’s Network is threatened or cases involving unsolicited commercial e-post/spam, a pattern of violations, post relaying, alteration of the Client's or User's source IP address information, denial of service attacks, illegal activities, suspected fraud in connection with the use of Services, harassment or copyright infringement, the Company reserves the right to suspend or terminate the Services or the User's access to the Services without notification.

Nothing in this Acceptable Use Policy limits RFA’s rights and remedies (available at law or in equity) in any way with respect to any Prohibited Activity. RFA shall fully co-operate with any law enforcement authorities or court order requesting or directing RFA to disclose the identity or locate anyone posting any material in breach of this policy.

IT IS RECOMMENDED THAT YOU PRINT A COPY OF THIS POLICY FOR YOUR OWN REFERENCE PURPOSES

Last Modified August 2022