Skip to content
cantila

Legal

Acceptable use policy

Effective 2026-05-28

This AUP describes what Cantila does not permit. Breaking these rules can get your account suspended or terminated.

1. The bright lines

You may not use Cantila to host, send, store, or distribute:

  • Content that is illegal under applicable law.
  • Child sexual abuse material (CSAM). Any reports are forwarded to NCMEC and law enforcement.
  • Material that incites violence, terrorism, or genocide.
  • Malware, ransomware, worms, exploit kits, or other harmful code intended to compromise other systems.
  • Phishing pages, credential-harvesting kits, or fraudulent sites impersonating legitimate brands.
  • Unsolicited bulk email, SMS, or voice calls — see also our Mail and SMS sending policies below.
  • Material that infringes intellectual property rights you don't have a licence to use.
  • Content that violates someone's privacy — doxing, non-consensual intimate imagery, unauthorised personal data.

2. No attacks on other systems

  • No DoS / DDoS launch infrastructure.
  • No network scanning, port scanning, or vulnerability probing of systems you don't own.
  • No brute-forcing, credential stuffing, or password spraying.
  • No proxy / VPN / Tor exit infrastructure for the purpose of evading abuse controls.
  • No cryptocurrency mining on the Hobby tier; on paid tiers, mining is allowed only if it doesn't degrade the fleet.

3. Email (Cantila Mail, when live)

  • You must own or have permission to send from any domain you send from.
  • You must honor unsubscribe requests within 10 days.
  • You may not send to lists you didn't collect yourself with opt-in consent.
  • You must include a working physical mailing address per CAN-SPAM and CASL.
  • Sustained bounce rate above 5% triggers automated throttling and a deliverability review.

4. SMS / voice (Cantila SMS, when live)

  • You must comply with TCPA, A2P 10DLC, and the campaign registration you submitted.
  • STOP / START / HELP keywords must function (Cantila handles them by default — don't disable).
  • No calls or texts to numbers on the national do-not-call registry without a valid existing relationship.

5. Resource use

  • Plan allowances are documented at cantila.app/pricing.
  • Sustained 100% CPU usage at the plan ceiling without scaling up is a candidate for throttling.
  • Don't intentionally degrade the shared fleet for other tenants. The Capacity agent watches.

6. Account integrity

  • One person, one account. Sub-accounts under an Agency plan are allowed; sock-puppet free-tier accounts are not.
  • Don't resell Cantila to third parties without the Agency or Reseller plan.
  • API keys are personal — don't share them across organisations.

7. Reporting abuse

See something hosted on Cantila that violates this AUP? abuse@cantila.app. Include the URL and a description; Cantila investigates and responds.

8. Enforcement

We try to give notice and a cure period before suspension. Severe or repeated violations skip the cure period. Cantila reserves the right to remove offending content immediately when delay would cause harm.