Acceptable Use Policy.

This Acceptable Use Policy (“AUP”) applies to everything you do with your Spark Account and the Sparkden services you reach with it — every site, project, file, and network connection.

It exists to keep people safe, keep the platform alive for everyone, and keep Sparkden on the right side of the law. It's part of our Terms of Service. The lists below give examples; they don't cover every possible bad idea. If something is clearly harmful, illegal, or abusive, assume it's not allowed even if it isn't named here.

Don't use the services to do, host, enable, or promote anything illegal. That includes:

• Anything involving the sexual exploitation or abuse of children. We report child sexual abuse material (CSAM) to the authorities, always. There is zero tolerance and no warning.
• Fraud, scams, phishing, fake stores, or stealing money, identities, or accounts.
• Selling or distributing illegal drugs, weapons, stolen data, or other illegal goods.
• Content that's illegal where you are or where it's hosted, or that violates sanctions or export laws.
• Helping other people do any of the above.

Don't use the services to hurt, threaten, or endanger anyone. No:

• Harassment, bullying, stalking, or threats of violence.
• Doxxing — publishing someone's private information to target them.
• Hate speech or content that attacks people for who they are.
• Content that encourages self-harm, suicide, or violence against others.
• Non-consensual intimate images, or sexual content involving anyone who is or appears to be a minor.

We love that you're curious about security. Learn all you want on systems you own or have written permission to test. You may not use the services to attack or break into anything else. No:

• Hacking, unauthorized access, or trying to get into systems, accounts, or data that aren't yours.
• Denial-of-service (DoS/DDoS) attacks, floods, or stress-testing other people's services.
• Port scanning, vulnerability scanning, or probing networks you don't own or have permission to test.
• Building, hosting, or running malware, ransomware, botnets, or command-and-control (C2) servers.
• Credential stuffing, brute-forcing, or cracking passwords, keys, or licenses — including against Spark Account sign-in.

• Spam or unsolicited bulk email, messages, or comments. Outbound email is restricted on the platform.
• Open proxies, open relays, anonymizers, or VPN/exit services meant to hide abuse.
• Click fraud, fake traffic, bots that abuse other services, or scraping in violation of others' terms.
• Cryptocurrency mining and similar “proof-of-work” workloads — they're not allowed on any plan.
• Anything that gets the platform's servers or IP addresses blocklisted.

Don't host or share content you don't have the rights to — pirated software, movies, music, games, or anyone else's work passed off as your own. We respond to valid copyright complaints under the DMCA and will remove infringing material and terminate repeat infringers. Send copyright notices to dmca@sparkden.org.

• Don't try to escape your sandbox, access other users' data, or reach our internal systems.
• Don't get around resource limits, quotas, billing, bans, or rate limits.
• Don't abuse Spark Account sign-in or OAuth — no fake apps, phishing consent screens, or harvesting other users' tokens or data.
• Don't run workloads that are really just about reselling our compute, or that exist only to drain free resources.
• Don't share, sell, or transfer your account, or create accounts to dodge a suspension.
• Don't interfere with other users' projects or the service's stability.

To keep everyone safe and the platform healthy, we automatically log activity and network behavior — including account actions, IP addresses, and approximate location. We use this to detect and stop abuse, and we may suspend instances automatically when they behave like an attack (for example, sudden outbound scanning or mining). The details are in our Privacy Policy.

We don't routinely read the content of your private projects, but we may access what's necessary to investigate a specific abuse report, security incident, or legal request.

Depending on how serious it is, we may:

• Warn you and ask you to fix it;
• Suspend or throttle the project or account;
• Remove content or shut down instances, sometimes immediately and without notice;
• Permanently terminate the account (we terminate repeat offenders); and
• Preserve evidence and report to law enforcement where the law requires it or where people are at risk.

If you're a minor, we may also contact your parent or guardian.

If you discover a vulnerability in Spark Account or any Spark service, please report it responsibly to security@sparkden.org instead of exploiting it. Give us reasonable time to fix it, don't access other people's data, and we'll treat good-faith research kindly — that's the opposite of breaking this policy.

Report abuse or harmful content to abuse@sparkden.org. Copyright notices go to dmca@sparkden.org. Conduct concerns inside the community go to conduct@sparkden.org.

Version 2026-06-02 · Last updated June 2, 2026