Legal
Acceptable Use Policy
Last updated: June 2026
This Acceptable Use Policy (“AUP”) governs all access to and use of Lowkey's scraper API, enrichment pipeline, and any data products or datasets delivered through the platform (collectively, the “Data Services”). It supplements and is incorporated by reference into the Terms of Service.
Lowkey's Data Services collect publicly accessible business information — including company names, websites, registered addresses, contact emails, and web-performance metrics — and resell or deliver that enriched data to subscribers. This AUP ensures such data is used responsibly, lawfully, and respectfully.
1. Permitted Uses
You may use the Data Services and any delivered datasets to:
- Identify and qualify prospective business clients for legitimate B2B sales and marketing outreach.
- Conduct market research, competitive analysis, or industry benchmarking in an aggregate or anonymised manner.
- Enrich your internal CRM or database with business-contact information for lawful B2B communications.
- Verify business details (e.g. website status, contact accuracy) for due diligence or compliance purposes.
- Build products or services that help businesses understand their public-facing digital presence.
2. Prohibited Uses
You must not use the Data Services to:
- Target or profile private individuals (consumers) without their explicit consent. The data is for B2B use. Consumer personal data covered by GDPR, PIPEDA, CAN-SPAM, CASL, or equivalent law must be handled in compliance with those regulations.
- Build or train AI models intended to generate impersonation content, deep-fakes, or disinformation at scale.
- Facilitate harassment, stalking, discrimination, or any form of harm against individuals or groups.
- Violate any applicable privacy law, including but not limited to GDPR, UK GDPR, PIPEDA, CASL, CAN-SPAM, CCPA, or Australia's Privacy Act.
- Send unsolicited bulk communications (spam) in violation of applicable anti-spam law.
- Resell, sublicense, or redistribute raw scraped data to third parties without our prior written consent.
- Use the data to compile “people-search” directories, consumer profiles, or credit-related assessments.
- Attempt to re-identify individuals from aggregated or anonymised datasets.
- Use the API in a manner that bypasses technical access controls, rate limits, or authentication.
- Interfere with the availability or integrity of the Data Services or any third-party systems.
3. Lawful Basis and Compliance
You are solely responsible for identifying and maintaining a valid legal basis for any processing you perform on data obtained through the Data Services. This includes:
- Legitimate interest assessments where applicable under GDPR/PIPEDA.
- Honouring opt-out requests received from individuals in your outreach.
- Maintaining suppression lists and not re-contacting individuals who have opted out.
- Complying with unsubscribe obligations in CASL, CAN-SPAM, and equivalent legislation.
- Providing recipients a clear and easy mechanism to opt out of future contact.
4. Opt-Out and Takedown
Any individual or business that believes their information is included in our datasets and wishes to be excluded may submit a takedown or opt-out request to:
contact@lowkeyagency.com — subject line: Data Opt-Out Request
- We will acknowledge your request within 5 business days.
- We will investigate and process valid requests within 30 days.
- If we determine the information is appropriately excluded, we will add it to our suppression list and propagate the removal to subscribers on their next data refresh cycle.
- We will notify you of the outcome in writing.
Subscribers who receive a takedown request from a data subject must honour it promptly and notify us so we can update suppression lists across the platform.
5. Rate Politeness and API Etiquette
Our scraping infrastructure is designed to be a polite citizen of the web. You must not use the API in ways that contradict this. Specifically:
- Observe all rate limits communicated via response headers (X-RateLimit-* headers). Implement back-off when you receive 429 Too Many Requests.
- Do not attempt to circumvent rate limits through rotating credentials, proxy abuse, or parallel account use.
- Do not submit duplicate or redundant scrape jobs that waste compute and network resources.
- Do not instruct the system to re-scrape a domain more frequently than once per 24 hours unless explicitly authorised.
- Do not use the API to launch denial-of-service or overload attacks against third-party websites.
- Do not configure scrape tasks to ignore robots.txt directives or crawl-delay settings declared by the target.
Our system enforces crawl delays, respects robots.txt, and rotates requests responsibly. You must not attempt to disable or bypass these controls.
6. Data Quality and Accuracy
Data delivered through the platform reflects publicly available information at the time of collection. We do not guarantee accuracy or completeness. You must not use this data for high-stakes decisions (e.g. credit scoring, legal proceedings, medical decisions) without independent verification.
7. Security Responsibilities
- Keep your API keys confidential. Rotate immediately if compromised.
- Do not embed API keys in client-side code, public repositories, or unencrypted storage.
- Report suspected key compromise or security issues to security@lowkeyagency.ca promptly.
8. Enforcement
Violation of this AUP may result in, at our sole discretion:
- Suspension or termination of your account without refund.
- Blocking of IP addresses, API keys, or domains associated with the violation.
- Reporting to relevant authorities where required by law.
- Civil or criminal action where warranted.
We reserve the right to investigate suspected violations. Cooperation with such investigations is a condition of continued access.
9. Changes to This AUP
We may update this AUP to reflect changes in our Services, the law, or industry practice. We will notify subscribers of material changes via email with at least 14 days' notice. Continued use after the effective date constitutes acceptance.
10. Contact
Questions about this AUP: contact@lowkeyagency.com
This policy does not constitute legal advice. Consult qualified counsel to understand your specific obligations under applicable privacy and anti-spam law.