Platform integrity

Acceptable Use Policy

The baseline conduct required to keep the ApiCredits gateway safe, lawful and reliable.

Effective 15 July 2026Last updated 15 July 2026Hong Kong

Plain-language summary: Use the Service lawfully, protect your key, respect third-party rights and do not attack, deceive or circumvent platform controls. High-impact decisions require qualified human oversight.

1. Purpose

This Acceptable Use Policy applies to all use of the ApiCredits website, account, API keys and gateway. It protects users, upstream providers, third parties and infrastructure. It forms part of the Terms of Service.

2. Illegal or harmful activity

You may not use the Service to violate law or rights; facilitate fraud, theft, exploitation, non-consensual sexual content, child sexual abuse material, credible threats or targeted harassment; or provide material assistance for conduct likely to cause serious physical harm.

3. Security and platform abuse

  • Do not create malware, phishing, credential theft, destructive code or instructions intended to compromise systems or accounts.
  • Do not probe, attack, overload or bypass security, rate, billing, geographic or access controls without written authorisation.
  • Do not automate abusive account creation, payment fraud, scraping, unsolicited messaging or deceptive traffic.
  • Do not conceal a compromised key or knowingly allow another party to misuse your account.

4. High-impact and sensitive uses

Do not use model output as the sole basis for decisions that determine a person's access to employment, housing, credit, insurance, education, medical treatment, legal services or other high-impact opportunities. Qualified human review, appropriate testing, notice and lawful safeguards are required wherever such use is permitted.

5. Content and third-party rights

You must have the rights and lawful basis needed for content submitted through the Service. Do not use the Service to infringe privacy, confidentiality, intellectual property or contractual rights, or to impersonate another person deceptively.

6. Keys, resale and circumvention

API keys are account credentials. You may use a key in authorised internal systems, but may not sell, lease, publicly distribute or sublicense the key or ApiCredits balance without written approval. You may not manipulate requests, accounts or payment flows to obtain credits or usage not purchased.

7. Upstream requirements

A model route may carry additional provider-specific restrictions. You are responsible for using the selected route consistently with those restrictions. If requirements conflict, the stricter applicable rule controls for that route.

8. Enforcement

We may investigate suspected abuse and apply proportionate controls, including rate limits, key rotation, request blocking, balance freeze, suspension or termination. Urgent threats may be addressed without advance notice. Where appropriate, we may preserve evidence and respond to lawful requests from providers or authorities.

9. Reporting concerns

Report a compromised key, vulnerability or suspected abuse through ApiCredits support. Include enough detail to investigate, but do not expose credentials or unrelated personal data.

ApiCredits is based in Kowloon Bay, Hong Kong.