Acceptable Use Policy (AUP)
Governs acceptable and prohibited uses of the Service.
Wooli Acceptable Use Policy Last Updated: June 5, 2026
This Acceptable Use Policy ("AUP") governs your access to and use of the Wooli Subscription Service at apps.wooli.com and the free resource application Explore at explore.wooli.com (together, the "Service"). The Service supports the upload, storage, and management of diverse data (including documents, personal information, and information on others) and features (such as task assignment, file sharing, and team coordination). The Service is provided by Wooli, Inc. ("Wooli," "we," "us," or "our"). Subscriptions to the Service are sold and billed by Wooli and may include content or features provided by affiliated organizations, such as Wooli Safety, Inc.
By accessing or using the Service, you agree to comply with this AUP, the Terms of Service (ToS), the Privacy Policy, and the Data Processing Agreement (DPA), together with any applicable Order Form. You must affirmatively accept this AUP (for example, via a checkbox during signup or login) to use the Service. This AUP is incorporated by reference into the ToS. If you are using the Service on behalf of an Organization, you represent and warrant that you have authority to bind that Organization to this AUP and the ToS. You must comply with all applicable laws in your jurisdiction, including applicable data protection laws. If the Service includes artificial intelligence (AI) features, you agree to use them responsibly and lawfully, avoiding bias or harm.
This AUP is governed by the laws of the State of Florida, and disputes are resolved as provided in the ToS. If any provision is found invalid, the remaining provisions remain in effect. We may update this AUP from time to time, with the current version posted by Wooli and material changes notified by email and through in-Service notifications.
Table of Contents
- 1 Purpose
- 2 Definitions
- 3 Acceptable Use
- 4 Prohibited Activities
- 5 Security and Privacy Responsibilities
- 6 Compliance with Laws and Regulations
- 7 Enforcement and Consequences of Violations
- 8 User Responsibilities
- 9 Reporting Violations
- 10 Amendments
- 11 Contact Information
- 12 Reference Links
1 Purpose
The purpose of this AUP is to ensure the integrity, security, reliability, and lawful use of the Service. It outlines acceptable behaviors and prohibits actions that could harm the Service, other users, or third parties. This AUP supports a safe and productive environment for collaboration and data management, and helps facilitate compliance with applicable data protection laws and individual rights (e.g., data access or deletion requests). If the Service includes AI features, this AUP promotes their responsible use to prevent bias or harm.
Explore (Free Resources): If you access Explore without a Subscription, this AUP applies to your use of Explore as well. References in this AUP to a Subscription, an Order Form, or use for internal business purposes apply only where you have a Subscription; the lawful-use, prohibited-conduct, and security obligations apply to all use of the Service, including Explore.
2 Definitions
The following terms supplement those defined in the Terms of Service:
- User: Any individual authorized to access the Service under your Account, including employees, contractors, or collaborators.
- End User: An individual using the Service under your Account, distinct from the account holder who manages the Subscription.
- Authorized User: An End User explicitly granted access by the account holder, with defined permissions for the Service's features.
- User Content: All information, data, documents, or content you or your Users upload, submit, store, or process through the Service, including content in collaborative features.
- Sensitive Personal Data: Categories of Personal Data that require additional protection under applicable law, such as racial or ethnic origin, religious beliefs, genetic or biometric data, health data, or financial account information.
- Protected Health Information (PHI): Health-related data as defined under the HIPAA Privacy Rule, requiring specific safeguards.
- Nonpublic Personal Information (NPI): Personal financial information as defined under the Gramm-Leach-Bliley Act (GLBA), requiring specific consents.
- High-Risk Activities: Uses of the Service where failure could lead to death, injury, property damage, or environmental harm (e.g., medical diagnostics, critical infrastructure management).
- Partner: An organization affiliated with Wooli, Inc. (a sister company), such as Wooli Safety, Inc., that provides content or features made available through the Service.
- Subscription: Your access to the Service, as specified in your Order Form.
3 Acceptable Use
You may use the Service only for lawful internal business purposes, as specified in your Order Form, and in accordance with this AUP, the ToS, and any documentation or guidelines provided by Wooli. Acceptable uses include:
- Using the Service's features, such as assigning tasks, sharing files, and coordinating teams, using delegation features rather than sharing credentials.
- Managing and storing Customer Data, such as documents and Personal Data, in compliance with applicable data protection laws, including implementing encryption for uploads where applicable.
- Accessing the Service through authorized Accounts and devices.
- Reporting suspected violations or security issues to Wooli promptly via the Privacy Contact.
- Using AI features, if available, responsibly to promote fair and unbiased collaboration.
You must ensure that all Users under your Account are aware of and comply with this AUP, including obtaining any necessary consents before sharing Personal Data in collaborative features.
4 Prohibited Activities
You and your Users must not engage in activities that violate this AUP, the ToS, or applicable laws. Prohibited activities are divided into Content Violations, Platform Misuse, and Third-Party Integrations. Violations may trigger data quarantine to protect sensitive information.
4.1 Content Violations
You may not collect, upload, transmit, display, share, or distribute any User Content that:
- (i) Violates any third-party right, including copyright, trademark, patent, trade secret, moral right, privacy right, right of publicity, or other intellectual property or proprietary right.
- (ii) Is unlawful, fraudulent, harassing, abusive, tortious, threatening, harmful, invasive of another's privacy, vulgar, defamatory, false, intentionally misleading, libelous, pornographic, obscene, patently offensive, or promotes racism, bigotry, hatred, or physical harm against any group or individual.
- (iii) Is harmful to minors, including exposing them to inappropriate content, soliciting their Personal Data, or involving non-consensual explicit imagery or child sexual exploitation material, as prohibited under COPPA and similar laws.
- (iv) Violates any law, regulation, or third-party obligation, including applicable data protection laws or industry-specific regulations (e.g., HIPAA, GLBA), or involves processing Personal Data without a lawful basis.
- (v) Constitutes Protected Health Information under the HIPAA Privacy Rule unless your Subscription explicitly enables HIPAA compliance and you have obtained all necessary consents and implemented safeguards, including a Business Associate Agreement (BAA).
- (vi) Constitutes Nonpublic Personal Information under the GLBA unless permitted in your Subscription with appropriate consents and safeguards.
- (vii) Includes Sensitive Personal Data (e.g., racial or ethnic origin, religious beliefs, genetic or biometric data) without obtaining all necessary consents and complying with applicable law.
- (viii) Promotes illegal activities, such as drug use, terrorism, human trafficking, or counterfeiting.
- (ix) Is malicious or destructive, such as viruses, worms, trojan horses, spyware, or other harmful software.
- (x) Uses AI to generate deceptive, biased, or harmful content in the Service's features.
4.2 Platform Misuse
You may not:
- (i) Upload, transmit, or distribute viruses, worms, or malicious software intended to damage or alter the Service or its data.
- (ii) Send unsolicited or unauthorized advertising, promotional materials, junk mail, spam, chain letters, pyramid schemes, or other duplicative messages through the Service.
- (iii) Harvest, collect, or assemble Personal Data about other Users (e.g., email addresses) without their explicit consent.
- (iv) Interfere with, disrupt, or create an undue burden on servers or networks connected to the Service, or violate their regulations, policies, or procedures.
- (v) Attempt unauthorized access to the Service or connected systems through password mining, hacking, or other means.
- (vi) Harass, bully, or interfere with other Users' use and enjoyment of the Service.
- (vii) Use automated agents, scripts, bots, or similar tools to create multiple Accounts, generate automated searches, scrape data, or otherwise abuse the Service.
- (viii) Misuse the Service's features (e.g., sharing sensitive data without consent in shared tasks, files, or teams; impersonating others; or using features to facilitate fraud).
- (ix) Reverse engineer, decompile, disassemble, or otherwise attempt to derive the source code or underlying structure of the Service.
- (x) Use the Service to compete with Wooli or copy its features, functions, or graphics.
- (xi) Access or use the Service to avoid fees, such as sharing Account credentials or repeatedly transferring subscriptions inappropriately.
- (xii) Use the Service for High-Risk Activities where failure could lead to death, injury, property damage, or environmental harm.
- (xiii) Violate international sanctions or export control laws (e.g., EAR, ITAR).
4.3 Third-Party Integrations
You may not:
- (i) Use third-party tools or integrations to bypass this AUP, the ToS, or the Service's security measures.
- (ii) Share User Content with third-party platforms without verifying their compliance with applicable laws.
- (iii) Introduce vulnerabilities or malicious code through integrations.
5 Security and Privacy Responsibilities
- Maintain the security of your Account, including using strong passwords and enabling multi-factor authentication where available.
- Do not share login credentials or allow unauthorized access.
- Comply with all applicable data protection laws when handling User Content, including obtaining necessary consents for sharing Personal Data in collaborative features.
- For HIPAA-enabled Subscriptions, execute and maintain a Business Associate Agreement (BAA) with Wooli.
- Report any security incident, breach, or suspected violation to Wooli via the Privacy Contact without undue delay. Wooli will acknowledge and address reported breaches as required by applicable law.
- Wooli may monitor usage using automated tools to ensure compliance, but is not obligated to do so and will not conduct routine content reviews without cause.
6 Compliance with Laws and Regulations
You must use the Service in compliance with all applicable laws, including but not limited to:
- Data privacy laws (e.g., the CCPA and other U.S. state privacy laws; COPPA for children's data).
- Health data regulations (e.g., HIPAA).
- Financial data regulations (e.g., GLBA; PCI DSS for payment data).
- Intellectual property laws.
- Anti-spam laws (e.g., the CAN-SPAM Act).
- Export control laws (e.g., EAR and ITAR).
- Any other regulations applicable in your jurisdiction.
You agree to indemnify and hold Wooli harmless from any claims, losses, or liabilities arising from your failure to comply with applicable laws, as provided in the ToS.
7 Enforcement and Consequences of Violations
Wooli reserves the right, but not the obligation, to monitor, review, refuse, or remove any User Content and to investigate violations of this AUP. If we determine, based on reasonable evidence, that you or your Users have violated this AUP, the ToS, or applicable laws, we may take actions including:
- Removing or modifying offending User Content, including quarantining data to protect sensitive information (e.g., under HIPAA or GLBA).
- Suspending or terminating your Account or access to the Service.
- Reporting violations to law enforcement or regulatory authorities.
- Pursuing legal remedies.
You may appeal a suspension or termination within 30 days by contacting the Privacy Contact and providing evidence to support your case. Wooli is not liable for any loss or damage resulting from enforcement actions, as provided in the ToS.
8 User Responsibilities
- Ensure all Users comply with this AUP, including providing training on AUP requirements as part of your compliance program.
- Obtain necessary consents for uploading or sharing Sensitive Personal Data, PHI, or NPI, and delete such data when it is no longer needed.
- Notify Wooli of any change in your compliance status (e.g., enabling HIPAA features) via the Privacy Contact.
- Cooperate with Wooli in investigations, including providing requested information promptly.
- For Subscriptions involving sensitive data, facilitate any third-party audits needed to demonstrate GLBA or HIPAA compliance.
9 Reporting Violations
If you become aware of any violation of this AUP, report it promptly via the Privacy Contact or through the Wooli Reporting Form, including details such as the nature of the violation, the Users involved, and supporting evidence. Wooli will acknowledge reports within 48 hours and may report violations to regulators as required by law. You may report anonymously where permitted.
10 Amendments
Wooli may amend this AUP from time to time by posting the revised version, with material changes (e.g., new prohibitions or compliance requirements) notified by email and through in-Service notifications. If you do not agree to a change, you may stop using the Service and cancel your Subscription as described in the ToS. Continued use after the effective date constitutes acceptance.
11 Contact Information
For questions about this AUP, to report issues, or to exercise data rights, contact us at:
- Email: privacy@wooli.com
- Address: Wooli, Inc., PO Box 39, Estero, FL 33929
- Online: through the Wooli Website
This AUP is governed by the laws of the State of Florida, and disputes are resolved as provided in the ToS. Wooli is responsible for responding to inquiries about this AUP.
12 Reference Links
The websites, pages, policies, and contact addresses referenced in this AUP are listed below. Where this AUP refers to a Wooli website, page, policy, or contact by name (for example, the Wooli Website, the Terms of Service, the Privacy Policy, the Data Processing Agreement, the Wooli Reporting Form, or the Privacy Contact), that reference means the corresponding resource identified in this section. Wooli may update the links below from time to time without altering the substance of this AUP.
| Resource | Link |
|---|---|
| Wooli Website | www.wooli.com |
| Explore (Free Resources) | explore.wooli.com |
| Subscription Service (App) | apps.wooli.com |
| Terms of Service (ToS) | www.wooli.com/legal/terms |
| Privacy Policy | www.wooli.com/legal/privacy |
| Data Processing Agreement (DPA) | www.wooli.com/legal/dpa |
| Wooli Reporting Form | www.wooli.com/legal/report |
| Privacy Contact | privacy@wooli.com |