Acceptable Use Policy

This AUP applies to all Lyrie AI services including the web platform, WAF, vulnerability scanners (LyrieHEX, OMEGA), Lyrie Remedy, Lyrie AI Security & Privacy (desktop and mobile), Captcha, Data Breach Monitoring, APIs, SDKs, WordPress plugin, and browser extension.

You may not use the Services to:

• Unauthorized scanning: Scan, probe, or test systems, networks, or domains you do not own or have explicit written authorization to test. This includes running LyrieHEX or OMEGA against third-party infrastructure without permission.
• Attack or abuse: Launch, facilitate, or amplify DDoS attacks, brute-force attacks, or other cyber-attacks against any target using Lyrie infrastructure.
• Reverse engineering: Decompile, reverse engineer, disassemble, or attempt to extract source code from any Lyrie software, including the desktop agent, WAF proxy, or APIs.
• Credential sharing: Share account credentials, API keys, or license keys with unauthorized third parties, or operate multiple free accounts for the same person or entity.
• Resale without authorization: Resell, sublicense, or redistribute Lyrie services without a written reseller agreement.
• Circumvention: Attempt to bypass rate limits, billing controls, plan restrictions, WAF protections on your or others' domains, captcha challenges, or any security controls.
• Illegal use: Use the Services for any purpose that violates applicable law, including but not limited to fraud, money laundering, distribution of malware, child exploitation material, or harassment.
• Interference: Intentionally interfere with or degrade the performance of the Services for other customers.
• False information: Provide false identity information during registration or misrepresent your authorization to scan target domains.
• Data harvesting: Use the Services to collect personal data of third parties without their consent or a valid legal basis.

When using LyrieHEX, OMEGA, or any Lyrie scanning tool:

• You must own or have explicit written authorization to scan the target domain, IP, or infrastructure.
• Scans must be run against your verified domains within the Lyrie platform. Domain verification (DNS TXT record or CNAME) confirms ownership.
• You accept full responsibility for any consequences of scanning, including but not limited to service disruption caused by aggressive scan configurations.
• Lyrie may suspend scanning capabilities if misuse is detected.

Lyrie Remedy connects to your server infrastructure to apply automated vulnerability fixes. By using Remedy:

• You authorize Lyrie to execute code changes on your servers within the scope of approved fix plans.
• You are responsible for reviewing fix plans before approval and for testing changes in staging environments where possible.
• Lyrie is not liable for issues arising from automated remediation. Rollback capabilities are provided for all Remedy actions.

Lyrie AI Security & Privacy (desktop and mobile) operates with system-level permissions. Users must:

• Only install the agent on devices they own or are authorized to manage.
• Not attempt to tamper with, disable, or reverse-engineer the tamper protection features except through the authorized uninstallation process (which requires account verification).
• Understand that the agent monitors processes, file system activity, network connections, and USB devices for security purposes.

Lyrie APIs and SDKs (PHP, JavaScript, WordPress) are subject to:

• Rate limits as defined by your plan tier. Exceeding rate limits results in HTTP 429 responses; persistent abuse may result in key revocation.
• API keys must be stored securely and never exposed in client-side code, public repositories, or logs.
• Automated usage must include a descriptive User-Agent header identifying your application.

Lyrie reserves the right to:

• Warn: Issue a written warning for first-time or minor violations.
• Restrict: Temporarily restrict specific features (scanning, API access, Remedy) while investigating a potential violation.
• Suspend: Suspend the account immediately for serious or ongoing violations.
• Terminate: Permanently terminate the account for egregious violations, with or without notice.

In all cases, Lyrie will make reasonable efforts to notify the account holder, except where doing so would compromise an ongoing investigation or endanger other users.

To report a suspected violation of this AUP, contact [email protected] with as much detail as possible. Reports are reviewed within 2 business days.

We may update this AUP from time to time. Material changes will be posted here and communicated to registered users via email. Continued use of the Services after changes constitutes acceptance.