Compute Sandboxes · run9 Agent runtime · smith9 · soon Browser · web9 · soon Data Postgres database · db9 Object storage · drive9 Agent memory · mem9 Secrets · vault9 · soon Intelligence Model gateway · gate9 · soon Skills & tools · hub9 · soon Evals · eval9 · soon Coordinate Queues · task9 Realtime · inbox9 · pulse9 · tape9 Teamwork · chord9 · soon Scheduling · cron9 · soon Operate Observability · owl9 Auth · auth9 · soon All products → Explore Solutions Pricing Customers Enterprise CLI Docs Company GitHub Request access
Legal

Acceptable Use Policy

Last updated: June 6, 2026

This Acceptable Use Policy (“AUP”) sets out what you may and may not do with the sys9 Services. It applies to you and to any agents acting on your behalf, and is part of our Terms of Service. Use common sense: don't use the Services to harm others or break the law.

Prohibited uses

  • Illegal activity, or content that is unlawful, infringing, or violates others' rights.
  • Malware, phishing, spam, or attempts to deceive or defraud.
  • Unauthorized access to systems, data, or accounts — yours or anyone else's.
  • Interfering with or disrupting the Services, other users, or our infrastructure.
  • Circumventing usage limits, isolation boundaries, billing, or access controls.
  • Generating or distributing content that sexually exploits minors or incites violence.

Agent-specific expectations

sys9 is built for fleets of agents. Because agents act fast and at scale, a few rules matter especially:

  • Stay in your sandbox. Don't use forkable sandboxes or shared filesystems to attack, scan, or abuse third-party systems.
  • Respect isolation. Don't attempt to cross tenant or per-agent boundaries, or to access vault grants and secrets you weren't given.
  • Be a good neighbor. Don't deploy agents that mine cryptocurrency, run unrelated bulk compute, or otherwise abuse pay-when-running resources.
  • Respect rate limits. Back off on errors; don't hammer the Services or downstream APIs.
  • Own your agents' actions. You are responsible for what agents you run do with the Services.

Security testing

Test only systems you own or are explicitly authorized to test. To report a vulnerability in sys9 itself, see our security page or email security@sys9.ai — don't test against other tenants or production infrastructure without permission.

Enforcement

We may investigate suspected violations and may suspend or terminate access to protect the Services, other users, or to comply with law. Where practical and appropriate, we'll give notice and a chance to fix the issue.

Reporting abuse

To report abuse of the Services, email abuse@sys9.ai with as much detail as you can provide.

Changes

We may update this policy as the product and threat landscape evolve. We'll update the date above when we do.