§ 1The spirit of this policy
Boatcheckin is trusted by charter operators to hold records that matter documentation that a regulator, an insurer, or an attorney may eventually rely on. That trust is fragile. A small number of bad actors, left unchecked, can erode it for everyone.
This AUP describes the uses of the Services that undermine that trust. We'd rather state these clearly, once, than guess at intent later. If your use is plainly within this list, we will act. If we're uncertain, we will ask but we reserve the right to suspend access while we do.
How this list works
The list below is not exhaustive. Conduct that is not explicitly enumerated but is clearly within the spirit of a prohibition is still prohibited. We apply these rules consistently and in good faith.
§ 2Illegal or harmful conduct
You may not use the Services to engage in activity that is illegal, harmful, or tortious. This includes, without limitation:
✕
Violate the law.
Any use that violates applicable federal, state, or local law including laws governing charter operations, passenger transport, livery rentals, maritime safety, licensing, taxation, sanctions, and export control.
✕
Commit fraud.
Misrepresent your identity, your credentials, your vessel, your insurance, your authorization to operate, or any other material fact to Boatcheckin or to another user of the Services.
✕
Harass, threaten, or endanger.
Use the Services to stalk, threaten, harass, defame, or attempt to harm any person, including through the content sent via trip links or operator communications.
✕
Exploit minors.
Any use of the Services that would facilitate harm, exploitation, or unlawful contact involving a minor. This is treated as an immediate-termination offense and reported to authorities where required by law.
§ 3Charter-specific prohibitions
Because Boatcheckin's purpose is recordkeeping, the integrity of the record is non-negotiable. You may not:
✕
Falsify trip records.
Manufacture, alter, or misrepresent waiver signatures, safety attestations, manifests, or any other record. This includes creating records for trips that did not occur, altering timestamps, or falsifying the identity of passengers aboard.
✕
Sign on behalf of a Guest.
A waiver must be signed by the Guest themselves (or by a parent or legal guardian for a minor, where lawful). Signing on another adult Guest's behalf without their authorization is prohibited and may violate state electronic signature law.
✕
Use Boatcheckin to operate without required credentials.
You may not use the Services to support operations for which the Operator, the Captain, or the vessel lacks required licenses, certifications, inspections, or insurance.
✕
Use the Services as a substitute for the Captain.
The Services do not replace the judgment of the licensed Captain. You may not misrepresent to Guests or regulators that Boatcheckin performs functions it does not perform including safety certification, compliance certification, or go/no-go decisions.
✕
Misuse insurance references.
Where the Services reference insurance partners, you may not represent to Guests or regulators that Boatcheckin sells, administers, or underwrites insurance. Boatcheckin does none of those things.
§ 4Platform abuse
You may not interfere with the availability, reliability, or integrity of the Services.
✕
Overwhelm or disrupt.
Launch denial-of-service attacks, flood the Services with traffic, submit malformed requests designed to crash or degrade performance, or otherwise interfere with normal operation.
✕
Scrape at scale.
Automated scraping, mass data extraction, systematic harvesting of Guest information, or circumventing rate limits through technical means is prohibited. Normal use of the Services including export of your own data through the intended UI is not restricted.
✕
Reverse engineer.
Decompile, disassemble, or reverse-engineer the Services, except to the limited extent applicable law expressly permits despite this restriction.
✕
Create derivative or competing services.
Use the Services to benchmark for a competing product, build a competing service, or train machine learning models, without our prior written consent.
✕
Submit harmful content.
Upload, transmit, or distribute viruses, worms, trojans, malware, or other code intended to disrupt, damage, or gain unauthorized access to any system.
§ 5Security violations
You may not compromise the security of the Services or of any user.
✕
Access without authorization.
Attempt to access accounts, trips, records, or data you are not authorized to access; probe or test vulnerabilities without following our disclosure program; or exploit any discovered vulnerability for purposes beyond responsible demonstration.
✕
Misuse authentication.
Share credentials with unauthorized parties, impersonate another user, bypass authentication mechanisms, or use stolen credentials.
✕
Tamper with records.
Attempt to modify audit logs, alter cryptographic hashes, backdate signatures, or otherwise defeat the record-integrity mechanisms that make Boatcheckin useful to Operators.
§ 6Communications abuse
You may not misuse Boatcheckin's communication features.
✕
Send unsolicited communications.
Use trip links, Operator emails, or SMS tools to send unsolicited bulk messages, spam, or marketing to individuals who have not consented. Our SMS and email capabilities are for operational trip communications not for mass marketing.
✕
Violate TCPA, CAN-SPAM, or similar laws.
Any use that violates the Telephone Consumer Protection Act, CAN-SPAM Act, or equivalent law in the recipient's jurisdiction is prohibited regardless of the content of the message.
✕
Misrepresent the sender.
Forge headers, spoof sender identity, or otherwise disguise the origin of any communication sent through the Services.
§ 7Privacy violations
You may not use the Services to violate the privacy of other users.
✕
Collect Guest data unlawfully.
Use Boatcheckin to collect Guest information for any purpose the Guest has not reasonably anticipated, without a lawful basis, or in violation of applicable privacy law. Operators remain the controller of the Guest data they collect.
✕
Sell or share Guest data.
Sell, license, or otherwise transfer Guest information to third parties for their independent marketing or profiling purposes without explicit consent from the Guest where consent is required.
✕
Ignore rights requests.
Refuse, delay, or mishandle Guest requests to exercise privacy rights that apply in the Guest's jurisdiction. Where you are the controller of the data, you are responsible for responding.
§ 8Intellectual property violations
You may not use the Services to infringe on the intellectual property rights of others, including copyrights, trademarks, trade secrets, and patents. You may not use the "Boatcheckin" name or logo in a way that implies endorsement, affiliation, or certification that does not exist.
If you believe content on the Services infringes your copyright, see our Copyright & DMCA Policy for how to submit a takedown notice.
§ 9Security research & safe harbor
We welcome security research conducted in good faith. The rules and safe harbor are described on our Vulnerability Disclosure Program. Research that stays within the scope described there does not violate this AUP. Research that exceeds that scope accessing or exfiltrating real user data, degrading service, or going public before remediation does.
If you're a researcher
Report findings to security@boatcheckin.com. We acknowledge within 2 business days, triage within a week, and remediate on a severity-based schedule. We do not take legal action against good-faith research that stays within the program.
§ 10Enforcement
When we identify conduct that violates this AUP, we may at our discretion, and depending on severity:
- Warn. Notify the Operator and request remediation.
- Restrict. Temporarily limit specific features pending investigation.
- Suspend. Pause account access until the issue is resolved.
- Terminate. End the account, with retention of compliance records as required by §6 of the Terms.
- Report. Notify law enforcement or applicable regulators where the conduct warrants it.
For severe violations including fraud, record tampering, minor exploitation, or conduct that creates immediate risk to others we may skip the warning stage and terminate without notice. We apply these actions consistently and document each.
§ 11Reporting abuse
If you believe someone is using Boatcheckin in violation of this AUP, we want to hear about it. Reports are handled confidentially.