Detector Acceptable Use Policy
Super Nova Research Inc., operating as Draft&Goal
Version 1.0 - Last updated July 16, 2026
This Acceptable Use Policy (“AUP”) governs access to and use of Detector and forms part of the Detector Terms of Service. It applies to every Customer, Authorized User, Analysis Input, Output, account, workspace, API client, and integration. Capitalized terms not defined here have the meanings in the Terms.
You must use Detector lawfully, responsibly, and in a way that respects the rights, safety, systems, and resources of others.
1. Authorization and Lawful Analysis
You may submit text, files, URLs, domains, sitemaps, or other material only when you have the rights and lawful authority needed for the requested processing.
For website analysis, you may analyze your own sites; sites you are expressly authorized to assess; and publicly accessible sites where the analysis and resulting use are lawful. Public availability alone does not grant permission to violate copyright, database rights, privacy, contract, confidentiality, robots directives where legally binding, or other rights.
You must not use Detector to:
- bypass authentication, paywalls, access controls, CAPTCHAs, rate restrictions, robots restrictions where legally binding, or technical protection measures;
- access non-public pages, files, APIs, storage, directories, or data without authorization;
- scan for exploitable vulnerabilities or conduct penetration tests, port scans, credential tests, or security assessments through Detector;
- harvest personal data, email addresses, credentials, secrets, or contact lists;
- monitor, track, profile, or investigate a person without a lawful basis; or
- continue an analysis after a site owner, rights holder, or competent authority has lawfully required you to stop.
Good-faith security research concerning Detector itself is governed exclusively by the Security & Responsible Disclosure Policy.
2. Illegal, Harmful, or Rights-Infringing Use
You must not use the Services or Output to create, facilitate, promote, conceal, or materially support:
- unlawful conduct or violation of regulatory, court, or government requirements;
- infringement or misappropriation of copyright, trademark, patent, trade secret, privacy, publicity, database, contractual, or other rights;
- harassment, stalking, threats, extortion, doxxing, hate, discrimination, or targeted abuse;
- child sexual abuse material, sexual exploitation of minors, grooming, or content that endangers children;
- non-consensual intimate imagery, sexual deepfakes, or exploitation;
- malware, ransomware, spyware, phishing, credential theft, fraud, spam, or deceptive schemes;
- weapons development, violent wrongdoing, terrorism, or evasion of lawful controls;
- unlawful surveillance, social scoring, biometric categorization, or mass profiling;
- discrimination based on a protected characteristic; or
- interference with elections, critical infrastructure, emergency services, or public safety.
If we reasonably believe content presents an imminent risk of serious harm or is unlawful, we may preserve and disclose relevant information to authorities as permitted or required by law.
3. Privacy, Confidentiality, and Sensitive Data
Do not submit Personal Information unless it is necessary, proportionate, and supported by an appropriate lawful basis, notice, and permission. Do not submit:
- account passwords, authentication tokens, cryptographic keys, or other credentials;
- payment-card, bank-account, government-identifier, health, biometric, precise-geolocation, or similarly sensitive data unless a written enterprise agreement expressly authorizes the specific processing;
- private communications or confidential third-party material without authority;
- records concerning children without required organizational authority and parental or guardian consent; or
- data subject to professional secrecy, export controls, data localization, or regulated confidentiality unless the applicable Order Form and DPA expressly support it.
You must honor retention, deletion, security, and data-subject obligations that apply to your use. You may not attempt to identify a person from deidentified or aggregated data.
4. AI-Authorship and Integrity Uses
Detector’s AI-authorship Output is probabilistic and is not proof. You must not:
- represent an AI-detection score as definitive evidence of authorship, plagiarism, cheating, fraud, or misconduct;
- make or materially inform a disciplinary, academic, employment, admissions, licensing, or other significant decision solely from Detector Output;
- deny a person meaningful human review or a reasonable opportunity to provide context and contest the result;
- use Detector to target, shame, defame, or harass an alleged author; or
- use editing, rewriting, or “humanization” features to misrepresent authorship, facilitate cheating, conceal fraud, or evade a legitimate provenance, integrity, or disclosure requirement.
Educational institutions, employers, publishers, and other decision-makers must establish appropriate governance, validation, notice, appeal, and documentation procedures before using Detector in a consequential context.
5. High-Impact and Regulated Decisions
You must not use Detector or Output as the sole or autonomous basis for decisions that produce legal or similarly significant effects concerning a person, including decisions about employment, education, credit, insurance, housing, healthcare, access to essential services, law enforcement, immigration, or legal rights.
If Detector Output is used as one input in a permitted consequential process, you are responsible for all applicable obligations, including:
- assessing whether the use is prohibited or high-risk under the EU AI Act or other law;
- conducting required privacy, algorithmic, human-rights, or AI impact assessments;
- providing clear notice and an explanation of the system’s role;
- ensuring data quality, relevance, accessibility, and non-discrimination;
- maintaining meaningful and competent human oversight;
- enabling correction and contestation; and
- keeping appropriate records and engaging regulators where required.
Detector is not designed for biometric identification, emotion recognition, social scoring, predictive policing, or prohibited manipulation.
6. Platform, Account, and Network Abuse
You must not, and must not help another person to:
- exceed, evade, or circumvent word, scan, credit, seat, concurrency, rate, geographic, payment, or technical limits;
- create accounts or use automation to obtain repeated free trials or promotional entitlements;
- share credentials outside the permitted account or allow simultaneous use beyond the plan;
- access another user’s account, workspace, Analysis Input, Output, report, or metadata;
- introduce malicious code or interfere with confidentiality, integrity, availability, or performance;
- conduct denial-of-service activity, stress testing, load testing, or unusually high-volume automated submissions without written approval;
- scrape or systematically extract Detector pages, Output, report structures, labels, scores, or underlying data;
- reverse engineer, decompile, disassemble, probe, or attempt to discover source code, model weights, system prompts, thresholds, non-public signals, or scoring methodology, except to the extent applicable law expressly permits despite this restriction;
- use prompt injection, adversarial input, data poisoning, model extraction, membership inference, or similar methods to compromise Detector or obtain protected information;
- disable or evade abuse monitoring, safety filters, watermarking, provenance, or security controls; or
- falsify headers, identity, origin, referral, traffic, consent, or usage information.
If you need higher volumes, testing rights, or API access, contact detector@dng.ai for an appropriate plan or written authorization.
7. Competition, Benchmarks, and Commercial Use
Unless an Order Form expressly permits it, you must not:
- use Detector or Output to build, train, validate, calibrate, or improve a competing detector, classifier, analysis product, dataset, or model;
- conduct systematic model extraction or create a substitute scoring service;
- publish a benchmark or public comparative claim using Detector without a fair, reproducible, statistically appropriate methodology and our prior written review of trademark and confidential-information issues;
- resell, sublicense, white-label, frame, or provide Detector as a service bureau;
- commercially distribute reports at scale or remove proprietary notices; or
- imply that Draft&Goal endorses, certifies, audits, or guarantees you, a website, a document, or a result.
You may share individual reports for your permitted internal, client, academic, or professional purposes, provided you preserve material limitations and do not misrepresent the Output.
8. Fair Use of Shared Resources
Use must remain within the plan, Documentation, and reasonable technical limits. We may throttle or queue workloads that threaten service quality or security. Activities involving sustained automation, batch scanning, high concurrency, or unusually large crawling require an API or enterprise plan that expressly permits them.
You must identify automated clients accurately, respect documented API requirements, cache results where appropriate, use reasonable retry and backoff behavior, and promptly stop on authorization or rate errors.
9. Enforcement
We may investigate suspected violations using account, usage, security, Input, and Output information as permitted by the Privacy Policy. We may ask you to explain the use, stop an activity, remove material, secure an account, or provide evidence of authorization.
Depending on severity, recurrence, risk, and legal requirements, we may:
- warn or educate the user;
- limit a feature, rate, crawl target, or Output;
- remove or quarantine prohibited material;
- suspend an affected user, API key, workspace, or account;
- terminate access under the Terms;
- preserve evidence or notify an affected Customer or rights holder where lawful; or
- report conduct to a regulator or law-enforcement authority where required or appropriate to address serious harm.
Where practicable and safe, we will provide notice and a reasonable opportunity to cure a non-urgent violation. We may act immediately to stop active harm, protect security, comply with law, or prevent material abuse.
10. Reporting and Appeals
Report suspected abuse to detector@dng.ai. Include the relevant account, report, URL, date, and a concise description, but do not send sensitive material by ordinary email.
An affected user may appeal an enforcement decision by emailing legal@dng.ai within thirty (30) days. The appeal should explain why the decision was mistaken or how the issue was remediated. A person not involved in the initial decision will review the appeal where reasonably practicable. We may maintain restrictions during review where needed for safety, security, or law.
11. Changes
We may update this AUP as risks, laws, and the Services evolve. Material changes will be notified as described in the Terms. The current version is posted at https://detector.dng.ai/legal/acceptable-use.
12. Contact
Super Nova Research Inc. (d/b/a Draft&Goal)
6795 rue Marconi, Bureau 200
Montréal (Québec) H2S 3J9, Canada
- Abuse and product questions: detector@dng.ai
- Legal matters and appeals: legal@dng.ai
- Privacy: privacy@dng.ai
- Security vulnerabilities: security@dng.ai