Acceptable Use Policy

Last updated: April 27, 2026

This Acceptable Use Policy ("AUP") is part of, and incorporated by reference into, our Terms of Service. Violations may result in suspension or termination of your account without refund.

1. Lawful Use Only

You will not use the Service to:

  • break any local, state, federal, or international law;
  • process transactions that violate the rules of the card networks or Square;
  • engage in fraud, money laundering, or sanctions evasion;
  • infringe intellectual-property or privacy rights of others;
  • harass, defraud, or harm other users or third parties.

2. Prohibited Businesses & Transactions

Square maintains a list of prohibited and restricted business types. Because SugarPay relies on Square as your processor, those restrictions apply to you when using SugarPay. In addition, SugarPay independently prohibits use of the Service for:

  • illegal drugs, drug paraphernalia, or unregulated cannabis sales;
  • weapons and explosives sold in violation of law;
  • adult content prohibited by card networks;
  • multi-level marketing or pyramid schemes;
  • unlicensed gambling, lotteries, or sweepstakes;
  • counterfeit goods or unauthorized resale of branded merchandise;
  • aggressive debt collection or credit repair;
  • unregistered securities, commodities, or virtual-currency offerings;
  • businesses on government sanctions or denied-persons lists.

3. System Abuse

You will not:

  • attempt to gain unauthorized access to the Service or its systems;
  • probe, scan, or test the vulnerability of the Service without our express written permission (see Security Policy);
  • circumvent rate limits, authentication, or other security mechanisms;
  • interfere with or disrupt the Service via DDoS, malware, or similar means;
  • scrape, harvest, or otherwise collect data from the Service except through documented APIs and within the rate limits specified;
  • reverse-engineer, decompile, or disassemble the Service except where permitted by law.

4. Communications & Anti-Spam

If you use SugarPay to send invoices, receipts, or marketing messages to your customers, you must comply with all applicable laws (including the U.S. CAN-SPAM Act, TCPA, CASL, and GDPR) and obtain any consents required to contact those recipients. SugarPay is not responsible for messages you send to your customers.

5. Data Use

Customer Data you upload or sync remains yours. You are responsible for ensuring you have the rights to submit it, including any data about your end-customers, and for complying with privacy laws applicable to your business.

6. Reporting Violations

If you believe someone is using SugarPay in violation of this AUP, please report it to abuse@sugarpay.io.

7. Enforcement

We may, at our discretion, investigate suspected violations, suspend or terminate accounts, remove content, and cooperate with law enforcement. We are not obligated to monitor accounts proactively, but we reserve the right to do so to protect users and the Service.