This Acceptable Use Policy ("AUP") sets out activities that are prohibited when using the catchotp service, websites, APIs, CLIs, SDKs, and related software (the "Service"). It is incorporated into and forms part of our Terms of Service. Violations may result in immediate suspension or termination of your account and may be reported to law enforcement.
1. catchotp is receive-only
catchotp inboxes are strictly receive-only. The Service does not provide a facility for sending mail and may not be used, in any manner, to send or relay outbound email. Any attempt to use catchotp infrastructure, addresses, or APIs to send unsolicited commercial email, transactional email, marketing email, automated replies, or any other outbound communication is prohibited. Accounts found doing so — or attempting to do so — will be suspended immediately, without prior notice, pending investigation.
2. Prohibited uses
The following uses of the Service are strictly prohibited:
2.1 Spam, unsolicited mail, or marketing email
As stated in Section 1, the Service is receive-only. You may not use, attempt to use, or cause others to use the Service to send unsolicited commercial messages, marketing email, bulk email, chain mail, or any form of "spam" as defined by industry conventions or by laws such as the U.S. CAN-SPAM Act, Canada's CASL, or the EU's ePrivacy Directive. Any user found attempting to relay outbound mail through catchotp infrastructure will be terminated immediately and may be reported to anti-abuse authorities.
2.2 Phishing, fraud, and impersonation
You may not use catchotp inboxes to receive verification codes, password resets, or any other communications for accounts that you do not lawfully own or that you are not authorized to access. This includes, without limitation, credential stuffing, account takeover, identity theft, "SIM swap"-style verification interception, and bypassing multi-factor authentication on third-party accounts. You may not use the Service to impersonate any person or entity, including catchotp staff.
2.3 Harassment, threats, and stalking
You may not use the Service to receive, store, or facilitate communications targeting any individual without their consent, including communications that constitute harassment, threats, intimidation, or stalking, or that are intended to expose private information ("doxxing") about any person.
2.4 Illegal content and activity
You may not use the Service to receive, store, transmit, or facilitate access to content or conduct that is illegal under the laws of the State of Israel (where catchotp is incorporated) or the United States (where our infrastructure is hosted). This includes, without limitation:
- child sexual abuse material (CSAM);
- content promoting or facilitating terrorism, mass violence, or genocide;
- content that infringes intellectual-property rights of others;
- content that violates export-control or sanctions laws.
We cooperate fully with lawful requests from authorities and may report to the National Center for Missing and Exploited Children (NCMEC) any content that appears to constitute CSAM, as required by 18 U.S.C. § 2258A.
2.5 Resale or rebranding without authorization
You may not repackage, white-label, sub-license, or resell access to the Service as if it were your own, or as a competing service, without a written reseller agreement signed by catchotp.
2.6 Attempting to access other customers' data
You may not exploit bugs, misconfigurations, or social-engineering techniques to access, modify, or interfere with another customer's account, inboxes, or data. Good-faith security research conducted in accordance with the disclosure guidelines below is welcomed.
2.7 Excessive load, abuse, and circumvention
You may not (i) exceed documented rate limits without prior authorization; (ii) attempt to circumvent quotas, billing, or access controls; (iii) launch denial-of-service attacks; (iv) probe, scan, or test the vulnerability of the Service except as part of an authorized coordinated disclosure; (v) deliberately introduce malware or harmful code; or (vi) use the Service in any way that degrades performance or reliability for other customers. We reserve the right to throttle, suspend, or terminate accounts whose usage adversely affects the Service.
2.8 Misuse for evading law enforcement or sanctions
You may not use the Service from, or on behalf of, jurisdictions or persons subject to comprehensive U.S., EU, UK, or UN sanctions, and you may not use the Service to facilitate money laundering, sanctions evasion, or terrorist financing.
3. Reporting abuse
If you believe a catchotp inbox is being used in violation of this AUP or for illegal or abusive purposes, please report it to abuse@catchotp.com with the inbox address (if known), the date and time of the incident, and a description of the issue. We acknowledge abuse reports within 24 hours. Where appropriate, we may suspend the implicated account immediately pending investigation.
Security vulnerabilities should instead be reported to security@catchotp.com; we acknowledge security reports within 48 hours and follow responsible-disclosure norms.
4. Enforcement
We use a combination of automated abuse detection (volumetric thresholds, content scanning, and reputation signals) and human review to enforce this AUP. Depending on the severity and nature of a violation, enforcement actions may include:
- warning the customer and requesting remediation within a specified period;
- throttling, restricting, or disabling specific features or addresses;
- suspending the account pending investigation;
- terminating the account and forfeiting any pre-paid fees;
- preserving and disclosing data to authorities where legally required;
- pursuing civil or criminal remedies.
Suspended customers may appeal in writing to legal@catchotp.com. We aim to respond to appeals within five (5) business days.
5. Changes to this AUP
We may update this AUP at any time without prior notice when changes are needed to address new abuse patterns or comply with law. Continued use of the Service after a change to this AUP constitutes acceptance of the updated AUP. The "Last updated" date at the top reflects the latest revision.
6. Contact
Questions about this AUP? Email legal@catchotp.com. Abuse reports should go to abuse@catchotp.com.