Part One

1. About This Policy

1.1 Purpose

This Acceptable Use Policy (“AUP”) sets out the rules that govern how IHUBApp may be used. It applies to all users of the IHUBApp platform and is incorporated into the IHUBApp Terms of Service (“Terms”). Together with the Terms, the IHUBApp Privacy Notice, and the Data Processing Agreement, this AUP forms part of the legal framework governing your use of IHUBApp.

By accessing or using any part of IHUBApp, you agree to comply with this AUP. If you are a Client using IHUBApp to build digital experiences for others, you are also responsible for ensuring your end users comply with this AUP.

1.2 Who This Policy Applies To

This AUP applies to all of the following user types as defined in the IHUBApp Terms of Service:

• Hub Owners — who build and administer digital experiences on IHUBApp
• Clients — who purchase IHUBApp licenses directly or through verified affiliates or partners
• Creators and Channel Owners — who publish content within Hubs
• Registered Users — who access Hubs built on IHUBApp
• Organizers — who use IHUBApp for events and ticketing
• Consumers — who purchase tickets, make donations, or subscribe through IHUBApp
• InspireHUB Affiliates and Partners — who build or resell IHUBApp solutions

If you are building a Hub for others, you are responsible for incorporating this AUP into your own end-user terms and for ensuring your users understand what is and is not permitted.

1.3 Relationship to the IHUBApp Terms of Service

This AUP is incorporated by reference into the IHUBApp Terms of Service. In the event of a conflict between this AUP and the Terms, the Terms will prevail. Capitalised terms used but not defined in this AUP have the meaning given to them in the Terms. InspireHUB may update this AUP from time to time and will provide notice in accordance with the amendment provisions of the Terms.

Provisions of this AUP that by their nature survive termination — including the cooperation with authorities obligations in Section 7.3, the CSAM mandatory reporting obligations in Section 2.4, the data subject rights obligations in Section 3.3A, and the data processing obligations in Sections 3.1, 3.2, and 3.3 with respect to data already collected prior to termination — do so in accordance with the survival provisions of Section 3.3(n) of the Terms of Service. Sections 3.5 (migration) and 3.6 (cookie consent) do not independently survive termination.

The governing law and jurisdiction applicable to this AUP are those set out in the Terms of Service for your contracting entity: Ontario and federal Canadian law for Canadian-instance Clients (InspireHUB Canada Holdings Inc.); the laws of the State of Colorado for US-instance Clients (Gloo, LLC); and the laws of New South Wales for Australian-instance Clients (InspireHUB Australia Pty Ltd). If you are unsure which instance governs your Hub, refer to the Terms of Service or contact support@inspirehub.com.

Part Two

2. Prohibited Content

You must not post, upload, transmit, or otherwise make available through IHUBApp any content that falls into any of the categories below. This prohibition applies to all user types and to all features of IHUBApp, including channels, posts, messages, event listings, and payment-enabled features.

2.1 Sexual and Adult Content

• Depicts or promotes sexually explicit acts, including images, video, drawings, or text-based content that is sexually explicit in nature
• Advertises or links to adult affiliate networks, escort services, or erotic services
• Is pornographic or obscene as determined by the standards of the applicable jurisdiction

2.2 Violence, Gore, and Harmful Content

• Depicts extreme violence or gore without appropriate editorial context, commentary, or journalistic purpose
• Promotes, glorifies, or facilitates acts of terrorism, mass violence, or organised criminal activity
• Instructs or encourages others to commit acts of violence, self-harm, or suicide
• Constitutes a credible threat of violence against any specific individual or group

2.3 Hate Speech, Harassment, and Discrimination

The following applies in all jurisdictions in which InspireHUB operates and is informed by relevant legislation including Canada’s Online Harms Act (as in force), Australia’s Online Safety Act 2021, and applicable US federal and state law:

• Content that promotes hatred or discrimination against individuals or groups on the basis of race, ethnicity, national origin, religion, gender, gender identity, sexual orientation, disability, age, or any other characteristic protected by applicable law
• Harassment, bullying, or targeted abuse of any individual, including repeated unwanted contact
• Explicit or implied threats against any person or group
• Dehumanising language, slurs, or content that incites hatred

2.4 Child Safety

• Child sexual abuse material (“CSAM”) of any kind, regardless of medium
• Content that promotes, glorifies, or normalises the sexualisation of minors
• Any depiction of a minor in a sexual or suggestive context
• Content designed to facilitate grooming, exploitation, or abuse of a child

2.5 Misinformation and Deceptive Content

• Knowingly false information that could cause public harm, including health misinformation, fabricated emergency alerts, or false claims about public figures or institutions
• Content designed to deceive users about the source, nature, or purpose of a Hub
• Impersonation of any person, organisation, government body, or InspireHUB
• Use of IHUBApp to conduct phishing, social engineering, or other deceptive schemes

2.6 AI-Generated and Synthetic Media

As generative AI technologies become increasingly accessible, InspireHUB prohibits the following:

• Deepfakes or other synthetic media depicting real individuals in false, damaging, or sexual scenarios without their explicit consent
• AI-generated CSAM or any synthetic content sexualising minors, regardless of whether any real individual is depicted
• Mass generation of low-quality or spammy AI-generated content for the purpose of manipulating platform metrics, search results, or user engagement
• AI-generated content used in a manner designed to mislead users about whether content is human-authored in contexts where that distinction is material (e.g. health advice, legal guidance, news reporting)

Hub Owners who use AI tools to generate content for their Hubs remain personally and organisationally responsible for ensuring all such content complies with this AUP and applicable law.

Part Three

3. Privacy and Personal Data

3.1 Personal Information of Others

You must not collect, share, publish, or otherwise process the personal information of other individuals through IHUBApp except with the individual’s informed consent, as required by applicable law, or in accordance with a legitimate purpose consistent with the original collection of that information. This includes names, photographs, contact details, location data, financial information, health information, or any other information from which an individual can be identified directly or indirectly.

3.2 Sensitive Information

“Sensitive Information” as defined in the IHUBApp Terms of Service includes, but is not limited to: health and medical information; financial account numbers, payment card data, and transaction records; government-issued identification numbers (including Social Insurance Numbers, Social Security Numbers, and Tax File Numbers); biometric data; information about racial or ethnic origin, religious beliefs, sexual orientation, gender identity, or criminal history; and any other category of information that receives heightened protection under applicable law in the relevant jurisdiction. This list is consistent with the categories defined in the IHUBApp Builder Terms and the Data Processing Agreement and should be read alongside those documents. Sensitive Information must not be collected, stored, or processed through IHUBApp without a lawful basis under applicable law, appropriate security measures proportionate to the sensitivity of the information, and clear disclosure to affected individuals about the purpose and nature of collection.

3.3 Children’s Data

IHUBApp account holders and subscription licensees must be 18 years of age or older. This age requirement governs the subscription relationship between InspireHUB and its Clients. It does not prevent Hub Owners from building digital experiences for audiences that include minors — end users of client-built Hubs are governed by the EULA and the Hub Owner’s own terms. If your Hub is accessible to or targeted at minors, you bear full responsibility for complying with applicable children’s privacy law. You must:

• Comply with applicable children’s privacy legislation — including COPPA (US), PIPEDA (Canada), and the Privacy Act 1988 (Cth) (Australia) — based on where your users are located
• Implement appropriate age verification or consent mechanisms. Age thresholds by jurisdiction: US (COPPA) — verifiable parental consent required for children under 13; Canada (PIPEDA) — generally accepted threshold is 13; Australia (Privacy Act 1988) — no fixed age; the standard is whether the individual has the capacity to consent, assessed contextually; EU/UK (GDPR Article 8) — default age of digital consent is 16, with member state derogations permitting down to 13 — confirm the threshold for each member state where your users are located
• Not collect more personal information from minors than is strictly necessary for the stated purpose of the digital experience
• Ensure your Hub’s EULA and privacy notice adequately address the collection and use of children’s data

3.3A Data Subject Rights Obligations

If you are a Hub Owner, you act as a data controller for the personal information your users share through your Hub. As data controller, you are responsible for responding to data subject rights requests from your end users — including requests for access, correction, deletion, and portability of their personal information — in accordance with applicable privacy law. InspireHUB will assist you in fulfilling these obligations as your data processor, consistent with the IHUBApp Data Processing Agreement.

Builders should refer to Section 3.3.1 of the IHUBApp Builder Terms for their specific data subject rights obligations. All Hub Owners should refer to DPA Section 1.6 for InspireHUB’s assistance obligations. A failure to respond to a valid data subject rights request may constitute a violation of applicable privacy law. Where a Hub Owner uses IHUBApp in a manner that prevents or obstructs end users from exercising their data subject rights — for example by using platform features to suppress or ignore requests — that conduct is also a violation of this AUP. Hub Owners who simply fail to manage their data controller obligations outside of the platform retain their independent regulatory obligations regardless of this AUP.

3.4 Data Collection and Scraping

Automated collection of data from IHUBApp is prohibited except where expressly authorised by InspireHUB in writing. This includes harvesting user data or contact information using robots, spiders, or scrapers; building datasets from Hub content without authorisation; and reverse-engineering data structures, databases, or APIs for data extraction purposes.

3.5 Hub Instance Migration

In plain terms: if you move your Hub to a different InspireHUB regional instance, this section explains what InspireHUB will do to protect your data — and what you must not do to interfere with the process.

Hub Instance Migration — the process of moving a Hub and its associated data between InspireHUB’s regional instances — is a sensitive data processing activity governed by Section 1.12 of the IHUBApp Data Processing Agreement.

What InspireHUB commits to during your migration: InspireHUB will apply the same data protection standards required under the DPA to all personal data in transit; maintain encryption throughout the migration process; notify you within 24 hours of a confirmed security incident during migration, or within 48 hours of a suspected incident under active investigation; and provide written confirmation upon completion that no personal data was lost, corrupted, or accessed without authorisation during transit — or, if an issue occurred, a description of the issue and remediation taken.

Your obligations during migration: You must not attempt to interfere with, reverse-engineer, or interrupt a migration in progress. Security concerns arising during a migration should be reported to security@inspirehub.com rather than the general support address. General migration questions should go to support@inspirehub.com. InspireHUB’s full migration obligations are set out in DPA Section 1.12.

3.6 Cookies, Tracking Technologies, and Consent

This section applies to Hub Owners and Builders. If you are a Registered User or Consumer, your rights regarding cookies in a specific Hub are governed by that Hub’s privacy notice — contact the Hub Owner directly if you have questions.

If your Hub uses any tools that track or monitor user behaviour — including analytics platforms, advertising pixels, embedded social media features, or any third-party script that places cookies or similar technologies on users’ devices — you are responsible for disclosing this to your users and, in many jurisdictions, obtaining their consent before tracking begins. InspireHUB does not manage this obligation on your behalf and does not provide a cookie consent tool.

Your obligations by jurisdiction: in Canada, Quebec’s Law 25 requires explicit, informed, prior consent before any non-essential tracking technology is activated; in the United States, CCPA/CPRA requires a “Do Not Sell or Share My Personal Information” mechanism for California users if you use cross-context behavioural advertising cookies; in Australia, the Privacy Act 1988 (Cth) requires disclosure of overseas data flows; in the EU and UK, GDPR and the ePrivacy Directive require explicit consent before non-essential cookies are placed. Builders should refer to Section 3.4 of the IHUBApp Builder Terms for detailed guidance on cookie consent obligations by jurisdiction.

Part Four

4. Security and System Integrity

4.1 Technical Attacks and Unauthorised Access

You must not actively probe, scan, or test any IHUBApp system or network without prior written authorisation (see Section 4.5 for the authorisation pathway); attempt to gain unauthorised access to any Hub, user account, or related infrastructure; circumvent or disable any authentication, access control, or security measure; launch denial-of-service or DDoS attacks; or intercept or monitor network traffic without authorisation. If you incidentally discover what you believe to be a security vulnerability through normal use of the platform — without having conducted active testing — you should report it to InspireHUB under Section 4.5 without delay. Incidental discovery during normal use does not require prior written authorisation.

4.2 Credential and Account Abuse

• You must not share your login credentials with others or permit unauthorised persons to access your account
• You must not use another user’s account or credentials, or impersonate another user within IHUBApp
• You must not create accounts through automated means, in bulk, or under false pretences
• You must notify InspireHUB without undue delay, and in no event later than 72 hours after becoming aware, at support@inspirehub.com if you become aware of any unauthorised use of your account. Your notification should include: your account name and Hub name; when you first became aware of the unauthorised access; what you believe was accessed or affected; and any steps you have already taken to secure your account. This standard is consistent with the notification obligation for Builders under Section 8.5(b) of the IHUBApp Builder Terms.

4.3 Malware and Malicious Code

You must not upload, transmit, or distribute through IHUBApp any virus, worm, ransomware, spyware, or other malicious code; software designed to damage, intercept, or corrupt any system or data; code designed to harvest personal information without consent; or content that links to malicious software on third-party sites.

4.4 API Misuse

Use of the IHUBApp API is subject to rate limits and usage restrictions set out in the Terms. You must not exceed designated rate limits, place unreasonable load on InspireHUB’s infrastructure, use the API to access data beyond your authorised scope, or reverse-engineer InspireHUB’s API structure for competitive purposes.

4.5 Responsible Disclosure

Section 4.1 prohibits active probing, scanning, or testing without prior written authorisation. This section describes when authorisation may be granted and how to report vulnerabilities discovered either through authorised testing or incidental use.

Incidental discovery (no authorisation required): If you discover what appears to be a security vulnerability through ordinary use of IHUBApp — without having conducted any deliberate testing — report it promptly to security@inspirehub.com. You do not need prior written authorisation to report an incidental discovery. Do not attempt to confirm or reproduce the vulnerability beyond what is strictly necessary to document what you observed.

Active testing (prior authorisation required): “Active testing” means any deliberate attempt to probe, test, or verify a suspected vulnerability through actions beyond normal platform use — including automated scanning, credential stuffing, fuzzing, or any action designed to trigger unexpected system behaviour. Before conducting any active testing, you must: (a) obtain prior written authorisation from InspireHUB at security@inspirehub.com; (b) limit your investigation to the scope described in your authorisation; and (c) not access, modify, export, or delete data beyond what is necessary to confirm the vulnerability within that scope. Do not disclose the vulnerability publicly before InspireHUB has had a reasonable opportunity to assess and remediate it. The standard window is 90 days from InspireHUB’s written acknowledgment of your report. If InspireHUB has not acknowledged receipt within 10 business days of your initial submission, or if the 90-day window expires without a remediation update or agreed extension, you may proceed with responsible public disclosure after giving InspireHUB a further 7 days’ written notice of your intention to disclose.

Part Five

5. Commercial Activities

5.1 Permitted Commercial Use

IHUBApp supports a wide range of legitimate commercial uses, including selling event tickets, accepting donations, operating paid subscription channels, and facilitating eCommerce. All commercial activities on IHUBApp are subject to the IHUBApp Merchant Agreement (Section 2.4 of the Terms of Service) and the applicable terms and policies of Stripe, Inc. If you accept card payments through IHUBApp, you are subject to Payment Card Industry Data Security Standard (PCI DSS) compliance obligations. The specific SAQ (Self-Assessment Questionnaire) tier that applies depends on your payment processing method — most IHUBApp merchants using Stripe’s redirect-based integration qualify for SAQ A, the lightest compliance tier. Your PCI DSS obligations are set out in full at Section 2.4(a)(ii) of the Merchant Agreement. You are responsible for ensuring compliance and must not store, log, or transmit raw card data through any IHUBApp channel.

5.2 Prohibited Commercial Activities

You must not use IHUBApp’s transaction features or commercial capabilities for:

• Fraudulent transactions of any kind, including misrepresenting the nature, quality, availability, or price of goods or services
• Money laundering or processing payments on behalf of a party other than yourself or your legitimate organisation
• The sale of goods or services that are illegal under applicable law, including unlicensed controlled substances, counterfeit goods, stolen property, or weapons not legally permitted to be sold
• Pyramid schemes, multi-level marketing structures that misrepresent their nature, or investment schemes designed to deceive participants
• Collecting donations or payments without clearly and accurately disclosing to contributors, before or at the point of payment: (a) the name of the organisation or individual receiving the funds; and (b) the stated purpose of the fundraising campaign or collection. InspireHUB does not restrict the purposes for which funds may be raised, but does require that the stated purpose be accurate and not misleading. Hub Owners bear sole responsibility for ensuring their campaign descriptions are truthful. InspireHUB does not verify campaign descriptions prior to publication; this obligation is governed by the Merchant Agreement and, where applicable, applicable consumer protection law in the relevant jurisdiction.
• Encouraging, incentivising, or organising customers to submit chargebacks as a method of obtaining refunds, as a retaliation tactic, or for any other purpose. You are responsible for all chargebacks arising from your use of Merchant Services. Excessive chargeback rates may result in suspension or termination of your Merchant Services by Stripe or InspireHUB independently of any other AUP violation. See Merchant Agreement Section 2.4(a)(iii)(3) of the Terms.
• Any activity involving a sanctioned individual, entity, or jurisdiction, or any transaction that would violate applicable export controls, import restrictions, or sanctions laws — including those administered by OFAC (US), Global Affairs Canada under the Special Economic Measures Act and United Nations Act (Canada), and the Department of Foreign Affairs and Trade (Australia). You are solely responsible for screening your customers and transactions against applicable sanctions lists and for obtaining any required export licences or authorisations. See also the Merchant Agreement (Section 2.4(a)(iii)(5) of the Terms) for full sanctions compliance obligations.
• Any activity that would violate Stripe’s Prohibited Businesses policy

5.3 Messaging, Notifications, and Spam

IHUBApp’s messaging and notification features must be used responsibly and lawfully. You must not send unsolicited communications to users who have not consented; continue to message users who have opted out; generate excessive hard bounces or spam complaints; use messaging features for phishing or credential harvesting; or acquire mailing lists without verified, lawful consent from recipients.

As Hub Owner, you are responsible for ensuring all communications comply with Canada’s Anti-Spam Legislation (CASL), the US CAN-SPAM Act, Australia’s Spam Act 2003, and any other applicable law in the jurisdictions you serve. If you are a Builder, your messaging obligations under Section 4.3 of the IHUBApp Builder Terms are more detailed than this summary and include specific requirements around deceptive headers, unsubscribe links, and full acceptance of liability for all Message Center activity. Both this AUP and the Builder Terms apply to you simultaneously.

5.3A Affiliates and Partners

In plain terms: if you are an IHUBApp Ally (affiliate) or a verified partner, you have extra rules to follow on top of this AUP — specifically about how you market and promote IHUBApp.

InspireHUB Affiliates and Partners are subject to additional conduct standards under the IHUBApp Customer Referral Agreement (available at affiliates.inspirehub.com or on request from support@inspirehub.com), including express prohibitions on parasitic advertising, malvertising, and any marketing tactic that places prospects or customers at risk. These prohibitions apply in addition to, and are not limited by, the provisions of this AUP. Affiliates should review Section 7.2.4 of the Customer Referral Agreement for the full scope of their additional obligations. Where this AUP and the Customer Referral Agreement address the same conduct, the Customer Referral Agreement applies as the more specific agreement governing the affiliate relationship. This is consistent with Section 1.3 of this AUP, which provides that the Terms of Service governs in the event of conflict: the Customer Referral Agreement is a component of the Terms of Service framework. In all cases, the more stringent of the two standards applies to affiliate conduct.

5.4 Intellectual Property

You must not upload, post, or distribute content that infringes the intellectual property rights of any third party, use IHUBApp to facilitate IP infringement by others, or remove or obscure any copyright, trademark, or proprietary notice. If you believe content on IHUBApp infringes your rights, please use the reporting process.

Part Six

6. Permitted Activities with Conditions

Some activities are permitted on IHUBApp subject to compliance with applicable law and InspireHUB’s requirements. Hub Owners operating in these categories are solely responsible for regulatory compliance. InspireHUB may require evidence of compliance at any time and may remove a Hub it reasonably believes is operating without required authorisations.

6.1 Alcohol and Age-Restricted Products

Businesses that lawfully sell alcoholic beverages or other age-restricted products may promote them through IHUBApp provided appropriate age-gating mechanisms are implemented in compliance with the laws of the relevant jurisdiction, no Hub allows minors to access age-restricted content or transactions, and all applicable advertising standards and codes of practice are complied with.

6.2 Regulated and Controlled Substances

Where the sale or promotion of regulated substances (such as cannabis) is lawful in the jurisdiction of operation, Hubs may be used for that purpose provided the Hub Owner holds all applicable licences and regulatory approvals, age verification is implemented as required by law, and the Hub does not serve users in jurisdictions where the activity is unlawful.

6.3 Mature or Sensitive Topics

Hubs dealing with topics that are sensitive — including mental health, addiction, harm reduction, grief, or adult education — may address those topics in a responsible, non-exploitative manner, provided the content is not otherwise prohibited under Section 2 and complies with all applicable law. Appropriate content notices or access controls should be applied where warranted.

Part Seven

7. Enforcement

7.1 Graduated Enforcement

InspireHUB takes a proportionate approach to enforcement. The steps below are not sequential — InspireHUB may apply any one or more of them in any order depending on the nature, severity, and recurrence of a violation. Nothing in this section limits InspireHUB’s independent right under Section 2.10(d) of the Terms of Service to suspend any user’s access without notice for violations of this AUP or the Terms. Section 2.10(d) of the Terms grants a broader no-notice suspension right for any conduct creating “present harm” — the specific categories identified in the “Immediate Action Without Notice” callout below are illustrative examples of circumstances constituting present harm, not an exhaustive enumeration. InspireHUB’s suspension authority under the Terms is not limited to those categories. Where a material breach of this AUP or the Terms remains uncured for 30 days after written notice, InspireHUB may cancel the agreement for cause under Section 2.10(c) of the Terms. Whether a breach is material is determined by reference to the Terms, not by whether it is urgent. A serious but non-urgent violation may still be material; an urgent but minor violation may not be. Where practicable, InspireHUB will indicate in any written notice whether it considers a breach to be material. The governing definition of “material breach” is set out in Section 2.10(c) of the Terms, which controls in all cases.

7.2 Appeals Process

If you believe InspireHUB has taken an enforcement action in error, you may submit a written appeal within 14 calendar days of receiving notice by emailing support@inspirehub.com with the subject line “AUP Enforcement Appeal”. Your appeal should include your name, Hub name, and account details; a description of the enforcement action taken; and the specific basis for your appeal with any supporting evidence.

InspireHUB will acknowledge your appeal within 5 business days and provide a substantive response within 20 business days. If InspireHUB upholds the enforcement action following your appeal, or does not respond within the 20-business-day window, you may escalate the matter through the dispute resolution process described in Section 3.3(e) of the Terms of Service. Nothing in this appeals process limits or replaces your rights under the Terms.

7.3 Cooperation with Authorities

Any content determined to be illegal will result in immediate suspension of the relevant Hub or account, referral of relevant contact information, content, and metadata to appropriate law enforcement or regulatory authorities, and compliance with any lawful order, subpoena, or regulatory requirement to disclose information. InspireHUB will notify affected users of any such disclosure to the extent permitted by law.

7.4 Security Incidents and Data Breach Notification

In plain terms: if there is a security incident that may have affected your data, InspireHUB will tell you. How quickly depends on where your Hub is hosted. As a Hub Owner, you may also have your own obligation to notify your users and relevant regulators — and InspireHUB will help you do that.

InspireHUB’s detailed breach notification obligations run under the IHUBApp Data Processing Agreement and the Privacy Notice, not this AUP. In summary:

• All Clients: InspireHUB will notify you promptly upon determining a security incident has affected or is likely to have affected your Client Data
• Canadian-instance Clients: InspireHUB will notify you as soon as feasible after becoming aware of a breach creating a real risk of significant harm to one or more individuals under PIPEDA section 10.1. "As soon as feasible" is the governing standard under PIPEDA — there is no fixed legislated hour count. InspireHUB will endeavour to provide initial notification within 72 hours where feasible, but the binding commitment is timely notification consistent with the PIPEDA statutory standard, not a specific hour count. InspireHUB will also report to the Office of the Privacy Commissioner of Canada as required by PIPEDA.
• Australian-instance Clients: InspireHUB will notify you and the Office of the Australian Information Commissioner within 30 days of becoming aware of an eligible data breach under the Notifiable Data Breaches scheme
• US-instance Clients: InspireHUB will notify you in accordance with applicable federal and state breach notification law in a timeframe sufficient for you to meet your own notification obligations
• GDPR/UK GDPR: Where the breach involves personal data of EU or UK individuals, InspireHUB will notify you within 72 hours of becoming aware

As a Hub Owner, you may have your own independent obligations to notify your end users and applicable regulators. InspireHUB’s notification to you does not relieve you of those obligations. Full details: inspirehub.com/dpa and inspirehub.com/privacy.

Part Eight

8. Jurisdiction-Specific Notes

InspireHUB operates primary instances in Canada, the United States, and Australia. Hub Owners may serve users in additional jurisdictions — including the EU and UK — and are responsible for complying with the laws of every jurisdiction in which their users are located. EU and UK data obligations are governed by the GDPR and are typically handled through the Canadian instance (InspireHUB Canada Holdings Inc.) under the terms of the IHUBApp Data Processing Agreement, Part 2. Hub Owners serving EU or UK users should consult the DPA and seek independent legal advice. The table below is a starting point, not an exhaustive list.

The above is not an exhaustive list of applicable law. Hub Owners should seek independent legal advice regarding their obligations in any jurisdiction in which they operate.

Part Nine

9. Reporting Violations

If you encounter content or behaviour on IHUBApp that you believe violates this AUP, please use one of the following reporting paths:

InspireHUB reviews all reports and will take appropriate action consistent with this AUP and applicable law. For standard reports submitted through the reporting form or by email, InspireHUB will acknowledge receipt within 5 business days. For urgent reports marked “URGENT,” InspireHUB will acknowledge receipt within 24 hours. InspireHUB may not be able to provide a detailed response to every report, but all reports are reviewed and acted upon where a violation is confirmed.

Part Ten

10. Contact and Updates

10.1 Contact Information

10.2 Updates to This Policy

InspireHUB may update this AUP from time to time. When changes are made, the “Last Updated” date will be revised. Where changes are material, InspireHUB will provide advance notice in accordance with the amendment provisions of Section 3.3(a) of the Terms of Service. Updated terms take effect on the next business day after posting, consistent with the Terms. If you notify InspireHUB within 30 days that you do not accept a material change, your subscription will continue to be governed by the version of this AUP in effect immediately before the change for the remainder of your current subscription term — after which the updated AUP applies on renewal. Your conduct during the 30-day objection window remains governed by the pre-amendment AUP. The current version is always available at www.inspirehub.com/acceptable-use.