1. PURPOSE
This Acceptable Use Policy (“AUP”) defines the permitted and prohibited uses of the Northstar Customer Portal (portal.northstarshowsystems.com), Northstar APIs, TrueNorth networks, and all related services. This AUP supplements the Northstar Terms of Service (NSS-LEGAL-TOS-001) and applies to all Authorized Users, including Customer employees, contractors, and any third party granted access by Customer.
2. PERMITTED USES
Authorized Users may use Northstar services solely for:
- Managing Northstar show control deployments, including device monitoring, show file management, and system configuration.
- Submitting and tracking support tickets and RMA requests.
- Downloading software updates, firmware, and documentation for which the User is licensed and entitled.
- Completing training courses and certification assessments.
- Managing organizational accounts, users, and billing within the User’s assigned role and permissions.
- Accessing the HelmOS REST API and WebSocket endpoints for integration with Customer’s own systems at the deployed Site.
3. PROHIBITED ACTIVITIES
Users shall NOT:
3.1 Security Violations
- Attempt to gain unauthorized access to any account, system, network, or data.
- Probe, scan, or test the vulnerability of any Northstar system or network without written authorization.
- Circumvent, disable, or interfere with any security feature, authentication mechanism, or access control.
- Intercept, monitor, or capture data not intended for the User.
- Deploy malware, viruses, worms, ransomware, or any malicious code on or through Northstar systems.
3.2 Abuse and Overuse
- Use automated tools (bots, scrapers, crawlers) to access the Portal or API without written authorization.
- Exceed published API rate limits (100 requests/minute unauthenticated, 300 requests/minute authenticated).
- Generate excessive load intended to degrade service for other users (denial-of-service).
- Share account credentials with unauthorized individuals. Each Authorized User must have a unique account.
- Create multiple accounts to circumvent usage limits, bans, or access controls.
3.3 Content Violations
- Upload, transmit, or store any content that is illegal, infringing, defamatory, obscene, threatening, or harassing.
- Use Northstar services to distribute unsolicited communications (spam).
- Upload content that contains malware or executable code designed to compromise system integrity.
- Misrepresent identity, affiliation, or the source of any communication.
3.4 Intellectual Property Violations
- Reverse engineer, decompile, disassemble, or attempt to derive source code from any Northstar software or firmware.
- Copy, redistribute, or sublicense Northstar software, documentation, or training materials.
- Remove, alter, or obscure any proprietary notices, labels, or watermarks.
- Use Northstar intellectual property to develop competing products or services.
3.5 Network Violations
- Connect the TrueNorth network to the public internet or any unsecured network without written authorization.
- Modify the TrueNorth network configuration (SSID, subnet, DHCP range) in a manner that disrupts Northstar device communication.
- Deploy unauthorized devices on the TrueNorth network.
- Intercept or modify UDP traffic between Polaris nodes and the Helm server.
4. ACCOUNT RESPONSIBILITIES
- Each User is responsible for all activity under their account credentials.
- Users must use strong, unique passwords and enable MFA when required by their role (mandatory for Org Admin, Owner, and all internal staff).
- Users must notify Northstar immediately upon discovery of any unauthorized access or security breach.
- Org Admins are responsible for managing User access within their organization, including promptly deactivating accounts for departed personnel.
5. ENFORCEMENT
5.1 Violation Response
Northstar may take any of the following actions in response to AUP violations, at its sole discretion:
- Issue a written warning identifying the violation and required corrective action.
- Temporarily suspend the offending User’s account pending investigation.
- Permanently terminate the offending User’s account.
- Suspend or terminate the Customer’s organization account for repeated or severe violations.
- Report violations to law enforcement when required by law or when criminal activity is suspected.
5.2 Investigation
Northstar reserves the right to investigate suspected AUP violations, including reviewing audit logs, access records, and uploaded content. Northstar will cooperate with law enforcement investigations when required by valid legal process.
6. REPORTING VIOLATIONS
Report suspected AUP violations to abuse@northstarshowsystems.com. Include a description of the suspected violation, relevant account information, and any supporting evidence. Northstar will acknowledge reports within 2 business days.
7. MODIFICATIONS
Northstar may update this AUP at any time. Material changes will be communicated via the Customer Portal and email at least 30 days before the effective date. Continued use of Northstar services after the effective date constitutes acceptance.
DOCUMENT CROSS-REFERENCES:
- Terms of Service (NSS-LEGAL-TOS-001)
- Privacy Policy (NSS-LEGAL-PP-001)
- Portal Roles and Permissions (NSS-PORTAL-ROLES-001)