Client area Sign in

Acceptable use policy

This policy sets out permitted uses of the Cloak Proxy service and activities we prohibit to protect our network, third parties, and lawful operation.

Effective date: 12 May 2026. Incorporated by reference into our Terms of service.

You are solely responsible for the lawfulness of traffic you route through the Service. We employ technical and operational controls to protect the network; we do not undertake line-by-line review of destinations. Prohibited conduct may result in immediate suspension or termination of access without compensation, in addition to remedies under the Terms of service. Abuse-related account closure, waiver of claims, and refund limitations are stated expressly in Section 8 (Abuse-related enforcement) of the Terms of service.

1. Permitted uses (non-exhaustive)

Subject to applicable law and third-party rights, common use cases include collection of data made available to the general public where a lawful basis exists, monitoring of publicly listed commercial information, quality assurance or synthetic monitoring of systems you own or are authorised to test, and ad verification where platform rules permit. Authorised security testing requires prior written permission from the asset owner or coverage under an approved bug-bounty programme. The preceding examples do not constitute legal clearance for any specific workflow.

2. Prohibited activities

Without limitation, you must not use, attempt to use, or facilitate use of the Service for any of the following:

  • Illegal activity of any kind, including fraud, theft, ransomware, botnet command-and-control, distribution of malware, trafficking, exploitation, or terrorism-related activity.
  • Harm to people or systems: unauthorised access to computers or accounts (including credential stuffing, password spraying, or exploiting vulnerabilities without authorisation), denial-of-service attacks, or interference with critical infrastructure.
  • Evading law enforcement or sanctions: concealing criminal proceeds, breaching export controls, or circumventing sanctions or embargoes applicable to you or us.
  • Intellectual-property infringement: piracy, unauthorised streaming, warez distribution, or large-scale scraping that violates applicable IP or database rights.
  • Privacy violations: collecting, processing, or disclosing personal data without a valid legal basis and required notices/consents; harvesting sensitive categories of data; stalking or harassment.
  • Spam and messaging abuse: unsolicited bulk email/SMS, open relays, or messaging that violates carrier or platform anti-spam rules.
  • Deceptive conduct: phishing, impersonation intended to defraud, fake reviews, or manipulating markets, elections, or public discourse through materially false representations.
  • Abuse of minors: any sexual or exploitative content involving minors (we report to authorities as required).
  • Resale or redistribution of the Service in the form of an open proxy, “free VPN,” or similar public gateway without our prior written agreement.
  • High-risk regulated activity without appropriate licences and our prior written approval: for example online gambling where illegal, unlicensed pharmaceuticals, or financial services that require authorisation you do not hold.
  • Testing or scanning third parties without explicit written permission from the asset owner or a lawful bug-bounty programme that covers your activity.

3. Third-party terms and robots

You are responsible for complying with the terms of websites, APIs, cloud providers, and platforms you access. Technical ability to reach a resource does not imply permission. You must not use the Service primarily to circumvent technical access controls, rate limits, or paywalls where doing so would violate law or contract.

4. Email and messaging

Do not send email or other messages through the Service except through your own properly configured infrastructure and in compliance with anti-spam laws (for example CAN-SPAM, GDPR marketing rules, and PECR where applicable). We may block common SMTP ports or destinations to reduce abuse.

5. Financial abuse

No money laundering, stolen payment instruments, or deceptive chargebacks. Cryptocurrency payments must originate from sources you lawfully control.

6. Reporting abuse

To report abuse involving our network, email sales@cloakproxy.com with subject line “Abuse report”. Include UTC timestamps, observed source identifiers, destination hosts, and supporting logs. We triage reports using the information supplied and apply measures we reasonably consider appropriate.

7. Enforcement

We may rate-limit, suspend, terminate, or filter traffic; cooperate with law enforcement; and preserve evidence where permitted by law. We are not obliged to monitor all traffic and disclaim responsibility for your conduct. Indirect or attempted violations, as well as assisting others to violate this policy, are prohibited.

We may take any proportionate action to mitigate harm to our network, customers, or personnel, including sharing relevant technical metadata with complainants, hosting providers, or authorities when we reasonably believe it is necessary to protect rights or comply with law.