This Acceptable Use Policy (“AUP”) governs how Clients and Client end-users use systems, networks, software, and services managed by MakingITworc. The AUP supplements our Terms and Conditions and the applicable Statement of Work. By using systems or services that MakingITworc provides or administers, the Client and its end-users agree to follow this policy.
1. Prohibited Activity
Clients and end-users must not use systems or services managed by MakingITworc to:
- Violate any law of Canada or the Province of Ontario, or any other jurisdiction in which the user is located
- Infringe intellectual property rights, including unlicensed use of software
- Send unsolicited bulk email (spam) or commercial communications in violation of Canada’s Anti-Spam Legislation (CASL)
- Distribute malware, ransomware, or other malicious code
- Attempt to gain unauthorized access to systems, accounts, or data of MakingITworc, the Client, other Clients, or any third party
- Interfere with or disrupt the integrity or performance of managed systems, networks, or services
- Use systems to harass, threaten, defame, or otherwise harm any individual or group
- Mine cryptocurrency or run unrelated compute workloads that consume managed infrastructure resources without prior written approval
2. Credential Handling
Each Client end-user is responsible for safeguarding their own credentials. Sharing passwords, MFA tokens, or other authentication factors is prohibited. The Client must promptly notify MakingITworc of any suspected credential compromise via the JIRA Service Management portal or by emailing support@makingitworc.ca.
3. Administrative Access
Administrative credentials, vault entries, and elevated permissions used by MakingITworc to deliver services are provided under strict confidentiality. The Client agrees not to disclose, share, or use these credentials outside of the operational context for which they were provided.
4. Acceptable Software
Only properly licensed, vendor-supported software may be installed and used on systems within the managed environment. Installation of unsupported, pirated, or end-of-life software may degrade security and performance, and may fall outside the scope of MakingITworc’s support obligations.
5. Data Handling
Clients must:
- Only store data that the Client has the legal right to store
- Comply with applicable privacy law (including PIPEDA) when storing personal information of end-users, customers, or third parties
- Notify MakingITworc as soon as practical of any actual or suspected data breach involving Client systems
Where a Statement of Work explicitly excludes backup configuration and recovery services, the Client acknowledges responsibility for data backup, and that the ultimate responsibility for data integrity and recovery remains with the Client.
6. Network Usage
Clients must not use the managed network to:
- Conduct port scans, vulnerability scans, or penetration testing against any system inside or outside the managed network without prior written authorization from MakingITworc
- Bypass or attempt to bypass any security control, content filter, firewall rule, or access policy in place on the managed network
- Operate publicly accessible services (e.g., file sharing, peer-to-peer, web servers) without prior written approval
7. Monitoring
The Client acknowledges that managed systems generate operational telemetry and log data that MakingITworc collects and stores in accordance with our Data Retention Policy. This data is used for service delivery, troubleshooting, and security monitoring, and is not used for marketing or sold to third parties.
8. Consequences of Violation
Violations of this AUP may, depending on severity, result in:
- A request from MakingITworc to cease the offending activity
- Suspension of access to a specific service, system, or user account
- Suspension of the entire managed service engagement, after written notice, where the violation is material or recurring
- Termination of the Statement of Work for cause, in accordance with Section 15 of the Terms and Conditions, where the violation constitutes a material breach
- Reporting to law enforcement, where required by law
9. Reporting Abuse
To report a suspected violation of this policy, contact:
MakingITworc
Email: support@makingitworc.ca
Web: makingitworc.ca
10. Changes to This Policy
We may update this AUP from time to time. Material changes will be posted here with a revised “Last Updated” date and, where they affect existing Clients, communicated in writing.