Acceptable use policy

Overview

This Acceptable Use Policy (the “Policy”) applies to all Intapp and DealCloud cloud services including, without limitation, use of content, services, deliverables, and/or software licensed or sublicensed by Intapp to you (collectively the “Cloud Services”). This Policy is incorporated into and forms part of the Master Subscription and Services Agreement, Master Subscription Agreement, Master Software and Services Agreement or other similar agreement (the “Agreement”) between you and Integration Appliance, Inc., Intapp, Inc., DealCloud, Inc. or its or their affiliates (collectively “Intapp”) for the provision of Cloud Services. Capitalized terms used but not defined herein have the meaning ascribed to them in the Agreement.

This Policy prohibits uses and activities involving the Cloud Services that are illegal, infringe the rights of others, interfere with or diminish the use of the Cloud Services by other users, or otherwise adversely affect the Cloud Services or Intapp. If you violate this Policy in any way, Intapp may suspend or terminate your Agreement and your access to the Cloud Services.

In connection with using Cloud Services, you agree to ensure that all users (i) are notified that you have the right to monitor, access, record, report on, and otherwise create records regarding each user’s use, logs, credentials, and access of the Cloud Services, and (ii) consent to the same. When you use the Cloud Services, you must not do any of the following:

1. Conduct and information restrictions

Undertake any unlawful purpose, including, but not limited to, collecting, posting, storing, transmitting or disseminating information, data or material which is libelous, obscene, unlawful, threatening or defamatory, or which infringes the intellectual property or privacy rights of any person or entity, or which in any way constitutes or encourages conduct that would constitute a criminal offense, or otherwise violates any applicable local, state, provincial, federal, foreign, or other law, order, or regulation including, but not limited to those applicable to the Customer related to privacy, publicity, data protection, electronic communications and anti-spamming laws. You hereby represent you own or have the required rights to any data or information uploaded into the Cloud Services by you or your users or personnel ;
Obtain, access, export, transmit, move or copy any data, information or material for which you do not have adequate rights to take such action, or which was obtained using the Cloud Services for unlawful purpose;
Use the Cloud Services for benchmarking, timesharing or service bureau purposes or otherwise for the benefit of a third party;
Attempt, in any manner, to obtain the password, account, or other security information from any other user or log into a server or account on the Cloud Services that you are not authorized to access;
Permit or allow any user sharing, distribution or group use of login information, including usernames or passwords;
Upload, post, publish, transmit, reproduce, copy, create derivative works of, or distribute in any way information, software or other material obtained through the Cloud Services or otherwise that is protected by copyright or other proprietary right, without being the owner of such material or otherwise obtaining any required permission of the owner;
Use any name, logo, tagline or other mark of Intapp or its affiliates, including without limitation: (a) as a hypertext link to any website or other location (except as provided for or enabled expressly by Intapp in writing); or (b) to imply (i) support or endorsement by Intapp and its affiliates of your activities or (ii) identification with Intapp as an employee, contractor, agent or other similar representative capacity. You also agree not to remove or alter any of these items as Intapp may have provided or enabled;
Create any link to the Cloud Services or frame or mirror any content contained or accessible from the Cloud Services;
Distribute, publish, send, or facilitate the sending of unsolicited mass e-mail or other messages, promotions, advertising, or solicitations (e.g., spam);
Participate in the collection of very large numbers of e-mail addresses, phone numbers, screen names, or other identifiers of others (without their prior consent), a practice sometimes known as scraping, spidering or harvesting, or participate in the use of software (including spyware) designed to facilitate this activity;
Impersonate any person or entity, engage in sender address falsification, forge anyone else’s digital or manual signature, or perform any other similar deceptive, misleading or fraudulent activity (e.g., “phishing”); and
Use contact information or e-mail lists in a manner that is likely to result in an excessive number of unsubscribe requests or spam complaints or notices, as determined by acceptable industry practices.
Upload any 1) patient, medical or other protected health information regulated by Health Insurance Portability and Accountability Act of 1996 (HIPAA) any similar federal or state laws, rules or regulations, 2) any social security numbers or payment card information, or 3) any “inside information” or “material non-public information” as defined by applicable law(s) (collectively 1), 2), and 3) “High Risk Data”). NOTWITHSTANDING ANYTHING IN THE AGREEMENT, A) CUSTOMER ACKNOWLEDGES AND AGREES THAT THE CLOUD SERVICES ARE NOT DESIGNED FOR HIGH RISK DATA AND UPLOADING HIGH RISK DATA AND USING THE CLOUD SERVICES IN CONJUNCTION WITH HIGH RISK DATA IS AT CUSTOMER’S OWN RISK; AND B) INTAPP WILL NOT IN ANY WAY BE LIABLE FOR INACCURACIES, ERRORS, OMISSIONS, DELAYS, DAMAGES, CLAIMS, LIABILITIES OR LOSSES, REGARDLESS OF CAUSE, IN OR ARISING FROM HIGH RISK DATA OR ITS INCLUSION INTO THE CLOUD SERVICES.

2. Technical restrictions

Use extreme bandwidth capacity in a way that threatens Intapp’s infrastructure or the ability of another user to access and use the Cloud Services;
Upload viruses or malware or any other software, hardware device or code intended to harm or disrupt the Cloud Services;
Attempt to overload the system with email or traffic;
Use or distribute tools or devices designed or used for compromising security or whose use is otherwise unauthorized, such as password guessing programs, decoders, password gatherers, keystroke loggers, analyzers, cracking tools, packet sniffers, encryption circumvention devices, or Trojan Horse programs. Unauthorized port scanning is strictly prohibited;
Distribute programs that make unauthorized changes to software (cracks);
Alter, modify, or tamper with the Cloud Services or its security or permit any other person to do the same who is not authorized by Intapp; or
Attempt to probe, scan or test the vulnerability of the Cloud Services or to breach the security or authentication measures without proper authorization.

3. Network and usage restrictions

Restrict, inhibit, or otherwise interfere with the ability of any other entity or individual, to use the Cloud Services, including without limitation (i) sending information in a way that is likely to be marked as spam or compromise the reputation of an IP address, and (ii) posting or transmitting any information or software which contains a worm, virus, or other harmful feature, or generating levels of traffic sufficient to impede others’ ability to use, send, or retrieve information;
Restrict, inhibit, interfere with, or otherwise disrupt or cause a performance degradation to the Cloud Services or any Intapp (or Intapp affiliate or supplier) host, server, backbone network, node or service; or
Interfere with computer networking or telecommunications service to any user, host or network, including, without limitation, denial of service attacks, flooding of a network, overloading a service, improper seizing and abusing operator privileges, and attempts to “crash” a host.

Changes to this policy

Intapp is constantly trying to improve the Cloud Services, so Intapp may need to change this Policy from time to time. If Intapp materially modifies this Policy, Intapp will use commercially reasonable efforts to alert you to such modifications by placing a notice on the Intapp website, the Cloud Services, by sending you an email, and/or by some other means. Please note that if you have opted not to receive emails from us (or if you have not provided us with your email address), you may not receive such notifications. This Policy, as modified, will continue to govern your use of the Cloud Services. If you use the Cloud Services after any changes to this Policy have been posted, that means you agree to the changes.

Cookie	Duration	Description
__cf_bm	1 hour	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
__hssc	1 hour	HubSpot sets this cookie to keep track of sessions and to determine if HubSpot should increment the session number and timestamps in the __hstc cookie.
__hssrc	session	This cookie is set by Hubspot whenever it changes the session cookie. The __hssrc cookie set to 1 indicates that the user has restarted the browser, and if the cookie does not exist, it is assumed to be a new session.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie records the user consent for the cookies in the "Advertisement" category.
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
drift_aid	1 year 1 month 4 days	Drift sets this cookie as a session identifier token. It is used to tie the visitor on your website to a current website session within the Drift system. This enables session-specific features, such as popping up a message only once during a 30 minute session to prevent a disruptive experience.
drift_campaign_refresh	1 hour	Drift sets this cookie as a unique ID for the specific user. This allows the website to target the user with relevant offers through its chat functionality.
driftt_aid	1 year 1 month 4 days	Drift sets this cookie as an anonymous identifier token. As people come onto the site, they will get this cookie.
li_gc	6 months	Linkedin set this cookie for storing visitor's consent regarding using cookies for non-essential purposes.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
UserMatchHistory	1 month	LinkedIn sets this cookie for LinkedIn Ads ID syncing.
visitorId	1 year	ZoomInfo sets this cookie to identify a user.

Cookie	Duration	Description
__hstc	6 months	Hubspot set this main cookie for tracking visitors. It contains the domain, initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session).
_fs_uid	never	Google Analytics sets this cookie to store an ID string on the current session.
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gcl_au	3 months	Google Tag Manager sets the cookie to experiment advertisement efficiency of websites using their services.
AnalyticsSyncHistory	1 month	Linkedin set this cookie to store information about the time a sync took place with the lms_analytics cookie.
DRIFT_visitCounts	never	Drift sets this cookie to determine the number of visits of the specific visitor.
fs_lua	1 hour	Captures the timestamp of the last user action. It is used to assist with the FullStory session lifecycle, ensuring user activity extends the session. See “What defines a session in FullStory?” for more info on the session lifecycle.
fs_uid	1 year	This cookie is set by the provider Fullstory. This cookie is used for session tracking.
hubspotutk	6 months	HubSpot sets this cookie to keep track of the visitors to the website. This cookie is passed to HubSpot on form submission and used when deduplicating contacts.
prevBuyingStage	6 months	6sense intent data
sessionUUID	4 hr	A unique identifier for the visitor’s session on the website. Used to correlate page views andactivities to a single browsing session on the website. It will remain unique for the duration of the cookie.
sixSenseUUID	2yr 12hr	A third-party unique identifier for the visitor that is managed by 6sense.
svisitorUUID	2yr 12hr	A long lived unique identifier of this visitor on the website. It is either correlated to the 6suuid or a unique value, and can be changed during the lifetime of this cookie.
visitorUUID	2yr 12hr	A unique identifier for the visitor that is specific to the website, and will remain unique for theduration of the cookie.
vuid	1 year 1 month 4 days	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos on the website.

Cookie	Duration	Description
bcookie	1 year	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser IDs.
bscookie	1 year	LinkedIn sets this cookie to store performed actions on the website.
IDE	1 year 24 days	Google DoubleClick IDE cookies store information about how the user uses the website to present them with relevant ads according to the user profile.
li_sugr	3 months	LinkedIn sets this cookie to collect user behaviour data to optimise the website and make advertisements on the website more relevant.
retargetingUID	1 wk	A unique identifier for the purposes of running 6sense Creative Ads
test_cookie	15 minutes	doubleclick.net sets this cookie to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	6 months	YouTube sets this cookie to measure bandwidth, determining whether the user gets the new or old player interface.
VISITOR_PRIVACY_METADATA	6 months	YouTube sets this cookie to store the user's cookie consent state for the current domain.
YSC	session	Youtube sets this cookie to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt-remote-device-id	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt.innertube::nextId	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.

Cookie	Duration	Description
_cfuvid	session	Description is currently not available.
int_s	1 hour	Description is currently not available.
int_vc	1 year	Description is currently not available.
loglevel	never	No description available.

Acceptable use policy

Trust and security

Acceptable use policy

Effective: October 6, 2023 — Present | View prior versions

Prior versions

Acceptable use policy v1

(Effective: October 30, 2020 — October 6, 2023)

DealCloud platform

Compliance

Time

Collaboration