top of page
vereus_reclogo_black.png

Part 1: SaaS Terms and Conditions

1. About these terms

These terms and conditions apply to the use of Vereus, the SaaS platform operated by Vereus Group Ltd.

Vereus Group Ltd is a company registered in Scotland under company number SC839263, with its registered office at Office 19 Rosyth Business Centre, 16 Cromarty Campus, Rosyth, Fife, Scotland, KY11 2YB.

In these terms:

  • “Vereus”, “we”, “us” or “our” means Vereus Group Ltd.

  • “Customer”, “you” or “your” means the business, organisation or person purchasing access to the platform.

  • “Platform” means the Vereus SaaS platform, including the Sales Engine, Marketing Engine, Asset Manager and any other features, modules or tools made available by us from time to time.

  • “User” means any person authorised by the Customer to use the Platform.

  • “Plan” means the subscription package selected by the Customer.

  • “Credits” means usage credits allocated under the Customer’s Plan and consumed when AI actions are completed within the Platform.

  • “Customer Data” means any information, content, data, leads, files, images, prompts, instructions or materials uploaded, entered, generated, processed or stored by or on behalf of the Customer using the Platform.

  • “Output” means content, text, images, suggestions, campaign material, analysis, drafts or other material generated through the Platform.

These terms apply whether the Customer signs up online, signs a proposal, signs an order form or otherwise accesses the Platform. Where a proposal or order form applies, it forms part of the agreement between the parties. If there is a conflict between these terms and a signed proposal, the signed proposal will take priority only for the specific commercial terms it expressly covers.

 

2. Business use only

The Platform is provided for business use only. By creating an account, signing a proposal or using the Platform, you confirm that you are acting for business purposes and not as a consumer.

If you are using the Platform on behalf of a company, partnership, charity, public body or other organisation, you confirm that you have authority to bind that organisation to these terms.

 

3. The Platform

Vereus is a SaaS platform that assists businesses with sales, marketing and asset management activities. The Platform may include, among other things:

  • AI-assisted sales campaign generation and email sending workflows;

  • AI-assisted marketing strategy, content and image generation;

  • image asset storage and management;

  • campaign, content, data and account management tools; and

  • other related features, integrations, tools and services.

The Platform is designed to assist the Customer. It does not replace human judgement, legal review, compliance review, marketing review, sales review or professional advice.

 

4. Account registration and users

Customers may create multiple User accounts, depending on their Plan and the functionality made available within the Platform.

You are responsible for:

  • ensuring that Users comply with these terms;

  • keeping login details secure;

  • ensuring that Users only access the Platform for authorised business purposes;

  • all activity that takes place through your account; and

  • promptly notifying us of any suspected unauthorised access.

User accounts must not be shared. Each User must have their own login unless we expressly agree otherwise in writing.

We may suspend or restrict access where we reasonably believe an account has been compromised, misused or used in breach of these terms.

 

5. Subscription, minimum term and renewal

The Platform is provided on a monthly subscription basis unless otherwise stated in a proposal or order form.

The minimum subscription term is three months from the start date of the subscription.

Unless cancelled in accordance with these terms, subscriptions renew automatically on a monthly basis after the minimum term.

After the minimum term, the Customer may cancel by giving at least 30 days’ notice.

Cancellation will take effect at the end of the applicable paid billing period. The Customer will continue to have access to the Platform until the end of that billing period, provided the account remains in good standing.

 

6. Setup period

For new Customers, the first month of the subscription may be used by Vereus to configure, prepare and set up the Platform for the Customer.

Unless otherwise agreed in writing, the Platform will be ready for use from the second month of the subscription.

The Customer acknowledges that subscription fees are payable from the subscription start date, including during the setup period.

 

7. Fees and payment

Fees are payable monthly in advance unless otherwise agreed in writing.

The Customer must pay all fees in accordance with the relevant Plan, proposal, order form or invoice.

Unless stated otherwise, fees are exclusive of VAT and any other applicable taxes.

The Customer is responsible for ensuring that payment details are valid and that invoices are paid on time.

 

8. Credits and usage

Each Plan includes a fixed number of Credits. Credits may be used across the Platform modules, including the Sales Engine, Marketing Engine and Asset Manager, according to the functionality available under the Customer’s Plan.

Credits are consumed when AI actions are completed within the Platform.

Unused Credits may roll over, subject to any limits or rules stated in the Customer’s Plan, proposal, order form or in-platform usage information.

Credits have no cash value, cannot be exchanged for money and are not refundable unless we expressly agree otherwise in writing.

We may apply fair usage rules to prevent abuse, excessive automated activity, unlawful use, technical strain or behaviour that creates risk for the Platform, Vereus, other customers or third parties.

 

9. Plan changes

Customers may upgrade or downgrade Plans during the minimum term or any renewal term, subject to the Plan options available at the time.

Where a Customer upgrades, additional fees may apply from the date of upgrade or from the next billing period, as stated at the time of upgrade.

Where a Customer downgrades, the change may take effect from the next billing period unless otherwise agreed.

Downgrading does not remove the obligation to complete the three-month minimum term.

 

10. Non-payment

If payment is not received when due, we may suspend access to the Platform immediately.

Where an account is suspended for non-payment:

  • access to the Platform may be paused;

  • live campaigns, workflows and AI actions may stop;

  • support may be withheld; and

  • the Customer remains responsible for outstanding fees.

Where the Customer is still within the three-month minimum term, we may require payment of the remaining fees due for that minimum term. We may take reasonable steps to recover unpaid amounts, but we will normally try to resolve payment issues with the Customer first.

 

11. Refunds

Fees are non-refundable except where we have clearly failed to provide the Platform due to an issue that is our fault, such as material mis-selling or a material Platform failure that we do not remedy within a reasonable period.

Refunds are not available because:

  • the Customer changes its mind;

  • the Customer does not use the Platform;

  • the Customer does not use all allocated Credits;

  • the Customer does not achieve a particular business outcome;

  • AI Outputs require editing or review;

  • third-party platforms, email providers, domains, mailboxes or integrations fail; or

  • the Customer uploads unsuitable, inaccurate, incomplete or unlawful data.

 

12. Support

Support is available to paying Customers in good standing.

Unless otherwise agreed in writing, support is provided during UK working hours by email, ticketing system and phone.

We will use reasonable endeavours to respond to support requests promptly, but we do not guarantee any specific response or resolution time unless expressly agreed in writing.

 

13. Availability and maintenance

We will use reasonable endeavours to keep the Platform available and functioning properly.

We do not guarantee uninterrupted or error-free access.

The Platform may be unavailable from time to time because of:

  • planned maintenance;

  • emergency maintenance;

  • updates or improvements;

  • third-party service issues;

  • hosting or infrastructure issues;

  • security incidents;

  • internet, network or device issues outside our control; or

  • events beyond our reasonable control.

We may carry out scheduled or emergency maintenance where needed. Where practical, we will try to give reasonable notice of planned maintenance.

 

14. Updates, changes and improvements

We may update, improve, change, add, remove, replace or modify Platform features at any time.

All Customers will receive access to Platform updates as they become available, subject to their Plan, account status and technical compatibility.

The Customer acknowledges that the Platform is expected to evolve over time and that features, workflows, outputs, integrations and user interfaces may change.

We will not materially reduce the core functionality of a paid Plan during a billing period without good reason, but we may make changes where needed for legal, security, technical, operational, commercial or product improvement reasons.

 

15. AI Outputs and customer responsibility

The Platform uses artificial intelligence to assist with sales, marketing, content, image and related business activities.

AI can make mistakes. Outputs may be inaccurate, incomplete, unsuitable, repetitive, non-compliant, outdated or inappropriate for the Customer’s intended use.

All Outputs are provided as drafts or suggestions only.

The Customer is responsible for reviewing, editing, approving and deciding whether to use any Output.

The Customer is solely responsible for checking:

  • factual accuracy;

  • legal compliance;

  • regulatory compliance;

  • brand suitability;

  • tone of voice;

  • claims, offers and promises;

  • intellectual property risks;

  • data protection compliance;

  • email marketing compliance;

  • advertising and marketing compliance;

  • industry-specific rules; and

  • whether the Output is suitable for the Customer’s business and audience.

Vereus does not provide legal, financial, medical, regulatory, tax, employment, investment or other professional advice through the Platform.

The Customer must obtain appropriate professional advice where needed.

 

16. No guaranteed outcomes

The Platform is designed to assist with business activity. We do not guarantee any particular result or outcome.

In particular, we do not guarantee:

  • sales;

  • leads;

  • revenue;

  • replies;

  • meetings;

  • conversions;

  • marketing engagement;

  • search rankings;

  • deliverability;

  • open rates;

  • click rates;

  • campaign performance;

  • brand growth;

  • customer acquisition; or

  • return on investment.

Any examples, forecasts, case studies, estimates or performance statements are illustrative only unless expressly guaranteed in writing.

 

17. Sales Engine

The Sales Engine may assist with the generation, personalisation, management and sending of sales outreach.

Where emails are sent, they are sent through the Customer’s own email sending platform, mailbox, domain or connected third-party provider.

The Customer controls and is responsible for:

  • the sending domain;

  • mailbox setup;

  • email platform setup;

  • DNS records;

  • authentication records;

  • sender reputation;

  • deliverability;

  • lead data;

  • recipient lists;

  • campaign approvals;

  • email content approval;

  • unsubscribe management;

  • suppression lists;

  • legal basis for outreach;

  • compliance with UK GDPR, PECR and any equivalent laws in other territories; and

  • all sales communications sent using or supported by the Platform.

The Customer must only upload lead, contact and prospect data that it has the right to use.

The Customer must ensure that all sales outreach is lawful, fair, transparent, accurate, non-misleading and properly targeted.

We are not responsible for third-party email platforms, sending tools, mailboxes, domains, deliverability systems, CRMs or integrations.

We may pause, restrict, suspend or refuse to support any campaign that we reasonably believe may be unlawful, harmful, spammy, misleading, abusive, reputationally risky or otherwise in breach of these terms.

Where reasonably practical, we will communicate with the Customer before suspending a campaign, unless immediate action is needed to protect Vereus, the Platform, other customers, third parties, deliverability, security or legal compliance.

 

18. Marketing Engine

The Marketing Engine generates draft marketing content, strategies, campaign ideas, written content, images and related material.

The Marketing Engine does not publish content directly unless this is expressly added as a feature and agreed in writing.

The Customer is responsible for reviewing, editing and approving all Marketing Engine Outputs before publication or use.

The Customer must not use Marketing Engine Outputs in a misleading, unlawful, harmful or irresponsible way.

 

19. AI-generated images

The Platform may generate images.

The Platform is designed to avoid creating misleading images, including images that falsely represent products, people, places, customer premises, staff members, real events or real-world evidence.

The Customer must not use AI-generated images in a way that is misleading, deceptive, unlawful, defamatory, discriminatory, harmful or likely to create false impressions.

The Customer is responsible for checking that images are suitable, lawful and appropriate before use.

 

20. Asset Manager

The Asset Manager is used to store and manage image assets.

Unless otherwise agreed in writing, the Customer may store up to 5GB of images.

The Customer owns the images it uploads to the Asset Manager.

The Customer is responsible for ensuring that it has all rights, licences, permissions and consents needed to upload, store and use those images.

Vereus is not responsible for the content, accuracy, legality, ownership or suitability of images uploaded by the Customer.

Vereus will not use Customer-uploaded assets to train or improve the Platform unless the Customer expressly agrees in writing.

When a Customer cancels, the Customer should download any assets it wishes to keep before the end of the paid billing period. After account access ends, the Customer may no longer be able to access or download assets.

 

21. Customer Data

The Customer is responsible for Customer Data.

The Customer warrants that:

  • it has the right to upload, process and use Customer Data through the Platform;

  • Customer Data does not infringe third-party rights;

  • Customer Data is accurate and lawful where required;

  • Customer Data does not contain unlawful, harmful or prohibited material;

  • Customer Data complies with applicable data protection, privacy, marketing and communications laws; and

  • use of Customer Data through the Platform will not put Vereus in breach of law or third-party rights.

 

The Customer must not upload special category data, criminal offence data, highly sensitive data or confidential third-party information unless it has a clear lawful basis and all required permissions, notices and safeguards.

The Customer remains responsible for determining whether Customer Data is appropriate for use with the Platform.

 

22. Data export and deletion

During the cancellation notice period and until the end of the paid billing period, the Customer may download available Customer Data and assets using the functionality available within the Platform.

After account access ends, the Customer will no longer have access to the Platform.

Unless we are legally required to retain it, we may delete Customer Data 30 days after account closure.

Backup copies may remain for a limited period as part of routine backup and disaster recovery processes, but will be deleted in accordance with our normal backup cycle.

 

23. Third-party services and integrations

The Platform may use, connect to or rely on third-party services, including AI model providers, hosting providers, payment processors, email platforms, analytics tools, support tools, APIs and other software providers.

We are not responsible for third-party services, including their availability, performance, errors, outages, security, compliance, pricing, changes or decisions.

The Customer is responsible for complying with any terms that apply to third-party services it connects to or uses with the Platform.

Where the Customer connects its own third-party account, platform, mailbox, domain or integration, the Customer remains responsible for that service and all activity conducted through it.

 

24. Intellectual property

Vereus and its licensors own all rights in the Platform, including:

  • software;

  • workflows;

  • prompts;

  • templates;

  • processes;

  • systems;

  • models;

  • methods;

  • logic;

  • know-how;

  • documentation;

  • user interface designs;

  • product structures;

  • campaign structures;

  • configuration methods;

  • automation logic; and

  • all improvements, updates and developments.

 

The Customer must not copy, reproduce, reverse-engineer, decompile, disassemble, scrape, replicate, rebuild or create a competing product or service based on the Platform, its Outputs, workflows, prompts, methods, structures or logic.

The Customer must not use the Platform or Outputs to train, improve, develop or support a competing AI, SaaS, automation, sales, marketing or asset management product.

Subject to payment of all applicable fees and compliance with these terms, the Customer receives a limited, non-exclusive, non-transferable, revocable right to access and use the Platform for its internal business purposes during the subscription term.

 

25. Ownership of Customer Data and Outputs

The Customer owns Customer Data.

Subject to the Customer complying with these terms and paying all applicable fees, the Customer owns the Outputs generated for the Customer through the Platform, to the extent such ownership can legally be transferred or recognised.

Vereus does not claim ownership of Customer-uploaded assets or Customer-specific Outputs.

However, the Customer acknowledges that:

  • AI-generated content may not always be protectable by intellectual property rights;

  • similar or identical outputs may be generated for other users;

  • Outputs may require human editing before use;

  • Outputs may contain errors or third-party material; and

  • the Customer is responsible for checking whether Outputs are suitable for use.

 

26. Marketing use of Customer name and logo

Unless the Customer tells us otherwise in writing, we may identify the Customer as a customer of Vereus, including by using the Customer’s name and logo on our website, sales materials, pitch decks, case studies and marketing materials.

We will not publish detailed case studies, confidential information, performance data or sensitive commercial information about the Customer without the Customer’s permission.

 

27. Acceptable use

The Customer and its Users must comply with the Acceptable Use Policy in Part 3 of these terms.

We may suspend, restrict or terminate access if we reasonably believe the Customer or any User has breached the Acceptable Use Policy.

 

28. Confidentiality

Each party may receive confidential information from the other.

Each party must:

  • keep the other party’s confidential information secure;

  • only use it for the purposes of the agreement;

  • not disclose it except as needed to perform the agreement, comply with law or obtain professional advice; and

  • ensure that its staff, contractors and advisers keep it confidential.

Confidential information does not include information that is publicly available, already known without breach of confidence, independently developed or lawfully received from another source.

 

29. Data protection

The parties must comply with applicable data protection laws.

Where Vereus processes personal data on behalf of the Customer, the Data Processing Agreement in Part 2 applies.

The Customer is responsible for ensuring that it has a lawful basis, transparency notices, permissions and records needed to upload, process and use personal data through the Platform.

 

30. Security

We will use reasonable technical and organisational measures designed to protect the Platform and Customer Data against unauthorised access, loss, misuse and alteration.

The Customer is responsible for:

  • securing its own devices, systems and networks;

  • managing User access;

  • keeping passwords secure;

  • using appropriate account permissions;

  • managing connected third-party platforms; and

  • promptly notifying us of suspected security issues.

No SaaS platform, AI system or internet-based service can be guaranteed to be completely secure.

 

31. Suspension and termination

We may suspend, restrict or terminate access where we reasonably believe that:

  • the Customer has failed to pay fees when due;

  • the Customer or a User has breached these terms;

  • the Platform is being misused;

  • Customer Data may be unlawful, harmful or infringing;

  • a campaign or Output creates legal, technical, security, deliverability or reputational risk;

  • continued access could harm Vereus, the Platform, other customers or third parties;

  • we are required to do so by law or a third-party provider; or

  • the Customer becomes insolvent or unable to pay its debts.

Where reasonably practical, we will communicate with the Customer before suspension or termination. However, we may act immediately where needed to protect legal compliance, security, third-party rights, platform integrity or reputation.

When an account stops, live campaigns, workflows and AI actions pause or stop.

Termination does not affect fees already due, accrued rights or terms intended to survive termination.

 

32. Liability

Nothing in these terms excludes or limits liability where it would be unlawful to do so.

Subject to that, Vereus will not be liable for:

  • lost profits;

  • lost sales;

  • lost revenue;

  • lost opportunities;

  • lost contracts;

  • lost goodwill;

  • reputational damage;

  • loss of data caused by Customer misuse or third-party failure;

  • AI inaccuracies;

  • unsuitable or non-compliant Outputs used by the Customer;

  • failure to achieve business outcomes;

  • email deliverability issues;

  • third-party platform failures;

  • domain, mailbox or sender reputation issues;

  • indirect or consequential loss; or

  • losses caused by the Customer’s breach of these terms.

Vereus’ total aggregate liability arising out of or in connection with the agreement, whether in contract, delict, negligence, breach of statutory duty or otherwise, is limited to the fees paid by the Customer to Vereus in the one month immediately before the event giving rise to the claim.

 

33. Customer indemnity

The Customer will indemnify Vereus against losses, claims, damages, costs and expenses arising from:

  • Customer Data;

  • unlawful, inaccurate or non-compliant lead data;

  • sales outreach or marketing activity carried out by or for the Customer;

  • use of Outputs by the Customer;

  • breach of data protection, privacy, marketing or communications laws by the Customer;

  • infringement of third-party rights by Customer Data or Customer activity;

  • misuse of the Platform;

  • breach of the Acceptable Use Policy; or

  • use of third-party services connected by the Customer.

 

34. Force majeure

We will not be liable for delay or failure caused by events beyond our reasonable control, including internet failures, hosting failures, third-party outages, cyber incidents, strikes, labour disputes, war, terrorism, pandemic, natural disaster, power failure, government action or changes in law.

 

35. Assignment

The Customer may not assign, transfer or subcontract its rights or obligations under the agreement without our prior written consent.

We may assign, transfer or subcontract our rights and obligations as part of a business sale, group restructuring, investment, merger or transfer of Platform operations, provided this does not materially reduce the Customer’s rights.

 

36. Notices

We may send notices to the Customer by email, through the Platform or to the contact details provided by the Customer.

The Customer may send notices to us using the contact details provided on our website or in the Platform.

The Customer is responsible for keeping its contact details up to date.

 

37. Changes to these terms

We may update these terms from time to time.

Where changes are material, we will take reasonable steps to notify Customers.

Continued use of the Platform after updated terms take effect means the Customer accepts the updated terms.

If a Customer does not agree to material changes, it may cancel in accordance with these terms.

 

38. Governing law and disputes

These terms and any dispute or claim arising from them are governed by the laws of Scotland.

The parties will first try to resolve any dispute through good-faith discussions.

If the dispute cannot be resolved through good-faith discussions within a reasonable period, the Scottish courts will have jurisdiction, unless mandatory law requires otherwise.


 

 

 

Part 2: Data Processing Agreement

This Data Processing Agreement forms part of the agreement between Vereus and the Customer.

1. Purpose

This DPA applies where Vereus processes personal data on behalf of the Customer in connection with the Platform.

For Customer-uploaded personal data, the Customer is normally the controller and Vereus is normally the processor.

For Vereus’ own business operations, such as billing, account administration, customer relationship management, security records and internal business records, Vereus may act as an independent controller.

 

2. Definitions

In this DPA, terms such as controller, processor, personal data, processing, data subject, personal data breach and subprocessor have the meanings given in applicable data protection laws.

 

3. Customer instructions

Vereus will process Customer personal data only on the Customer’s documented instructions, unless required to do otherwise by law.

The Customer instructs Vereus to process Customer personal data as needed to:

  • provide the Platform;

  • configure and support the Customer account;

  • generate Outputs;

  • store and manage Customer Data;

  • process AI actions;

  • provide support;

  • maintain security;

  • monitor usage and performance;

  • prevent misuse;

  • comply with applicable law; and

  • perform the agreement.

 

4. Nature and purpose of processing

The nature and purpose of processing is the provision of an AI-assisted SaaS platform for sales, marketing and image asset management.

Processing may include collecting, receiving, hosting, storing, analysing, retrieving, transmitting, generating, deleting, organising and otherwise processing Customer personal data.

 

5. Categories of personal data

Customer personal data may include:

  • business contact names;

  • business email addresses;

  • job titles;

  • employer/company names;

  • business phone numbers;

  • website information;

  • CRM or lead information;

  • campaign data;

  • email engagement data;

  • user account details;

  • prompts, instructions and content entered by Users;

  • images or metadata uploaded to the Asset Manager; and

  • any other personal data uploaded or submitted by the Customer.

 

6. Categories of data subjects

Data subjects may include:

  • Customer staff and Users;

  • Customer prospects;

  • Customer leads;

  • Customer contacts;

  • Customer clients;

  • suppliers;

  • representatives of businesses; and

  • other individuals whose personal data is uploaded by the Customer.

 

7. Duration of processing

Vereus will process Customer personal data for the duration of the agreement and for any additional period needed for deletion, backup, legal compliance, dispute resolution or legitimate business administration.

Unless legally required to retain it, Vereus may delete Customer personal data 30 days after account closure, with backup copies deleted according to normal backup cycles.

 

8. Customer obligations

The Customer is responsible for:

  • having a lawful basis for processing Customer personal data;

  • providing privacy notices where required;

  • complying with UK GDPR, PECR and any other applicable laws;

  • ensuring personal data is accurate, lawful and appropriate;

  • ensuring it has the right to upload and use personal data through the Platform;

  • managing data subject rights requests where it is the controller;

  • ensuring sales and marketing activity is lawful; and

  • giving Vereus lawful instructions.

The Customer must not instruct Vereus to process personal data unlawfully.

 

9. Vereus obligations

Vereus will:

  • process Customer personal data only on documented instructions;

  • ensure that authorised personnel are subject to confidentiality obligations;

  • use reasonable technical and organisational measures to protect Customer personal data;

  • assist the Customer where reasonably possible with data subject rights requests, taking into account the nature of the processing;

  • assist the Customer where reasonably possible with security, breach and compliance obligations;

  • notify the Customer without undue delay after becoming aware of a personal data breach affecting Customer personal data;

  • make available reasonable information needed to demonstrate compliance with this DPA; and

  • delete or return Customer personal data at the end of the agreement in accordance with these terms.

 

10. Security measures

Vereus will maintain reasonable technical and organisational security measures appropriate to the nature of the Platform and the risks of processing.

These may include, where appropriate:

  • access controls;

  • authentication controls;

  • encryption in transit and/or at rest where available;

  • hosting security controls;

  • least-privilege access;

  • staff confidentiality obligations;

  • secure development practices;

  • monitoring and logging;

  • backup and recovery processes;

  • vulnerability management; and

  • incident response processes.

 

11. Subprocessors

The Customer gives Vereus general authorisation to use subprocessors.

Subprocessors may include providers of:

  • cloud hosting;

  • database infrastructure;

  • AI models and large language models;

  • payment processing;

  • email infrastructure;

  • analytics;

  • monitoring;

  • customer support;

  • authentication;

  • storage;

  • security; and

  • other technical services needed to provide the Platform.

Vereus will ensure that subprocessors are subject to written terms that provide appropriate protection for Customer personal data.

Vereus remains responsible to the Customer for the performance of subprocessors as required by applicable data protection laws.

Vereus may update its subprocessors from time to time. Where legally required, Vereus will provide notice of material subprocessor changes.

 

12. International transfers

The Platform is intended to host Customer Data in the United Kingdom.

However, some subprocessors, AI model providers or technical services may process personal data outside the United Kingdom.

Where Vereus transfers Customer personal data internationally, it will take reasonable steps to ensure that appropriate safeguards are in place where required by applicable data protection laws.

 

13. Data subject rights

Where Vereus receives a data subject request relating to Customer personal data for which the Customer is controller, Vereus will, where reasonably possible, either:

  • direct the individual to the Customer; or

  • notify the Customer and reasonably assist the Customer.

The Customer is responsible for responding to data subject requests where it is the controller.

 

14. Personal data breaches

Vereus will notify the Customer without undue delay after becoming aware of a personal data breach affecting Customer personal data.

The notice will include information reasonably available to Vereus at the time.

The Customer is responsible for deciding whether it needs to notify regulators or affected individuals, unless the law requires Vereus to do so directly.

 

15. Audit and information

Vereus will provide reasonable information to help demonstrate compliance with this DPA.

Any audit must be reasonable, proportionate, subject to confidentiality, limited to the Customer’s own personal data, and must not compromise the security, confidentiality or operations of Vereus, the Platform, other customers or third-party providers.

Vereus may charge reasonable fees for audit assistance where the request is excessive, complex or outside normal support.

 

16. Deletion or return

At the end of the agreement, Vereus will delete or make available for return Customer personal data in accordance with the SaaS Terms.

Unless legally required to retain it, Vereus may delete Customer personal data 30 days after account closure.

Backup copies may be retained temporarily as part of routine backup processes and deleted according to normal backup cycles.


 

 

Part 3: Acceptable Use Policy

This Acceptable Use Policy applies to all use of the Platform.

The Customer must ensure that all Users comply with this policy.

 

1. General rules

The Platform must only be used for lawful, responsible and legitimate business purposes.

The Customer must not use the Platform in a way that:

  • breaches any law or regulation;

  • infringes third-party rights;

  • is misleading, fraudulent or deceptive;

  • damages or risks damaging Vereus’ reputation;

  • harms the Platform, other customers or third parties;

  • creates security, legal, regulatory, technical or deliverability risk;

  • abuses AI systems or third-party services; or

  • breaches these terms.

 

2. Prohibited content and activity

The Customer must not use the Platform to create, upload, store, send, support or promote:

  • illegal content or activity;

  • spam or unlawful direct marketing;

  • harassment, abuse, threats or intimidation;

  • hate, discrimination or extremist content;

  • adult sexual content;

  • gambling;

  • alcohol promotion;

  • nicotine, vaping or tobacco promotion;

  • medication, supplements, treatments or medical claims;

  • high-risk medical, legal, financial, investment or regulated advice;

  • political campaigning or political persuasion;

  • weapons, explosives or dangerous goods;

  • malware, phishing, credential theft or cyber abuse;

  • scraping or data harvesting without lawful authority;

  • impersonation or deception;

  • defamatory content;

  • false testimonials, fake reviews or misleading endorsements;

  • misleading AI-generated images;

  • content that exploits vulnerable people;

  • content that breaches platform rules of connected third-party services; or

  • any other content or activity that Vereus reasonably considers harmful, unlawful, unethical or risky.

 

3. Prohibited industries and use cases

Vereus may refuse, suspend or terminate use of the Platform for businesses or campaigns connected with:

  • gambling;

  • alcohol;

  • nicotine, vaping or tobacco;

  • medication, supplements, treatments or medical claims;

  • adult content;

  • political campaigning;

  • weapons;

  • unlawful financial schemes;

  • scams or misleading business models;

  • illegal products or services; or

  • any other sector we reasonably consider unsuitable for the Platform.

 

4. Email and outreach rules

The Customer must not use the Platform for spam or unlawful outreach.

The Customer is responsible for ensuring that all outreach complies with applicable laws, including UK GDPR, PECR and equivalent laws in other relevant territories.

The Customer must:

  • only upload leads it is entitled to use;

  • maintain appropriate suppression and unsubscribe lists;

  • honour objections and opt-outs;

  • avoid misleading subject lines or sender identities;

  • avoid excessive or abusive sending;

  • ensure campaigns are properly targeted;

  • ensure email content is accurate and lawful; and

  • comply with third-party email platform rules.

 

5. AI image rules

The Customer must not use AI-generated images to mislead people.

In particular, the Customer must not use AI-generated images to falsely represent:

  • real products;

  • real people;

  • real staff members;

  • real customers;

  • real locations;

  • real events;

  • before-and-after results;

  • evidence of work completed;

  • testimonials or endorsements; or

  • anything else that could create a false impression.

 

6. Platform misuse

The Customer must not:

  • reverse-engineer the Platform;

  • copy Platform workflows, prompts, structures, methods or logic;

  • use the Platform to build or support a competing product;

  • bypass usage limits;

  • overload or disrupt the Platform;

  • attempt unauthorised access;

  • test security without permission;

  • upload malware;

  • interfere with other customers;

  • resell access without permission;

  • share User accounts;

  • remove or obscure proprietary notices; or

  • use the Platform in any way not authorised by these terms.

 

7. Enforcement

If we reasonably believe this Acceptable Use Policy has been breached, we may:

  • warn the Customer;

  • request changes;

  • remove or disable content;

  • pause campaigns;

  • restrict features;

  • suspend Users;

  • suspend the Customer account;

  • terminate the agreement; or

  • take any other reasonable action needed to protect Vereus, the Platform, other customers, third parties or legal compliance.

Where reasonably practical, we will communicate with the Customer before taking enforcement action. However, we may act immediately where necessary.

bottom of page