Acceptable Use Policy

This Acceptable Use Policy ("AUP") describes the rules for using IT services that Petrov IT Solutions ("Petrov IT," "we," "us") provides to clients — managed IT, cybersecurity, cloud, networking, help desk, and any other service we deliver. The AUP also applies to your use of any account, system, or network that we manage on your behalf.

This AUP is incorporated into every Petrov IT service agreement. By receiving services from us, you and your authorized users agree to follow these rules.

1. Who This Applies To

• Our clients (companies and organizations that engage us)
• Their employees, contractors, and authorized users who access systems we manage
• Anyone we grant administrative or remote access to those systems

2. Permitted Use

You may use the services we provide for legitimate business and personal purposes consistent with this AUP, your service agreement, applicable law, and the policies of your own organization.

3. Prohibited Activities

You may not use our services or systems we manage to:

Illegal or harmful conduct

• Engage in any activity that violates federal, state, or local law (including intellectual property, privacy, export-control, and anti-fraud laws)
• Store, transmit, or distribute content that is illegal, defamatory, threatening, harassing, or that infringes on the rights of others
• Distribute, host, or facilitate child sexual abuse material (CSAM) — we report any such material to law enforcement immediately

Security violations

• Attempt to access any system, network, or data you are not authorized to access
• Probe, scan, or test the vulnerability of any system without authorization
• Bypass, disable, or interfere with authentication, security, or monitoring tools we deploy
• Introduce malware, ransomware, viruses, worms, trojans, or other malicious code
• Conduct denial-of-service attacks, port scans, or other network abuse
• Attempt to intercept, sniff, or modify network traffic that is not addressed to you

Abusive use of resources

• Send unsolicited bulk email (spam), phishing messages, or commercial messages that violate the CAN-SPAM Act
• Run cryptocurrency mining or comparable resource-intensive activity on systems we manage, without our prior written approval
• Use the services to host pirated software, copyrighted material without permission, or anonymizing services intended to evade attribution
• Generate excessive load that degrades service for other users or our infrastructure

Misrepresentation

• Forge headers, sender addresses, or identity information
• Impersonate any person, company, or affiliation
• Provide false information when registering for or using services

Compromising the trust relationship

• Share remote-access credentials, MFA tokens, or VPN keys with unauthorized parties
• Re-sell, sub-license, or redistribute services we provide without our written agreement
• Attempt to reverse-engineer or extract proprietary tools and processes we use to deliver services

4. Compliance with Laws and Industry Rules

You are responsible for ensuring that your use of our services complies with the laws and industry rules that apply to your business — including HIPAA (healthcare), GLBA (financial services), PCI-DSS (payment cards), FERPA (education), and any state or sector-specific data-protection regimes. We will configure systems to support your compliance obligations as agreed in your service contract, but the legal obligation is yours.

5. Reporting Violations

If you become aware of activity that violates this AUP — whether by your own users or by an outside party affecting systems we manage — please notify us immediately at abuse@petrovit.net or (267) 851-3322. Prompt reporting helps us contain incidents before they spread.

6. Our Response to Violations

When we identify a violation, we may, at our sole discretion and without prior notice if the situation requires:

• Investigate the activity and preserve evidence
• Suspend or restrict the affected user, account, or system
• Block the offending traffic at the network, firewall, or endpoint level
• Notify your designated point of contact
• Notify law enforcement, regulators, or affected third parties when required by law
• Terminate the service agreement for material or repeated violations, in accordance with that agreement's termination clause

We will work in good faith to coordinate response actions with your team, but we reserve the right to take immediate protective action when delay would cause greater harm.

7. Cooperation with Investigations

You agree to cooperate reasonably with our investigation of suspected violations, including providing access to logs, audit trails, and personnel as needed. We will limit our access to what is necessary for the investigation.

8. No Waiver

Our failure to enforce any part of this AUP in any specific case does not waive our right to enforce it in any other case.

9. Changes to This Policy

We may update this AUP from time to time to reflect new threats, regulations, or business practices. The current version always lives at petrovit.net/acceptable-use with the effective date at the top. We will give clients reasonable notice of material changes through normal client communication channels.

10. Contact