Acceptable Use Policy

1. Who this Policy applies to

This Acceptable Use Policy (the "AUP") applies to every user of the TransMov platform operated by WW Travel Solutions ("TransMov," "we," "our"), including:

• Customer Organizations and their authorized Users, under the TransMov Customer Terms of Service
• Providers and their authorized personnel, under the TransMov Provider Platform Agreement
• Any individual or entity that accesses the TransMov application, marketing website, APIs, or embedded forms

The AUP is incorporated into the Customer Terms of Service and the Provider Platform Agreement. Violation of the AUP is a material breach of the applicable agreement.

To report a violation, email abuse@transmov.com.

2. The bright lines — things you must never do

2.1 Break the law

• Use the platform for activity that is illegal under applicable law in any jurisdiction involved
• Coordinate transportation that violates sanctions or trade restrictions (US OFAC, EU, UK, UN) — including transport for sanctioned persons, flights between sanctioned regions, or transport intended to evade sanctions
• Facilitate human trafficking, smuggling, or other illegal transport of people or goods
• Use the platform to support money laundering or terrorism financing
• Use the platform in connection with bribery or improper payments to public officials (US FCPA, UK Bribery Act, equivalents)
• Collect or process personal data in a way that violates applicable data-protection law

2.2 Attack or misuse the platform

• Access — or attempt to access — data you are not authorized to access, including data belonging to another Customer, another Provider, or TransMov
• Circumvent authentication, authorization, entitlement, rate-limit, or tenant-isolation controls
• Reverse engineer, decompile, disassemble, or derive the source code of the platform, except to the extent applicable law specifically allows
• Scan, probe, test, or exploit vulnerabilities, except under a program we have explicitly authorized in writing
• Introduce malware, viruses, worms, ransomware, logic bombs, or any code designed to disrupt, damage, or take control of the platform or other users' systems
• Interfere with or disrupt the platform, the network it runs on, any other user's use of the platform, or any TransMov sub-processor's systems
• Send automated traffic at a rate designed to overwhelm the platform
• Circumvent any usage measurement that the platform uses to bill you

2.3 Abuse your credentials or API access

• Share your personal user credentials with another individual
• Embed API keys in client-side code, public repositories, or anywhere a third party could retrieve them
• Use a single API key for multiple distinct organizations or business lines, except as authorized
• Transfer API access or user accounts to any party other than as permitted by the applicable agreement

2.4 Misuse personal data

• Enter personal data into the platform that you do not have a lawful basis to process
• Use End-Passenger contact information — or any personal data obtained through the platform — for any purpose other than coordinating the transportation the End-Passenger is using
• Send marketing or unsolicited communications to End-Passengers or other platform users, except as expressly permitted by their customer relationship with you
• Disclose, share, sell, or transfer personal data obtained through the platform to any third party that is not involved in delivering or supporting the transportation
• Use platform data to build or train an AI / ML / analytics product outside the TransMov Service, other than internal analytics on your own organization's data

2.5 Disrupt other users

• Harass, intimidate, threaten, defame, or discriminate against any other user, an End-Passenger, a driver, or any TransMov employee
• Impersonate any person or entity, or misrepresent your affiliation
• Submit false, misleading, or fraudulent information — including falsified insurance certificates, fake licenses, fictitious trip data, manipulated ratings, or inflated performance metrics
• Use the platform to solicit users of another Customer's network, to route another Customer's End-Passengers outside their network, or otherwise to disintermediate TransMov's Customers

2.6 Use the platform to compete with it

• Use the platform to benchmark against or develop a competing product or service
• Disclose non-public performance, pricing, or functionality information about the platform to a competitor of TransMov
• Scrape the platform to build a directory, listing service, marketplace, or database that duplicates the platform's core functions

2.7 Misuse the marketplace

• Providers: do not misrepresent licensing, insurance, vehicle condition, driver qualifications, or fleet size; do not upload documents that are not authentic; do not submit inflated or manufactured trip history; do not use the marketplace as a lead-generation channel while routing actual services off-platform
• Customers: do not use the Vetted Supplier Network for activity unrelated to the Service (for example, harvesting Provider contact information to build an external database)

2.8 Do things that put TransMov at legal, safety, or reputational risk

• Use the platform in a way that would reasonably lead to significant physical harm, financial loss, or privacy harm
• Use the platform in a way that would reasonably expose TransMov to regulatory sanction
• Use the platform in connection with an activity that a reasonable operator of a B2B coordination platform would find unacceptable, even if no specific rule here addresses it

3. Content standards

All content Users submit to the platform (trip notes, messages, passenger details, branding assets, profile data, compliance documents) must:

• Be accurate and not misleading
• Be free of unlawful, infringing, harassing, hateful, or obscene material
• Respect the dignity and privacy of End-Passengers, drivers, and other users
• Not contain clinical or health data unless strictly necessary for trip fulfillment, and then only with the lawful basis to do so
• Not contain information about minors unless the Customer has verified a lawful basis and recorded any necessary consent
• Comply with all applicable platform branding and communication guidelines

If you ask the platform to send an email or SMS to a contact, you represent that the contact has consented to receive that communication or that you otherwise have a lawful basis to send it.

4. Communications

4.1 Email and SMS

Transactional and operational communications the platform sends to your End-Passengers on your behalf are your responsibility. You must:

• Use the platform's communication features only for purposes related to the trips being coordinated
• Not use the platform to send marketing, promotional, or newsletter content to End-Passengers, unless they have separately opted in and you can produce evidence
• Honor opt-out and unsubscribe requests promptly
• Comply with SMS rules in each jurisdiction (including US TCPA and analogous regimes; UK PECR; EU ePrivacy as nationally implemented)

4.2 Within-platform messaging

Messaging between Users, between Customers and Providers, and between Providers and End-Passengers must be professional, on-topic, and free of the material listed in Section 2. Abusive messaging is grounds for suspension.

5. Security and vulnerability disclosure

5.1 Protect your account

• Use strong passwords and enable multi-factor authentication where offered
• Keep your User list up to date — promptly revoke access for individuals who no longer need it
• Report security incidents that affect your account or your data to us within 24 hours at security@transmov.com

5.2 Vulnerability research

If you discover a potential security vulnerability, we welcome the report. Contact security@transmov.com with a clear description and reproduction steps. We acknowledge receipt within 5 business days, investigate in good faith, and inform you when we have addressed the issue. During research:

• Do not access, modify, or delete data belonging to other users
• Do not publish the vulnerability before we have had a reasonable opportunity to remediate
• Do not use automated tools in a way that could degrade the Service for other users

6. Transportation-specific standards

6.1 Providers

If you are a Provider, you agree:

• Every driver you dispatch is licensed and authorized to drive commercially in the jurisdiction of the trip, insured to the minimum coverage required, and fit to drive at the time of the trip
• Every vehicle you dispatch is roadworthy, insured, and legally permitted to operate for hire in the jurisdiction of the trip
• You comply with all applicable transportation regulations in each jurisdiction — licensing, hours-of-service, inspection, permits
• You maintain the compliance documents you have represented to TransMov in good standing, and notify TransMov promptly if any is suspended, revoked, lapsed, or invalidated
• You do not subcontract the execution of a trip booked through the platform without the Customer's and TransMov's prior knowledge

6.2 Customers

• You book only transportation you have a lawful basis and authority to book on behalf of your End-Passenger
• You do not use the platform to arrange transportation that would violate a regulator's order, a court injunction, or an applicable safety or licensing requirement

7. AI, automation, and data mining

• You may use the platform's documented APIs for legitimate integration with your own systems
• You must not use the platform's data as training or fine-tuning input for third-party AI / ML models
• You must not combine platform data with other sources to re-identify End-Passengers, drivers, or other individuals whose data has been de-identified or aggregated

8. Enforcement

8.1 What we can do

If we reasonably determine that you have violated the AUP, we may:

• Issue a warning (informal or written)
• Suspend specific functionality (for example, API access, invite features, or inbound quote reception)
• Suspend the affected Users' access
• Suspend the Customer or Provider account entirely
• Terminate the Agreement, in accordance with its termination provisions
• Require remediation steps (documentation, retraining, confirming data deletion)
• Report the violation to applicable authorities or third parties who have been harmed, to the extent permitted or required by law
• Preserve evidence and cooperate with law-enforcement investigations

8.2 Proportional response

Our response is proportional to the severity of the violation. We prefer warnings and targeted suspensions for good-faith mistakes and escalate for willful, repeated, or safety-critical violations. We may act without prior notice where a violation threatens the security, integrity, or lawful operation of the Service, or where applicable law requires immediate action.

8.3 No liability for enforcement

TransMov has no liability to you for any suspension or termination that is a reasonable response to a violation of this AUP. Refund eligibility for the suspended or terminated Subscription Term is governed by the applicable agreement (typically no refund for termination for cause attributable to you).

9. Reporting violations

To report a suspected AUP violation, contact us at abuse@transmov.com with:

• A description of what you observed
• Where it happened (URL, organization name, user name, or trip reference if you know it)
• Any evidence you can share (screenshots, exported records)
• How we can reach you for follow-up

We treat reports confidentially where we can and acknowledge every report within 2 business days.

10. Changes to this Policy

We may update this AUP from time to time. For material changes, we give at least 30 days' prior notice by email or in-product notice, except that we may adopt changes required by law or safety with less notice. Continued use of the Service after the effective date of a change constitutes acceptance.