Acceptable Use Policy

This Acceptable Use Policy (AUP) governs the use of all services provided by Suphy Direct Limited, including leased IPv4 space, supporting infrastructure services, and retail e-commerce. The policy protects our infrastructure, our customers, and the wider internet community from harmful or unlawful activity.

1. Prohibited activities — network

The following activities are strictly prohibited on any IP space leased from Suphy Direct:

• Unsolicited bulk email (spam): sending or relaying unsolicited commercial or bulk email, harvesting addresses, operating snowshoe spam infrastructure.
• Phishing and fraud: hosting phishing sites, fraudulent storefronts, or any content designed to deceive users into disclosing credentials, payment data, or personal information.
• Malware: hosting, distributing, or commanding malicious software (viruses, trojans, ransomware, stalkerware, exploit kits) or operating botnet command-and-control infrastructure.
• Network attacks: originating or relaying denial-of-service traffic, port scanning at scale, brute-force credential attacks, BGP hijacks, or DNS amplification.
• Route hijacking: announcing prefixes you are not authorised to announce, leaking routes, or otherwise disrupting global routing.
• Open relays and proxies: running unauthenticated open SMTP relays, open recursive DNS resolvers, or open SOCKS / HTTP proxies that can be abused by third parties.
• Anonymisation services: using leased space to operate consumer VPN exit nodes, anonymising proxies, or proxy / residential-proxy networks aimed at circumventing the rules of third-party services. Suphy Direct does not provide proxy or anonymisation services and does not permit them on our IP space.

2. Prohibited content

You may not use our services to host, transmit, or facilitate:

• Child sexual abuse material (CSAM). We will report such material to relevant authorities and take immediate enforcement action.
• Content that incites violence, terrorism, or genocide.
• Material that infringes intellectual-property rights of third parties.
• Content that violates applicable export controls or sanctions, including Hong Kong, US OFAC, UK, and EU sanctions regimes.
• Unlawful gambling, illicit pharmaceutical sales, or other content prohibited by the laws applying to either you or the destination jurisdiction.

3. Retail e-commerce — buyer and seller conduct

• Buyers must provide accurate identification and shipping information and must not engage in chargeback fraud, refund abuse, or harassment of our staff or partners.
• Resale of items purchased from our retail channels for the purpose of trademark counterfeiting or grey-market arbitrage in jurisdictions where such resale is unlawful is prohibited.

4. Compliance with RIR policies

All use of leased IP space must comply with the policies of the originating Regional Internet Registry (RIPE NCC, ARIN, APNIC, LACNIC, or AFRINIC) and the registry-specific transfer or lease policy under which the resources were issued. WHOIS objects must remain accurate; misrepresentation of the lessee or the use of fictitious organisations is prohibited.

5. RPKI and routing hygiene

• You must announce leased prefixes only from the AS number(s) covered by the issued Letter of Authorisation and Route Origin Authorisation.
• You must filter your customer announcements (no transit leaks) and operate sane BGP policy.
• Persistent ROA mismatches, route leaks, or hijack incidents will trigger an investigation and may result in lease termination.

6. Enforcement

When we receive a credible abuse report or detect a violation, our response is graded by severity:

• Investigation notice: we contact the lessee with the report details and request a response, typically within twenty-four hours.
• Suspension: for serious or unaddressed issues we may suspend routing, revoke the Letter of Authorisation, or remove the relevant ROA.
• Termination: for severe violations (CSAM, sustained criminal activity, repeat offences) we will terminate the lease immediately, retain all unpaid fees, and report the matter to law enforcement where appropriate.

7. Reporting abuse

Anyone may report suspected abuse of our IP space or services. Send the report to support@suphydirectlimited.com with as much detail as possible — source IP, timestamps with timezone, sample headers or logs, and a description of the impact. Acknowledgement is sent automatically; substantive triage typically follows within hours.

8. Updates

This policy may be updated to reflect new threats, regulatory changes, or registry policy. The "Last updated" date at the top reflects the most recent revision.

9. Contact

For questions about this policy contact support@suphydirectlimited.com.