Last updated: 14 Aug 2024
These API Terms of Use (the “API Terms”) govern your access to and use of the Application Programming Interface (“API”) provided by Zelt (“Company,” “we,” “us,” or “our”). By accessing or using our API, you (“Developer,” “you,” or “your”) agree to comply with these API Terms.
1. Acceptance of Terms
By using our API, you agree to these API Terms and any amendments or updates we may make from time to time. If you do not agree with these API Terms, you must not use our API.
2. Legitimate Use
2.1. Internal Use by Customers: An application may be developed using the available APIs solely for the internal use of the customer within their own workspace. In such cases, the application is not intended for distribution or use by other workspaces, and only the Compliant API Usage section of these API Terms will apply. No submission for review is required for internal-use applications.
2.2. Published Applications: If an application is intended to be published for use by other workspaces within Zelt, the developer must submit the application for review and approval by the Company before it can be made available on the marketplace. Such applications must comply with this Legitimate Use clause as well as all other applicable sections of these API Terms.
2.3. Definition of Legitimate Use: Legitimate Use is defined as the specific, approved use case for which the application has been submitted and authorised by the Company. You may only use our APIs to perform the functions and services that have been explicitly approved as part of your application’s review process. Any attempt to perform actions or access data beyond the scope of the approved use case is strictly prohibited.
2.4. Restrictions on Unapproved Use: If you attempt to use our APIs in a manner that is not covered by your approved and published application, the Company reserves the right to take corrective action, including but not limited to removing your application from the marketplace, revoking API access, or terminating your account. Your adherence to the Legitimate Use clause is mandatory to maintain your application’s presence on the platform.
3. Scope of API Access
3.1. Access Only Approved Data: Your application is permitted to access only the data that it has been explicitly enabled and, if published, approved to access through the granted API scopes. Any attempt to access data beyond these approved scopes is strictly prohibited.
3.2. Requesting Additional Permissions: If a published application requires access to additional data or new API scopes, application owner must submit a formal request for a change in scopes. This request will be subject to review and approval by the Company before any new permissions are granted.
3.3. Credential Security: You are responsible for maintaining the security of your API credentials. These credentials must not be shared, distributed, or used by any unauthorised individuals or applications.
3.4. Use Your Own Credentials: You must access the Company’s API solely using your own authorised credentials. Use of third-party credentials to access the API is not allowed.
4. Non-Offensive and Compliant API Usage
4.1. Usage Standards: You must not use the API in any manner that is offensive, abusive, or violates the rights of any individual or entity. Prohibited activities include, but are not limited to, spamming, overloading, or otherwise abusing the API.
4.2. Compliance: Your use of the API must comply with all applicable laws, regulations, and industry standards.
5. Data Security
5.1. Encryption: You must ensure that all data transmitted through the API is encrypted both in transit and at rest using industry-standard encryption methods.
5.2. Data Protection: You are responsible for implementing adequate security measures to protect customer data accessed through the API. You must not store sensitive data for longer than necessary and must comply with all data protection regulations.
6. Data Retention and Deletion Requests
6.1. Data Retention: You may only retain data accessed through the API for as long as it is necessary to fulfill the legitimate use case. Any data retained must be securely stored and protected.
6.2. Deletion Requests: Upon receiving a request from a customer, you must promptly delete their data accessed through the API. You must also delete all data obtained via the API upon termination of your access, unless retention is required by law.
7. Compliance with Laws and Regulations
7.1. Legal Compliance: You must comply with all applicable laws and regulations, including but not limited to data protection laws such as the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and any other relevant legislation based on your or your customers’ jurisdictions.
7.2. Indemnification: You agree to indemnify and hold harmless the Company from any claims, damages, losses, or expenses arising out of or in connection with your violation of any applicable laws or regulations.
8. Revocation of Access
8.1. Termination of Access: The Company reserves the right to revoke or suspend your access to the API at any time, without prior notice, if you violate these API Terms or if your application poses a risk to our systems or users.
8.2. Effects of Revocation: Upon revocation of access, you must immediately cease all use of the API and destroy any data obtained through it, unless otherwise required by law.
9. Support and Maintenance
9.1. API Changes: We reserve the right to make changes to the API, including updates, modifications, or discontinuation of certain features. We will use our best efforts to notify you in advance of any significant changes that may affect your application.
9.2. Compatibility: You are responsible for ensuring that your application remains compatible with the API as it evolves. We are not liable for any issues arising from changes to the API.
10. General Provisions
10.1. Modifications to API Terms: The Company reserves the right to modify these API Terms at any time. We will notify you of any changes, and your continued use of the API constitutes your acceptance of the modified terms.
10.2. Governing Law: These API Terms are governed by and construed in accordance with the laws of England. Any disputes arising from or related to these API Terms shall be subject to the exclusive jurisdiction of the courts of England.
10.3. Entire Agreement: These API Terms constitute the entire agreement between you and the Company regarding the use of the API and supersede any prior agreements or understandings, whether written or oral.
10.4. Severability: If any provision of these API Terms is found to be invalid or unenforceable, the remaining provisions will remain in full force and effect.
If you’d like to publish your application or discuss your integration with us, email us at partner@zelt.app