Legal & compliance

Acceptable Use Policy

Last updated 26 June 2026

Acceptable Use Policy

Last updated: 26 June 2026

This Acceptable Use Policy ("AUP") sets out the rules for using the Waypoint TMS platform (the "Service") provided by Waypoint Aviation Software Ltd ("Waypoint"). It is incorporated into our Terms of Service. The Operator is responsible for ensuring its users comply with this AUP.

1. Permitted use

The Service is provided for the lawful management of aviation training records by, and on behalf of, the contracting Operator and its authorised users. You may use the Service only in accordance with the Terms, this AUP, and applicable law and aviation regulation.

2. Prohibited conduct

You must not, and must not permit any third party to:

  • Use the Service for any unlawful, fraudulent, or deceptive purpose, or in breach of any applicable aviation, export-control, or data-protection law.
  • Upload, store, or transmit any malware, ransomware, or malicious code, or any content that infringes the intellectual-property or privacy rights of others.
  • Probe, scan, or test the vulnerability of the Service or its network, or breach or circumvent any security or authentication measure, except under a penetration test that we have authorised in writing.
  • Attempt to gain unauthorised access to any account, tenant, system, or data, including data belonging to another Operator.
  • Reverse-engineer, decompile, or disassemble any part of the Service except to the limited extent that applicable law expressly permits.
  • Use the Service to send unsolicited communications (spam) or to harvest personal data unlawfully.
  • Upload special-category personal data beyond what the Service is designed to hold (its training-records scope), or use the Service to process personal data without a lawful basis.
  • Resell, sublicense, or provide the Service to third parties except as expressly permitted in your Order Form.
  • Interfere with or disrupt the integrity or performance of the Service, including by placing an unreasonable load on the infrastructure or circumventing rate limits.

3. Account security

You are responsible for keeping your credentials confidential, for all activity under your account, and for enabling available security controls (such as multi-factor authentication and biometric unlock). Notify us immediately at security@waypointtms.com if you suspect any unauthorised use.

4. Content responsibility

The Operator and its users are solely responsible for the accuracy, legality, and appropriateness of the data they upload, and for ensuring they have the rights and lawful basis to upload it. Waypoint does not routinely monitor content but may remove or disable access to content that breaches this AUP or the law.

5. Suspension

We may suspend or restrict access (in whole or in part, and without liability) where we reasonably believe the Service is being used in breach of this AUP, where there is a security risk to the Service or other customers, or where required by law. Where practical and lawful, we will give notice and an opportunity to remedy before suspending.

6. Reporting abuse

Report suspected abuse, security issues, or misuse of the Service to security@waypointtms.com.

7. Changes

We may update this AUP from time to time. Material changes will be notified to Operator administrators with at least 30 days' notice.

← All legal documents