Acceptable Use Policy

Last updated July 27, 2025~9 min readTerms of Service

What this covers

This Acceptable Use Policy ("AUP") defines how you may use the Blooio messaging platform and the conduct we will not tolerate on it. Blooio is built for genuine, consent-based, person-to-person communication — not for spam, harassment, illegal activity, or mass unsolicited outreach. Violations can and will result in immediate suspension or termination, without refund.

Consent rules→Prohibited content→Volume limits→Report abuse→

§ 01

Introduction

This Acceptable Use Policy ("AUP") governs your use of Blooio's messaging platform, including our websites, applications, APIs, integrations, and any related services (collectively, the "Service"). It supplements and is incorporated by reference into our Terms of Service and Privacy Policy. Capitalized terms used and not defined here have the meanings given to them in the Terms of Service.

By accessing or using the Service, you agree to comply with this AUP at all times. If you do not agree, you must stop using the Service.

§ 02

Our Principles

Blooio exists to make person-to-person messaging easier — not to enable spam, harassment, or mass unsolicited outreach. Every rule in this policy follows from a few core principles:

Consent first. The people you message should expect to hear from you, and should be able to stop hearing from you whenever they choose.
People, not lists. The Service is designed for real conversations with real recipients, not for blasting identical messages at strangers.
Honesty about origin. Recipients should always be able to tell who is messaging them and why.
Respect for the network. We share infrastructure with carriers, Apple, Google, and other providers. Behavior that gets your number, account, or our platform sanctioned by those providers is not acceptable use.

§ 03

Permitted Use

You may use the Service for lawful, consent-based communication with people you already have a relationship with, including:

Conversations with existing customers, leads, applicants, patients, clients, students, members, or other contacts who have agreed to hear from you;
Replies to inbound inquiries (web forms, missed calls, voicemails, support tickets, calendar bookings, opt-in flows);
Transactional and operational notices — appointment reminders, order updates, delivery notifications, account notices, two-factor codes — sent to recipients who have provided their number for that purpose;
Internal team communication, automated workflows, and integrations with your CRM, helpdesk, or other business systems, provided every outbound message still complies with this AUP;
Building and operating bots or AI assistants that respond to opted-in users, provided the bot identifies itself when asked and honors stop requests.

Anything outside these patterns — cold outreach, mass prospecting, scraped lists, purchased lists, "spray and pray" campaigns — is not a permitted use of the Service, regardless of plan.

You must have a lawful basis to message every recipient. In practice, that means one of the following before you send a message:

Express consent.The recipient knowingly gave you their number for the purpose of receiving messages from you. For marketing or promotional content in the United States, that consent must meet the "prior express written consent" standard required by the Telephone Consumer Protection Act (TCPA) and its implementing regulations.
Established Business Relationship (EBR). The recipient has transacted with you in the last eighteen (18) months, made an inquiry or application in the last three (3) months, or otherwise affirmatively interacted with your business in a way that makes the message expected.
An exempt operational purpose. The message is a transactional or service notice that the recipient expects (for example, an appointment confirmation for an appointment they booked).

You are responsible for keeping records of consent, honoring opt-out requests promptly, and respecting any channel-specific or jurisdiction-specific quiet hours and frequency rules.

Honor "STOP" immediately

When a recipient replies with STOP, UNSUBSCRIBE, END, QUIT, CANCEL, or any other reasonable indication that they want messages to stop — in any language — you must stop messaging that number from your account, and from any related account, business unit, brand, or integration. Do not require a specific keyword, do not route them to a different sender to keep the contact "active," and do not re-add them after a cooling-off period without fresh, documented consent.

No cold outreach to strangers

The Service is not a cold-outreach tool. Sending messages to people who do not have a relationship with you and who did not opt in — including contacts you obtained from scraping, purchased lists, public directories, third-party data brokers, or AI-generated guesses — is a material violation of this AUP and will result in termination without refund.

§ 05

Prohibited Content

You may not use the Service to transmit, store, or link to content that:

Is unlawful, fraudulent, deceptive, or designed to deceive a recipient about its origin, sender, or purpose;
Promotes, facilitates, or advertises hate speech, harassment, threats, stalking, doxxing, or violence;
Contains, links to, or solicits child sexual abuse material (CSAM) or any sexual content involving minors;
Sexually exploits adults without their consent, including non-consensual intimate imagery;
Promotes terrorism, violent extremism, or organized criminal activity;
Constitutes phishing, smishing, credential harvesting, or impersonation of any person, brand, government agency, or company — including impersonating Apple, carriers, banks, delivery services, or Blooio itself;
Promotes scams, multi-level marketing pyramids, deceptive investment schemes, fake job offers, romance scams, or cryptocurrency "pig butchering" schemes;
Markets controlled substances, illegal drugs, illegal firearms or weapons, or any product whose sale by SMS or iMessage is restricted under applicable law (commonly referred to as "SHAFT" categories — sex, hate, alcohol, firearms, tobacco/cannabis — without the consents and age-gating those categories require);
Distributes malware, viruses, ransomware, spyware, or any code intended to disrupt, damage, surveil, or gain unauthorized access to a device or account;
Infringes any patent, trademark, trade secret, copyright, right of publicity, or other right of any party.

§ 06

Prohibited Conduct

You also agree NOT to:

Send unsolicited commercial messages, bulk advertising, or any messaging that violates the CAN-SPAM Act, the TCPA, or state telemarketing, "mini-TCPA," or consumer-protection laws (including the Florida Telephone Solicitation Act, the Oklahoma Telephone Solicitation Act, and similar statutes);
Send messages during prohibited hours under federal or state telemarketing law (for example, before 8:00 a.m. or after 9:00 p.m. in the recipient's local time zone, where applicable);
Disguise or falsify the origin of a message, spoof a phone number you are not authorized to use, or rotate sender identities to avoid blocks, complaints, or compliance obligations ("snowshoeing");
Use the Service to evade a third-party platform's enforcement actions (for example, after Apple, a carrier, or another provider has banned, blocked, or rate-limited your number or account);
Operate multiple accounts to circumvent volume limits, plan restrictions, suspensions, terminations, or classification as low-volume messaging;
Resell, rebrand, white-label, or otherwise redistribute the Service without a separate written agreement with us;
Probe, scan, load-test, or attempt to find vulnerabilities in the Service except through our authorized security program;
Reverse engineer, decompile, scrape, or copy the Service, its source code, internal APIs, or any messaging integration we provide, except to the extent expressly permitted by law;
Interfere with, degrade, or overload the Service or any upstream provider, including by sending malformed payloads, retry storms, or denial-of-service traffic;
Attempt to misuse, manipulate, or jailbreak any AI assistant or large-language-model feature offered through the Service to produce content that violates this AUP.

§ 07

Volume, Velocity & Throttling

Plan-specific volume rules are part of this AUP and are enforced automatically as well as by our trust and safety team. In all cases, what counts is your behavior across the Service — not just any single number, account, or channel.

Shared Plan — low-volume only

The Shared Plan is restricted to low-volume messaging: up to twenty (20) unique recipients per 24-hour period (measured in Coordinated Universal Time), with unlimited messages per recipient inside an active conversation. Broadcasting, bulk messaging, mass texting, or sending substantially similar messages to multiple recipients who are not engaged in an active, consensual conversation is not permitted on the Shared Plan and will result in immediate and permanent termination of your account, without notice or refund.

Dedicated & Enterprise plans

Dedicated and Enterprise customers may send higher volumes in line with their plan, but are still bound by this AUP. Excessive broadcasting patterns, sustained spikes in complaint or block rates, or behavior that triggers upstream enforcement (carrier blocks, Apple sanctions, spam-trap hits) may result in throttling, suspension, or termination, even when nominal volume limits are not exceeded.

We may apply additional rate limits, sending caps, ramp-up schedules, or reputation-based throttling at any time to protect the integrity of the Service. You must not attempt to exceed, circumvent, or game these limits.

§ 08

Automation, Bots & AI

The Service supports APIs and integrations with automation platforms (for example, CRMs, n8n, Make, Zapier, custom workflows, and large-language-model assistants). When you use these features, you remain solely responsible for every message produced by your automation. In particular:

Each outbound message must satisfy the consent rules in Section 4 and the content rules in Section 5;
Bots and AI assistants must clearly identify themselves as automated when a recipient asks, and must not impersonate a specific real person without that person's permission;
Automation must process opt-out requests in a way that actually stops the relevant workflows — not just mute the conversation;
Triggering systems (forms, webhooks, third-party events) must be configured so that bots and AI assistants do not contact people who never interacted with you;
You must not use the API or any automation feature to send bulk unsolicited outreach, evade volume limits, or circumvent the consent and anti-abuse requirements of this AUP or of any third-party platform accessed via the Service.

§ 09

Third-Party Networks

The Service interacts with third-party messaging networks, including Apple iMessage and FaceTime, RCS, MMS, and SMS networks operated by carriers and aggregators. These networks have their own terms of service, acceptable-use rules, and abuse-prevention systems. You are responsible for complying with the rules of every network that carries your messages, including:

Apple's policies governing iMessage, FaceTime, and Apple Messages for Business, and any restrictions Apple places on automated, indirect, or unauthorized access;
Carrier and CTIA messaging guidelines, including SHAFT-category restrictions, opt-in confirmation requirements, and 10DLC / toll-free / short-code registration requirements where applicable;
Any platform whose webhook, callback, or integration you connect to the Service.

Conduct that gets your phone number, account, or our infrastructure flagged, blocked, throttled, or banned by Apple, a carrier, an aggregator, or another provider is a violation of this AUP, regardless of whether the underlying message would otherwise have been allowed.

§ 10

Security & Integrity

You may not:

Probe, scan, or test the vulnerability of the Service except through an authorized program with our written permission;
Bypass, disable, or interfere with security or authentication features, rate limits, captchas, or fraud controls;
Share, resell, or expose API keys, dashboard credentials, or session tokens, or use credentials issued to another customer;
Use the Service to send, host, or distribute credentials, tokens, or session cookies obtained through phishing, credential stuffing, or unauthorized access to any system;
Use the Service in connection with botnets, click-fraud, fake account creation, or any operation designed to falsify metrics on another platform.

Suspected vulnerabilities should be reported to security@blooio.com. Do not attempt to access data that does not belong to you, and do not pivot from a finding into further exploitation.

§ 11

Data Handling & Privacy

Anything you send through the Service may include personal information about your recipients. You are responsible for handling that information in accordance with applicable law and our Privacy Policy. In particular, you must not use the Service to:

Collect, ship, or sell personal information in violation of applicable privacy laws (CCPA/CPRA, GLBA, HIPAA, COPPA, state biometric statutes, and analogous regimes);
Send protected health information (PHI), payment card data, government identifiers, or other sensitive information to recipients who have not affirmatively consented to receive it through SMS or iMessage;
Process personal information of EU/UK residents in a way that requires a controller-processor agreement with us unless we have one in place;
Aggregate information about message recipients across accounts in order to build resale-ready profiles or contact lists.

§ 12

Minors & Sensitive Recipients

The Service is not designed for sending marketing or promotional content to minors. You must not knowingly use the Service to:

Market to anyone you know or reasonably should know is under 13 years of age (or under the applicable age of digital consent in their jurisdiction);
Send sexually explicit, gambling-related, alcohol-related, tobacco-related, or other age-restricted content to recipients you have not age-verified;
Contact recipients in a way that exploits known vulnerabilities — for example, targeting people in addiction recovery, in financial distress, or in active crisis with predatory offers.

§ 13

Reporting Abuse

If you believe a Blooio user is violating this AUP — whether you are a recipient, a third-party platform, a carrier, or another customer — please report it to abuse@blooio.com. Where possible, include:

The phone number, sender ID, or account that sent the message;
The phone number that received the message, and your relationship (if any) to it;
The date, time (with time zone), and content of the message(s) at issue, including screenshots if available;
Any prior STOP requests or other relevant context.

We review every report. We may not be able to share the outcome of an investigation with you, but credible reports routinely lead to suspensions and terminations.

If you received an unwanted message

The fastest way to stop messages from a particular sender is to reply STOP to that sender. Senders are required by this AUP to honor STOP requests immediately, and Blooio enforces it across our platform. If a sender continues messaging you after a STOP, please report them to abuse@blooio.com.

§ 14

Enforcement

We may take any action we determine appropriate to enforce this AUP, with or without notice and without liability, including:

Issuing a warning or requiring corrective action;
Throttling or rate-limiting your account, integration, or sender;
Removing or disabling content, integrations, automations, or numbers;
Suspending all or part of your access to the Service;
Permanently terminating your account and any related accounts;
Preserving and disclosing information to law enforcement or other authorities where required or where we believe in good faith that disclosure is necessary to investigate fraud, abuse, threats to safety, or violations of law.

Subscription fees are not refundable when an account is suspended or terminated for an AUP violation, except where a refund is required by applicable law.

§ 15

Appeals

If your account is suspended or terminated and you believe the action was a mistake, you may appeal by emailing appeals@blooio.com within thirty (30) days of the action. Please include the account email, the affected phone number(s), a description of the situation, and any consent records, opt-in evidence, or other documentation that supports your appeal.

We review appeals in good faith but our enforcement decisions are final. Appeals are not a path to override the refund rules in our Terms of Service.

§ 16

Changes to This Policy

We may update this AUP from time to time. For non-material changes (typo fixes, clarifications, and reasonable operational updates), the revised AUP takes effect upon posting. For material changes, we will provide at least thirty (30) days' notice through the Service or by email. Your continued use of the Service after the effective date of any change constitutes acceptance of the updated AUP.

§ 17

Contact

Report abuse or unwanted messages: abuse@blooio.com

Security issues or vulnerability reports: security@blooio.com

Appeals of suspensions or terminations: appeals@blooio.com

General questions about this policy: info@blooio.com

Introduction

By accessing or using the Service, you agree to comply with this AUP at all times. If you do not agree, you must stop using the Service.

§ 02

Our Principles

Blooio exists to make person-to-person messaging easier — not to enable spam, harassment, or mass unsolicited outreach. Every rule in this policy follows from a few core principles:

Consent first. The people you message should expect to hear from you, and should be able to stop hearing from you whenever they choose.
People, not lists. The Service is designed for real conversations with real recipients, not for blasting identical messages at strangers.
Honesty about origin. Recipients should always be able to tell who is messaging them and why.
Respect for the network. We share infrastructure with carriers, Apple, Google, and other providers. Behavior that gets your number, account, or our platform sanctioned by those providers is not acceptable use.

§ 03

Permitted Use

You may use the Service for lawful, consent-based communication with people you already have a relationship with, including:

Conversations with existing customers, leads, applicants, patients, clients, students, members, or other contacts who have agreed to hear from you;
Replies to inbound inquiries (web forms, missed calls, voicemails, support tickets, calendar bookings, opt-in flows);
Transactional and operational notices — appointment reminders, order updates, delivery notifications, account notices, two-factor codes — sent to recipients who have provided their number for that purpose;
Internal team communication, automated workflows, and integrations with your CRM, helpdesk, or other business systems, provided every outbound message still complies with this AUP;
Building and operating bots or AI assistants that respond to opted-in users, provided the bot identifies itself when asked and honors stop requests.

Anything outside these patterns — cold outreach, mass prospecting, scraped lists, purchased lists, "spray and pray" campaigns — is not a permitted use of the Service, regardless of plan.

You must have a lawful basis to message every recipient. In practice, that means one of the following before you send a message:

Express consent.The recipient knowingly gave you their number for the purpose of receiving messages from you. For marketing or promotional content in the United States, that consent must meet the "prior express written consent" standard required by the Telephone Consumer Protection Act (TCPA) and its implementing regulations.
Established Business Relationship (EBR). The recipient has transacted with you in the last eighteen (18) months, made an inquiry or application in the last three (3) months, or otherwise affirmatively interacted with your business in a way that makes the message expected.
An exempt operational purpose. The message is a transactional or service notice that the recipient expects (for example, an appointment confirmation for an appointment they booked).

You are responsible for keeping records of consent, honoring opt-out requests promptly, and respecting any channel-specific or jurisdiction-specific quiet hours and frequency rules.

Honor "STOP" immediately

No cold outreach to strangers

§ 05

Prohibited Content

You may not use the Service to transmit, store, or link to content that:

Is unlawful, fraudulent, deceptive, or designed to deceive a recipient about its origin, sender, or purpose;
Promotes, facilitates, or advertises hate speech, harassment, threats, stalking, doxxing, or violence;
Contains, links to, or solicits child sexual abuse material (CSAM) or any sexual content involving minors;
Sexually exploits adults without their consent, including non-consensual intimate imagery;
Promotes terrorism, violent extremism, or organized criminal activity;
Constitutes phishing, smishing, credential harvesting, or impersonation of any person, brand, government agency, or company — including impersonating Apple, carriers, banks, delivery services, or Blooio itself;
Promotes scams, multi-level marketing pyramids, deceptive investment schemes, fake job offers, romance scams, or cryptocurrency "pig butchering" schemes;
Markets controlled substances, illegal drugs, illegal firearms or weapons, or any product whose sale by SMS or iMessage is restricted under applicable law (commonly referred to as "SHAFT" categories — sex, hate, alcohol, firearms, tobacco/cannabis — without the consents and age-gating those categories require);
Distributes malware, viruses, ransomware, spyware, or any code intended to disrupt, damage, surveil, or gain unauthorized access to a device or account;
Infringes any patent, trademark, trade secret, copyright, right of publicity, or other right of any party.

§ 06

Prohibited Conduct

You also agree NOT to:

Send unsolicited commercial messages, bulk advertising, or any messaging that violates the CAN-SPAM Act, the TCPA, or state telemarketing, "mini-TCPA," or consumer-protection laws (including the Florida Telephone Solicitation Act, the Oklahoma Telephone Solicitation Act, and similar statutes);
Send messages during prohibited hours under federal or state telemarketing law (for example, before 8:00 a.m. or after 9:00 p.m. in the recipient's local time zone, where applicable);
Disguise or falsify the origin of a message, spoof a phone number you are not authorized to use, or rotate sender identities to avoid blocks, complaints, or compliance obligations ("snowshoeing");
Use the Service to evade a third-party platform's enforcement actions (for example, after Apple, a carrier, or another provider has banned, blocked, or rate-limited your number or account);
Operate multiple accounts to circumvent volume limits, plan restrictions, suspensions, terminations, or classification as low-volume messaging;
Resell, rebrand, white-label, or otherwise redistribute the Service without a separate written agreement with us;
Probe, scan, load-test, or attempt to find vulnerabilities in the Service except through our authorized security program;
Reverse engineer, decompile, scrape, or copy the Service, its source code, internal APIs, or any messaging integration we provide, except to the extent expressly permitted by law;
Interfere with, degrade, or overload the Service or any upstream provider, including by sending malformed payloads, retry storms, or denial-of-service traffic;
Attempt to misuse, manipulate, or jailbreak any AI assistant or large-language-model feature offered through the Service to produce content that violates this AUP.

§ 07

Volume, Velocity & Throttling

Shared Plan — low-volume only

Dedicated & Enterprise plans

§ 08

Automation, Bots & AI

Each outbound message must satisfy the consent rules in Section 4 and the content rules in Section 5;
Bots and AI assistants must clearly identify themselves as automated when a recipient asks, and must not impersonate a specific real person without that person's permission;
Automation must process opt-out requests in a way that actually stops the relevant workflows — not just mute the conversation;
Triggering systems (forms, webhooks, third-party events) must be configured so that bots and AI assistants do not contact people who never interacted with you;
You must not use the API or any automation feature to send bulk unsolicited outreach, evade volume limits, or circumvent the consent and anti-abuse requirements of this AUP or of any third-party platform accessed via the Service.

§ 09

Third-Party Networks

Apple's policies governing iMessage, FaceTime, and Apple Messages for Business, and any restrictions Apple places on automated, indirect, or unauthorized access;
Carrier and CTIA messaging guidelines, including SHAFT-category restrictions, opt-in confirmation requirements, and 10DLC / toll-free / short-code registration requirements where applicable;
Any platform whose webhook, callback, or integration you connect to the Service.

§ 10

Security & Integrity

You may not:

Probe, scan, or test the vulnerability of the Service except through an authorized program with our written permission;
Bypass, disable, or interfere with security or authentication features, rate limits, captchas, or fraud controls;
Share, resell, or expose API keys, dashboard credentials, or session tokens, or use credentials issued to another customer;
Use the Service to send, host, or distribute credentials, tokens, or session cookies obtained through phishing, credential stuffing, or unauthorized access to any system;
Use the Service in connection with botnets, click-fraud, fake account creation, or any operation designed to falsify metrics on another platform.

Suspected vulnerabilities should be reported to security@blooio.com. Do not attempt to access data that does not belong to you, and do not pivot from a finding into further exploitation.

§ 11

Data Handling & Privacy

Collect, ship, or sell personal information in violation of applicable privacy laws (CCPA/CPRA, GLBA, HIPAA, COPPA, state biometric statutes, and analogous regimes);
Send protected health information (PHI), payment card data, government identifiers, or other sensitive information to recipients who have not affirmatively consented to receive it through SMS or iMessage;
Process personal information of EU/UK residents in a way that requires a controller-processor agreement with us unless we have one in place;
Aggregate information about message recipients across accounts in order to build resale-ready profiles or contact lists.

§ 12

Minors & Sensitive Recipients

The Service is not designed for sending marketing or promotional content to minors. You must not knowingly use the Service to:

Market to anyone you know or reasonably should know is under 13 years of age (or under the applicable age of digital consent in their jurisdiction);
Send sexually explicit, gambling-related, alcohol-related, tobacco-related, or other age-restricted content to recipients you have not age-verified;
Contact recipients in a way that exploits known vulnerabilities — for example, targeting people in addiction recovery, in financial distress, or in active crisis with predatory offers.

§ 13

Reporting Abuse

The phone number, sender ID, or account that sent the message;
The phone number that received the message, and your relationship (if any) to it;
The date, time (with time zone), and content of the message(s) at issue, including screenshots if available;
Any prior STOP requests or other relevant context.

We review every report. We may not be able to share the outcome of an investigation with you, but credible reports routinely lead to suspensions and terminations.

If you received an unwanted message

§ 14

Enforcement

We may take any action we determine appropriate to enforce this AUP, with or without notice and without liability, including:

Issuing a warning or requiring corrective action;
Throttling or rate-limiting your account, integration, or sender;
Removing or disabling content, integrations, automations, or numbers;
Suspending all or part of your access to the Service;
Permanently terminating your account and any related accounts;
Preserving and disclosing information to law enforcement or other authorities where required or where we believe in good faith that disclosure is necessary to investigate fraud, abuse, threats to safety, or violations of law.

Subscription fees are not refundable when an account is suspended or terminated for an AUP violation, except where a refund is required by applicable law.

§ 15

Appeals

We review appeals in good faith but our enforcement decisions are final. Appeals are not a path to override the refund rules in our Terms of Service.

§ 16

Changes to This Policy

§ 17

Contact

Report abuse or unwanted messages: abuse@blooio.com

Security issues or vulnerability reports: security@blooio.com

Appeals of suspensions or terminations: appeals@blooio.com

General questions about this policy: info@blooio.com

Introduction

Our Principles

Permitted Use

Consent & Established Relationships

Prohibited Content

Prohibited Conduct

Volume, Velocity & Throttling

Automation, Bots & AI

Third-Party Networks

Security & Integrity

Data Handling & Privacy

Minors & Sensitive Recipients

Reporting Abuse

Enforcement

Appeals

Changes to This Policy

Contact

Introduction

Our Principles

Permitted Use

Consent & Established Relationships

Prohibited Content

Prohibited Conduct

Volume, Velocity & Throttling

Automation, Bots & AI

Third-Party Networks

Security & Integrity

Data Handling & Privacy

Minors & Sensitive Recipients

Reporting Abuse

Enforcement

Appeals

Changes to This Policy

Contact