This policy extends the canonical Madless Acceptable Use Policy to programmatic access. Everything in the main policy still applies when you reach Madless through the API — this page adds the rules that are specific to building on top of it.
Programmatic access is a privilege, not a loophole. The following are prohibited:
Bulk-extracting data through the API to repackage or resell it, or to seed a competing dataset or product.
Flooding endpoints, running deliberate load tests against production, or any traffic pattern intended to degrade the service for others.
Hammering past 429 responses, ignoring the Retry-After header, or rotating keys, IPs, or spaces to evade per-key limits.
Working around plan entitlements, per-space AI credit limits, or scope and entitlement gates by any means.
Using data obtained via the API — especially data belonging to other users — to train, fine-tune, or evaluate models that compete with Madless.
Calling, fuzzing, or enumerating undocumented or scope-gated endpoints your key was not granted access to.
Madless is a personal thinking mirror, and much of what flows through the API is private to one person. If your integration touches data belonging to a space owner, you act only on their behalf and only for what they asked. Never sell that data, never share it with unrelated third parties, and never feed it into model training. When access ends, delete what you held.
We welcome good-faith security research. Test only against your own space, never against another user’s data, and never run destructive or denial-of-service tests against production. If you find a vulnerability, report it privately to security@madless.com and give us a reasonable chance to fix it before disclosing it publicly. We will not pursue researchers who act in good faith and within this policy.
Breaking this policy can get a key throttled, revoked, or your space’s API access suspended — up to and including account action under the main Acceptable Use Policy. To report abuse or appeal a decision, email legal@madless.com.