Acceptable Use Policy

DepthSignal is designed for a wide range of legitimate use cases, including but not limited to:

• Algorithmic trading: Using DepthSignal features as inputs to your trading algorithms, bots, or execution systems.
• Dashboards and visualization: Displaying DepthSignal data in internal or customer-facing dashboards, charts, and monitoring tools.
• Research and analysis: Using DepthSignal data for quantitative research, academic study, market microstructure analysis, or financial journalism.
• Analytics platforms: Integrating DepthSignal features into broader analytics, risk management, or portfolio management platforms.
• Alerts and notifications: Building alert systems that trigger on DepthSignal market-context thresholds (for example, cascade-risk levels, large-order-activity context, or pressure-regime changes).
• Education: Using DepthSignal data for teaching or demonstration purposes related to market microstructure concepts.

The following activities are strictly prohibited. You must not:

2.1 Market Manipulation

• Use DepthSignal data to engage in, facilitate, or plan market manipulation, spoofing, layering, wash trading, front-running, or any activity prohibited by applicable securities or commodities law, exchange rules, or regulatory guidance.

2.2 Unauthorized Redistribution

• Redistribute, resell, sublicense, or repackage DepthSignal API responses or derived datasets as a standalone competing data product or service. (Database rights under EU Directive 96/9/EC: unauthorised extraction or re-utilisation of substantial parts of a database is prohibited)
• Systematically cache API responses and provide them to third parties to circumvent subscription requirements.
• Present DepthSignal data as your own proprietary data without acknowledgement.

2.3 Service Abuse

• Conduct DDoS attacks, load testing, stress testing, or any activity intended to degrade or disrupt the DepthSignal API. (EU Directive 2013/40/EU on attacks against information systems, Articles 3-7)
• Scrape or crawl the API beyond your subscribed rate limits.
• Use multiple accounts or API keys to circumvent rate limits for the same person or entity.
• Exploit security vulnerabilities, bugs, or misconfigurations to gain unauthorized access or elevated privileges.

2.4 API Key Misuse

• Share your API key with unauthorized third parties.
• Expose your API key in client-side code, public repositories, or unsecured environments.
• Sell, transfer, or sublicense your API key to another person or entity.

2.5 Illegal Activity

• Use the DepthSignal API for any purpose that is illegal in your jurisdiction or the jurisdiction of the Republic of Estonia.
• Use the service to facilitate money laundering, terrorist financing, sanctions evasion, or other financial crimes.

Violations of this AUP are handled through a graduated enforcement process. The specific response depends on the severity and nature of the violation:

We reserve the right to skip directly to any enforcement level depending on the severity of the violation. For severe violations (DDoS, exploitation, illegal activity), we may take immediate action without prior warning.

We value the security community and encourage responsible disclosure of vulnerabilities. If you discover a security issue in the DepthSignal API or infrastructure:

• Report it to [email protected] with a detailed description of the vulnerability, steps to reproduce, and any proof-of-concept code.
• Do not exploit the vulnerability beyond the minimum necessary to demonstrate it.
• Do not access, modify, or delete data belonging to other users.
• Allow us reasonable time (at least 90 days) to investigate and address the issue before public disclosure.

Good-faith security researchers acting within these guidelines will not face enforcement action or legal threats. We will acknowledge valid reports and, where appropriate, credit the reporter (with consent).