Acceptable Use Policy (AUP)

Last Updated: December 17, 2025

Capitalized terms not defined here have the meanings in the Terms of Service (the "Terms") available at https://www.keycafe.com/keycafe-tos.

1. Scope; Contractual

   This Schedule applies to the Products and is incorporated into and forms part of the Terms. Customer is responsible for compliance by its Authorized Users and downstream users.

2. Prohibited Use

   Customer will not and will not permit any person to:

   • use the Products in violation of applicable law;
   • use the Products for fraudulent, deceptive, or harmful activity;
   • use the Products to facilitate or enable unauthorized physical access, trespass, burglary, theft, stalking, harassment, or violent or threatening activity;
   • exchange, distribute, or provide keys or access credentials (including master keys, building fobs, or restricted-area keys) without the permission of the lawful owner or authorized controller of the relevant property or access system;
   • create, share, sell, or publish access instructions or credentials (including PINs, access links, codes, or QR credentials) except to intended recipients under Customer’s configured permissions;
   • store hazardous, flammable, explosive, illegal, perishable, or otherwise prohibited items in the Equipment;
   • access or attempt to access any system, account, SmartBox, bin, location, key, or data without authorization;
   • probe, scan, test, breach, bypass, or disable any security or access controls;
   • tamper with, force open, disable, or circumvent any physical or technical safeguards on Equipment;
   • introduce, transmit, or store malware or other harmful code;
   • interfere with, disrupt, overburden, or degrade the Products or any connected network;
   • send unsolicited messages or use the Products in violation of applicable anti-spam laws;
   • infringe, misappropriate, or otherwise violate any intellectual property or other proprietary rights of Keycafe, its Affiliates, or any third party; or
   • use the Products for High-Risk Use or with High-Value or Regulated Items except as expressly permitted under the Terms.

3. Personal Data

   Customer will not collect, store, use, transmit, or disclose Personal Data using the Products unless Customer has all required rights, consents, and notices and complies with applicable law and the Terms.

4. Enforcement

   Keycafe may investigate suspected violations and may suspend or restrict access to the Products.

5. Changes to this AUP

   Keycafe may update this Schedule in its sole discretion. Posting the updated Schedule to Keycafe’s Terms constitutes notice.